Aggregator

Linux 5.4.302作为5.4系列最后一个稳定版本发布，已终止支持。维护者建议不再使用该版本，并指出其存在大量未修复漏洞（目前1539个），未来漏洞数量将持续增加。

The Cybersecurity and Infrastructure Security Agency released five critical Industrial Control Systems advisories on December 2, 2025, addressing significant security threats across industrial environments. These advisories cover vulnerabilities and active exploits affecting systems used in manufacturing, power generation, and medical device operations worldwide. The timing of this release highlights growing concerns about the targeted nature […]

The post CISA Releases Five ICS Advisories Covering Vulnerabilities, and Exploits Surrounding ICS appeared first on Cyber Security News.

重点关注

当我们观察中国 IPv6 部署时，常常会看到这样的数据： 8.68 亿活跃用户、 7 万多个地址块的部署。

顶级安全运营中心都明白一个基本事实：主动预防永远胜于被动响应。

好的，我现在需要帮用户总结一篇文章的内容，控制在100字以内。首先，我得仔细阅读用户提供的文章内容。看起来这篇文章主要讨论的是当前环境异常的问题，用户需要完成验证才能继续访问。文章中还提到了“去验证”的按钮，可能是一个引导用户进行验证的步骤。 接下来，我要确定用户的需求是什么。用户希望用中文总结文章内容，并且不需要特定的开头，直接描述即可。这意味着我需要简洁明了地概括文章的核心信息，同时保持在100字以内。 然后，我会分析文章的结构和重点。文章开头提到“环境异常”，这是一个关键点，说明当前系统或网络存在问题。接着提到完成验证后可以继续访问，这表明验证是解决问题的关键步骤。最后，“去验证”按钮可能是一个操作指引，帮助用户进行验证。 现在，我需要将这些信息浓缩成一句话或几句话。要确保涵盖环境异常、验证步骤以及继续访问的可能性。同时，语言要简洁明了，避免使用复杂的词汇或结构。 最后，我会检查总结是否符合要求：字数控制在100字以内，并且没有使用特定的开头格式。确保信息准确传达，并且易于理解。 当前环境出现异常问题，需完成验证后才能继续访问系统或相关内容。

好的，我现在需要帮用户总结一篇文章，控制在100字以内。用户给的示例是关于环境异常的，所以我要先理解文章内容。 首先，文章提到“环境异常”，这可能是指网络或系统出现了问题。接着说“完成验证后即可继续访问”，说明需要用户进行某种验证步骤才能恢复访问。最后有一个“去验证”的按钮，引导用户进行操作。 我需要把这些信息浓缩成一句话，直接描述情况。避免使用“这篇文章”或“内容总结”这样的开头，直接进入主题。 思考一下，如何简洁地表达：环境有问题，完成验证后可以继续访问。这样应该能准确传达信息，并且符合字数要求。 当前环境出现异常，需完成验证后才能继续访问。

嗯，用户让我帮忙总结一篇文章的内容，控制在一百个字以内，而且不需要用“文章内容总结”之类的开头，直接写描述。首先，我得理解用户的需求是什么。他可能是在快速获取信息，比如在工作或学习中需要迅速了解一篇文章的主旨，而没有时间仔细阅读全文。 接下来，我需要分析用户提供的原文内容。原文提到“环境异常”，然后说完成验证后可以继续访问，并有一个“去验证”的按钮。看起来这篇文章主要是在通知用户当前的环境有问题，需要进行验证才能继续使用服务。 那么，我应该怎样简洁地表达这个意思呢？可能需要包括几个关键点：环境异常、完成验证、继续访问。把这些点连贯起来，确保在一百字以内。同时，避免使用过于正式的语言，保持口语化和自然。 另外，用户特别指出不需要以“文章内容总结”开头，所以直接描述情况即可。比如，“当前环境出现异常，请完成验证后继续访问。”这样既简洁又准确地传达了原文的信息。 最后，检查一下字数是否符合要求，并确保语句通顺、没有语法错误。这样用户就能快速理解文章的主要内容了。 当前环境出现异常，请完成验证后继续访问。

A vulnerability was found in vLLM up to 0.11.0 and classified as critical. Affected by this vulnerability is the function get_class_from_dynamic_module. The manipulation results in code injection. This vulnerability is known as CVE-2025-66448. It is possible to launch the attack remotely. No exploit is available. It is suggested to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Samsung Internet. This impacts an unknown function. The manipulation leads to injection. This vulnerability is listed as CVE-2025-58485. The attack must be carried out locally. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Samsung Account. Affected is an unknown function. The manipulation results in improper input validation. This vulnerability is cataloged as CVE-2025-58486. The attack must be initiated from a local position. There is no exploit available. You should upgrade the affected component.

A vulnerability has been found in Samsung Account and classified as critical. Affected by this vulnerability is an unknown functionality. This manipulation causes improper authorization. This vulnerability is registered as CVE-2025-58487. The attack needs to be launched locally. No exploit is available. The affected component should be upgraded.

A vulnerability was found in Mattermost up to 10.5.12/10.11.4. It has been rated as critical. The impacted element is an unknown function. This manipulation causes missing authentication. This vulnerability appears as CVE-2025-13870. The attack may be initiated remotely. There is no available exploit. Upgrading the affected component is advised.

A vulnerability has been found in Circutor SGE-PLC1000 and SGE-PLC50 9.0.2 and classified as critical. The affected element is the function read_packet of the component TACACSPLUS. The manipulation leads to heap-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is listed as CVE-2025-11778. The attack may be initiated remotely. There is no available exploit.

A vulnerability was found in Circutor SGE-PLC1000 and SGE-PLC50 9.0.2 and classified as critical. The impacted element is the function showMeterReport. The manipulation results in buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is cataloged as CVE-2025-11780. The attack may be launched remotely. There is no exploit available. It is suggested to upgrade the affected component.

A vulnerability was found in Circutor SGE-PLC1000 and SGE-PLC50 9.0.2. It has been rated as critical. Affected is the function SetLan. Performing manipulation results in stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is reported as CVE-2025-11779. The attacker must have access to the local network to execute the attack. No exploit exists.

A vulnerability marked as critical has been reported in IBM Informix Dynamic Server 14.10. Affected is an unknown function. Performing manipulation results in use of password system for primary authentication. This vulnerability is identified as CVE-2024-45675. The attack is only possible with local access. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability was found in MediaTek MT2718, MT6739, MT6761, MT6765, MT6768, MT6781, MT6789, MT6833, MT6835, MT6853, MT6855, MT6877, MT6878, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6897, MT6899, MT6983, MT6985, MT6989, MT6991, MT8196, MT8676, MT8678, MT8792 and MT8793. It has been classified as critical. The impacted element is an unknown function of the component Display. The manipulation leads to stack-based buffer overflow. This vulnerability is traded as CVE-2025-20769. An attack has to be approached locally. There is no exploit available. Applying a patch is the recommended action to fix this issue.

A vulnerability described as critical has been identified in ChurchCRM up to 6.2.0. This affects an unknown part. Executing manipulation of the argument 1FieldSec can lead to sql injection. This vulnerability is registered as CVE-2025-66313. It is possible to launch the attack remotely. No exploit is available.

Yearn Finance has suffered a serious attack on its yETH product, allowing an attacker to siphon off roughly

The post DeFi Exploit: Yearn Finance yETH Pool Hacked for $3 Million via ‘Super-Mint’ Flaw appeared first on Penetration Testing Tools.