Overview
Description
Statistics
- 1 Post
- 2 Interactions
Fediverse
#OT #Advisory VDE-2025-089
BLE ICM Vulnerability in JBL Headphones
The BLE controller in certain consumer products fails to properly validate the channel map field in connection requests, enabling attackers within radio range to cause a denial of service through a specially crafted packet.
#CVE CVE-2024-2105
https://certvde.com/en/advisories/vde-2025-089/
#oCSAF #CSAF https://harman.csaf-tp.certvde.com/.well-known/csaf/white/2025/hbsa-2025-0002.json
Overview
- neuron-core
- neuron-ai
Description
Statistics
- 1 Post
- 1 Interaction
Fediverse
CRITICAL: CVE-2025-67510 impacts neuron-core neuron-ai (<2.8.12). MySQLWriteTool allows arbitrary SQL via prompt injection—risk of data loss or escalation if DB privileges are broad. Upgrade ASAP! https://radar.offseq.com/threat/cve-2025-67510-cwe-250-execution-with-unnecessary--4cf6ea08 #OffSeq #CVE202567510 #AI #PHP #Security
Overview
- elysiajs
- elysia
Description
Statistics
- 1 Post
- 1 Interaction
Overview
- D-Link
- DIR-803
Description
Statistics
- 1 Post
- 1 Interaction
Overview
Description
Statistics
- 1 Post
Bluesky
Overview
Description
Statistics
- 1 Post
Fediverse
CVE-2025-67719 (HIGH): Ibexa (v5.0.0-beta1–5.0.3) lets logged-in users change passwords without verifying the old one. Upgrade to 5.0.4+ ASAP. Monitor for anomalous changes. 🔐 https://radar.offseq.com/threat/cve-2025-67719-cwe-620-unverified-password-change--b84becb0 #OffSeq #Ibexa #Vuln #PasswordSecurity
Overview
Description
Statistics
- 1 Post
Overview
Description
Statistics
- 1 Post
Overview
- WBCE
- WBCE_CMS
Description
Statistics
- 1 Post
Fediverse
🚨 CVE-2025-65950: CRITICAL SQL Injection in WBCE CMS (<1.6.5) lets low-priv users with modify rights inject arbitrary SQL. Full DB compromise possible. Patch to 1.6.5+ ASAP! https://radar.offseq.com/threat/cve-2025-65950-cwe-89-improper-neutralization-of-s-dae8c159 #OffSeq #SQLInjection #WBCE #Vuln
Overview
- ApusTheme
- WP CarDealer
Description
Statistics
- 1 Post
Fediverse
🚨 CVE-2025-13764 (CRITICAL): ApusTheme WP CarDealer plugin for WordPress lets attackers register as admins—full site compromise! All versions up to 1.2.16 affected. Restrict registration & monitor admin users. https://radar.offseq.com/threat/cve-2025-13764-cwe-269-improper-privilege-manageme-e97de041 #OffSeq #WordPress #Infosec #Vuln