Vulnerabilities | KITEFALL

Weekly Tech Roundup: Major Launches, AI Rivalries, and Cybersecurity Alerts 2025-10-20 21:24 Techstory
Salt Typhoon Targets European Telecom 2025-10-20 20:54 Bank Information Security - New Jersey
⚡ Weekly Recap: F5 Breached, Linux Rootkits, Pixnapping Attack, EtherHiding & More 2025-10-20 20:17 The Hacker News
Five New Exploited Bugs Land in CISA's Catalog — Oracle and Microsoft Among Targets 2025-10-20 20:17 The Hacker News
Hard-coded credentials found in Moxa industrial security appliances, routers (CVE-2025-6950) 2025-10-20 19:15 Help Net Security
Microsoft fixes one of its "highest ever" rated security flaws - here's what happened 2025-10-20 18:43 TechRadar
WatchGuard Firebox VPN Hit by Critical RCE Vulnerability CVE-2025-9242 2025-10-20 18:40 WebProNews
PoC Released for Linux-PAM Vulnerability Enabling Local Root Privilege Escalation 2025-10-20 16:38 GBHackers
WatchGuard VPN Flaw Gives Hackers Full Firewall Control 2025-10-20 14:46 TechRepublic
Worrying WatchGuard VPN bug could let hackers hijack your devices - here's how to stay safe 2025-10-20 14:14 TechRadar Pro
Kernel Important Security Fix 2025:3679-1 2025-10-20 14:07 Linux Security
Linux Kernel Important Six Fixes 2025:3675-1 CVE-2025-21971 DoS 2025-10-20 14:06 Linux Security
Concerns Over Samba Exploitation and Vulnerability Issues 2025:4380-2 2025-10-20 14:06 Linux Security
The Hidden Risks of Eroding Trust in Open-Source Linux Security 2025-10-20 14:06 Linux Security
A simple AI prompt saved a developer from this job interview scam 2025-10-20 11:39 The Register
PoC Exploit Released for Windows Server Update Services Remote Code Execution Vulnerability 2025-10-20 10:26 Cyber Security News
iPhones, iPads, and MacBooks Hit by Dangerous Image File Security Flaw 2025-10-20 09:53 ProPakistani
WatchGuard VPN Vulnerability Let Remote Attacker Execute Arbitrary Code 2025-10-19 14:05 Cyber Security News
PoC Exploit Released for Linux-PAM Vulnerability Allowing Root Privilege Escalation 2025-10-19 14:05 Cyber Security News
Week in review: F5 data breach, Microsoft patches three actively exploited zero-days 2025-10-19 09:12 Help Net Security
Resolving Serious Memory Leak in mingw-w64-runtime 2025-10-19 07:41 Linux Security
What is an Out-of-Bounds Write Linux Security Vulnerability? 2025-10-19 02:46 Linux Security
Security experts warn 50,000 Cisco firewalls remain exposed without urgent patch 2025-10-18 21:32 GCN
American Airlines Subsidiary Envoy Compromised in Oracle Hacking Campaign 2025-10-18 18:50 Cyber Security News
WatchGuard Fireware OS Hit by Critical CVE-2025-9242 RCE Vulnerability 2025-10-18 17:42 WebProNews
UNC5142 Exploits Blockchain to Infect 14,000 WordPress Sites with Malware 2025-10-18 17:15 WebProNews
PoC Exploit for 7-Zip Vulnerabilities that Allows Remote Code Execution 2025-10-18 09:00 Cyber Security News
mingw-qt5-qtsvg Important Use-after-Free Fix CVE-2025-10729 2025-10-18 07:14 Linux Security
A critical WatchGuard Fireware flaw could allow unauthenticated code execution 2025-10-18 00:28 Security Affairs
Kernel Important Security Fixes 2025:03633-1 2025-10-17 20:58 Linux Security
Key openssl-1_1-livepatches Advisory for CVE-2024-4741 & 2025-9230 2025-10-17 20:58 Linux Security
pam Moderate CPU Performance Issue CVE-2024-10041 2025:02970-2 2025-10-17 20:58 Linux Security
Cl0p hackers exploit Oracle vulnerability to hit multiple companies 2025-10-17 19:08 GCN
For October’s Patch Tuesday, a scary number of fixes 2025-10-17 18:10 Computerworld
