OTX Bot<p>Defending Against ToolShell: SharePoint's Latest Critical Vulnerability</p><p>A critical zero-day vulnerability named ToolShell (CVE-2025-53770) has been discovered in on-premises SharePoint Server deployments. This vulnerability allows unauthenticated remote code execution, posing a significant threat to organizations worldwide. SentinelOne has detected active exploitation and provides defensive measures. ToolShell's severity is characterized by its zero-day status, high CVSS score of 9.8, no authentication requirement, and remote code execution capability. SentinelOne's defense strategy includes early identification, out-of-the-box detection logic, IOC integration, hunting queries, and proactive detection through Singularity Vulnerability Management. Recommended mitigation steps include isolating SharePoint instances, enabling AMSI, applying patches, integrating IOCs, monitoring for suspicious behavior, and conducting retroactive threat hunting.</p><p>Pulse ID: 688170c6105566470aa2189d<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/688170c6105566470aa2189d" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/68817</span><span class="invisible">0c6105566470aa2189d</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-07-23 23:31:18</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/RAT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RAT</span></a> <a href="https://social.raytec.co/tags/RemoteCodeExecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RemoteCodeExecution</span></a> <a href="https://social.raytec.co/tags/SentinelOne" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SentinelOne</span></a> <a href="https://social.raytec.co/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Vulnerability</span></a> <a href="https://social.raytec.co/tags/ZeroDay" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ZeroDay</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AlienVault</span></a></p>
techhub.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A hub primarily for passionate technologists, but everyone is welcome
Administered by:
Server stats:
4.6Kactive users
techhub.social: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.1
#remotecodeexecution
6 posts · 4 participants · 0 posts today
Rene Robichaud<p>Serious Remote Code Execution Flaws in Ruby Sinatra for Ubuntu 22.04<br><a href="https://linuxsecurity.com/advisories/ubuntu/ubuntu-7664-1-sinatra-gsmjcjeuw99i" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">linuxsecurity.com/advisories/u</span><span class="invisible">buntu/ubuntu-7664-1-sinatra-gsmjcjeuw99i</span></a></p><p><a href="https://mastodon.social/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Infosec</span></a> <a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://mastodon.social/tags/CeptBiro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CeptBiro</span></a> <a href="https://mastodon.social/tags/RemoteCodeExecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RemoteCodeExecution</span></a> <a href="https://mastodon.social/tags/RubySinatra" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RubySinatra</span></a> <a href="https://mastodon.social/tags/Ubuntu22" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ubuntu22</span></a>.04</p>
OTX Bot<p>SharePoint Vulnerabilities (CVE-2025-53770 & CVE-2025-53771): Everything You Need to Know</p><p>Two critical zero-day vulnerabilities, CVE-2025-53770 and CVE-2025-53771, are actively exploited in on-premises Microsoft SharePoint servers. These flaws enable unauthenticated remote code execution through an exploit chain dubbed ToolShell. CVE-2025-53770 is a critical RCE vulnerability caused by unsafe deserialization, while CVE-2025-53771 is a spoofing vulnerability allowing authentication bypass. The vulnerabilities affect SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Server 2016. Cloud-hosted self-managed SharePoint instances are also at risk. Exploitation has been observed since July 18, 2025, with attacks targeting sensitive data extraction and persistent remote access. Microsoft has released emergency patches, and organizations are urged to update immediately or implement workarounds if patching is not possible.</p><p>Pulse ID: 687ec30ead4d6a2798563303<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/687ec30ead4d6a2798563303" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/687ec</span><span class="invisible">30ead4d6a2798563303</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-07-21 22:45:34</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/AWS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AWS</span></a> <a href="https://social.raytec.co/tags/Cloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cloud</span></a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/ELF" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ELF</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/RCE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RCE</span></a> <a href="https://social.raytec.co/tags/RemoteCodeExecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RemoteCodeExecution</span></a> <a href="https://social.raytec.co/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Vulnerability</span></a> <a href="https://social.raytec.co/tags/ZeroDay" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ZeroDay</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AlienVault</span></a></p>
