Aggregator

Компания нарушила собственные обещания ради безопасности пользователей.

TP-Link SR20 RCE复现

Chord Specialty Dental Partners is under scrutiny after revealing a data breach that compromised the personal and health information of its customers. The breach, which involved unauthorized access to employee email accounts, has left the sensitive data of thousands of individuals exposed and has prompted legal and cybersecurity investigations. The incident came to light when […]

The post Chord Specialty Dental Partners Data Breach Exposes Customer Personal Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability was found in Linux Kernel up to 6.1.128/6.12.12/6.13.1. It has been classified as critical. This affects the function mark_buffer_dirty of the file fs/buffer.c. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2025-21722. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.128/6.6.75/6.12.12/6.13.1. It has been classified as problematic. Affected is the function usb_submit_urb of the file drivers/usb/core/urb.c. The manipulation leads to privilege escalation. This vulnerability is traded as CVE-2025-21708. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.128/6.6.78/6.12.15/6.13.3/6.14-rc2 and classified as critical. This vulnerability affects the function acm_ctrl_irq of the file /dev/ttyACM* of the component USB. The manipulation leads to memory corruption. This vulnerability was named CVE-2025-21704. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.128/6.6.75/6.12.12/6.13.1 and classified as problematic. This issue affects the function __mptcp_expand_seq. The manipulation leads to improper initialization. The identification of this vulnerability is CVE-2025-21707. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.6.73/6.12.10. This vulnerability affects the function gpio_lock of the component xilinx. The manipulation leads to stack-based buffer overflow. This vulnerability was named CVE-2025-21684. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.6.75/6.12.12/6.13.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file kernel/locking/mutex.c. The manipulation leads to information disclosure. This vulnerability is known as CVE-2025-21701. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.128/6.6.77/6.12.13/6.13.2. This issue affects the function handle_policy_update of the component safesetid. The manipulation leads to buffer overflow. The identification of this vulnerability is CVE-2024-58016. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.128/6.6.78/6.12.15/6.13.3/6.14-rc2 and classified as critical. Affected by this vulnerability is the function devm_kasprintf of the component multitouch. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2024-58020. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.