🇻🇳 #ViệtNam khuyến cáo công dân cân nhắc kỹ việc đến Venezuela trong bối cảnh căng thẳng hiện nay. Công dân VN đang ở Venezuela được khuyến nghị rời khỏi các khu vực nguy hiểm và theo dõi thông tin mới nhất.

#Venezuela #AnNinh #NgoaiGiao #KhangNghi #TravelAlert #VietNamForeignAffairs #SecurityAdvisory #InternationalRelations

https://vietnamnet.vn/viet-nam-khuyen-cao-cong-dan-truoc-tinh-hinh-cang-thang-o-venezuela-2478605.html

[ Blog ] VMware Tools vulnerability CVE-2025-22247

A new vulnerability CVE-2025-22247 has been reported, affecting VMware Tools installed on VMware vSphere VMs.

Marked as a moderate-severity vulnerability with a CVSS score of 6.1, it allows attackers with non-administrative privileges on a guest VM to compromise local files, leading to insecure file http://rviv.ly/JMR409 #CVE #securityadvisory #vulnerabilità

[ Blog ] VMware Tools vulnerability CVE-2025-22247

A new vulnerability CVE-2025-22247 has been reported, affecting VMware Tools installed on VMware vSphere VMs.

Marked as a moderate-severity vulnerability with a CVSS score of 6.1, it allows attackers with non-administrative privileges on a guest VM to compromise local files, leading to insecure file http://rviv.ly/JMR409 #CVE #securityadvisory #vulnerabilità

लाल किले के पास कार धमाका: 32 वाहनों से बड़े आतंकी हमले की साजिश बेनकाब, दिल्ली हाई अलर्ट पर।

https://aliyesha.com/sub/articles/news/display/nd_delhi_blast_high_alert

#delhi #newdelhi #india #news #press #crime #terrorism #RedFortBlast #TerrorPlot #DelhiAlert #NationalSecurity #IED #DelhiPolice #SecurityAdvisory #TravelAlert

Enjoy tracker free reading with us. #privacy #privacymatters

[ Blog ] VMware Tools vulnerability CVE-2025-22247

A new vulnerability CVE-2025-22247 has been reported, affecting VMware Tools installed on VMware vSphere VMs.

Marked as a moderate-severity vulnerability with a CVSS score of 6.1, it allows attackers with non-administrative privileges on a guest VM to compromise local files, leading to insecure file http://rviv.ly/JMR409 #CVE #securityadvisory #vulnerabilità

🔎 𝗩𝘂𝗹𝗻𝗲𝗿𝗮𝗯𝗶𝗹𝗶𝘁𝘆 𝗶𝗻 𝗦𝗶𝗲𝗺𝗲𝗻𝘀 𝗦𝗜𝗣𝗥𝗢𝗧𝗘𝗖 𝟱 𝗜𝗱𝗲𝗻𝘁𝗶𝗳𝗶𝗲𝗱

Our Technical Security Audit team has identified a vulnerability in 𝗦𝗶𝗲𝗺𝗲𝗻𝘀 𝗦𝗜𝗣𝗥𝗢𝗧𝗘𝗖 𝟱 𝗱𝗲𝘃𝗶𝗰𝗲𝘀:
⚠️ The USB port may allow attacks due to improper bandwidth limitation.

📌 Description:
Affected SIPROTEC 5 devices do not properly limit the bandwidth for incoming network packets over their local USB port. This could allow an attacker with physical access to send specially crafted packets with high bandwidth to the affected devices thus forcing them to exhaust their memory and stop responding to any network traffic via the local USB port. Affected devices reset themselves automatically after a successful attack. During this restart the protection function is not available.

📄 The full advisory is available here: https://www.gai-netconsult.de/wp-content/uploads/2025/09/Advisory-GAINC-2025-001-1.0.pdf

⚠️ Please follow the manufacturer’s guidance and updates.

🌐 An overview of further advisories can be found on our website: www.gai-netconsult.de/advisories

👏 Congratulations to our colleagues 𝗠𝗮𝗿𝗰 𝗖𝘂𝗻𝘆 and 𝗧𝗼𝗿𝗮𝗹𝗳 𝗚𝗶𝗺𝗽𝗲𝗹 for this discovery.

