cve-2025-1234
166 articles with this tag
✨
AI summary
Loading…
MEDIUM
HIGH
HIGH
HIGH
MEDIUM
HIGH
CRITICAL
MEDIUM
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
INFO
INFO
CRITICAL
CRITICAL
MEDIUM
MEDIUM
HIGH
MEDIUM
MEDIUM
CRITICAL
MEDIUM
HIGH
HIGH
HIGH
HIGH
MEDIUM
HIGH
HIGH
HIGH
HIGH
CRITICAL
CRITICAL
CRITICAL
HIGH
HIGH
HIGH
MEDIUM
CRITICAL
HIGH
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
INFO
HIGH
HIGH
CRITICAL
MEDIUM
HIGH
CRITICAL
HIGH
HIGH
CRITICAL
CRITICAL
CRITICAL
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
HIGH
LOW
HIGH
HIGH
MEDIUM
MEDIUM
MEDIUM
LOW
CRITICAL
HIGH
HIGH
MEDIUM
MEDIUM
HIGH
[UPDATE] [mittel] Red Hat Enterprise Linux (socat): Schwachstelle ermöglicht Manipulation von Dateien
[UPDATE] [hoch] Apple macOS Sequoia, Sonoma und Tahoe: Mehrere Schwachstellen
[UPDATE] [hoch] Insyde UEFI Firmware: Schwachstelle ermöglicht Codeausführung
Google leaks details for Chromium bug that can turn browsers into bots
[local] Lenovo LegionSpace 1.7.11.2 - 'DAService' Unquoted Service Path
Google publishes exploit code threatening millions of Chromium users
[UPDATE] [hoch] Squid: Schwachstelle ermöglicht Codeausführung
[UPDATE] [niedrig] Red Hat Enterprise Linux (luksmeta): Schwachstelle ermöglicht Manipulation von Dateien
[UPDATE] [mittel] libsndfile: Schwachstelle ermöglicht Codeausführung und DoS
Do fear the Reaper - stealer swipes macOS users' passwords, wallets, then backdoors them
Shai-Hulud copycat worm infects yet another npm package
[UPDATE] [mittel] Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service
The spy who logged me in.
PraisonAI vulnerability gets scanned within 4 hours of disclosure
Palo Alto Products Multiple Vulnerabilities
RHSA-2026:16157: Important: OpenShift Container Platform 4.20.22 bug fix and security update
Microsoft Monthly Security Update (May 2026)
RHSA-2026:16699: Important: python3.12 security update
RHSA-2026:16693: Important: jq security update
RHSA-2026:16698: Important: go-toolset:rhel8 security update
RHSA-2026:16697: Important: go-toolset:rhel8 security update
RHSA-2026:16702: Important: podman security update
RHSA-2026:16694: Important: go-toolset:rhel8 security update
ABB WebPro SNMP Card PowerValue Multiple Vulnerabilities
[UPDATE] [hoch] poppler: Schwachstelle ermöglicht Codeausführung
[UPDATE] [hoch] Microsoft Azure Linux: Mehrere Schwachstellen
Checkmarx Jenkins AST Plugin Compromised in Supply Chain Attack
Samsung Products Multiple Vulnerabilities
Netþrjótar brjótast aftur inn í Canvas
Kernel LPE Vulnerability Published Early Due To Third-Party Breaking Embargo
Cline Kanban Flaw Lets Websites Hijack AI Coding Agents
Risky Business #836 -- You can't patch the bugpocalypse
[UPDATE] [hoch] Grafana: Schwachstelle ermöglicht Codeausführung
[UPDATE] [mittel] Grafana: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen
[UPDATE] [niedrig] Grafana: Schwachstelle ermöglicht Offenlegung von Informationen
[UPDATE] [hoch] Grafana: Mehrere Schwachstellen
[UPDATE] [mittel] Grafana: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen
[UPDATE] [mittel] Grafana: Mehrere Schwachstellen
[UPDATE] [hoch] Golang Go: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen
[UPDATE] [mittel] libssh: Schwachstelle ermöglicht Denial of Service
MongoDB Multiple Vulnerabilities
New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs
Google Chrome Multiple Vulnerabilities
More fake extensions linked to GlassWorm found in Open VSX code marketplace
USN-8190-2: Rack::Session vulnerability
[UPDATE] [hoch] MongoDB: Schwachstelle ermöglicht Codeausführung und DoS
Unpatched 'PhantomRPC' Flaw in Windows Enables Privilege Escalation
Week in review: Claude Mythos finds 271 Firefox flaws, Vercel breach
The npm Threat Landscape: Attack Surface and Mitigations
