Aggregator

CVE-2025-66576 | Remotecontrolio Remote Keyboard Desktop 1.0.1 rundll32.exe os command injection (Exploit 52299 / EUVD-2025-201265)

Vuldb Updates
1 day 2 hours ago
A vulnerability classified as critical has been found in Remotecontrolio Remote Keyboard Desktop 1.0.1. The affected element is an unknown function of the file rundll32.exe. This manipulation causes os command injection. This vulnerability is tracked as CVE-2025-66576. The attack is possible to be carried out remotely. Moreover, an exploit is present.
vuldb.com

CVE-2025-38079 | Linux Kernel up to 6.14.8 crypto algif_hash use after free (EUVD-2025-18574 / Nessus ID 241773)

Vuldb Updates
1 day 2 hours ago
A vulnerability marked as critical has been reported in Linux Kernel up to 6.14.8. This affects the function algif_hash of the component crypto. Performing manipulation results in use after free. This vulnerability is reported as CVE-2025-38079. The attacker must have access to the local network to execute the attack. No exploit exists. It is suggested to upgrade the affected component.
vuldb.com

CVE-2025-38086 | Linux Kernel up to 6.15.3 ch9200 mii_nway_restart return value (EUVD-2025-19447 / Nessus ID 242437)

Vuldb Updates
1 day 2 hours ago
A vulnerability identified as problematic has been detected in Linux Kernel up to 6.15.3. This impacts the function mii_nway_restart of the component ch9200. This manipulation causes unchecked return value. This vulnerability appears as CVE-2025-38086. The attacker needs to be present on the local network. There is no available exploit. You should upgrade the affected component.
vuldb.com

CVE-2025-38083 | Linux Kernel up to 6.6.93/6.12.33/6.15.2/6.16-rc1 net_sched prio_tune race condition (Nessus ID 241963 / WID-SEC-2025-1372)

Vuldb Updates
1 day 2 hours ago
A vulnerability marked as problematic has been reported in Linux Kernel up to 6.6.93/6.12.33/6.15.2/6.16-rc1. This vulnerability affects the function prio_tune of the component net_sched. The manipulation leads to race condition. This vulnerability is referenced as CVE-2025-38083. The attack needs to be initiated within the local network. No exploit is available. It is suggested to upgrade the affected component.
vuldb.com

5 SOC Analyst Tips for Super-Fast Triage 

Cyber Security News
1 day 2 hours ago

Every extra minute spent guessing during triage puts your SOC at risk. When it’s unclear what a file does, whether it’s malicious, or how urgent it is, real threats slip through while time is wasted on noise.  Fast triage depends on removing uncertainty early, so decisions are based on evidence, not guesswork or incomplete signals.  Here are five practical […]

The post 5 SOC Analyst Tips for Super-Fast Triage  appeared first on Cyber Security News.

Kavichselvan

CVE-2025-67929 | templateinvaders TI WooCommerce Wishlist Plugin up to 2.10.0 on WordPress authorization (EUVD-2025-203566)

Vuldb Updates
1 day 2 hours ago
A vulnerability, which was classified as critical, was found in templateinvaders TI WooCommerce Wishlist Plugin up to 2.10.0 on WordPress. The impacted element is an unknown function. The manipulation results in missing authorization. This vulnerability was named CVE-2025-67929. The attack may be performed from remote. There is no available exploit.
vuldb.com

CVE-2025-68070 | Vektor VK Google Job Posting Manager Plugin up to 1.2.21 on WordPress cross site scripting (EUVD-2025-203544)

Vuldb Updates
1 day 2 hours ago
A vulnerability was found in Vektor VK Google Job Posting Manager Plugin up to 1.2.21 on WordPress. It has been classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-68070. The attack is possible to be carried out remotely. No exploit exists.
vuldb.com

CVE-2025-68078 | ThemeNectar Salient Portfolio Plugin up to 1.8.2 on WordPress cross site scripting (EUVD-2025-203540)

Vuldb Updates
1 day 2 hours ago
A vulnerability, which was classified as problematic, has been found in ThemeNectar Salient Portfolio Plugin up to 1.8.2 on WordPress. Affected is an unknown function. Performing manipulation results in cross site scripting. This vulnerability is reported as CVE-2025-68078. The attack is possible to be carried out remotely. No exploit exists.
vuldb.com

CVE-2025-64241 | Imtiaz Rayhan WP Coupons and Deals Plugin up to 3.2.4 on WordPress authorization (EUVD-2025-203609)

Vuldb Updates
1 day 2 hours ago
A vulnerability identified as critical has been detected in Imtiaz Rayhan WP Coupons and Deals Plugin up to 3.2.4 on WordPress. This vulnerability affects unknown code. This manipulation causes missing authorization. This vulnerability is registered as CVE-2025-64241. Remote exploitation of the attack is possible. No exploit is available.
vuldb.com

Hackers Could Take Control of Car Dashboard by Hacking Its Modem

Cyber Security News
1 day 2 hours ago

Modern vehicles are increasingly defined by their connectivity, transforming them into sophisticated IoT devices on wheels. While this digital evolution enhances the driving experience, it introduces severe security risks. A hypothetical scenario where a car dashboard is remotely hijacked to run video games like Doom has become a frightening reality. This vulnerability stems from the […]

The post Hackers Could Take Control of Car Dashboard by Hacking Its Modem appeared first on Cyber Security News.

Tushar Subhra Dutta

CVE-2025-68212 | Linux Kernel up to 6.17.9 fs statmount_string uninitialized pointer (Nessus ID 278917)

Vuldb Updates
1 day 2 hours ago
A vulnerability was found in Linux Kernel up to 6.17.9 and classified as critical. The impacted element is the function statmount_string of the component fs. The manipulation results in uninitialized pointer. This vulnerability is identified as CVE-2025-68212. The attack can only be performed from the local network. There is not any exploit available. It is suggested to upgrade the affected component.
vuldb.com

Managed ad