Aggregator

A vulnerability classified as critical has been found in Oracle Hospitality Simphony up to 19.7. This affects an unknown part of the component EMC. The manipulation leads to privilege escalation. This vulnerability is uniquely identified as CVE-2025-30686. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle MySQL Server up to 8.0.41/8.4.4/9.2.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Replication. The manipulation leads to denial of service. This vulnerability is handled as CVE-2025-30685. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle MySQL Server up to 8.0.41/8.4.4/9.2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Replication. The manipulation leads to denial of service. This vulnerability is known as CVE-2025-30684. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle MySQL Server up to 8.0.41/8.4.4/9.2.0. It has been classified as critical. Affected is an unknown function of the component Optimizer. The manipulation leads to denial of service. This vulnerability is traded as CVE-2025-30682. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Oracle MySQL Server up to 8.0.41/8.4.4/9.2.0 and classified as problematic. This issue affects some unknown processing of the component Replication. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2025-30683. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Oracle MySQL Server up to 8.0.41/8.4.4/9.2.0. This affects an unknown part of the component Optimizer. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2025-21585. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Oracle MySQL Server up to 8.4.4/9.2.0 and classified as problematic. This vulnerability affects unknown code of the component DML. The manipulation leads to denial of service. This vulnerability was named CVE-2025-21588. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

Why is Cloud Data Security vital for Modern Businesses? Cloud data security has grown to be an inherent part of businesses across various industries today, ranging from financial services and healthcare to travel and DevOps. But, amidst this shift to digital transformation, have you ever considered how secure your data is in the cloud? Let’s […]

The post How to Feel Reassured with Cloud Data Security appeared first on Entro.

The post How to Feel Reassured with Cloud Data Security appeared first on Security Boulevard.

Are Your Non-Human Identities Secure? Where interactions between software, applications, and API components are crucial for seamless processes, Non-Human Identifies (NHIs) and their security cannot be overlooked. NHIs are machine identities that perform sessions, transactions, and process automation. But, are they well-protected against potential security threats? Understanding the Criticality of NHI Security Expanding digital, coupled […]

The post How Safe Are Your Non-Human Identities? appeared first on Entro.

The post How Safe Are Your Non-Human Identities? appeared first on Security Boulevard.

A vulnerability, which was classified as critical, was found in Michau Enterprises Llc CommonSense CMS. This affects an unknown part of the file special.php. The manipulation of the argument ID leads to sql injection. This vulnerability is uniquely identified as CVE-2012-5342. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Submit #551300 / VDB-304846

Submit #551299 / VDB-304845

Submit #551298 / VDB-304844

Submit #551297 / VDB-304843

Submit #551296 / VDB-304842

Submit #551295 / VDB-304841

Russian state-sponsored espionage group Midnight Blizzard is behind a new spear-phishing campaign targeting diplomatic entities in Europe, including embassies. [...]

The remediated flaw gave adversaries a way to maintain access to the app through password resets.

A letter from MITRE, dated April 15, 2025, has leaked online claimed to be revealed from a reliable source that the organization’s contract to support the Common Vulnerabilities and Exposures (CVE) program is due to expire today, April 16, 2025, potentially threatening the stability of a critical cybersecurity resource. The letter, addressed to CVE Board […]

The post MITRE’s Support for CVE Program Set to Expire! – Internal Letter Leaked Online, “MITRE Confirmed” appeared first on Cyber Security News.