Aggregator

A vulnerability labeled as critical has been found in Keyfactor RG-EW5100BE EW_3.0B11P280_EW5100BE-PRO_12183019. The affected element is an unknown function of the file /cgi-bin/luci/api/cmd of the component HTTP POST Request Handler. The manipulation of the argument url results in command injection. This vulnerability is reported as CVE-2025-11073. The attack can be launched remotely. Moreover, an exploit is present.

Submit #661155 / VDB-326117

Submit #660855 / VDB-326116

Submit #660854 / VDB-326115

Submit #659993 / VDB-326114

Submit #659933 / VDB-326113

A vulnerability identified as critical has been detected in SeaCMS 13.3.20250820. Impacted is an unknown function of the file /admin_cron.php of the component Cron Task Management Module. The manipulation of the argument resourcefrom/collectID leads to sql injection. This vulnerability is documented as CVE-2025-11071. The attack can be initiated remotely. Additionally, an exploit exists.

The Russian advanced persistent threat (APT) group known as COLDRIVER has been attributed to a fresh round of ClickFix-style attacks designed to deliver two new "lightweight" malware families tracked as BAITSWITCH and SIMPLEFIX. Zscaler ThreatLabz, which detected the new multi-stage ClickFix campaign earlier this month, described BAITSWITCH as a downloader that ultimately drops SIMPLEFIX, a

俄罗斯网络威胁组织COLDRIVER发起新一轮ClickFix攻击，利用BAITSWITCH和SIMPLEFIX恶意软件进行多阶段入侵。同时，BO Team和Bearlyfy等团伙也针对俄罗斯公司展开勒索和网络攻击活动。

Submit #659883 / VDB-326112

A vulnerability categorized as problematic has been discovered in Red Hat OpenShift Service Mesh 3. This issue affects some unknown processing of the component LIVE SELECT Subscription Handler. Executing manipulation can lead to incorrect authorization. This vulnerability is registered as CVE-2025-11060. It is possible to launch the attack remotely. No exploit is available.

A vulnerability was found in Seagate Toolkit 2.34.0.33 on Windows. It has been rated as problematic. This vulnerability affects unknown code. Performing manipulation results in uncontrolled search path. This vulnerability is cataloged as CVE-2025-9267. The attack must be initiated from a local position. There is no exploit available. Upgrading the affected component is advised.

Submit #659875 / VDB-271375

Apache Airflow maintainers have disclosed a serious security issue, tracked as CVE-2025-54831, that allows users holding only read permissions to view sensitive connection details via both the Airflow API and web interface. The vulnerability, present in Airflow version 3.0.3, undermines the platform’s intended “write-only” treatment of secrets in Connections and could lead to unauthorized exposure […]

The post Apache Airflow Vulnerability Lets Read-Only Users Access Sensitive Data appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Submit #659853 / VDB-297622

Neon Mobile是一款允许用户记录并分享语音通话的应用程序，通过将数据出售给AI公司来赚取报酬。尽管其承诺保护隐私并支付丰厚回报，但复杂的隐私政策和数据共享条款引发了对用户隐私的担忧。

英国将推出新的Report Fraud服务取代失败的Action Fraud，旨在恢复公众对执法部门的信任。该系统基于Palantir的Foundry平台，可自动分析和比较证据，帮助警方识别模式并制定策略。尽管上线延迟，但其后台系统已运行数月。新服务旨在更高效地应对不断变化的欺诈和网络犯罪威胁，并整合更多数据合作伙伴以提供更精准的情报支持。

Специалисты RKS Global опубликовали результаты теста.

Salesforce is facing a possible class action lawsuit from almost two dozen plaintiffs who say the SaaS giant should have had better security around its platform, even though a spate of high-profile data-stealing attacks on third-party partners did not start with a breach of its systems.

The post Salesforce Faces Lawsuits Over Compromises of Third-Party Apps: Report appeared first on Security Boulevard.

Salesforce合作伙伴遭遇网络攻击致客户数据被盗，引发至少14起诉讼。Salesforce否认自身平台存在漏洞，称攻击源于第三方应用的钓鱼和OAuth令牌滥用。