Aggregator

A vulnerability was found in Linux Kernel up to 6.12.4 and classified as critical. Affected by this issue is the function jfs_readdir. The manipulation leads to improper validation of array index. This vulnerability is handled as CVE-2024-56596. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.3 and classified as critical. Affected by this issue is the function ceph_mds_auth_match. The manipulation leads to memory leak. This vulnerability is handled as CVE-2024-56564. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.3. It has been declared as critical. This vulnerability affects the function i3c_master_put_i3c_addrs. The manipulation leads to use after free. This vulnerability was named CVE-2024-56562. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.12.3. This issue affects the function binder_freeze_notification_done. The manipulation leads to memory leak. The identification of this vulnerability is CVE-2024-56553. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.12.3. Affected is the function binder_add_freeze_work. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2024-56555. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.119/6.6.63/6.12.3 and classified as critical. Affected by this vulnerability is the function ad7923_update_scan_mode. The manipulation leads to buffer overflow. This vulnerability is known as CVE-2024-56557. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.15.175/6.1.123/6.6.69/6.12.8 and classified as critical. Affected by this vulnerability is the function in_atomic. The manipulation leads to stack-based buffer overflow. This vulnerability is known as CVE-2024-57903. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.69/6.12.8. It has been classified as problematic. Affected is the function or_each_set_bit of the component mac80211. The manipulation leads to insufficient verification of data authenticity. This vulnerability is traded as CVE-2024-57899. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.12.8. Affected is the function vlan_get_protocol_dgram of the file net/core/skbuff.c. The manipulation leads to denial of service. This vulnerability is traded as CVE-2024-57901. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.175/6.1.123/6.6.69/6.12.8. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to buffer overflow. The identification of this vulnerability is CVE-2024-57897. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

CIR's Lawrence Gasman on Why Quantum Data Centers Remain Years From Enterprise Use
Quantum data centers could become viable if business use cases emerge, says Lawrence Gasman, founder, Communications Industry Researchers. Technical hurdles, such as physical form factor, environment, cost and photonic interconnects, must be addressed for enterprise adoption.

CEO Jim Rosenthal on Improving Visibility, Remediation for Embedded Software Flaws
BlueVoyant unveiled a new SBOM tool to detect software embedded in third-party products, expanding its supply chain defense. Co-founder and CEO Jim Rosenthal said proactive remediation and deeper insight into data flows are key to combatting AI-powered attacks.

Also: CoinDCX's $44 Million Exploit, Crypto Theft Hit $2.17B in First Half of 2025
This week, Russia crypto laundering in Krygyzstan, CoinDCX lost $44M in a hack, the U.S. sought $7.1M in crypto linked to oil tank investment scam, Ex-NCA officer was jailed for stealing seized bitcoin, crypto thefts hit $2.17B in the first half of 2025 and Trump Media revealed $2B bitcoin holdings.

Also: Clorox Sues IT Vendor Over Password Blunder
This week, XSS forum admin arrested, Clorox sued Cognizant, Lumma Stealer is back, NY regulates water, U.S. maritime cybersecurity rules in effect, new Coyote banking Trojan, a hacker nabbed details of Mexico City auxiliary police, Latin America cyberattacks, and World Leaks stole synthetic data.

ChatGPT Agent is now rolling out to users with $20 Plus subscription, but OpenAI warns that it will take a few days for the rollout to finish. [...]

A new Linux malware named Koske may have been developed with artificial intelligence and is using seemingly benign JPEG images of panda bears to deploy malware directly into system memory. [...]

Security researcher Sergey Bliznyuk of Positive Technologies has published a detailed analysis of critical vulnerabilities in the VGAuth component of VMware Tools, which enable a low-privileged local user to gain full SYSTEM-level access on...

The post Flaws in VMware Tools VGAuth Allow Local SYSTEM Privilege Escalation on Windows Guest Machines appeared first on Penetration Testing Tools.

Storm-2603, a China-based threat actor, is targeting SharePoint customers in an ongoing ransomware campaign.

New Coyote malware uses Windows UI Automation to steal banking credentials, targeting Brazilian users across 75 banks and crypto platforms. Coyote malware is now the first to exploit Microsoft’s UI Automation framework in the wild, validating prior warnings from Akamai researchers in December 2024. The UI Automation (UIA) framework is a Microsoft accessibility framework that […]