Topic: active exploitation

Sort by: Relevance | Date
  • Patch Alert: CitrixBleed 2 Still a Threat (CVE-2025-5777)
    July 10, 2025
    90%

    Patch Alert: CitrixBleed 2 Still a Threat (CVE-2025-5777)

    A critical vulnerability (CVE-2025-5777) in Citrix NetScaler systems is being exploited, enabling session hijacking and unauthorized access despite Citrix's denial of confirmed attacks. The flaw allows attackers to extract session tokens via manipulated login requests, potentially compromising ad...

    Read More »
  • Roundcube RCE Flaw (CVE-2025-49113) Sparks Dark Web Attack Fears
    June 10, 2025
    90%

    Roundcube RCE Flaw (CVE-2025-49113) Sparks Dark Web Attack Fears

    A critical vulnerability (CVE-2025-49113) in Roundcube webmail allows attackers to execute malicious code, putting thousands of unpatched servers at risk, with exploit code already circulating. Around 84,000 exposed Roundcube installations, primarily in Europe, Asia, and North America, include hi...

    Read More »
  • Cisco ISE critical flaws actively exploited by hackers
    July 24, 2025
    70%

    Cisco ISE critical flaws actively exploited by hackers

    Cisco has warned of active exploitation targeting critical vulnerabilities in its Identity Services Engine (ISE) and Passive Identity Connector (ISE-PIC), confirming real-world attacks. Three flaws (CVE-2025-20281, CVE-2025-20337, CVE-2025-20282) allow remote root-level access, arbitrary code exe...

    Read More »
  • 1,200+ Citrix servers vulnerable to critical auth bypass flaw
    July 1, 2025
    70%

    1,200+ Citrix servers vulnerable to critical auth bypass flaw

    Over 1,200 Citrix NetScaler systems remain vulnerable to CVE-2025-5777, a severe authentication bypass flaw enabling session hijacking and MFA bypass, with potential active exploitation despite Citrix's denial. The flaw, dubbed "Citrix Bleed 2," allows attackers to steal session tokens and creden...

    Read More »
  • Critical Server Vulnerability Actively Exploited - Patch Now!
    June 27, 2025
    65%

    Critical Server Vulnerability Actively Exploited - Patch Now!

    A critical 10/10 severity vulnerability in AMI MegaRAC firmware (CVE-2024-54085) allows attackers to bypass authentication and gain full server control via BMCs, putting thousands of systems at risk. Exploits are now active in the wild, enabling attackers to pivot across networks, comprom...

    Read More »
  • CitrixBleed 2 Vulnerability Actively Exploited
    June 28, 2025
    60%

    CitrixBleed 2 Vulnerability Actively Exploited

    A critical vulnerability in Citrix NetScaler systems (CVE-2025-5777, CVSS 9.3), dubbed CitrixBleed 2, allows attackers to bypass authentication and compromise user sessions, similar to the 2023 CitrixBleed exploit. Attackers are actively exploiting the flaw, using tactics like MFA bypass, session...

    Read More »

Related Topics

authentication bypass (3) security patching urgency (2) cve-2025-5777 (2) session hijacking (2) remote code execution (2) cve-2025-6543 (2) multi-factor authentication bypass (2) network pivoting (1)
Close

Adblock Detected

We noticed you're using an ad blocker. To continue enjoying our content and support our work, please consider disabling your ad blocker for this site. Ads help keep our content free and accessible. Thank you for your understanding!