OTX Bot<p>SharePoint ToolShell | Zero-Day Exploited in-the-Wild Targets Enterprise Servers</p><p>A zero-day vulnerability dubbed 'ToolShell' targeting on-premises Microsoft SharePoint Servers has been actively exploited. The flaw, identified as CVE-2025-53770 with an accompanying bypass CVE-2025-53771, allows unauthenticated remote code execution. Three distinct attack clusters have been observed, each with unique tradecraft and objectives. Targets include organizations in technology consulting, manufacturing, critical infrastructure, and professional services. The exploitation enables access to SharePoint's ToolPane functionality without authentication, leading to code execution via uploaded or in-memory web components. Different webshells and techniques were employed, including a custom password-protected ASPX webshell and a reconnaissance utility targeting cryptographic material. Immediate patching and following Microsoft's recommendations are strongly advised.</p><p>Pulse ID: 687f4cff17ec0329833a99a2<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/687f4cff17ec0329833a99a2" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/687f4</span><span class="invisible">cff17ec0329833a99a2</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-07-22 08:34:07</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/Manufacturing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Manufacturing</span></a> <a href="https://social.raytec.co/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/Password" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Password</span></a> <a href="https://social.raytec.co/tags/RemoteCodeExecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RemoteCodeExecution</span></a> <a href="https://social.raytec.co/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Vulnerability</span></a> <a href="https://social.raytec.co/tags/Word" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Word</span></a> <a href="https://social.raytec.co/tags/ZeroDay" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ZeroDay</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AlienVault</span></a></p>
OTX Bot<p>CVE-2025-53770 and CVE-2025-53771: Actively Exploited SharePoint Vulnerabilities</p><p>Two critical vulnerabilities, CVE-2025-53770 and CVE-2025-53771, are affecting Microsoft SharePoint Servers, enabling attackers to upload malicious files and extract cryptographic secrets. These flaws are evolutions of previously patched vulnerabilities, CVE-2025-49704 and CVE-2025-49706, which were incompletely remediated. Exploit attempts have been observed across various industries, including finance, education, energy, and healthcare. Microsoft has released patches for SharePoint Subscription Edition and Server 2019, with a patch for Server 2016 pending. The vulnerabilities allow for unauthenticated remote code execution through advanced deserialization techniques and ViewState abuse. Active exploitation in the wild has been confirmed, compromising on-premises SharePoint environments globally.</p><p>Pulse ID: 687f540a2b7d8ca9da74c8fe<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/687f540a2b7d8ca9da74c8fe" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/687f5</span><span class="invisible">40a2b7d8ca9da74c8fe</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-07-22 09:04:10</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/AWS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AWS</span></a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/Education" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Education</span></a> <a href="https://social.raytec.co/tags/Healthcare" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Healthcare</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/RemoteCodeExecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RemoteCodeExecution</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AlienVault</span></a></p>
OTX Bot<p>Large-scale exploitation of new SharePoint RCE vulnerability chain identified</p><p>A new SharePoint remote code execution vulnerability chain, later named CVE-2025-53770 and CVE-2025-53771 by Microsoft, was discovered being exploited in the wild. The exploitation affected on-premise SharePoint Servers globally, with dozens of systems compromised during two attack waves on July 18 and 19, 2025. The first wave originated from a US-based IP address (107.191.58.76) at 18:06 UTC, deploying spinstall0.aspx. The second wave, also from a US-based IP (104.238.159.149), occurred at 07:28 UTC the following day. Two additional IP addresses were identified in connection with the attacks. Organizations are advised to patch their systems and conduct compromise assessments if they suspect being affected.</p><p>Pulse ID: 687e1326defc04da82d0b809<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/687e1326defc04da82d0b809" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/687e1</span><span class="invisible">326defc04da82d0b809</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-07-21 10:15:02</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/RCE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RCE</span></a> <a href="https://social.raytec.co/tags/RemoteCodeExecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RemoteCodeExecution</span></a> <a href="https://social.raytec.co/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Vulnerability</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AlienVault</span></a></p>
OTX Bot<p>Apache Under the Lens: Tomcat's Partial PUT and Camel's Header Hijack</p><p>In March 2025, Apache disclosed three critical vulnerabilities: CVE-2025-24813 in Apache Tomcat and CVE-2025-27636 and CVE-2025-29891 in Apache Camel. These flaws allow remote code execution, affecting millions of developers. The Tomcat vulnerability exploits partial PUT requests and session persistence features, while the Camel vulnerabilities involve header manipulation. Exploit attempts were observed from over 70 countries, with a surge in activity immediately after disclosure. The article provides detailed analysis of the vulnerabilities, including source code examination, exploitation methods, and telemetry data. It also outlines protection measures and mitigation strategies for affected systems.</p><p>Pulse ID: 6866650f9a525176d0fa51dc<br>Pulse Link: <a href="https://otx.alienvault.com/pulse/6866650f9a525176d0fa51dc" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">otx.alienvault.com/pulse/68666</span><span class="invisible">50f9a525176d0fa51dc</span></a> <br>Pulse Author: AlienVault<br>Created: 2025-07-03 11:10:07</p><p>Be advised, this data is unverified and should be considered preliminary. Always do further verification.