Результаты для "cve 2025"
Топ самых интересных CVE за май 2025 года - Habr
https://habr.com/ru/companies/tomhunter/article...
2 июн. 2025 г. ... CVE-2025-32706 — уязвимость в драйвере Windows Common Log File System Driver (CLFS), связанная с некорректной проверкой вводимых данных, которая ...
Топ самых интересных CVE за июль 2025 года - Habr
https://habr.com/ru/companies/tomhunter/article...
4 авг. 2025 г. ... CVE-2025-49719 — уязвимость в Microsoft SQL Server, связанная с некорректной проверкой ввода, что позволяет потенциальному злоумышленнику, не ...
CVE-2025-53770 Detail - NVD
https://nvd.nist.gov/vuln/detail/CVE-2025-53770
Description. Deserialization of untrusted data in on-premises Microsoft SharePoint Server allows an unauthorized attacker to execute code over a network.
Microsoft Security Update Guide – CVE-2025-53770
https://msrc.microsoft.com/update-guide/vulnera...
You need to enable JavaScript to run this app.
CVE-2025-6558 Detail - NVD
https://nvd.nist.gov/vuln/detail/CVE-2025-6558
Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome prior to 138.0.7204.157 allowed a remote attacker to potentially perform a sandbox ...
CVE-2025-21298 - Microsoft Security Response Center
https://msrc.microsoft.com/update-guide/vulnera...
You need to enable JavaScript to run this app.
Known Exploited Vulnerabilities Catalog | CISA
https://www.cisa.gov/known-exploited-vulnerabil...
CVE-2025-7775. Citrix NetScaler Memory Overflow Vulnerability: · Related CWE: CWE-119. Known To Be Used in Ransomware Campaigns? Unknown ; CVE-2024-8069. Citrix ...
CVE-2025-1094: PostgreSQL quoting APIs miss neutralizing ...
https://www.postgresql.org/support/security/CVE...
Improper neutralization of quoting syntax in PostgreSQL command line utility programs allows a source of command line arguments to achieve SQL injection.
CVE-2025-4230 PAN-OS: Authenticated Admin Command ...
https://security.paloaltonetworks.com/CVE-2025-...
11 июн. 2025 г. ... A command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to bypass system restrictions and run arbitrary ...
CVE-2025-41234: RFD Attack via “Content-Disposition ...
https://spring.io/security/cve-2025-41234
12 июн. 2025 г. ... An application is vulnerable to a reflected file download (RFD) attack when it sets a “Content-Disposition” header with a non-ASCII charset.
🖼️ Изображения
CVE-2025-21298 | SOC Prime
socprime.com
CVE-2025-21293 Detection: PoC Exploit Released for a Privilege ...
socprime.com
CVE-2025-29824 Vulnerability: Exploitation of a Windows CLFS Zero-Day ...
socprime.com
CVE-2025-4427 and CVE-2025-4428 Detection: Ivanti EPMM Exploit Chain ...
socprime.com
CVE-2025-21293 Detection: PoC Exploit Released for a Privilege ...
socprime.com
CVE-2025-21293 Detection: PoC Exploit Released for a Privilege ...
socprime.com
CVE-2025-21298 Detection: Critical Zero-Click OLE Vulnerability in ...
socprime.com
ConnectWise ScreenConnect Breach and CVE-2025-3935: What You Need to ...
socradar.io
CVE-2025-21298 - Windows OLE Remote Code Execution Vulnerability Explained
www.cve.news
🎥 Видео
CVE-2025-31200: Comprehensive Guide to Understanding and Mitigating the Threat
YouTube • May 9, 2025 • 06:41
In this video, we delve deep into the CVE-2025-31200 vulnerability affecting a range of Apple devices, providing you with an essential understanding of its severity, impact, and mitigation strategies. Key Concepts Covered: 1. Nature of CVE-2025-31200: Memory corruption in CoreAudio 2. Affected Apple devices and immediate update actions 3 ...
CVE-2025-29824: Exploit Unveiled - Protect Your Systems Now!
YouTube • May 8, 2025 • 06:54
Dive into the complexities of CVE-2025-29824, a critical Windows vulnerability that impacts a wide range of systems. This video guides you through the exploitation of the Windows Common Log File System (CLFS) Driver, its impact, and effective mitigation strategies. Key Concepts Covered: 1. Introduction to CVE-2025-29824 and its 'use after free ...
Microsoft Issues Urgent SharePoint Warning - CVE-2025-53770 Explained
YouTube • July 28, 2025 • 06:27
Active SharePoint Exploit (CVE-2025-53770) explained by Microsoft MVP Richard Harbridge. In July 2025, Microsoft confirmed active exploitation of a critical vulnerability in SharePoint Server (CVE-2025-53770). This is not a drill: real organizations are being targeted. In this video, Microsoft MVP Richard Harbridge walks through: Timestamps 00: ...
SharePoint Under Fire: What Every IT Team Needs to Know About CVE-2025-53770
YouTube • July 21, 2025 • 02:54
A critical vulnerability is being actively exploited right now, and it's hitting organizations hard. What do IT teams need to know? CVE-2025-53770 scored an 8.8 on the severity scale for good reason. Attackers are targeting a specific component in SharePoint – the toolpane.aspx file – to steal cryptographic keys that protect your data. Once ...
CVE-2025-24071: POC | Demo | Zero Click Exploit | Stealing credentials
YouTube • April 21, 2025 • 06:24
In this security research video, I demonstrate CVE-2025-24071, which involves creating Windows Library files (.library-ms) that reference remote network shares. This proof-of-concept shows how a simple Rust application deployed through GitHub Actions can generate these files automatically. The demo walks through: 1. How the vulnerability works ...
Critical Microsoft Exchange Hybrid Vulnerability Explained (CVE-2025-53786)
YouTube • August 7, 2025 • 04:08
Microsoft recently disclosed a high-severity vulnerability (CVE-2025-53786) affecting hybrid deployments of Exchange Server. This flaw allows attackers with administrative access to on-premises servers to escalate privileges in connected cloud environments, risking total domain compromise. Learn how this vulnerability works, why it’s ...