CISA Warns of Critical Vulnerability in Adobe Experience Manager Forms 2025-10-17 18:07 eSecurityPlanet
Samba WINS Command Injection Vulnerability (CVE-2025-10230) Notice 2025-10-17 17:46 Security Boulevard
American Airlines subsidiary Envoy caught in Clop's Oracle EBS raid 2025-10-17 17:35 The Register
Your Business in Their Pocket: Why Mobile Security Belongs in the Boardroom 2025-10-17 16:45 The European Business Review
Cisco Desk, IP, and Video Phone Vulnerabilities Let Remote Attackers Trigger DoS And XSS Attacks 2025-10-17 16:09 Cyber Security News
Critical ConnectWise Vulnerabilities Allow Attackers To Inject Malicious Updates 2025-10-17 16:09 Cyber Security News
ConnectWise Flaws Let Attackers Deliver Malicious Software Updates 2025-10-17 16:03 GBHackers
WatchGuard VPN Flaw Allows Remote Attackers to Execute Arbitrary Code 2025-10-17 16:03 GBHackers
Google Suddenly Updates Chrome — What You Need To Know And Do 2025-10-17 15:24 Forbes
Hackers used Cisco zero-day to plant rootkits on network switches (CVE-2025-20352) 2025-10-17 15:03 Help Net Security
LinkPro Rootkit Attacking GNU/Linux Systems Using eBPF Module to Hide Malicious Activities 2025-10-17 15:01 Cyber Security News
Cisco: SNMP Critical Linux Rootkit Exploit CVE-2025-20352 RCE 2025-10-17 14:25 Linux Security
pgadmin4 Important Cross-Origin Security Fix CVE-2025-9636 2025-10-17 13:27 Linux Security
expat Important Memory Amplification Vulnerability CVE-2025-59375 2025-10-17 13:27 Linux Security
Firefox-ESR Critical Issues Addressed DLA-4335-1 CVE-2025-11708 2025-10-17 13:27 Linux Security
‘Zero Disco’ campaign hits legacy Cisco switches with fileless rootkit payloads 2025-10-17 11:54 CSO
Microsoft’s Patch Tuesday: 172 Flaws Fixed 2025-10-17 09:37 TechRepublic
F5 Released Security Updates Covering Multiple Products Following Recent Hack 2025-10-17 09:21 Cyber Security News
Over 269,000 F5 Devices Exposed Online After Major Breach: U.S. Faces Largest Risk 2025-10-17 09:21 Cyber Security News
F5 Issues Security Patches for Multiple Products After Recent Breach 2025-10-17 09:18 GBHackers
LinkPro: An eBPF-Based Rootkit Hiding Malicious Activity on GNU/Linux 2025-10-17 09:17 GBHackers
Critical Cisco IOS and IOS XE Flaws Allow Remote Code Execution 2025-10-17 09:01 GBHackers
Cisco Desk, IP, and Video Phones Vulnerable to Remote DoS and XSS Attacks 2025-10-17 09:01 GBHackers
New Rootkit Campaign Exploits Cisco SNMP Flaw to Gain Persistence 2025-10-17 05:00 Infosecurity Magazine
New attack alert as Android 2FA codes stolen in 30 seconds flat 2025-10-17 02:22 University of California San Diego
On-Premises Oracle EBS Systems at Risk Due to CL0P Exploit 2025-10-17 01:55 JD Supra - California
Critical Apache ActiveMQ Flaw Lets Attackers Run Code Remotely 2025-10-16 23:31 eSecurityPlanet
CISA Alerts to Active Exploitation of Critical Windows Flaw 2025-10-16 23:31 eSecurityPlanet
Senate Investigates Cisco Over Zero-Day Firewall Vulnerabilities 2025-10-16 21:59 Cyber Security News
Operation Zero Disco: Threat actors targets Cisco SNMP flaw to drop Linux rootkits 2025-10-16 20:28 Security Affairs
“Perfect” Adobe Experience Manager vulnerability is being exploited (CVE-2025-54253) 2025-10-16 20:20 Help Net Security
Microsoft Suddenly Offers Windows 10 Update In Store—Buy Now 2025-10-16 19:10 Forbes
U.S. CISA adds SKYSEA Client View, Rapid7 Velociraptor, Microsoft Windows, and IGEL OS flaws to its Known Exploited Vulnerabilities catalog 2025-10-16 19:08 Security Affairs
