Aggregator

A vulnerability was found in Linux Kernel up to 5.4.231/5.10.167/5.15.93/6.1.11. It has been declared as problematic. This vulnerability affects unknown code of the file kernel/workqueue.c. Executing manipulation can lead to allocation of resources. This vulnerability is tracked as CVE-2023-52743. The attack is only possible within the local network. No exploit exists. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.12. This issue affects some unknown processing of the component ceph. Performing manipulation results in memory corruption. This vulnerability is known as CVE-2023-52732. Access to the local network is required for this attack. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.202/5.15.141/6.1.65/6.6.3 and classified as problematic. Impacted is the function usb_get_bos_descriptor of the component usb. Such manipulation leads to excessive iteration. This vulnerability is documented as CVE-2023-52781. The attack requires being on the local network. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.2 and classified as critical. This affects the function bond_setup_by_slave. The manipulation results in buffer overflow. This vulnerability is reported as CVE-2023-52784. The attacker must have access to the local network to execute the attack. No exploit exists. It is suggested to upgrade the affected component.

A vulnerability classified as critical has been found in Lapce 0.2.8. Affected is an unknown function. The manipulation leads to race condition. This vulnerability is uniquely identified as CVE-2023-3891. Local access is required to approach this attack. No exploit exists.

A vulnerability labeled as critical has been found in Linux Kernel up to 6.1.12. The affected element is the function sock_recv_mark of the component Kernel Memory Handler. Such manipulation leads to buffer overflow. This vulnerability is documented as CVE-2023-52701. The attack requires being on the local network. There is not any exploit available. The affected component should be upgraded.

A vulnerability marked as problematic has been reported in Linux Kernel up to 5.10.72/5.14.11. Affected is an unknown function of the component x86. The manipulation leads to reachable assertion. This vulnerability is documented as CVE-2021-47430. The attack requires being on the local network. There is not any exploit available. It is suggested to upgrade the affected component.

Vulnerabilities in some models of Cisco's Adaptive Security Appliances (ASA) have been exploited by "an advanced threat actor," according to a warning from CISA.

Living Security, a global leader in Human Risk Management (HRM), today announced the full speaker lineup for the Human Risk Management Conference (HRMCon 2025), taking place October 20, 2025, at Austin’s Q2 Stadium and virtually worldwide. The announcement follows findings from the newly published 2025 State of Human Cyber Risk Report, produced by the Cyentia […]

The post Living Security Unveils HRMCon 2025 Speakers as Report Finds Firms Detect Just 19% of Human Risk appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Living Security, a global leader in Human Risk Management (HRM), today announced the full speaker lineup for the Human Risk Management Conference (HRMCon 2025), taking place October 20, 2025, at Austin’s Q2 Stadium and virtually worldwide. The announcement follows findings from the newly published 2025 State of Human Cyber Risk Report, produced by the Cyentia […]

The post Living Security Unveils HRMCon 2025 Speakers as Report Finds Firms Detect Just 19% of Human Risk appeared first on Cyber Security News.

A vulnerability categorized as problematic has been discovered in Stormshield Network Security up to 5.0.0. This impacts an unknown function of the component TPM Authentication. Such manipulation leads to information disclosure. This vulnerability is listed as CVE-2025-48707. The attack must be carried out from within the local network. There is no available exploit. It is advisable to upgrade the affected component.

Cisco is urging customers to patch two security flaws impacting the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software, which it said have been exploited in the wild. The zero-day vulnerabilities in question are listed below - CVE-2025-20333 (CVSS score: 9.9) - An improper validation of user-supplied input

Хранение данных превращается в инструмент массового наблюдения.

A vulnerability was found in Open Babel up to 3.1.1. It has been rated as problematic. This affects the function PQSFormat::ReadMolecule of the file /src/formats/PQSformat.cpp. This manipulation causes null pointer dereference. This vulnerability is tracked as CVE-2025-11000. The attack is restricted to local execution. Moreover, an exploit is present.

A vulnerability was found in Open Babel up to 3.1.1. It has been declared as problematic. The impacted element is the function CacaoFormat::SetHilderbrandt of the file /src/formats/cacaoformat.cpp. The manipulation results in null pointer dereference. This vulnerability is identified as CVE-2025-10999. The attack is only possible with local access. Additionally, an exploit exists.

A vulnerability was found in Open Babel up to 3.1.1. It has been classified as problematic. The affected element is the function ChemKinFormat::ReadReactionQualifierLines of the file /src/formats/chemkinformat.cpp. The manipulation leads to null pointer dereference. This vulnerability is referenced as CVE-2025-10998. The attack can only be performed from a local environment. Furthermore, an exploit is available.

A vulnerability was found in Open Babel up to 3.1.1 and classified as critical. Impacted is the function ChemKinFormat::CheckSpecies of the file /src/formats/chemkinformat.cpp. Executing manipulation can lead to heap-based buffer overflow. The identification of this vulnerability is CVE-2025-10997. The attack can only be executed locally. Furthermore, there is an exploit available.

A vulnerability has been found in Open Babel up to 3.1.1 and classified as critical. This issue affects the function OBSmilesParser::ParseSmiles of the file /src/formats/smilesformat.cpp. Performing manipulation results in heap-based buffer overflow. This vulnerability was named CVE-2025-10996. The attack needs to be approached locally. In addition, an exploit is available.

A vulnerability, which was classified as critical, was found in Open Babel up to 3.1.1. This vulnerability affects the function zlib_stream::basic_unzip_streambuf::underflow in the library /src/zipstreamimpl.h. Such manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2025-10995. Local access is required to approach this attack. Moreover, an exploit is present.

A vulnerability, which was classified as critical, has been found in Open Babel up to 3.1.1. This affects the function GAMESSOutputFormat::ReadMolecule of the file gamessformat.cpp. This manipulation causes use after free. This vulnerability is handled as CVE-2025-10994. It is possible to launch the attack on the local host. Additionally, an exploit exists.