#CyberSecurity #SecurityAdvisory #Vulnerability #ITSecurity #GAINetConsult #SecurityNotice

⚠️ Kritisk sårbarhet i Cisco IOS XE Wireless Controller – godtycklig filuppladdning möjlig. CVSS-score på 10 av 10 möjliga!

https://kryptera.se/kritisk-sarbarhet-i-cisco-ios-xe-wireless-controller-godtycklig-filuppladdning-mojlig/

#Cisco #IOSXE #CiscoWLC #CVSS10 #CVE202520188 #Sårbarhet #Informationssäkerhet #ITsäkerhet #RootAccess #RCE #JWT #HardCodedCredentials #PathTraversal #WirelessLAN #Catalyst9800 #Nätverkssäkerhet #Sårbarhetsanalys #Exploit #Cybersecurity #SecurityAdvisory

Local Privilege Escalations in needrestart
We discovered three fundamental vulnerabilities in needrestart (three
LPEs, Local Privilege Escalations, from any unprivileged user to full
root), which are exploitable without user interaction on #Ubuntu Server
(through unattended-upgrades)

#SecurityAdvisory

We assess with high confidence that an attacker possessing the same retinal and fingerprint patterns as a victim can bypass traditional biometric security controls. To date, every biometric control we've tested is vulnerable to this attack. There is currently no known fix.

#Qualys #SecurityAdvisory

#regreSSHion: #RCE in #OpenSSH's server, on glibc-based #Linux systems (CVE-2024-6387)

The Canadian Centre for Cyber Security has issued a detailed security advisory regarding the "LINE DANCER" & "LINE RUNNER" attacks against Cisco ASA devices by what it believes are nation-state sponsored malicious actors.

As usual, if you or your organization runs Cisco ASAs, time to patch to mitigate these vulnerabilities.

www.cyber.gc.ca/en/news-events/cyber-activity-impacting-cisco-asa-vpns

#infosec #cybersecurity #LINEDANCER #LINERUNNER #ARCANEDOOR #Cisco #CiscoASA #SecurityAdvisory #CVE_2024_20359 #CVE_2024_20353

Qualcomm security advisory: 12 Proprietary Software Issues, 4 Open Source Software issues. No mention of exploitation in the wild. 🔗 https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2024-bulletin.html

#Qualcomm #PatchTuesday #vulnerability #securityadvisory

Android Security Bulletin released: 28 vulnerabilities, 27 of which are high severity. 1 marked critical was CVE-2023-28582 (9.8 critical, disclosed 04 March 2024 by Qualcomm). No mention of exploitation in the wild. 🔗 https://source.android.com/docs/security/bulletin/2024-04-01

#PatchTuesday #Android #securityadvisory #vulnerability

Elastic security advisories (no mention of exploitation):

• ESA-2024-06 Elasticsearch 8.13.0 / 7.17.19 Security Update: CVE-2024-23450 (4.9 medium) Elasticsearch Uncontrolled Resource Consumption vulnerability (Denial of Service?)
• ESA-2024-07 Elasticsearch 8.13.0 Security Update: CVE-2024-23451 (4.4 medium) Elasticsearch Improper Authorization in the Remote Cluster Security API key based security model (arbitrary file read)

#Elastic #PatchTuesday #vulnerability #CVE_2024_23450 #CVE_2024_23451 #securityadvisory

Cisco decided to make it a Patch Wednesday. Here are 17 security advisories:

• CVE-2024-20354 (4.7 medium) Cisco Aironet Access Point Software Resource Exhaustion Denial of Service Vulnerability
• CVE-2024-20303 (7.4 high) Cisco IOS XE Software for Wireless LAN Controllers Multicast DNS Denial of Service Vulnerability
• CVE-2024-20311 (8.6 high) Cisco IOS and IOS XE Software Locator ID Separation Protocol Denial of Service Vulnerability
• CVE-2024-20312 (7.4 high) Cisco IOS and IOS XE Software Intermediate System-to-Intermediate System Denial of Service Vulnerability
• CVE-2024-20324 (5.5 medium) Cisco IOS XE Software for Wireless LAN Controllers Privilege Escalation Vulnerability
• CVE-2024-20306 (6.0 medium) Cisco IOS XE Software Unified Threat Defense Command Injection Vulnerability (analyst note: their advisory link is broken)
• CVE-2024-20278 (6.5 medium) Cisco IOS XE Software Privilege Escalation Vulnerability
• CVE-2024-20313 (7.4 high) Cisco IOS XE Software OSPFv2 Denial of Service Vulnerability
• CVE-2024-20314 (8.6 high) Cisco IOS XE Software SD-Access Fabric Edge Node Denial of Service Vulnerability
• CVE-2024-20276 (7.4 high) Cisco IOS Software for Catalyst 6000 Series Switches Denial of Service Vulnerability
• CVE-2024-20307 and CVE-2024-20308 (8.6 high) Cisco IOS and IOS XE Software Internet Key Exchange Version 1 Fragmentation Denial of Service Vulnerabilities
• CVE-2024-20316 (5.8 medium) Cisco IOS XE Software NETCONF/RESTCONF IPv4 Access Control List Bypass Vulnerability
• CVE-2024-20259 (8.6 high) Cisco IOS XE Software DHCP Snooping with Endpoint Analytics Denial of Service Vulnerability
• CVE-2024-20333 (4.3 medium) Cisco Catalyst Center Authorization Bypass Vulnerability
• CVE-2024-20309 (5.6 medium) Cisco IOS XE Software Auxiliary Asynchronous Port Denial of Service Vulnerability
• CVE-2024-20265 (5.9 medium) Cisco Access Point Software Secure Boot Bypass Vulnerability
• CVE-2024-20271 (8.6 high) Cisco Access Point Software Denial of Service Vulnerability

