Aggregator

CVE-2025-37101 | HPE OneView for VMware vCenter up to 11.6 privileges management (EUVD-2025-19250)

Vuldb Updates
9 months 4 weeks ago
A vulnerability was found in HPE OneView for VMware vCenter up to 11.6. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to improper privilege management. The identification of this vulnerability is CVE-2025-37101. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-6675 | Enterprise MFA TFA prior 4.8.0/5.0.0/5.1.0/5.2.1 on Drupal authentication bypass (sa-contrib-2025-082 / EUVD-2025-19184)

Vuldb Updates
9 months 4 weeks ago
A vulnerability classified as critical was found in Enterprise MFA TFA on Drupal. Affected by this vulnerability is an unknown functionality. The manipulation leads to authentication bypass using alternate channel. This vulnerability is known as CVE-2025-6675. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

What methods are there to keep software after refunding it?

不安全
9 months 4 weeks ago
这是一个开放的黑客社区,在Reddit上创建,旨在帮助新手成长为地下技能领域的资深人士。用户可以提问、回答问题并学习相关知识。该社区还提供Discord服务器链接(https://discord.gg/ep2uKUG),供成员交流和互动。

评论 | 谨防AI滥用侵害未成年人权益

中国信息安全
9 months 4 weeks ago
近期,筑梦岛App等AI(人工智能)聊天软件因虚拟角色互动生成低俗擦边等违规内容,危害未成年人身心健康,被网信部门约谈整改。相关新闻再次提醒我们,在享受AI技术带来便利的同时,也要警惕其在未成年人保护方面可能产生的负面影响。

Chinese Group Silver Fox Uses Fake Websites to Deliver Sainbox RAT and Hidden Rootkit

The Hackers News
9 months 4 weeks ago
A new campaign has been observed leveraging fake websites advertising popular software such as WPS Office, Sogou, and DeepSeek to deliver Sainbox RAT and the open-source Hidden rootkit. The activity has been attributed with medium confidence to a Chinese hacking group called Silver Fox (aka Void Arachne), citing similarities in tradecraft with previous campaigns attributed to the threat actor.
The Hacker News

Managed ad