</p><p><a href="https://social.raytec.co/tags/APAC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>APAC</span></a> <a href="https://social.raytec.co/tags/AWS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AWS</span></a> <a href="https://social.raytec.co/tags/Apache" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Apache</span></a> <a href="https://social.raytec.co/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://social.raytec.co/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://social.raytec.co/tags/OTX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTX</span></a> <a href="https://social.raytec.co/tags/OpenThreatExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenThreatExchange</span></a> <a href="https://social.raytec.co/tags/RAT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RAT</span></a> <a href="https://social.raytec.co/tags/RCE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RCE</span></a> <a href="https://social.raytec.co/tags/RemoteCodeExecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RemoteCodeExecution</span></a> <a href="https://social.raytec.co/tags/Tomcat" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tomcat</span></a> <a href="https://social.raytec.co/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Vulnerability</span></a> <a href="https://social.raytec.co/tags/bot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bot</span></a> <a href="https://social.raytec.co/tags/developers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>developers</span></a> <a href="https://social.raytec.co/tags/AlienVault" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AlienVault</span></a></p>
The DefendOps Diaries<p>Cisco’s Identity Services Engine just faced two critical vulnerabilities that could let hackers seize control remotely. Wondering how this might affect your network—and what you can do about it?</p><p><a href="https://thedefendopsdiaries.com/understanding-and-mitigating-cisco-ise-vulnerabilities-a-comprehensive-guide/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thedefendopsdiaries.com/unders</span><span class="invisible">tanding-and-mitigating-cisco-ise-vulnerabilities-a-comprehensive-guide/</span></a></p><p><a href="https://infosec.exchange/tags/ciscoise" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ciscoise</span></a><br><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a><br><a href="https://infosec.exchange/tags/vulnerabilitymanagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vulnerabilitymanagement</span></a><br><a href="https://infosec.exchange/tags/networksecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>networksecurity</span></a><br><a href="https://infosec.exchange/tags/remotecodeexecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>remotecodeexecution</span></a></p>
The DefendOps Diaries<p>BeyondTrust's platforms are under fire—a new flaw (CVE-2025-5309) lets attackers run code remotely without any credentials. Are your systems patched up? Discover what you need to know.</p><p><a href="https://thedefendopsdiaries.com/beyondtrusts-critical-security-flaw-cve-2025-5309/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thedefendopsdiaries.com/beyond</span><span class="invisible">trusts-critical-security-flaw-cve-2025-5309/</span></a></p><p><a href="https://infosec.exchange/tags/beyondtrust" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>beyondtrust</span></a><br><a href="https://infosec.exchange/tags/cve20255309" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cve20255309</span></a><br><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a><br><a href="https://infosec.exchange/tags/ssti" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ssti</span></a><br><a href="https://infosec.exchange/tags/remotecodeexecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>remotecodeexecution</span></a></p>
Pyrzout :vm:<p>Critical Vulnerabilities Patched in Trend Micro Apex Central, Endpoint Encryption <a href="https://www.securityweek.com/critical-vulnerabilities-patched-in-trend-micro-apex-central-endpoint-encryption-policyserver/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">securityweek.com/critical-vuln</span><span class="invisible">erabilities-patched-in-trend-micro-apex-central-endpoint-encryption-policyserver/</span></a> <a href="https://social.skynetcloud.site/tags/securityproductvulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securityproductvulnerability</span></a> <a href="https://social.skynetcloud.site/tags/remotecodeexecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>remotecodeexecution</span></a> <a href="https://social.skynetcloud.site/tags/Vulnerabilities" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Vulnerabilities</span></a> <a href="https://social.skynetcloud.site/tags/securityproduct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securityproduct</span></a> <a href="https://social.skynetcloud.site/tags/TrendMicro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrendMicro</span></a></p>
Pyrzout :vm:<p>Critical Vulnerabilities Patched in Trend Micro Apex Central, Endpoint Encryption <a href="https://www.securityweek.com/critical-vulnerabilities-patched-in-trend-micro-apex-central-endpoint-encryption-policyserver/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">securityweek.com/critical-vuln</span><span class="invisible">erabilities-patched-in-trend-micro-apex-central-endpoint-encryption-policyserver/</span></a> <a href="https://social.skynetcloud.site/tags/securityproductvulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securityproductvulnerability</span></a> <a href="https://social.skynetcloud.site/tags/remotecodeexecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>remotecodeexecution</span></a> <a href="https://social.skynetcloud.site/tags/Vulnerabilities" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Vulnerabilities</span></a> <a href="https://social.skynetcloud.site/tags/securityproduct" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securityproduct</span></a> <a href="https://social.skynetcloud.site/tags/TrendMicro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TrendMicro</span></a></p>