The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.

#Cisco #PatchTuesday #securityadvisory #vulnerability #CVE

Apple security advisories have been released:

• About the security content of macOS Sonoma 14.4.1 (25 March 2024)
• About the security content of macOS Ventura 13.6.6 (25 March 2024)
• About the security content of iOS 17.4.1 and iPadOS 17.4.1 (21 March 2024)
• About the security content of iOS 16.7.7 and iPadOS 16.7.7 (21 March 2024)
• About the security content of visionOS 1.1.1 (21 March 2024)

All of the security advisories reference CVE-2024-1580 (5.9 medium) which is an integer overflow in dav1d AV1 decoder that could lead to out-of-bounds write (arbitrary code execution). It was fixed with improved input validation. No mention of exploitation in the wild. Discovered by Nick Galloway of Google Project Zero.

#Apple #PatchTuesday #vulnerability #securityadvisory #CVE_2024_1580

Mozilla Foundation security advisories. No mention of exploitation. Mozilla does a funny and says "Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code."

• 2024-12 Security Vulnerabilities fixed in Firefox 124
• 2024-13 Security Vulnerabilities fixed in Firefox ESR 115.9
• 2024-14 Mozilla Foundation Security Advisory 2024-14Security Vulnerabilities fixed in Thunderbird 115.9
  • Interesting note: In general, these flaws cannot be exploited through email in the Thunderbird product because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts.

#Mozilla #PatchTuesday #securityadvisory #vulnerability #firefox #Thunderbird

🚨 Major #DDoS attacks hit Cloudflare, Google, AWS via a zero-day in HTTP/2 (CVE-2023-44487). The HTTP/2 Rapid Reset exploit caused chaos, with attacks reaching 201M RPS and a staggering 398M RPS! Quick mitigations were applied, but the urgency to patch systems remains critical.

See how it works below!

#CyberSecurity #HTTP
#DDoS #CyberAttack #InfoSec #Vulnerability #PatchAlert #cyber #cybersecurity #zeroday #0day #cybernews #technology #technews #HTTPS #CyberThreat #InfoSecCommunity #SecurityBreach #CyberDefense #ThreatIntel #NetworkSecurity #DataProtection #RiskManagement #CyberAwareness #ITSecurity #SecurityPatch #CyberSafety #DigitalSecurity #CloudSecurity #EnterpriseSecurity #SecureInternet #CyberResilience #CyberRisk #SecurityCompliance #IncidentResponse #CyberCrime #WebSecurity #ServerSecurity #OnlineSecurity #SecurityAdvisory #TechUpdate #CriticalVulnerability #infosecurity

Finnish Digital and Population Data Services Agency (DVV) provides a Card Reader Software which can be used for strong authentication and digital signing with the DVV issued identity cards. The Fujitsu mPollux DigiSign application communicates with the identity card and allows log in to official e-services and/or digitally sign documents. The Fujitsu mPollux DigiSign Client for macOS version 4.2.4c-8322 and previous contains two security vulnerabilities that in the worst-case scenario can lead to full system compromise.

https://labs.withsecure.com/advisories/fujitsu-mpollux-for-macos-multiple-vulnerabilities #infosec #vulnerability #securityadvisory

CVE-2023-23397 – Microsoft Outlook Privilege Elevation Critical Vulnerability

https://research.kudelskisecurity.com/2023/03/15/cve-2023-23397-microsoft-outlook-privilege-elevation-critical-vulnerability/

#SecurityAdvisory #vulnerability #patchtuesday #microsoft #outlook