Security Vulnerabilities

The latest Security Vulnerabilities

NewsSecurity Vulnerabilities

Cisco Catalyst SD-WAN Manager Cross-Site Scripting Vulnerability (CVE-2024-20475)

Jason Davies 512 Views 0 Comments 0 min read

A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface.

Read More
NewsSecurity Vulnerabilities

Four vulnerabilities found in Devolutions Remote Desktop Manager

Jason Davies 308 Views 0 Comments 3 min read

Four vulnerabilities have been reported in Devolutions Remote Desktop Manager software.

Read More
NewsSecurity Vulnerabilities

BEC Technologies Multiple Routers sys ping Command Injection Remote Code Execution Vulnerability (CVE-2025-2773)

Jason Davies 324 Views 0 Comments 0 min read

CVE number – CVE-2025-2773 This vulnerability allows remote attackers to execute arbitrary code on affected installations of BEC Technologies Multiple Routers.

Read More
NewsSecurity Vulnerabilities

70mai A510 Use of Default Password Authentication Bypass Vulnerability (CVE-2025-2766)

Luke Simmonds 359 Views 0 Comments 0 min read

CVE number = CVE-2025-2766 – This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of 70mai A510.

Read More
NewsSecurity Vulnerabilities

OpenSlides Improper Neutralization of Input During Web Page Generation (CVE-2025-30345)

Jason Davies 278 Views 0 Comments 0 min read

CVE number – CVE-2025-30345 An issue was discovered in OpenSlides before 4.2.5. When creating new chats via the chat_group.create action,

Read More
NewsSecurity Vulnerabilities

Apple macOS MOV File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2025-24124)

Jason Davies 243 Views 0 Comments 0 min read

CVE-2025-24124 – This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS.

Read More
NewsSecurity Vulnerabilities

IROAD Dash Cam X5 critical vulnerability (CVE-2025-2345)

Jason Davies 263 Views 0 Comments 0 min read

CVE-2025-2345 – The IROAD X5 dashcam allows unauthorized users to modify critical system settings once connected to its network.

Read More
NewsSecurity Vulnerabilities

Cisco IOS XR Software Release 7.9.2 Denial of Service Vulnerability (CVE-2025-20141)

Jason Davies 315 Views 0 Comments 1 min read

A vulnerability in the handling of specific packets that are punted from a line card to a route processor in Cisco IOS XR Software Release 7.9.2 could allow an unauthenticated, adjacent attacker to cause control plane traffic to stop working on multiple Cisco IOS XR platforms.

Read More
NewsSecurity Vulnerabilities

NVIDIA Riva Triton Inference Server Missing Authentication Vulnerability (CVE-2025-23242)

Luke Simmonds 271 Views 0 Comments 0 min read

CVE-2025-23242 – This vulnerability allows remote attackers to access protected functionality on affected installations of NVIDIA Riva.

Read More
NewsSecurity Vulnerabilities

Remote code execution when loading a crafted GraphQL schema (CVE-2025-27407)

Jason Davies 292 Views 0 Comments 0 min read

Starting in version 1.11.5 and prior to versions 1.11.8, 1.12.25, 1.13.24, 2.0.32, 2.1.14, 2.2.17, and 2.3.21, loading a malicious schema definition in `GraphQL::Schema.from_introspection` (or `GraphQL::Schema::Loader.load`) can result in remote code execution.

Read More