Aggregator
CVE-2025-34042 | Beward N100 IP Camera M2.1.6.04C014 servetest CGI Page ServerName/TimeZone os command injection (EUVD-2025-19212)
CVE-2025-34040 | Beijing Zhiyuan Internet OA up to 8.0sp2 wpsAssistServlet Interface realFileType/fileId unrestricted upload (EUVD-2025-19043)
CVE-2025-34041 | Sangfor Endpoint Detection and Response Platform 3.2.16/3.2.17/3.2.19 EDR Manager interface os command injection (EUVD-2025-18973)
CVE-2025-36161 | IBM Concert up to 2.0.0 risky encryption (EUVD-2025-198299)
CVE-2025-34320 | BASIS International BBj up to 24.x BBj Service path traversal (EUVD-2025-198301)
CVE-2025-52410 | Institute-of-Current-Students 1.0 GET Parameter mydetailsstudent.php myds sql injection (EUVD-2025-198302)
Anubis
You must login to view this content
Akira
You must login to view this content
CLOP
You must login to view this content
Radar
You must login to view this content
Morpheus on Microsoft: AI SOC Platform for MSSPs Managing Sentinel, Defender, Entra, and More
Morpheus automates Tier 1 and Tier 2 SOC work across Microsoft Sentinel, Defender, and Entra ID. Scale your MSSP, maintain SLA compliance and service quality.
The post Morpheus on Microsoft: AI SOC Platform for MSSPs Managing Sentinel, Defender, Entra, and More appeared first on D3 Security.
The post Morpheus on Microsoft: AI SOC Platform for MSSPs Managing Sentinel, Defender, Entra, and More appeared first on Security Boulevard.
CVE-2025-13226 | Google Chrome up to 141.0.7390.122 V8 type confusion (ID 446113 / Nessus ID 275722)
CVE-2025-13227 | Google Chrome up to 141.0.7390.122 V8 type confusion (ID 446122 / Nessus ID 275721)
CVE-2025-13230 | Google Chrome up to 141.0.7390.122 V8 type confusion (ID 446124 / Nessus ID 275723)
CVE-2025-13229 | Google Chrome up to 141.0.7390.122 V8 type confusion (ID 446113 / Nessus ID 275720)
China's 'PlushDaemon' Hackers Infect Routers to Hijack Software Updates
CVE-2025-62724 | OSC ondemand up to 3.1.15/4.0.7 symlink (EUVD-2025-198294)
CVE-2024-7314 | anji-plus AJ-Report up to 1.4.0 HTTP Request /swagger-ui insufficient permissions or privileges (EUVD-2024-48255)
Salesforce investigates new incident echoing Salesloft Drift compromise
In what may be a repeat of the Salesloft Drift supply chain compromise, Salesforce confirmed that they’ve identified unusual activity involving Gainsight-published apps connected to Salesforce. “Our investigation indicates this activity may have enabled unauthorized access to certain customers’ Salesforce data through the app’s connection. Upon detecting the activity, Salesforce revoked all active access and refresh tokens associated with Gainsight-published applications connected to Salesforce and temporarily removed those applications from the AppExchange while our investigation … More →
The post Salesforce investigates new incident echoing Salesloft Drift compromise appeared first on Help Net Security.