Description
Statistics
- 2 Posts
- 1 Interaction
Fediverse
CISA has added CVE-2021-26829
(OpenPLC/ScadaBR XSS) to the Known Exploited Vulnerabilities Catalog.
XSS vulnerabilities in ICS/SCADA environments remain a dependable avenue for attackers, and CISA is urging organizations - not just federal - to prioritize remediation.
How does your team track and respond to KEV updates?
đź”” Follow TechNadu for balanced, non-sensational cybersecurity coverage.
#infosec #CISA #KEV #ICS #SCADA #OpenPLC #OTSecurity #XSS #vulnerabilitymanagement #riskmanagement #cybersecuritynews #threatintel
Overview
Description
Statistics
- 1 Post
- 9 Interactions
Fediverse
Reading up on the Citrix vulnerabilities that impacted Dutch government, especially the public prosecutor service (“het OM”), this summer.
The only good news for the Dutch from @GossiTheDog’s blog:
> NCSC Netherlands have a rather cool report out about CVE-2025–6543, where they’ve essentially done Citrix’s job for them. I recommend reading their report. It’s really good.
> NCSC Netherlands are gods amongst cyber.
Overview
Description
Statistics
- 1 Post
- 1 Interaction
Overview
Description
Statistics
- 2 Posts
- 1 Interaction
Overview
- Digital Bazaar
- node-forge
Description
Statistics
- 1 Post
Fediverse
Security researchers warn of vulnerability in the node-forge JavaScript library
Vulnerability:
CVE-2025-12816 - Improper validation
Impact: Allows unauthenticated attackers to bypass cryptographic verifications and security decisions
Recommendation: Update to version 1.3.2 ASAP
Overview
- lukevella
- rallly
Description
Statistics
- 1 Post
Fediverse
CVE-2025-66027: HIGH severity info disclosure in lukevella Rallly <4.5.6. Participant names & emails exposed via API despite Pro privacy. Patch to 4.5.6 now! đź”’ https://radar.offseq.com/threat/cve-2025-66027-cwe-200-exposure-of-sensitive-infor-1a05c92c #OffSeq #Vuln #DataPrivacy #InfoSec
Overview
- danny-avila
- LibreChat
Description
Statistics
- 1 Post
Fediverse
🔎 CVE-2025-66201: HIGH severity SSRF in LibreChat (<0.8.1-rc2)! Authenticated users can exploit OpenAPI specs to access internal endpoints—patch to 0.8.1-rc2 ASAP. Monitor access & restrict 'Actions' feature. Details: https://radar.offseq.com/threat/cve-2025-66201-cwe-20-improper-input-validation-in-a3d24953 #OffSeq #LibreChat #Vuln
Overview
Description
Statistics
- 1 Post
Fediverse
Asus has released software updates to address a critical vulnerability in its AiCloud routers
Vulnerability:
CVE-2025-59366 - path traversal and OS command injection
Impact:
- Can allow a attacker to remotely execute OS commands
Recommendation: Apply patches ASAP
Overview
Description
Statistics
- 1 Post
Overview
- Tryton
- trytond
Description
Statistics
- 1 Post
Fediverse
🔔 HIGH severity: CVE-2025-66423 hits Tryton trytond (6.0.0–7.5.0). Incorrect authorization on HTML editor route risks sensitive ERP data. Upgrade ASAP to 7.6.11, 7.4.21, 7.0.40, or 6.0.70. https://radar.offseq.com/threat/cve-2025-66423-cwe-863-incorrect-authorization-in--5b710efe #OffSeq #Tryton #CVE202566423 #ERP