Aggregator

HPE Aruba Network Flaw Exposes Sensitive Data to Potential Hackers

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
8 months 2 weeks ago

HPE Aruba Networking has issued a critical security advisory regarding a high-severity vulnerability in its Private 5G Core Platform. Tracked as CVE-2025-37100, the flaw enables unauthorized access to sensitive system files, posing a significant risk to enterprise confidentiality and infrastructure integrity. This security bulletin outlines the technical details, risk factors, and remediation steps for affected […]

The post HPE Aruba Network Flaw Exposes Sensitive Data to Potential Hackers appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Anupriya

Apos

Dark Feed IO
8 months 2 weeks ago

You must login to view this content

cohenido

Windows Remote Desktop Services Vulnerability Allows Remote Code Execution

Cyber Security News
8 months 2 weeks ago

A critical security vulnerability in Windows Remote Desktop Services, designated as CVE-2025-32710, which allows unauthorized attackers to execute arbitrary code remotely without authentication.  Released on June 10, 2025, this vulnerability affects multiple Windows Server versions and carries a CVSS score of 8.1, indicating high severity with potential for significant system compromise.  The flaw stems from […]

The post Windows Remote Desktop Services Vulnerability Allows Remote Code Execution appeared first on Cyber Security News.

Guru Baran

CVE-2025-41662 | Weidmueller IE-SR-2TX-WL Main Web Interface tls_iotgen_setting cross-site request forgery (VDE-2025-052 / EUVD-2025-18090)

VulDB Recent Entries
8 months 2 weeks ago
A vulnerability, which was classified as problematic, has been found in Weidmueller IE-SR-2TX-WL, IE-SR-2TX-WL-4G-EU and IE-SR-2TX-WL-4G-US-V. This issue affects the function tls_iotgen_setting of the component Main Web Interface. The manipulation leads to cross-site request forgery. The identification of this vulnerability is CVE-2025-41662. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-41661 | Weidmueller IE-SR-2TX-WL Main Web Interface event_mail_test cross-site request forgery (VDE-2025-052 / EUVD-2025-18089)

VulDB Recent Entries
8 months 2 weeks ago
A vulnerability classified as problematic was found in Weidmueller IE-SR-2TX-WL, IE-SR-2TX-WL-4G-EU and IE-SR-2TX-WL-4G-US-V. This vulnerability affects the function event_mail_test of the component Main Web Interface. The manipulation leads to cross-site request forgery. This vulnerability was named CVE-2025-41661. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-41663 | Weidmueller IE-SR-2TX-WL os command injection (VDE-2025-052 / EUVD-2025-18088)

VulDB Recent Entries
8 months 2 weeks ago
A vulnerability classified as critical has been found in Weidmueller IE-SR-2TX-WL, IE-SR-2TX-WL-4G-EU and IE-SR-2TX-WL-4G-US-V. This affects an unknown part. The manipulation leads to os command injection. This vulnerability is uniquely identified as CVE-2025-41663. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Apos

Dark Feed IO
8 months 2 weeks ago

You must login to view this content

cohenido

CVE-2025-29756 | SunGrow iSolarCloud MQTT Service authorization (EUVD-2025-18091)

VulDB Recent Entries
8 months 2 weeks ago
A vulnerability was found in SunGrow iSolarCloud. It has been rated as problematic. Affected by this issue is some unknown functionality of the component MQTT Service. The manipulation leads to missing authorization. This vulnerability is handled as CVE-2025-29756. The attack may be launched remotely. There is no exploit available. This product is a managed service. It is not possible for users to maintain vulnerability countermeasures themselves.
vuldb.com

Managed ad