Overview
- JumpCloud Inc.
- Remote Assist
02 Dec 2025
Published
02 Dec 2025
Updated
CVSS v4.0
HIGH (8.5)
EPSS
0.02%
KEV
Description
JumpCloud Remote Assist for Windows versions prior to 0.317.0 include an uninstaller that is invoked by the JumpCloud Windows Agent as NT AUTHORITY\SYSTEM during agent uninstall or update operations. The Remote Assist uninstaller performs privileged create, write, execute, and delete actions on predictable files inside a user-writable %TEMP% subdirectory without validating that the directory is trusted or resetting its ACLs when it already exists. A local, low-privileged attacker can pre-create the directory with weak permissions and leverage mount-point or symbolic-link redirection to (a) coerce arbitrary file writes to protected locations, leading to denial of service (e.g., by overwriting sensitive system files), or (b) win a race to redirect DeleteFileW() to attacker-chosen targets, enabling arbitrary file or folder deletion and local privilege escalation to SYSTEM. This issue is fixed in JumpCloud Remote Assist 0.317.0 and affects Windows systems where Remote Assist is installed and managed through the Agent lifecycle.
Statistics
- 1 Post
- 1 Interaction
Last activity: 2 hours ago
Bluesky
JUMPSHOT: XM Cyber Uncovers Critical Local Privilege Escalation (CVE-2025-34352) in JumpCloud Agent #appsec
Overview
Description
The W3 Total Cache WordPress plugin before 2.8.13 is vulnerable to command injection via the _parse_dynamic_mfunc function, allowing unauthenticated users to execute PHP commands by submitting a comment with a malicious payload to a post.
Statistics
- 2 Posts
- 1 Interaction
Last activity: 18 hours ago
Fediverse
I’ve updated my blog post about CVE-2025-9501 and included bypasses for all W3 Total Cache versions up to and including the latest 2.8.15. #wordpress #security
Overview
Description
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled. From log4j 2.15.0, this behavior has been disabled by default. From version 2.16.0 (along with 2.12.2, 2.12.3, and 2.3.1), this functionality has been completely removed. Note that this vulnerability is specific to log4j-core and does not affect log4net, log4cxx, or other Apache Logging Services projects.
Statistics
- 1 Post
Last activity: 23 hours ago
Bluesky
Log4Shell Exposed: How a Single Vulnerability Shook the Internet and What You Must Do Now + Video
Introduction: The Log4Shell vulnerability (CVE-2021-44228) in Apache Log4j sent shockwaves through the cybersecurity world, exposing millions of systems to remote code execution. This critical flaw in…
Overview
Description
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to execute arbitrary code. This vulnerability affects both the Mobile User VPN with IKEv2 and the Branch Office VPN using IKEv2 when configured with a dynamic gateway peer.This vulnerability affects Fireware OS 11.10.2 up to and including 11.12.4_Update1, 12.0 up to and including 12.11.5 and 2025.1 up to and including 2025.1.3.
Statistics
- 1 Post
Last activity: 20 hours ago
Fediverse
Critical RCE flaw impacts over 115,000 WatchGuard firewalls
https://www.bleepingcomputer.com/news/security/over-115-000-watchguard-firewalls-vulnerable-to-ongoing-rce-attacks/
Over 115,000 WatchGuard Firebox devices exposed online remain unpatched
against a critical remote code execution (RCE) vulnerability actively
exploited in attacks.
The security flaw, tracked as CVE-2025-14733, affects Firebox firewalls
running Fireware OS 11.x and later (including 11.12.4_Update1), 12.x or later
(including 12.11.5), and 2025.1 up to and including 2025.1.3.
Successful exploitation enables unauthenticated attackers to execute arbitrary
code remotely on vulnerable devices, following low-complexity attacks that
don't require user interaction.
As WatchGuard explained in a Thursday advisory, when it released
CVE-2025-14733 security updates and tagged it as exploited in the wild,
unpatched Firebox firewalls are only vulnerable to attacks if configured for
IKEv2 VPN. It also warned that even if vulnerable configurations are removed,
the firewall may still be at risk if a Branch Office VPN (BOVPN) to a static
gateway peer is still configured.
Overview
- nanbingxyz
- 5ire
23 Dec 2025
Published
23 Dec 2025
Updated
CVSS v3.1
CRITICAL (9.7)
EPSS
Pending
KEV
Description
5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. In versions 0.15.2 and prior, an RCE vulnerability exists in useMarkdown.ts, where the markdown-it-mermaid plugin is initialized with securityLevel: 'loose'. This configuration explicitly permits the rendering of HTML tags within Mermaid diagram nodes. This issue has not been patched at time of publication.
