vulnerability – Page 62

OpenShift GitOps Vulnerability Allows Attackers to Escalate Privileges to Root

Red Hat has disclosed a significant security flaw in OpenShift GitOps that could allow authenticated users to take complete control of a cluster. Assigned the identifier CVE-2025-13888, this vulnerability allows namespace administrators to elevate thei…

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Critical FortiGate SSO Vulnerability Actively Exploited in Real-World Attacks

Fortinet’s FortiGate appliances face immediate threat from two critical authentication bypass vulnerabilities being actively exploited in production environments. Fortinet released advisories for CVE-2025-59718 and CVE-2025-59719 on December 9, 2…

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Microsoft Outlines Mitigation for React2Shell RCE Vulnerability in React Server Components

Microsoft has released comprehensive guidance on CVE-2025-55182, a critical pre-authentication remote code execution (RCE) vulnerability affecting React Server Components and the Next.js framework. Assigned a maximum CVSS score of 10.0, this vulnerabil…

·

cyber security, Cyber Security News, Microsoft, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
JumpCloud Remote Assist Windows Agent Vulnerability Allows Privilege Escalation

A critical local privilege escalation vulnerability in the JumpCloud Remote Assist for Windows agent allows any low-privileged user on a Windows system to gain NT AUTHORITY\SYSTEM privileges or crash the machine. Tracked as CVE-2025-34352, the flaw aff…

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
GitHub Scanner for React2Shell (CVE-2025-55182) Turns Out to Be Malware

A GitHub repository posing as a vulnerability scanner for CVE-2025-55182, also referred to as “React2Shell,” was exposed as…

·

cybersecurity, Fraud, GitHub, Malware, React2Shell, SCAM, Scams and Fraud, Security, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Microsoft December 2025 Security Updates Disrupt MSMQ Functionality on IIS

Microsoft’s December 2025 security update has introduced a significant compatibility issue affecting Message Queuing (MSMQ) functionality across Windows Server and client environments. The problematic update, identified as KB5071546 (OS Build 190…

·

cyber security, Cyber Security News, Microsoft, vulnerability, Windows

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
PCPcat Malware Leverages React2Shell Vulnerability to Breach 59,000+ Servers

A sophisticated attack campaign attributed to a group identifying as “PCP” has compromised 59,128 servers in less than 48 hours by exploiting critical Next.js vulnerabilities. Security researchers discovered the large-scale operation while …

·

cyber security, Cyber Security News, Malware, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Shannon: AI Pentesting Tool That Autonomously Identifies and Exploits Code Vulnerabilities

Keygraph has unveiled Shannon, a fully autonomous artificial intelligence pentester designed to discover and execute real exploits in web applications. Unlike conventional vulnerability scanners that generate false positives, Shannon bridges a critical…

·

cyber security, Cyber Security News, Tools, Vulnerabilities, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Critical React2Shell Vulnerability (CVE-2025-55182) Analysis: Surge in Attacks Targeting RSC-Enabled Services Worldwide

Torrance, United States / California, December 12th, 2025, CyberNewsWire In December 2025, CVE-2025-55182 (React2Shell), a vulnerability in React…

·

CISA, Criminal IP, Cyber Attack, cybersecurity, News, Press Release, RCE, React2Shell, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
UK’s ICO Fine LastPass £1.2 Million Over 2022 Security Breach

UK’s ICO fines LastPass £1.2M for the 2022 data breach that exposed 1.6 million users’ data. Learn how a flaw in an employee’s personal PC led to the massive security failure.

·

cybersecurity, GDPR, ICO, Lastpass, Password, Password manager, Privacy, Security, UK, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

1010.cx

1010.cx

Category: vulnerability

OpenShift GitOps Vulnerability Allows Attackers to Escalate Privileges to Root

Critical FortiGate SSO Vulnerability Actively Exploited in Real-World Attacks

Microsoft Outlines Mitigation for React2Shell RCE Vulnerability in React Server Components

JumpCloud Remote Assist Windows Agent Vulnerability Allows Privilege Escalation

GitHub Scanner for React2Shell (CVE-2025-55182) Turns Out to Be Malware

Microsoft December 2025 Security Updates Disrupt MSMQ Functionality on IIS

PCPcat Malware Leverages React2Shell Vulnerability to Breach 59,000+ Servers

Shannon: AI Pentesting Tool That Autonomously Identifies and Exploits Code Vulnerabilities

Critical React2Shell Vulnerability (CVE-2025-55182) Analysis: Surge in Attacks Targeting RSC-Enabled Services Worldwide