The DefendOps Diaries<p>Trend Micro has just closed the door on critical flaws that could’ve let hackers run code in your security setup. Are you up to date with the latest patch fixes?</p><p><a href="https://thedefendopsdiaries.com/trend-micro-addresses-critical-vulnerabilities-in-apex-central-and-endpoint-encryption-policyserver/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thedefendopsdiaries.com/trend-</span><span class="invisible">micro-addresses-critical-vulnerabilities-in-apex-central-and-endpoint-encryption-policyserver/</span></a></p><p><a href="https://infosec.exchange/tags/trendmicro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>trendmicro</span></a><br><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a><br><a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vulnerability</span></a><br><a href="https://infosec.exchange/tags/patchmanagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>patchmanagement</span></a><br><a href="https://infosec.exchange/tags/remotecodeexecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>remotecodeexecution</span></a></p>
Brandon H :csharp: :verified:<p>via <span class="h-card" translate="no"><a href="https://dotnet.social/@dotnet" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>dotnet</span></a></span> : .NET and .NET Framework June 2025 servicing releases updates</p><p><a href="https://ift.tt/oAfZOuP" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">ift.tt/oAfZOuP</span><span class="invisible"></span></a><br><a href="https://hachyderm.io/tags/DotNet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DotNet</span></a> <a href="https://hachyderm.io/tags/DotNetFramework" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DotNetFramework</span></a> <a href="https://hachyderm.io/tags/SecurityUpdates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecurityUpdates</span></a> <a href="https://hachyderm.io/tags/CVE202530399" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CVE202530399</span></a> <a href="https://hachyderm.io/tags/RemoteCodeExecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RemoteCodeExecution</span></a> <a href="https://hachyderm.io/tags/Developers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Developers</span></a> <a href="https://hachyderm.io/tags/SoftwareUpdates" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SoftwareUpdates</span></a> <a href="https://hachyderm.io/tags/ASPNetCore" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ASPNetCore</span></a> <a href="https://hachyderm.io/tags/EntityFrameworkCore" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EntityFrameworkCore</span></a> <a href="https://hachyderm.io/tags/WinForms" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WinForms</span></a> <a href="https://hachyderm.io/tags/WPF" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WPF</span></a> <a href="https://hachyderm.io/tags/ReleaseNo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ReleaseNo</span></a>…</p>
Pyrzout :vm:<p>New Apache InLong Vulnerability (CVE-2025-27522) Exposes Systems to Remote Code Execution Risks <a href="https://thecyberexpress.com/apache-inlong-cve-2025-27522/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thecyberexpress.com/apache-inl</span><span class="invisible">ong-cve-2025-27522/</span></a> <a href="https://social.skynetcloud.site/tags/ApacheInLongvulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ApacheInLongvulnerability</span></a> <a href="https://social.skynetcloud.site/tags/remotecodeexecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>remotecodeexecution</span></a> <a href="https://social.skynetcloud.site/tags/TheCyberExpressNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TheCyberExpressNews</span></a> <a href="https://social.skynetcloud.site/tags/Vulnerabilities" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Vulnerabilities</span></a> <a href="https://social.skynetcloud.site/tags/TheCyberExpress" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TheCyberExpress</span></a> <a href="https://social.skynetcloud.site/tags/FirewallDaily" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FirewallDaily</span></a> <a href="https://social.skynetcloud.site/tags/CVE202527522" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CVE202527522</span></a> <a href="https://social.skynetcloud.site/tags/CyberNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberNews</span></a></p>
Phillemon CEH | CTH<p>🚨 Critical GeoServer RCE Vulnerability Exposes Thousands of Servers</p><p>🔗 <a href="https://wardenshield.com/critical-remote-code-execution-vulnerability-exposes-thousands-of-geoserver-instances" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">wardenshield.com/critical-remo</span><span class="invisible">te-code-execution-vulnerability-exposes-thousands-of-geoserver-instances</span></a></p><p><a href="https://mastodon.social/tags/GeoServer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GeoServer</span></a> <a href="https://mastodon.social/tags/CVE202436401" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CVE202436401</span></a> <a href="https://mastodon.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://mastodon.social/tags/RemoteCodeExecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RemoteCodeExecution</span></a> <a href="https://mastodon.social/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Infosec</span></a> <a href="https://mastodon.social/tags/DataProtection" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataProtection</span></a> <a href="https://mastodon.social/tags/PatchNow" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PatchNow</span></a> <a href="https://mastodon.social/tags/WardenShield" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WardenShield</span></a></p>