U.S. CISA adds Adobe Experience Manager Forms flaw to its Known Exploited Vulnerabilities catalog 2025-10-16 19:08 Security Affairs
Critical Apache Subversion DoS Vulnerability CVE-2024-46901 2025-10-16 18:43 Linux Security
Microsoft warns of a 32% surge in identity hacks, mainly driven by stolen passwords 2025-10-16 18:42 The Record
Hackers Deploy Linux Rootkits via Cisco SNMP Flaw in 'Zero Disco' Attacks 2025-10-16 17:16 The Hacker News
LinkPro Linux Rootkit Uses eBPF to Hide and Activates via Magic TCP Packets 2025-10-16 17:15 The Hacker News
This Adobe AEM flaw is as dangerous as they come, and it's already being exploited 2025-10-16 15:58 TechRadar Pro
Senator presses Cisco over firewall flaws that burned US agency 2025-10-16 15:05 The Register
Microsoft kills 9.9-rated ASP.NET Core bug – 'our highest ever' score 2025-10-16 15:05 The Register
Update Microsoft Windows Now — New 2 Week Security Deadline Confirmed 2025-10-16 13:40 Forbes
Critical Apache ActiveMQ Vulnerability Let Attackers Execute Arbitrary Code 2025-10-16 13:23 Cyber Security News
CISA Warns Of Windows Improper Access Control Vulnerability Exploited In Attacks 2025-10-16 13:23 Cyber Security News
CISA Alerts on Adobe Experience Manager Flaw Exploited for Code Execution 2025-10-16 13:05 GBHackers
Windows BitLocker Flaws Allow Attackers to Bypass Encryption Protection 2025-10-16 13:05 GBHackers
Critical Apache ActiveMQ Let Attackers Execute Arbitrary Code 2025-10-16 13:05 GBHackers
CISA Alerts on Actively Exploited Windows Improper Access Control Flaw 2025-10-16 13:05 GBHackers
Frequently Asked Questions About The August 2025 F5 Security Incident 2025-10-16 11:37 Security Boulevard
CISA Flags Adobe AEM Flaw with Perfect 10.0 Score — Already Under Active Attack 2025-10-16 09:47 The Hacker News
ThreatsDay Bulletin: $15B Crypto Bust, Satellite Spying, Billion-Dollar Smishing, Android RATs & More 2025-10-16 09:47 The Hacker News
Pixnapping attack can steal 2FA codes from Android devices using onscreen pixels 2025-10-16 09:16 Android Police
CISA Warns Of Adobe Experience Manager Forms 0-Day Vulnerability Exploited In Attacks 2025-10-16 08:37 Cyber Security News
Windows BitLocker Vulnerabilities Let Attackers Bypass Security Feature 2025-10-16 06:42 Cyber Security News
Cisco must share more information about effects of severe bugs on businesses, senator says 2025-10-16 05:12 The Record
Unity: Runtime Critical Security Flaw CVE-2025-59489 Exposes Linux Builds 2025-10-16 05:03 Linux Security
200,000 Linux systems from Framework are shipped with signed UEFI components vulnerable to Secure Boot bypass 2025-10-16 04:24 Security Affairs
Microsoft Patch Tuesday Oct 2025 Fixs 175 Vulnerabilities including 3 Zero-Days 2025-10-16 03:54 Hackread
Firefox ESR Moderate Security Fix 2025:15632-1 2025-10-16 03:37 Linux Security
Patch Tuesday: Windows 10 end of life pain for IT departments 2025-10-16 02:33 Computer Weekly
Oracle races to patch a another zero-day following rise in attacks 2025-10-15 21:54 TechRadar Pro
Microsoft IIS Vulnerability Allows Unauthorized Attacker To execute Malicious Code 2025-10-15 21:19 Cyber Security News
Two New Windows Zero-Days Exploited in the Wild — One Affects Every Version Ever Shipped 2025-10-15 20:15 The Hacker News
Microsoft’s biggest-ever Patch Tuesday fixes 175 bugs 2025-10-15 18:53 Dataconomy
Hackers Exploit Windows Remote Access Connection Manager 0-Day in Ongoing Attacks 2025-10-15 17:45 GBHackers
Chrome Use-After-Free Flaw Lets Attackers Execute Arbitrary Code 2025-10-15 17:44 GBHackers