Remote code execution vulnerability in a popular mobile device management solution from Ivanti has been exploited in the wild in limited attacksBackgroundOn May 13, Ivanti released a security advisory to address a high severity remote code execution (RCE) a…

5Critical66Important0Moderate0LowMicrosoft addresses 71 CVEs including seven zero-days, five of which were exploited in the wild.Microsoft patched 71 CVEs in its May 2025 Patch Tuesday release, with five rated crit…

Fortinet has patched a critical vulnerability (CVE-2025-32756) that has been exploited in the wild to compromise FortiVoice phone / conferencing systems, the company’s product security incident response team has revealed on Tuesday. About CVE-2025-32756 CVE-2…

Posted by Research via Snort-sigs on May 13Talos Snort Subscriber Rules Update Synopsis: Talos is aware of vulnerabilities affecting products from Microsoft Corporation. Details: Microsoft Vulnerability CVE-2025-24063: A coding deficiency exists in Microsof…

Attackers have exploited vulnerabilities in open-source libraries to compromise on-prem Ivanti Endpoint Manager Mobile (EPMM) instances of a “very limited” number of customers, Ivanti has confirmed on Tuesday, and urged customers to install a patch as soon as…

Ivanti has released a security updates addressing two vulnerabilities in Endpoint Manager Mobile (EPMM)—CVE-2025-4427 and CVE-2025-4428—that, when chained The post Ivanti EPMM Flaws Exploited in the Wild: Chained RCE and Auth Bypass Threaten Mobile Device Management appeared first on Daily CyberSecurity.

Fortinet has disclosed a critical stack-based buffer overflow vulnerability, tracked as CVE-2025-32756, affecting a wide range of its The post Fortinet CVE-2025-32756 Exploited in the Wild: Critical RCE Flaw Hits FortiVoice and More appeared first on Daily CyberSecurity.

A recently disclosed critical security flaw impacting SAP NetWeaver is being exploited by multiple China-nexus nation-state actors to target critical infrastructure networks. "Actors leveraged CVE-2025-31324, an unauthenticated file upload vulnerability that …

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-30400 Microsoft Windows DWM Core Library Use-After-Free Vulnerability CVE-2025-32701 Microsoft Windows…

Apple has released a patch for a newly disclosed vulnerability in macOS, tracked as CVE-2025-31258, that could allow The post PoC Released: CVE-2025-31258 Sandbox Escape in macOS via RemoteViewServices appeared first on Daily CyberSecurity.

Posted by Solar Designer on May 12Hi, Thank you very much VMware PSIRT for fixing and disclosing this issue. I'm sorry I'm not familiar with open-vm-tools, but I thought we could clarify the below for everyone in here: The commit message says: Skimming th…

A critical vulnerability in Kong’s popular open-source API client, Insomnia, could allow attackers to execute arbitrary code on The post CVE-2025-1087: Critical Template Injection in Insomnia API Client Enables Remote Code Execution appeared first on Daily CyberSecurity.

A security research blog.

Expert found two flaws in DriverHub, pre-installed on Asus motherboards, which allow remote code execution via crafted HTTP requests. Security researcher ‘MrBruh’ discovered two vulnerabilities, tracked as CVE-2025-3462 (CVSS score of 8.4) and CVE-2025-3463 (…

Posted by Xen . org security team on May 12 Xen Security Advisory CVE-2024-28956 / XSA-469 version 2 x86: Indirect Target Selection UPDATES IN VERSION 2 ==================== State the CVE. ISSUE DESCRIPTION ================= Researchers at VU Amsterdam…

Microsoft Threat Intelligence has linked a regional cyber-espionage campaign exploiting a zero-day vulnerability in Output Messenger to the The post Türkiye-Linked Hackers Exploit Output Messenger Zero-Day (CVE-2025-27920) in Espionage Campaign appeared first on Daily CyberSecurity.

Posted by VMware PSIRT on May 12Description ============================================================== CVE-2025-22247: open-vm-tools contains an insecure file handling vulnerability. VMware has evaluated the severity of this issue to be in the Moderate …

Since April 2024, the threat actor that Microsoft Threat Intelligence tracks as Marbled Dust has been observed exploiting user accounts that have not applied fixes to a zero-day vulnerability (CVE-2025-27920) in the messaging app Output Messenger, a multiplat…

A second wave of attacks against the hundreds of SAP NetWeaver platforms compromised via CVE-2025-31324 is underway. “[The] attacks [are] staged by follow-on, opportunistic threat actors who are leveraging previously established webshells (from the first zero…

Broadcom has released a security advisory addressing a moderate-severity vulnerability in VMware Tools, identified as CVE-2025-22247, which could The post VMware Tools Update Addresses Insecure File Handling Vulnerability appeared first on Daily CyberSecurity.