The DefendOps Diaries<p>Chinese hackers are exploiting critical Ivanti EPMM flaws to bypass security and execute remote code—targeting everything from healthcare to government agencies. Are your defenses ready for this level of stealth?</p><p><a href="https://thedefendopsdiaries.com/exploitation-of-ivanti-epmm-vulnerabilities-by-chinese-hackers-a-detailed-analysis/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thedefendopsdiaries.com/exploi</span><span class="invisible">tation-of-ivanti-epmm-vulnerabilities-by-chinese-hackers-a-detailed-analysis/</span></a></p><p><a href="https://infosec.exchange/tags/ivanti" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ivanti</span></a><br><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a><br><a href="https://infosec.exchange/tags/chinesehackers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>chinesehackers</span></a><br><a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vulnerability</span></a><br><a href="https://infosec.exchange/tags/remotecodeexecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>remotecodeexecution</span></a></p>
Rene Robichaud<p>Versa Concerto 0-Day Flaw Enables Remote Code Execution by Bypassing Authentication<br><a href="https://gbhackers.com/versa-concerto-0-day-flaw-enables-remote-code-execution/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">gbhackers.com/versa-concerto-0</span><span class="invisible">-day-flaw-enables-remote-code-execution/</span></a></p><p><a href="https://mastodon.social/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Infosec</span></a> <a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://mastodon.social/tags/CeptBiro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CeptBiro</span></a> <a href="https://mastodon.social/tags/VersaConcerto" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VersaConcerto</span></a> <a href="https://mastodon.social/tags/0Day" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>0Day</span></a> <a href="https://mastodon.social/tags/RemoteCodeExecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RemoteCodeExecution</span></a> <a href="https://mastodon.social/tags/BypassingAuthentication" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BypassingAuthentication</span></a></p>
Rene Robichaud<p>Multiple Ivanti Endpoint Mobile Manager Vulnerabilities Allows Remote Code Execution<br><a href="https://cybersecuritynews.com/ivanti-endpoint-mobile-manager-vulnerabilities/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">cybersecuritynews.com/ivanti-e</span><span class="invisible">ndpoint-mobile-manager-vulnerabilities/</span></a></p><p><a href="https://mastodon.social/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Infosec</span></a> <a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://mastodon.social/tags/CeptBiro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CeptBiro</span></a> <a href="https://mastodon.social/tags/Ivanti" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ivanti</span></a> <a href="https://mastodon.social/tags/EndpointMobileManager" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EndpointMobileManager</span></a> <a href="https://mastodon.social/tags/Vulnerabilities" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Vulnerabilities</span></a> <a href="https://mastodon.social/tags/RemoteCodeExecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RemoteCodeExecution</span></a></p>
The DefendOps Diaries<p>SAP NetWeaver is under fire: a flaw with a perfect risk score is letting hackers upload malicious files and execute remote code. Are your systems safe? Dive in to learn more.</p><p><a href="https://thedefendopsdiaries.com/understanding-the-critical-sap-netweaver-vulnerabilities-and-their-impact/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thedefendopsdiaries.com/unders</span><span class="invisible">tanding-the-critical-sap-netweaver-vulnerabilities-and-their-impact/</span></a></p><p><a href="https://infosec.exchange/tags/sapnetweaver" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sapnetweaver</span></a><br><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a><br><a href="https://infosec.exchange/tags/vulnerabilitymanagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vulnerabilitymanagement</span></a><br><a href="https://infosec.exchange/tags/remotecodeexecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>remotecodeexecution</span></a><br><a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a></p>
LavX News<p>Critical Flaw in ASUS DriverHub Exposes Devices to Remote Code Execution</p><p>A recently discovered vulnerability in ASUS's DriverHub utility could allow malicious websites to execute commands with administrative rights on user devices. This flaw, identified by cybersecurity re...</p><p><a href="https://news.lavx.hu/article/critical-flaw-in-asus-driverhub-exposes-devices-to-remote-code-execution" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">news.lavx.hu/article/critical-</span><span class="invisible">flaw-in-asus-driverhub-exposes-devices-to-remote-code-execution</span></a></p><p><a href="https://ioc.exchange/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>news</span></a> <a href="https://ioc.exchange/tags/tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tech</span></a> <a href="https://ioc.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://ioc.exchange/tags/RemoteCodeExecution" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RemoteCodeExecution</span></a> <a href="https://ioc.exchange/tags/ASUSDriverHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ASUSDriverHub</span></a></p>
TrendingLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload