Topic: version affected

Sort by: Relevance | Date
  • Libraesva ESG Zero-Day Exploited in Active Attacks (CVE-2025-59689)
    September 26, 2025
    80%

    Libraesva ESG Zero-Day Exploited in Active Attacks (CVE-2025-59689)

    A critical zero-day vulnerability (CVE-2025-59689) in the Libraesva Email Security Gateway is being actively exploited by a suspected state-sponsored actor, allowing arbitrary command execution on affected systems. The flaw is a command injection vulnerability caused by improper input sanitizatio...

    Read More »
  • Urgent Oracle EBS Vulnerability Alert (CVE-2025-61884)
    October 13, 2025
    75%

    Urgent Oracle EBS Vulnerability Alert (CVE-2025-61884)

    A critical security flaw, CVE-2025-61884, has been identified in Oracle's E-Business Suite, affecting versions 12.2.3 to 12.2.14 and potentially earlier versions like 12.1.3, allowing unauthenticated attackers to exploit it via HTTP. Exploitation of this vulnerability could result in unauthorized...

    Read More »
  • Urgent Redis Update Fixes Critical RCE Vulnerability
    October 8, 2025
    60%

    Urgent Redis Update Fixes Critical RCE Vulnerability

    A critical use-after-free vulnerability (CVE-2025-49844) in Redis's Lua scripting allows authenticated attackers to execute arbitrary code on the host server, affecting versions 8.2.1 and earlier. The flaw is exacerbated by default configurations in Redis container images that disable authenticat...

    Read More »

Related Topics

cybersecurity threats (94) security updates (67) zero-day vulnerability (19) cloud security (107) remote code execution (71) data theft (67) National Security (63) security research (59)