Aggregator

CloudCasa adds SMB support and compression controls for Kubernetes backup

Help Net Security
2 weeks 3 days ago

CloudCasa announced the latest enhancements to its CloudCasa platform, adding support for accessing backup storage using SMB (Server Message Block) file-sharing protocol and support for user-selectable compression of backup data. These enhancements complement CloudCasa’s support for NFS backup storage introduced in October, enabling organizations to back up Kubernetes and containerized virtual machine workloads directly to their existing on-premises NAS devices or Windows servers, and to choose compression options appropriate for their workloads, especially useful in … More →

The post CloudCasa adds SMB support and compression controls for Kubernetes backup appeared first on Help Net Security.

Industry News

CVE-2025-40938 | Siemens SIMATIC CN 4100 up to 4.0.0 hard-coded credentials (ssa-416652 / EUVD-2025-201918)

Vuldb Updates
2 weeks 3 days ago
A vulnerability was found in Siemens SIMATIC CN 4100 up to 4.0.0. It has been declared as critical. This impacts an unknown function. The manipulation results in hard-coded credentials. This vulnerability is cataloged as CVE-2025-40938. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-40941 | Siemens SIMATIC CN 4100 up to 4.0.0 information disclosure (ssa-416652 / EUVD-2025-201915)

Vuldb Updates
2 weeks 3 days ago
A vulnerability identified as problematic has been detected in Siemens SIMATIC CN 4100 up to 4.0.0. Affected by this issue is some unknown functionality. Performing manipulation results in information disclosure. This vulnerability is reported as CVE-2025-40941. The attack is possible to be carried out remotely. No exploit exists. You should upgrade the affected component.
vuldb.com

漏洞预警 | React/Next.js组件RCE漏洞(CVE-2025-55182)详情分析-【附验证环境】

嘶吼
2 weeks 3 days ago

一、漏洞背景


近日,React 核心团队确认了一个存在于 React Server Components (RSC) 实现中的严重远程代码执行 (RCE) 漏洞。该漏洞被分配了 CVE-2025-55182(Next.js 对应编号 CVE-2025-66478),攻击者无需任何身份验证,仅通过一个 HTTP 请求,即可在你的服务器上执行任意代码。


该漏洞烽火台实验室日前已做了相关预警:

https://mp.weixin.qq.com/s/djibDduH3bluVXHDSLAsSg



二、官方公告


官方公告中提到,该漏洞由Lachlan Davidson 在Lachlan Davidson11 月 29 日 进行报告:

https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components


在作者的github中,也贴了这样一个链接,说明了该漏洞的局限性。

https://react2shell.com


三、详情分析


对源码进行分析,在server.js中,当请求/formaction会进入如下:


注释很明显,主要关注decodeAction函数,decodeAction函数的实现位于node_modules/react-server-dom-webpack/cjs/react-server-dom-webpack-server.node.development.js中,接收body和serverManifest。当表单名以$ACTION_REF_123 开头,则截取$ACTION_REF_123 中的123,然后重新拼接为$ACTION_123: 作为value,然后将body、serverManifest、value作为参数调用decodeBoundActionMetaData方法。

 

进入到decodeBoundActionMetaData方法中,会获取所有以$ACTION_123:开头的表单项;



然后调用getChunk(body, 0) 获取表单名称为$ACTION_123:0 的内容;


随后会用serverManifest,value.id,value.bound作为参数调用loadServerReference函数,根据serverManifest找到对应函数,预加载模块,然后把它封装成一个真正可调用的 JS 函数,绑定参数。


在resolveServerReference 中,先通过id在manifest 中获取resolvedModuleData,再拿到保存的name,也就是通过模块名拿到resolvedModuleData,然后再调用resolvedModuleData.name去拿函数名进行返回;如果没获取到则会通过#进行切割id,#前作为模块名,#后则作为函数名进行返回。


随后调用preloadModule,在moduleExports中,保存该模块的所有函数,可以通过resolveServerReference 中处理后得到的函数名来获取进行返回,而函数名我们可以通过fs#writeFileSync来指定绕过manifest 中的限制来调用其他函数。

