Tag: vulnerability
-
The New CitrixBleed: Critical CVE-2026-3055 Under Active Attack to Hijack Admin Sessions
The architectural frailty within Citrix networking apparatuses, which until recently was characterized merely as a latent peril, is now being aggressively weaponized by cyber marauders. These kinetic strikes commenced almost immediately following the dissemination of the security fortification and empower assailants to intercept paramount credentials for systemic ingress. This pertains to the critical vulnerability tracked…
-
PATCH NOW: Google Issues Emergency Chrome Update for Actively Exploited Zero-Day
Google has released an unscheduled Chrome update to patch a zero-day vulnerability already being exploited in active attacks. The fix is included in stable build 143.0.7499.110 for Windows and macOS, and 143.0.7499.109 for Linux. The company has confirmed that the flaw — internally tracked under identifier 466192044 — has been observed in real-world exploitation, prompting…
-
ZeroBoot: New Flaw Bypasses Samsung Galaxy Encryption with Physical Access
A researcher known under the pseudonym Vulndisclosure has reported a vulnerability, dubbed ZeroBoot, that enables an attacker to bypass file-based encryption (FBE) on the Samsung Galaxy A25 5G and access user data without entering a password. According to the author, the flaw stems from a race condition during the device’s boot sequence and carries a…
-
FortiWeb Alert: New Authenticated Command Injection Flaw (CVE-2025-58034) Actively Exploited
In recent days it has become apparent that FortiWeb had been accumulating issues the manufacturer chose not to disclose in advance. After Fortinet acknowledged active exploitation of the critical vulnerability CVE-2025-64446 — which allows attackers to execute administrative commands without authentication — the company was compelled to confirm yet another dangerous flaw, this time involving…
-
Urgent Patch: 7-Zip Flaw (CVE-2025-11001) Actively Exploited for Code Execution
A recently disclosed vulnerability in the 7-Zip archiver is already being weaponized in real-world attacks, according to a statement from NHS England Digital. The notice underscores that the flaw affects a widely used archival tool and warrants immediate attention from all Windows users. The issue, tracked as CVE-2025-11001 with a CVSS score of 7.0, arises…
-
WhatsApp Flaw Exposes 3.5 Billion Users: Scrapers Mapped Profiles Worldwide
The scale of the leak described by the team from the University of Vienna underscores how perilous an ordinary contact-lookup feature in popular messengers can become. WhatsApp has always emphasized the convenience of adding new people: simply save a phone number, and the service instantly reveals whether that person is registered, along with their name,…
-
Exploit Released for Critical Monsta FTP RCE Vulnerability (CVE-2025-34299)
Monsta FTP CVE-2025-34299 Exploit Python exploit for the RCE vulnerability in Monsta FTP (CVE-2025-34299). This vulnerability allows arbitrary PHP code execution on the Monsta FTP server by exploiting the downloadFile functionality which allows downloading files from a malicious FTP or SFTP server. The exploit establishes a reverse shell connection using pwntools. Note: While the watchTowr Labs research demonstrates the…
-
Google Issues Emergency Chrome Update for WebGPU High-Severity Remote Code Exploit
Google has released an emergency security update for the Chrome browser, addressing a series of vulnerabilities that could allow remote code execution and potential system takeover. The update, issued on 5 November 2025, is being rolled out progressively across desktop platforms—Windows, macOS, and Linux—as well as Android, through both Google Play and Chrome’s integrated update…
-
DNS Warning: Critical BIND Flaws Revive Cache Poisoning Attack Threat
The developers of BIND, the world’s most widely used domain name resolution software, have issued a warning about two critical vulnerabilities that allow attackers to tamper with DNS query results and redirect users to fraudulent websites that appear indistinguishable from legitimate ones. The flaws, tracked as CVE-2025-40778 and CVE-2025-40780, both carry a high severity score…
-
CISA: Critical Windows SMB Flaw Under Active Attack with Public Exploit
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a newly discovered flaw in the Windows SMB component to its Known Exploited Vulnerabilities (KEV) catalog. The vulnerability, tracked as CVE-2025-33073, stems from an access control failure that allows remote attackers to gain SYSTEM-level privileges over the network. Experts report that the flaw is already…
-
CISA Urges Immediate Patching: Critical Windows SMB Flaw Under Active Attack
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning that a vulnerability in the Windows SMB protocol, identified as CVE-2025-33073, is already being actively exploited in real-world attacks. Classified as a high-severity flaw, it allows threat actors to obtain SYSTEM-level privileges on unprotected devices. The vulnerability affects all versions of Windows Server…
-
Critical Risk: 269,000 F5 BIG-IP Devices Exposed After Nation-State Hack
A total of 269,000 F5 BIG-IP devices have been found exposed to remote access on the internet, despite the company’s recent admission of a large-scale compromise of its infrastructure. The discovery was made by the non-profit organization Shadowserver, which specializes in network security monitoring. According to its data, nearly 143,000 vulnerable instances are located in…
-
Critical 7-Zip Exploit Now Public: Immediate Patching Required
Since the disclosure of two critical vulnerabilities in 7-Zip, the situation has escalated sharply: functional proof-of-concept exploits are now publicly available that reproduce attacks by altering extraction paths and injecting arbitrary files. This elevates the threat from theoretical to tangible—particularly in corporate environments where archives are processed automatically—because it now represents a confirmed path to…
-
Critical HTTP Smuggling Flaw Patched in Microsoft ASP.NET Core Kestrel
Microsoft has patched a critical vulnerability in the Kestrel web server for ASP.NET Core, tracked as CVE-2025-55315. Classified as an HTTP Request Smuggling flaw, it enables an authenticated attacker to “inject” additional requests into a valid session, potentially hijacking user sessions or bypassing external security filters. According to Microsoft’s advisory, successful exploitation may lead to…
-
Training Solo: New Spectre-v2 Attack Bypasses Kernel and Hypervisor Defenses
Researchers at VUSec have unveiled Training Solo, a study that calls into question the very foundations of defenses against Spectre-v2 attacks. Where isolation of prediction domains was long believed to eliminate the possibility of training a branch predictor across privilege boundaries, the authors demonstrate that, even with ostensibly flawless isolation, an adversary can self-train the…
-
Zero-Day Alert: Attackers Exploit New Flaw to Bypass CentreStack RCE Patch
Gladinet has released a security update for its enterprise CentreStack solution that remedies a local file inclusion (LFI) vulnerability, CVE-2025-11371 (CVSS 6.2). Attackers have been actively exploiting this flaw as a zero-day since late September to bypass mitigations put in place for an earlier, more severe vulnerability—CVE-2025-30406 (CVSS 9.8)—which involved deserialization and remote code execution.…