Statistics
- 1 Post
Last activity: 9 hours ago
Fediverse
🚨 CVE-2025-68669 (CRITICAL, CVSS 9.7) impacts nanbingxyz 5ire ≤0.15.2. Unpatched RCE via markdown-it-mermaid plugin’s loose security—malicious Mermaid diagrams can execute arbitrary code. Disable plugin & validate inputs! https://radar.offseq.com/threat/cve-2025-68669-cwe-79-improper-neutralization-of-i-63086d96 #OffSeq #RCE #Vuln #AIsecurity
Overview
Description
A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string() function. If the string to escape contains a very large number of unacceptable characters (which would need escaping), the calculation of the length of the escaped string could overflow, leading to a potential write off the end of the newly allocated string.
Statistics
- 1 Post
Last activity: 16 hours ago
Bluesky
CRITICAL: #SUSE glib2 vulnerability (CVE-2025-13601, CVSS 7.8) allows local privilege escalation. Read more: 👉 tinyurl.com/2a4tjsbb #Security
Overview
- nextcloud
- security-advisories
22 Dec 2023
Published
02 Aug 2024
Updated
CVSS v3.1
MEDIUM (4.3)
EPSS
0.25%
KEV
Description
The Nextcloud iOS Files app allows users of iOS to interact with Nextcloud, a self-hosted productivity platform. Prior to version 4.9.2, the application can be used without providing the 4 digit PIN code. Nextcloud iOS Files app should be upgraded to 4.9.2 to receive the patch. No known workarounds are available.
Statistics
- 1 Post
Last activity: 4 hours ago
Bluesky
The ,500 JWT Secret: Exploiting CVE-2023-49790 for Fun and Bounty + Video
Introduction: In the intricate dance of modern web authentication, JSON Web Tokens (JWT) have become a cornerstone. However, a critical vulnerability designated as CVE-2023-49790 exposes a fatal flaw in how some applications…
Overview
- livewire
- livewire
17 Jul 2025
Published
17 Jul 2025
Updated
CVSS v4.0
CRITICAL (9.2)
EPSS
0.08%
KEV
Description
Livewire is a full-stack framework for Laravel. In Livewire v3 up to and including v3.6.3, a vulnerability allows unauthenticated attackers to achieve remote command execution in specific scenarios. The issue stems from how certain component property updates are hydrated. This vulnerability is unique to Livewire v3 and does not affect prior major versions. Exploitation requires a component to be mounted and configured in a particular way, but does not require authentication or user interaction. This issue has been patched in Livewire v3.6.4. All users are strongly encouraged to upgrade to this version or later as soon as possible. No known workarounds are available.
Statistics
- 1 Post
Last activity: 17 hours ago
Bluesky
🚨 Pre-Auth RCE in #Livewire (CVE-2025-54068)!
Our specialists uncovered a critical flaw allowing remote code execution without the APP_KEY, exploiting Livewire’s hydration mechanism + PHP’s loose typing.
🔗 Patch now! (v3.6.4+)
www.synacktiv.com/en/publicati...
Overview
Description
In the Linux kernel, the following vulnerability has been resolved:
sctp: Fix MAC comparison to be constant-time
To prevent timing attacks, MACs need to be compared in constant time.
Use the appropriate helper function for this.
Statistics
- 1 Post
Last activity: 19 hours ago
Bluesky
🚨 CRITICAL KERNEL UPDATE: #openSUSE Leap 15.5 / SUSE Linux Enterprise 15 SP5 patches 8 vulnerabilities including CVE-2025-40204 (CVSS 8.7 - network info disclosure). Read more: 👉 tinyurl.com/mk8xfhpk #Security
Overview
- Python Software Foundation
- CPython
03 Dec 2025
Published
22 Dec 2025
Updated
CVSS v4.0
MEDIUM (6.3)
EPSS
0.16%
KEV
Description
When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the algorithm is quadratic. Availability can be impacted when building excessively nested documents.
Statistics
- 1 Post
Last activity: 21 hours ago
Bluesky
🚨 Attention #Fedora users and Python developers! A critical security update is available for Fedora 42, patching a denial-of-service vulnerability (CVE-2025-12084) in the #MinGW #Python3 package. Read more: 👉 tinyurl.com/nw556ha2