[UPDATE] [kritisch] Cisco ASA, FTD, IOS, IOS XE, IOS XR: Mehrere Schwachstellen
US, UK agencies warn hackers were hiding on Cisco firewalls long after patches were applied
Continued Evolution of Persistence Mechanism Against Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense
P4WNED: How Insecure Defaults in Perforce Expose Source Code Across the Internet
Riddled with flaws, serial-to-Ethernet converters endanger critical infrastructure
Apple Products Information Disclosure Vulnerability
Evolution of Chinese-Language Guarantee Telegram Marketplaces
[UPDATE] [hoch] Microsoft Developer Tools: Mehrere Schwachstellen
Oracle Products Multiple Vulnerabilities
Mozilla Products Multiple Vulnerabilities
Intent redirection vulnerability in third-party SDK exposed millions of Android wallets to potential risk
Critical RCE vulnerability in protobuf.js; Exploit code published
Week in review: Acrobat Reader flaw exploited, Claude Mythos offensive capabilities and limits
Vuln in Google’s Antigravity AI agent manager could escape sandbox, give attackers remote code execution
Vuln in Google’s Antigravity AI agent manager could escape sandbox, give attackers remote code execution
Microsoft Edge Multiple Vulnerabilities
AI uncovered thousands of zero-day vulnerabilities for every major operating system and browser. Including a bug dating back to 1996 in OpenBSD. Patch everything is officially obsolete.
Cisco Products Multiple Vulnerabilities
World Leaks: RDP Access Leads to Custom Exfiltration and Personalized Extortion
Behind the Mythos hype, Glasswing has just one confirmed CVE
Google Chrome Multiple Vulnerabilities
WordPress plugin suite hacked to push malware to thousands of sites
n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails
USN-8168-2: Rust vulnerability
Black Basta’s playbook lives on as former affiliates launch fast-scale intrusion campaign
[UPDATE] [kritisch] Redis: Mehrere Schwachstellen
Week in review: Windows zero-day exploit leaked, Patch Tuesday forecast
Hackers have been exploiting an unpatched Adobe Reader vulnerability for months
UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns
APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies
[UPDATE] [hoch] Samsung Exynos: Mehrere Schwachstellen
We found a path traversal in an MCP server with 7,700 stars that lets AI agents read your SSH keys. Fix merged.
Mozilla Products Multiple Vulnerabilities
[UPDATE] [hoch] Oracle MySQL: Mehrere Schwachstellen
European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack
npm-sentinel: 21 malicious npm packages in 24h including LLM API MITM, encrypted skill backdoors, and Redis weaponization via postinstall
CERT-EU: European Commission hack exposes data of 30 EU entities
New Whitepaper: Stealthy BPFDoor Variants are a Needle That Looks Like Hay
[UPDATE] [niedrig] xpdf: Schwachstelle ermöglicht Denial of Service
Frequently Asked Questions About the Axios npm Supply Chain Attack by North Korea-Nexus Threat Actor UNC1069
[UPDATE] [mittel] 7-Zip: Schwachstelle ermöglicht Codeausführung
[UPDATE] [mittel] 7-Zip: Schwachstelle ermöglicht Denial of Service
[UPDATE] [mittel] 7-Zip: Schwachstelle ermöglicht Codeausführung
[UPDATE] [mittel] Red Hat Enterprise Linux (libxslt): Schwachstelle ermöglicht Offenlegung von Informationen
[UPDATE] [niedrig] 7-Zip: Schwachstelle ermöglicht Manipulation von Dateien
[UPDATE] [hoch] cPanel cPanel/WHM: Mehrere Schwachstellen ermöglichen Codeausführung
[UPDATE] [hoch] cPanel/WHM (PostgreSQL, Perl): Mehrere Schwachstellen
[UPDATE] [hoch] cPanel cPanel/WHM: Schwachstelle ermöglicht Privilegieneskalation
[UPDATE] [mittel] cPanel cPanel/WHM: Schwachstelle ermöglicht Denial of Service
[UPDATE] [mittel] Ruby: Schwachstelle ermöglicht Offenlegung von Informationen
[UPDATE] [hoch] WebKitGTK: Mehrere Schwachstellen