Aggregator

Commvault has fixed four security vulnerabilities that may allow unauthenticated attackers to compromise on-premises deployments of its flagship backup and replication suite. Technical details about the vulnerabilities have been published on Wednesday by researchers at watchTowr Labs, who also proved that they could be chained together to achieve remote code execution. The researchers refrained from publishing PoC exploits, but their very detailed write-up lowers the barrier for creating them. Admins who run Commvault on-prem should … More →

The post Commvault plugs holes in backup suite that allow remote code execution appeared first on Help Net Security.

Okta has announced the launch of the Auth0 Customer Detection Catalog, a comprehensive open-source repository designed to enhance proactive threat detection capabilities for Auth0 customers.  This strategic release represents a significant advancement in identity and access management security, providing security teams with sophisticated detection rules to identify and respond to emerging threats across their authentication […]

The post Okta Security Releases Auth0 Event Logs for Proactive Threat Detection appeared first on Cyber Security News.

A vulnerability classified as critical has been found in Tenda AC6 15.03.06.23. Impacted is the function fromSetSysTime. This manipulation of the argument ntpServer causes buffer overflow. The identification of this vulnerability is CVE-2025-55499. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability described as problematic has been identified in Schneider Electric EcoStruxureTM Building Operation Enterprise Server, EcoStruxureTM Enterprise Server and EcoStruxureTM Workstation up to 7.0.0. This issue affects some unknown processing of the component SMB Handler. The manipulation results in information disclosure. This vulnerability was named CVE-2025-8448. The attack needs to be approached within the local network. There is no available exploit. Upgrading the affected component is recommended.

A vulnerability marked as critical has been reported in Tenda AC6 15.03.06.23. This vulnerability affects the function formSetMacFilterCfg. The manipulation of the argument macFilterType leads to buffer overflow. This vulnerability is uniquely identified as CVE-2025-55483. The attack is possible to be carried out remotely. Moreover, an exploit is present.

A vulnerability labeled as problematic has been found in Schnieder Electric EcoStruxureTM Building Operation Enterprise Server, EcoStruxureTM Enterprise Server and EcoStruxureTM Workstation up to 7.0.0. This affects an unknown part of the component Request Handler. Executing manipulation can lead to resource consumption. This vulnerability is handled as CVE-2025-8449. The attack can only be done within the local network. There is not any exploit available. The affected component should be upgraded.

Discover insights from The Elephant in AppSec episode with Jyoti Raval

The post The Future of Pentesting: Can AI Replace Human Expertise? ⎥ Jyoti Raval appeared first on Security Boulevard.

A sophisticated new Phishing-as-a-Service (PhaaS) framework dubbed “Salty 2FA” has emerged as a significant threat to Microsoft 365 users across the US and European industries. This previously undocumented platform employs advanced obfuscation techniques and multi-stage execution chains specifically designed to bypass two-factor authentication mechanisms while stealing corporate credentials. The framework targets organizations spanning finance, telecommunications, […]

The post New Salty 2FA PhaaS Attacking Microsoft 365 Users to Steal Login Credentials appeared first on Cyber Security News.

Критики требуют остановить эксперимент до того, как последствия станут необратимыми.

A vulnerability identified as problematic has been detected in Xuxueli xxl-job up to 3.1.1. Affected by this issue is the function remove of the file /src/main/java/com/xxl/job/admin/controller/JobInfoController.java of the component Jobs Handler. Performing manipulation of the argument ID results in improper control of resource identifiers. This vulnerability is known as CVE-2025-9264. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

A vulnerability categorized as problematic has been discovered in Xuxueli xxl-job up to 3.1.1. Affected by this vulnerability is the function getJobsByGroup of the file /src/main/java/com/xxl/job/admin/controller/JobLogController.java. Such manipulation of the argument jobGroup leads to improper control of resource identifiers. This vulnerability is traded as CVE-2025-9263. The attack may be launched remotely. Furthermore, there is an exploit available.

Submit #631728 / VDB-320806

Submit #631704 / VDB-320805

Microsoft is investigating an ongoing issue preventing users across North America from accessing Office.com and the company's Copilot AI-powered assistant. [...]

A vulnerability was found in wong2 mcp-cli 1.13.0. It has been rated as critical. Affected is the function redirectToAuthorization of the file /src/oauth/provider.js of the component oAuth Handler. This manipulation causes os command injection. This vulnerability appears as CVE-2025-9262. The attack may be initiated remotely. In addition, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.

Security researchers have confirmed that a recent wave of cyberattacks is exploiting a critical vulnerability in Apache ActiveMQ, allowing attackers to compromise Linux servers and install long-term persistence tools. The attackers are not only gaining access through a known remote code execution flaw but are also patching the vulnerability afterward to cover their tracks. The […]

The post Apache ActiveMQ Breach Reveals Unusual Attacker Behavior appeared first on Centraleyes.

The post Apache ActiveMQ Breach Reveals Unusual Attacker Behavior appeared first on Security Boulevard.

A vulnerability identified as problematic has been detected in VideoWhisper Live Streaming Integration plugin 4.25. The impacted element is an unknown function. This manipulation of the argument Message causes cross site scripting. This vulnerability is registered as CVE-2013-5714. Remote exploitation of the attack is possible. No exploit is available.

A vulnerability labeled as problematic has been found in VideoWhisper Live Streaming Integration plugin up to 4.24. This affects an unknown part of the component Login. The manipulation results in path traversal. This vulnerability is reported as CVE-2014-1907. The attack can be launched remotely. Moreover, an exploit is present. The affected component should be upgraded.

A vulnerability was found in Microsoft Visual Studio Code and classified as critical. The affected element is an unknown function of the component ESLint Extension. Executing manipulation can lead to injection. This vulnerability is handled as CVE-2020-1481. The attack can be executed remotely. There is not any exploit available. It is best practice to apply a patch to resolve this issue.