总结一下,这个漏洞实际上是绕过serverManifest中的对某个模块的特定方法的调用,如该项目中指定了fs的readFileSync方法可以调用,实际上可传入fs#writeFileSync来调用其他方法。


四、漏洞验证环境


Ddpoc上提供了该漏洞的验证环境,访问第一个镜像。

https://www.ddpoc.com/vulenv.html


点击启用,生成一个容器环境(15分钟内自动销毁)



五、漏洞验证


原文链接

盛邦安全

CVE-2025-61822 | Adobe ColdFusion up to 2021.22/2023.16/2025.4 input validation (apsb25-105 / CNNVD-202512-1747)

Vuldb Updates
2 weeks 3 days ago
A vulnerability described as problematic has been identified in Adobe ColdFusion up to 2021.22/2023.16/2025.4. The affected element is an unknown function. The manipulation results in improper input validation. This vulnerability is known as CVE-2025-61822. It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is recommended.
vuldb.com

CVE-2025-61823 | Adobe ColdFusion up to 2021.22/2023.16/2025.4 xml external entity reference (apsb25-105 / CNNVD-202512-1748)

Vuldb Updates
2 weeks 3 days ago
A vulnerability, which was classified as problematic, was found in Adobe ColdFusion up to 2021.22/2023.16/2025.4. This affects an unknown part. The manipulation results in xml external entity reference. This vulnerability was named CVE-2025-61823. The attack may be performed from remote. There is no available exploit. You should upgrade the affected component.
vuldb.com

CVE-2025-64538 | Adobe Experience Manager up to 6.5.23 cross site scripting (apsb25-115 / WID-SEC-2025-2789)

Vuldb Updates
2 weeks 3 days ago
A vulnerability identified as problematic has been detected in Adobe Experience Manager up to 6.5.23. Affected is an unknown function. Performing manipulation results in cross site scripting. This vulnerability is identified as CVE-2025-64538. The attack can be initiated remotely. There is not any exploit available. You should upgrade the affected component.
vuldb.com

CVE-2025-64539 | Adobe Experience Manager up to 6.5.23 cross site scripting (apsb25-115 / WID-SEC-2025-2789)

Vuldb Updates
2 weeks 3 days ago
A vulnerability labeled as problematic has been found in Adobe Experience Manager up to 6.5.23. Affected by this vulnerability is an unknown functionality. Executing manipulation can lead to cross site scripting. This vulnerability is tracked as CVE-2025-64539. The attack can be launched remotely. No exploit exists. The affected component should be upgraded.
vuldb.com

CVE-2025-64541 | Adobe Experience Manager up to 6.5.23 cross site scripting (apsb25-115 / WID-SEC-2025-2789)

Vuldb Updates
2 weeks 3 days ago
A vulnerability classified as problematic was found in Adobe Experience Manager up to 6.5.23. The impacted element is an unknown function. Executing manipulation can lead to cross site scripting. This vulnerability is registered as CVE-2025-64541. It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is advised.
vuldb.com

CVE-2025-64537 | Adobe Experience Manager up to 6.5.23 cross site scripting (apsb25-115 / WID-SEC-2025-2789)

Vuldb Updates
2 weeks 3 days ago
A vulnerability categorized as problematic has been discovered in Adobe Experience Manager up to 6.5.23. This impacts an unknown function. Such manipulation leads to cross site scripting. This vulnerability is referenced as CVE-2025-64537. It is possible to launch the attack remotely. No exploit is available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2025-67636 | Jenkins up to 2.540/LTS 2.528.2 permission (Nessus ID 278130)

Vuldb Updates
2 weeks 3 days ago
A vulnerability, which was classified as critical, has been found in Jenkins up to 2.540/LTS 2.528.2. Affected by this vulnerability is an unknown functionality. This manipulation causes permission issues. This vulnerability is registered as CVE-2025-67636. Remote exploitation of the attack is possible. No exploit is available. It is advisable to upgrade the affected component.
vuldb.com

Managed ad