Tag Archives: flaws

Sep 03, 2025Ravie LakshmananVulnerability / Mobile Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a high-severity security flaw impacting TP-Link TL-WA855RE Wi-Fi Ranger Extender products to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, CVE-2020-24363 (CVSS score: 8.8), concerns a case of missing authentication that could be abused to obtain elevated …

Google has released the September 2025 security update for Android devices, addressing a total of 84 vulnerabilities, including two actively exploited flaws. The two flaws that were detected as exploited in zero-day attacks are CVE-2025-38352, an elevation of privilege in the Android kernel, and CVE-2025-48543, also an elevation of privilege problem in the Android Runtime component. Google noted in its …

A few days ago, Apple fixed a vulnerability on iOS and macOS that “may have been exploited in an extremely sophisticated attack against specific targeted individuals.” Now, new details have emerged, and it appears that the hacking campaign also leveraged a now-fixed WhatsApp flaw to target its victims. Here are the details. As reported by TechCrunch, Meta has confirmed that …

The new Netflix documentary series on the Dallas Cowboys and Jerry Jones is incredible. I never use that term lightly. Everything about it is compelling. There are stories I’d never known or had long forgotten about the team that won three Super Bowls in four years, starting only three years after Jones bought the team. I ripped through it in …

Zoom and Xerox Release Critical Security Updates Fixing Privilege Escalation and RCE Flaws  The Hacker NewsView Full Coverage on Google News Source link

Microsoft August 2025 Patch Tuesday Fixes Kerberos Zero-Day Among 111 Total New Flaws  The Hacker News Microsoft Patch Tuesday, August 2025 Edition  Krebs on Security Microsoft’s Patch Tuesday gives sys admins a baker’s dozen  theregister.com Windows 10 KB5063709 update fixes extended security updates enrollment  BleepingComputer Microsoft Teams RCE Vulnerability Let Attackers Read, Write and Delete Messages  CyberSecurityNews Source link

Hack of federal court filing system exploited security flaws known since 2020  PoliticoView Full Coverage on Google News Source link

Tag CVE ID CVE Title Severity Azure File Sync CVE-2025-53729 Microsoft Azure File Sync Elevation of Privilege Vulnerability Important Azure Stack CVE-2025-53793 Azure Stack Hub Information Disclosure Vulnerability Critical Azure Stack CVE-2025-53765 Azure Stack Hub Information Disclosure Vulnerability Important Azure Virtual Machines CVE-2025-49707 …

A security researcher said flaws in a carmaker’s online dealership portal exposed the private information and vehicle data of its customers, and could have allowed hackers to remotely break into any of its customers’ vehicles. Eaton Zveare, who works as a security researcher at software delivery company Harness, told TechCrunch the flaw he discovered allowed the creation of an admin …

New Win-DDoS Flaws Let Attackers Turn Public Domain Controllers into DDoS Botnet via RPC, LDAP  The Hacker News Source link