Aggregator

A vulnerability was found in Mitel ICP VoIP 3100. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Telnet. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2003-20001. The attack may be launched remotely. Furthermore, there is an exploit available.

In this Help Net Security interview, Aaron Weismann, CISO at Main Line Health, discusses the growing ransomware threat in healthcare and why the sector remains a prime target. He explains the difficulties of protecting patient information, securing legacy systems, and maintaining cybersecurity without disrupting care. Weismann also shares practical steps for improving incident response and strengthening defenses with limited resources. How have ransomware tactics evolved in the healthcare sector, and what makes healthcare such a … More →

The post Balancing data protection and clinical usability in healthcare appeared first on Help Net Security.

A CVSS score 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N severity vulnerability discovered by 'Anonymous' was reported to the affected vendor on: 2025-04-02, 64 days ago. The vendor is given until 2025-07-31 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Nelson William Gamazo Sanchez and Nitesh Surana of Trend Micro Security Research' was reported to the affected vendor on: 2025-04-02, 64 days ago. The vendor is given until 2025-07-31 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.2 AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Mo0n Sha\xf0\x9d\x84\x9eow (VNPT Cyber Immunity)' was reported to the affected vendor on: 2025-04-02, 22 days ago. The vendor is given until 2025-07-31 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.2 AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'hoan.pk' was reported to the affected vendor on: 2025-04-02, 22 days ago. The vendor is given until 2025-07-31 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.2 AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Anonymous' was reported to the affected vendor on: 2025-04-02, 64 days ago. The vendor is given until 2025-07-31 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 8.8 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Anonymous' was reported to the affected vendor on: 2025-04-02, 64 days ago. The vendor is given until 2025-07-31 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 4.9 AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N severity vulnerability discovered by 'Anonymous' was reported to the affected vendor on: 2025-04-02, 64 days ago. The vendor is given until 2025-07-31 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 2.8 AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L severity vulnerability discovered by 'ReDress' was reported to the affected vendor on: 2025-04-02, 7 days ago. The vendor is given until 2025-07-31 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 8.8 AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H severity vulnerability discovered by 'Baris Akkaya' was reported to the affected vendor on: 2025-04-02, 22 days ago. The vendor is given until 2025-07-31 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor on: 2025-04-02, 64 days ago. The vendor is given until 2025-07-31 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 2.8 AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L severity vulnerability discovered by 'ReDress' was reported to the affected vendor on: 2025-04-02, 64 days ago. The vendor is given until 2025-07-31 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Mat Powell of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2025-04-02, 64 days ago. The vendor is given until 2025-07-31 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

A CVSS score 8.8 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Hossein Lotfi (@hosselot) of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2025-04-02, 49 days ago. The vendor is given until 2025-07-31 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

More Than Music: The Unseen Cybersecurity Threats of Streaming Services

The post More Than Music: The Unseen Cybersecurity Threats of Streaming Services appeared first on Security Boulevard.

赛后复现

BlueToolkit is an open-source tool that helps find security flaws in Bluetooth Classic devices. It runs known and custom exploits to test if a device is vulnerable. Right now, it includes 43 different exploits. Some are public, and others were made specifically for this toolkit. “The framework allows you to reuse PoCs of different attacks and connect your own hardware with minimal code/configuration needed. The concept is simple and known – vulnerability scanners make use … More →

The post BlueToolkit: Open-source Bluetooth Classic vulnerability testing framework appeared first on Help Net Security.

センチュリー・システムズ株式会社が提供するFutureNet NXRシリーズ、VXRシリーズおよびWXRシリーズルータには、シンボリックリンクファイルの取り扱いに不備があります。

在这个全球化日益加深的时代，国际政治舞台上的一举一动都可能引发连锁反应。而在这场复杂多变的博弈中，蒙古国，这