24h | 7d | 30d

Overview

  • Microsoft
  • Windows Server 2019

08 Apr 2025
Published
04 Jun 2025
Updated

CVSS v3.1
HIGH (8.8)
EPSS
0.22%

KEV

Description

Improper input validation in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network.

Statistics

  • 1 Post

Fediverse

Profile picture

Struggling with Kerberos errors after the CVE-2025-26647 patch? Audit Mode might be silent, but Enforcement Mode can still break network authentication. Find the hidden certificate issues before the October deadline. Your fix is here. #WindowsServer #SysAdmin #Kerberos

pupuweb.com/why-windows-allown

  • 0
  • 0
  • 9 hours ago

Overview

  • NetSupport Ltd.
  • NetSupport Manager

29 Aug 2025
Published
30 Aug 2025
Updated

CVSS v4.0
HIGH (8.8)
EPSS
0.23%

KEV

Description

A heap-based buffer overflow vulnerability in NetSupport Manager 14.x versions prior to 14.12.0000 allows a remote, unauthenticated attacker to cause a denial of service (DoS) or potentially result in arbitrary code execution.

Statistics

  • 1 Post

Fediverse

Profile picture

⚠️ CVE-2025-34164: HIGH-severity heap overflow in NetSupport Manager 14.x (<14.12.0000) lets remote attackers cause DoS or run code—no auth needed. Restrict access & prep to patch! radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 16 hours ago

Overview

  • Drupal
  • Authenticator Login

15 Aug 2025
Published
16 Aug 2025
Updated

CVSS
Pending
EPSS
0.09%

KEV

Description

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Authenticator Login allows Authentication Bypass.This issue affects Authenticator Login: from 0.0.0 before 2.1.4.

Statistics

  • 1 Post

Fediverse

Profile picture

not sure if cR0w posted this but go hack drupal alogin (if you can craft an exploit, b/c there's no public one. maybe check the update diffs?)

nvd.nist.gov/vuln/detail/CVE-2

  • 0
  • 0
  • 9 hours ago

Overview

  • Mojoomla
  • School Management

31 Aug 2025
Published
31 Aug 2025
Updated

CVSS v3.1
CRITICAL (9.9)
EPSS
0.04%

KEV

Description

Unrestricted Upload of File with Dangerous Type vulnerability in Mojoomla School Management allows Upload a Web Shell to a Web Server.This issue affects School Management: from n/a through 1.93.1 (02-07-2025).

Statistics

  • 1 Post

Fediverse

Profile picture

🚨 CVE-2025-31100 (CRITICAL, CVSS 9.9): Mojoomla School Management ≤1.93.1 lets attackers upload dangerous files (web shells) with low privileges. No patch yet—enforce strict file validation & monitor systems! radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 21 hours ago

Overview

  • Microsoft
  • Windows 10 Version 1809

21 Aug 2025
Published
28 Aug 2025
Updated

CVSS v3.1
HIGH (7.8)
EPSS
0.05%

KEV

Description

Untrusted pointer dereference in Windows MBT Transport driver allows an authorized attacker to elevate privileges locally.

Statistics

  • 1 Post

Fediverse

Profile picture

Microsoft announced critical patches for two Windows security flaws (CVE-2025-55229 & CVE-2025-55230), but the updates are missing. Confused? Here's what you need to do to stay safe until the official fix is released. #WindowsSecurity #CyberSec #InfoSec #CVE

pupuweb.com/what-windows-certi

  • 0
  • 0
  • 9 hours ago

Overview

  • Microsoft
  • Windows 10 Version 1809

21 Aug 2025
Published
28 Aug 2025
Updated

CVSS v3.1
MEDIUM (5.3)
EPSS
0.03%

KEV

Description

Improper verification of cryptographic signature in Windows Certificates allows an unauthorized attacker to perform spoofing over a network.

Statistics

  • 1 Post

Fediverse

Profile picture

Microsoft announced critical patches for two Windows security flaws (CVE-2025-55229 & CVE-2025-55230), but the updates are missing. Confused? Here's what you need to do to stay safe until the official fix is released. #WindowsSecurity #CyberSec #InfoSec #CVE

pupuweb.com/what-windows-certi

  • 0
  • 0
  • 9 hours ago
Showing 11 to 16 of 16 CVEs