CVE Alert: CVE-2025-20195
Vulnerability Summary: CVE-2025-20195 A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an unauthenticated, remote...
Month: May 2025
CVE Alert: CVE-2025-20182
Vulnerability Summary: CVE-2025-20182 A vulnerability in the Internet Key Exchange version 2 (IKEv2) protocol processing of Cisco Adaptive Security Appliance...
CVE Alert: CVE-2025-20196
Vulnerability Summary: CVE-2025-20196 A vulnerability in the Cisco IOx application hosting environment of Cisco IOS Software and Cisco IOS XE...
CVE Alert: CVE-2025-20194
Vulnerability Summary: CVE-2025-20194 A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an authenticated, low-privileged,...
CVE Alert: CVE-2025-20191
Vulnerability Summary: CVE-2025-20191 A vulnerability in the Switch Integrated Security Features (SISF) of Cisco IOS Software, Cisco IOS XE Software,...
CVE Alert: CVE-2025-20201
Vulnerability Summary: CVE-2025-20201 A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with...
CVE Alert: CVE-2025-20193
Vulnerability Summary: CVE-2025-20193 A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an authenticated, low-privileged,...
CVE Alert: CVE-2025-20192
Vulnerability Summary: CVE-2025-20192 A vulnerability in the Internet Key Exchange version 1 (IKEv1) implementation of Cisco IOS XE Software could...
CVE Alert: CVE-2025-20198
Vulnerability Summary: CVE-2025-20198 A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with...
CVE Alert: CVE-2025-20221
Vulnerability Summary: CVE-2025-20221 A vulnerability in the packet filtering features of Cisco IOS XE SD-WAN Software could allow an unauthenticated,...
CVE Alert: CVE-2025-20199
Vulnerability Summary: CVE-2025-20199 A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with...
CVE Alert: CVE-2025-20200
Vulnerability Summary: CVE-2025-20200 A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with...
CVE Alert: CVE-2025-20197
Vulnerability Summary: CVE-2025-20197 A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with...
CVE Alert: CVE-2025-20214
Vulnerability Summary: CVE-2025-20214 A vulnerability in the Network Configuration Access Control Module (NACM) of Cisco IOS XE Software could allow...
CVE Alert: CVE-2025-20213
Vulnerability Summary: CVE-2025-20213 A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an...
CVE Alert: CVE-2025-20216
Vulnerability Summary: CVE-2025-20216 A vulnerability in the web interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow...
CVE Alert: CVE-2025-20210
Vulnerability Summary: CVE-2025-20210 A vulnerability in the management API of Cisco Catalyst Center, formerly Cisco DNA Center, could allow an...
CVE Alert: CVE-2025-20202
Vulnerability Summary: CVE-2025-20202 A vulnerability in Cisco IOS XE Wireless Controller Software could allow an unauthenticated, adjacent attacker to cause...
HackerOne Bug Bounty Disclosure: crlf-injection-in-proxy-header-allows-extra-http-headers-cwe-oblivionsage
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:oblivionsageLink to Submitters Profile:https://hackerone.com/oblivionsage Report Title:CRLF Injection in `--proxy-header` allows extra HTTP...
HackerOne Bug Bounty Disclosure: ability-to-access-policy-and-updates-for-unauthorized-program-light-r
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:light3rLink to Submitters Profile:https://hackerone.com/light3r Report Title:Ability to access policy and updates for...
[AKIRA] – Ransomware Victim: Selenis (Evertis)
Ransomware Group: AKIRA VICTIM NAME: Selenis (Evertis) NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[NOVA] – Ransomware Victim: novaevo+ / T[.]consulT
Ransomware Group: NOVA VICTIM NAME: novaevo+ / TconsulT NOTE: No files or stolen information are by RedPacket Security. Any legal...
[AKIRA] – Ransomware Victim: Selenis (Evertis is also involved)
Ransomware Group: AKIRA VICTIM NAME: Selenis (Evertis is also involved) NOTE: No files or stolen information are by RedPacket Security....
CVE Alert: CVE-2025-32820
Vulnerability Summary: CVE-2025-32820 A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN user privileges can inject a path...
