June 22, 2026

cybersecurity

9.4 CVE-2025-6029 & CVE-2025-6030: Replay Attacks Expose Vulnerabilities in KIA and Autoeastern Smart Keyless Entry Systems KIA

9.4 CVE-2025-6029 & CVE-2025-6030: Replay Attacks Expose Vulnerabilities in KIA and Autoeastern Smart Keyless Entry Systems

Do Son June 16, 2025 0
An independent hardware security researcher Danilo Erazo has unveiled two critical-severity vulnerabilities—CVE-2025-6029 and CVE-2025-6030—affecting smart keyless entry...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">9.4</span> CVE-2025-6029 & CVE-2025-6030: Replay Attacks Expose Vulnerabilities in KIA and Autoeastern Smart Keyless Entry Systems
8.5 Privilege Escalation Flaw in IBM Backup Services Threatens IBM i Environments (CVE-2025-33108) IBM BRMS, Privilege Escalation

8.5 Privilege Escalation Flaw in IBM Backup Services Threatens IBM i Environments (CVE-2025-33108)

Do Son June 16, 2025 0
IBM has disclosed a high-severity vulnerability affecting its Backup, Recovery, and Media Services (BRMS) for IBM i...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">8.5</span> Privilege Escalation Flaw in IBM Backup Services Threatens IBM i Environments (CVE-2025-33108)
Obscure VBScript “sostener.vbs” Unmasked: Fuels Multi-Stage RAT Delivery, Linked to Blind Eagle APT RAT

Obscure VBScript “sostener.vbs” Unmasked: Fuels Multi-Stage RAT Delivery, Linked to Blind Eagle APT

Do Son June 16, 2025 0
In a deeply revealing investigation, Censys researchers have uncovered a web of malicious infrastructure revolving around a...
Read More Read more about Obscure VBScript “sostener.vbs” Unmasked: Fuels Multi-Stage RAT Delivery, Linked to Blind Eagle APT
6.5 Microsoft Defender for Identity Flaw (CVE-2025-26685) Allows Unauthenticated Privilege Escalation Mi

6.5 Microsoft Defender for Identity Flaw (CVE-2025-26685) Allows Unauthenticated Privilege Escalation

Do Son June 15, 2025 0
Researchers at NetSPI detailed a spoofing vulnerability (CVE-2025-26685) in Microsoft Defender for Identity (MDI). This flaw, while...
Read More Read more about <span class="dcs-sev-badge" style="background:#f4c025;">6.5</span> Microsoft Defender for Identity Flaw (CVE-2025-26685) Allows Unauthenticated Privilege Escalation
8.8 Windows SMB Flaw (CVE-2025-33073): SYSTEM Privilege Escalation via Kerberos, PoC Available Windows SMB, Privilege Escalation

8.8 Windows SMB Flaw (CVE-2025-33073): SYSTEM Privilege Escalation via Kerberos, PoC Available

Do Son June 14, 2025 0
A newly disclosed security vulnerability in the Windows SMB client, tracked as CVE-2025-33073, has raised significant concerns...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">8.8</span> Windows SMB Flaw (CVE-2025-33073): SYSTEM Privilege Escalation via Kerberos, PoC Available
4.3 Grafana Alert: Medium-Severity Flaw (CVE-2025-3415) Exposes DingDing API Keys Grafana Vulnerability, DingDing CVE-2023-3128

4.3 Grafana Alert: Medium-Severity Flaw (CVE-2025-3415) Exposes DingDing API Keys

Do Son June 14, 2025 0
Grafana Labs has released a round of security patches to address CVE-2025-3415, a medium-severity vulnerability (CVSS 4.3)...
Read More Read more about <span class="dcs-sev-badge" style="background:#f4c025;">4.3</span> Grafana Alert: Medium-Severity Flaw (CVE-2025-3415) Exposes DingDing API Keys
7.2 Mitel OpenScape Flaw (CVE-2025-23092): High-Severity Path Traversal Allows Admin RCE Mitel OpenScape, Path Traversal

7.2 Mitel OpenScape Flaw (CVE-2025-23092): High-Severity Path Traversal Allows Admin RCE

Do Son June 14, 2025 0
A newly disclosed vulnerability in Mitel’s OpenScape Accounting Management platform has been assigned CVE-2025-23092 and rated High...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">7.2</span> Mitel OpenScape Flaw (CVE-2025-23092): High-Severity Path Traversal Allows Admin RCE
9.8 Critical Ricoh Streamline NX Flaw (CVSS 9.8) Allows SYSTEM-Level Code Execution Ricoh Streamline NX, Remote Code Execution

9.8 Critical Ricoh Streamline NX Flaw (CVSS 9.8) Allows SYSTEM-Level Code Execution

Do Son June 13, 2025 0
Ricoh has issued three security advisories addressing multiple serious vulnerabilities in its Streamline NX V3 PC Client,...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">9.8</span> Critical Ricoh Streamline NX Flaw (CVSS 9.8) Allows SYSTEM-Level Code Execution
8.7 CVE-2025-5491: Acer Control Center Bug Allows Remote Code Execution as NT AUTHORITY\SYSTEM Acer ControlCenter, Privilege Escalation

8.7 CVE-2025-5491: Acer Control Center Bug Allows Remote Code Execution as NT AUTHORITY\SYSTEM

Do Son June 13, 2025 0
Acer has released a critical security update addressing a newly disclosed local privilege escalation vulnerability in its...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">8.7</span> CVE-2025-5491: Acer Control Center Bug Allows Remote Code Execution as NT AUTHORITY\SYSTEM
8.7 CVE-2024-9404: Remote DoS Vulnerability Found in Moxa Industrial Switches Moxa Switches, DoS Vulnerability

8.7 CVE-2024-9404: Remote DoS Vulnerability Found in Moxa Industrial Switches

Do Son June 13, 2025 0
Moxa has issued a high-severity security advisory for a newly discovered vulnerability—CVE-2024-9404—that affects its widely deployed PT-G7728...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">8.7</span> CVE-2024-9404: Remote DoS Vulnerability Found in Moxa Industrial Switches
7.5 Urgent CISA Alert: Ransomware Actors Exploiting SimpleHelp RMM Flaw (CVE-2024-57727) SimpleHelp RMM, Ransomware

7.5 Urgent CISA Alert: Ransomware Actors Exploiting SimpleHelp RMM Flaw (CVE-2024-57727)

Do Son June 13, 2025 0
The Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with its federal partners, has issued a high-priority...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">7.5</span> Urgent CISA Alert: Ransomware Actors Exploiting SimpleHelp RMM Flaw (CVE-2024-57727)