Tag: Flaws

JumpCloud Remote Assist Flaw Lets Users Gain Full Control of Company Devices

A critical vulnerability (CVE-2025-34352) found by XM Cyber in the JumpCloud Remote Assist for Windows agent allows local users to gain …

16 December 2025

Devices, Flaws, Full, Remote, Users
FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE

Multiple security vulnerabilities have been disclosed in the open-source private branch exchange (PBX) platform FreePBX, including a …

15 December 2025

Authentication, Bypass, Critical, Flaws, FreePBX
Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild

Apple on Friday released security updates for iOS, iPadOS, macOS, tvOS, watchOS, visionOS, and its Safari web browser to address two …

13 December 2025

After, Flaws, Found, Google TAG, Issues
CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting OSGeo GeoServer …

12 December 2025

Catalog, CISA, Flags, Flaws, Open Source
Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw

Google on Wednesday shipped security updates for its Chrome browser to address three security flaws, including one it said has come under …

11 December 2025

Active, Browsers, Chrome, Flaws, Google
.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

New research has uncovered exploitation primitives in the .NET Framework that could be leveraged against enterprise-grade applications to …

10 December 2025

.NET, Doors, Files, Flaws, Frameworks
Fortinet, Ivanti, and SAP Issue Urgent Patches for Authentication and Code Execution Flaws

Fortinet, Ivanti, and SAP have moved to address critical security flaws in their products that, if successfully exploited, could result in …

10 December 2025

Flaws, Fortinet, Issues, Ivanti, Patches
New GeminiJack 0-Click Flaw in Gemini AI Exposed Users to Data Leaks

A major security flaw, dubbed GeminiJack, was recently discovered by cybersecurity firm Noma Security in Google’s Gemini Enterprise and …

9 December 2025

AI, Exposed, Flaws, New, Users
Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks

Over 30 security vulnerabilities have been disclosed in various artificial intelligence (AI)-powered Integrated Development Environments …

6 December 2025

Attacks, Developer Tools, Flaws, Prompt Injection, Researchers
WebXR Flaw Hits 4 Billion Chromium Users, Update Your Browser Now

Cybersecurity startup AISLE discovered a Medium severity flaw in the WebXR component of Chrome, Edge, and other Chromium browsers. Over 4 …

4 December 2025

Billions, Flaws, Now, Updates, Users
Microsoft Silently Patches Windows LNK Flaw After Years of Active Exploitation

Microsoft has silently plugged a security flaw that has been exploited by several threat actors since 2017 as part of the company’s …

3 December 2025

Active, After, Exploitation, Flaws, LNK
Android December 2025 patch fixes critical DoS flaw

Google released the Android Security Bulletin for December 2025 detailing critical and high-severity vulnerabilities affecting Android …

2 December 2025

Android, Flaws, Mobile Development, Patches, Wild

{"loadingDistance":1200,"stickyPosts":[],"nextPageLink":"https://itts.at/archives/tag/flaws/page/2","queryId":2}

●●●