Cyber Security

Articles on SystemTek’s website that relate to cyber security.

NewsSecurity Vulnerabilities

Cisco Meraki MX and Z Series AnyConnect VPN Authentication Denial of Service Vulnerability (CVE-2025-20271)

– A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition in the Cisco AnyConnect service on an affected device.

Read More
NewsSecurity Vulnerabilities

ClamAV UDF File Parsing Out-of-Bounds Read Information Disclosure Vulnerability (CVE-2025-20234)

CVE number = CVE-2025-20234 A vulnerability in Universal Disk Format (UDF) processing of ClamAV could allow an unauthenticated, remote attacker

Read More
Cyber SecurityNews

New plans to supercharge UK cyber sector

– The UK’s growing and cutting edge cyber security sector will be boosted by millions in new investment and a roadmap for growth, as part of the Plan for Change. 

Read More
NewsSecurity Vulnerabilities

Siemens TeleControl Server Basic CreateTrace SQL Injection Remote Code Execution Vulnerability (CVE-2025-27495)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens TeleControl Server Basic.

Read More
NewsSecurity Vulnerabilities

Microsoft WEBDAV Remote Code Execution Vulnerability (CVE-2025-33053)

– A newly discovered critical zero-day remote code execution (RCE) vulnerability in Microsoft Windows, identified as CVE-2025-33053, is being actively exploited by the Stealth Falcon advanced persistent threat (APT) group, also known as FruityArmor.

Read More
NewsSecurity Vulnerabilities

Ubiquiti Networks UniFi Console Missing Authentication for Critical Function Authentication Bypass Vulnerability (CVE-2025-23116)

– This vulnerability allows network-adjacent attackers to bypass authentication on affected Ubiquiti Networks UniFi Console devices.

Read More
NewsSecurity Vulnerabilities

Ubiquiti Networks AI Bullet Insufficient Firmware Update Validation Remote Code Execution Vulnerability (CVE-2025-23117)

– This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Ubiquiti Networks AI Bullet Cameras.

Read More
MicrosoftNewsSoftware

External Apps Can Exploit OneDrive Security Flaw

– Websites that support OneDrive file uploads—such as ChatGPT, Slack, Trello, ClickUp, Zoom, and others—can gain access to a user’s entire OneDrive account, not just the files selected for upload. This access may persist for extended periods.

Read More
NewsSecurity Vulnerabilities

Hewlett Packard Enterprise Directory Traversal Remote Code Execution Vulnerability (CVE-2025-37099)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hewlett Packard Enterprise Insight Remote Support. Authentication is not required to exploit this vulnerability.

Read More
NewsTelecoms

Student-led research deploys AI to spot stealthy Android malware

– Researchers at Florida Polytechnic University have developed an artificial intelligence technique that can detect elusive malware known as remote access trojans (RATs) on Android devices. The breakthrough could help protect millions of users from cybercriminals who use RATs to steal personal information and control devices without detection.

Read More