Aggregator

A vulnerability was found in Intel QuickAssist Technology up to 2.5.x. It has been declared as critical. This impacts an unknown function. Executing manipulation can lead to improper authentication. The identification of this vulnerability is CVE-2025-33000. The attack can only be executed locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Jansson up to 2.4. This impacts an unknown function. Executing manipulation can lead to cryptographic issues. The identification of this vulnerability is CVE-2013-6401. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in Intel QuickAssist Technology Software up to 2.5.x and classified as critical. This vulnerability affects unknown code. The manipulation leads to improper input validation. This vulnerability is uniquely identified as CVE-2025-30509. Local access is required to approach this attack. No exploit exists. The affected component should be upgraded.

A vulnerability categorized as problematic has been discovered in Intel QAT Windows Software up to 2.5.x. This affects an unknown function. Executing manipulation can lead to out-of-bounds read. This vulnerability is tracked as CVE-2025-31937. The attack is restricted to local execution. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability described as problematic has been identified in Intel QAT Windows Software up to 2.5.x. Affected by this issue is some unknown functionality. Such manipulation leads to improper check for unusual conditions. This vulnerability is documented as CVE-2025-32088. The attack needs to be performed locally. There is not any exploit available. Upgrading the affected component is recommended.

A vulnerability was found in Intel QuickAssist Technology Software up to 2.5.x and classified as problematic. The impacted element is an unknown function. Such manipulation leads to untrusted pointer dereference. This vulnerability is uniquely identified as CVE-2025-32446. Local access is required to approach this attack. No exploit exists. It is suggested to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Intel QAT Windows Software up to 2.5.x. This affects an unknown part. Executing manipulation can lead to null pointer dereference. This vulnerability is handled as CVE-2025-26694. It is possible to launch the attack on the local host. There is not any exploit available. You should upgrade the affected component.

A vulnerability classified as critical was found in Intel QAT Windows Software up to 2.5.x. This vulnerability affects unknown code. Executing manipulation can lead to out-of-bounds write. This vulnerability appears as CVE-2025-27713. The attack requires local access. There is no available exploit. Upgrading the affected component is advised.

A vulnerability, which was classified as critical, was found in Intel QAT Windows Software up to 2.5.x. Affected by this vulnerability is an unknown functionality. The manipulation results in buffer overflow. This vulnerability is cataloged as CVE-2025-24519. The attack must be initiated from a local position. There is no exploit available. You should upgrade the affected component.

A vulnerability labeled as problematic has been found in Intel QAT Windows Software up to 2.5.x. The impacted element is an unknown function. Executing manipulation can lead to untrusted pointer dereference. This vulnerability is registered as CVE-2025-27710. The attack needs to be launched locally. No exploit is available. The affected component should be upgraded.

Навигатор больше не сойдет с ума при потере сигнала.

A vulnerability categorized as problematic has been discovered in VibeThemes WPLMS Theme up to 4.900 on WordPress. This issue affects some unknown processing. The manipulation results in cross-site request forgery. This vulnerability is identified as CVE-2023-36690. The attack can be executed remotely. There is not any exploit available.

How to defend organisations against malware or ransomware attacks.

For the latest discoveries in cyber research for the week of 15th December, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES The Indian government confirmed cyber incidents involving GPS spoofing at seven major airports, including Delhi, Mumbai, Kolkata, and Bengaluru. The attack affected aircrafts using GPS-based landing procedures. Despite signal disruption to navigation […]

The post 15th December – Threat Intelligence Report appeared first on Check Point Research.

Data "related to current and former JLR employees, and contractors" was affected by a cyberattack in August, the car maker said in a statement representing the first time it has provided details about the incident.

Новое объяснение метеоритов намекает, что планеты земного типа во Вселенной могут быть не редкостью.

A sophisticated Android malware campaign named NexusRoute is actively targeting Indian citizens by impersonating government services. The operation uses fake versions of the official mParivahan and e-Challan applications to harvest login credentials and financial information from unsuspecting users. This coordinated attack combines phishing websites, fraudulent payment interfaces, and advanced malware to execute a multi-stage theft […]

The post New Android Malware Mimic as mParivahan and e-Challan Attacking Android Users to Steal Login Credentials appeared first on Cyber Security News.

New report by Unit 42 reveals the Hamas-linked Ashen Lepus (WIRTE) group is using the AshTag malware suite to target Middle Eastern diplomatic and government entities with advanced, hidden tactics.

In her first public speech, the new chief of Britain's MI6, Blaise Metreweli, pointed to the acute threat posed by Russia, warning of the Kremlin’s “attempts to bully, fearmonger and manipulate.”

Over the weekend, ​Google's threat intelligence team linked five more Chinese hacking groups to attacks exploiting the maximum-severity "React2Shell" remote code execution vulnerability. [...]