CVE Alert: CVE-2025-28384
Vulnerability Summary: CVE-2025-28384 An issue in the /script-api/scripts/ endpoint of OpenC3 COSMOS 6.0.0 allows attackers to execute a directory traversal....
Month: June 2025
CVE Alert: CVE-2025-46096
Vulnerability Summary: CVE-2025-46096 Directory Traversal vulnerability in solon v.3.1.2 allows a remote attacker to conduct XSS attacks via the solon-faas-luffy...
CVE Alert: CVE-2025-46060
Vulnerability Summary: CVE-2025-46060 Buffer Overflow vulnerability in TOTOLINK N600R v4.3.0cu.7866_B2022506 allows a remote attacker to execute arbitrary code via the...
[IMNCREW] – Ransomware Victim: Repremundo[.]com[.]co
Ransomware Group: IMNCREW VICTIM NAME: Repremundocomco NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-28389
Vulnerability Summary: CVE-2025-28389 Weak password requirements in OpenC3 COSMOS v6.0.0 allow attackers to bypass authentication via a brute force attack....
CVE Alert: CVE-2025-28382
Vulnerability Summary: CVE-2025-28382 An issue in the openc3-api/tables endpoint of OpenC3 COSMOS 6.0.0 allows attackers to execute a directory traversal....
CVE Alert: CVE-2025-28381
Vulnerability Summary: CVE-2025-28381 A credential leak in OpenC3 COSMOS v6.0.0 allows attackers to access service credentials as environment variables stored...
CVE Alert: CVE-2025-36633
Vulnerability Summary: CVE-2025-36633 In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non-administrative...
CVE Alert: CVE-2025-36631
Vulnerability Summary: CVE-2025-36631 In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non-administrative...
CVE Alert: CVE-2025-48914
Vulnerability Summary: CVE-2025-48914 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal COOKiES Consent Management allows...
CVE Alert: CVE-2025-48917
Vulnerability Summary: CVE-2025-48917 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal EU Cookie Compliance (GDPR...
CVE Alert: CVE-2025-48920
Vulnerability Summary: CVE-2025-48920 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal etracker allows Cross-Site Scripting...
CVE Alert: CVE-2025-48915
Vulnerability Summary: CVE-2025-48915 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal COOKiES Consent Management allows...
CVE Alert: CVE-2025-48916
Vulnerability Summary: CVE-2025-48916 Missing Authorization vulnerability in Drupal Bookable Calendar allows Forceful Browsing.This issue affects Bookable Calendar: from 0.0.0 before...
[HANDALA] – Ransomware Victim: Y[.]G[.] New Idan
Ransomware Group: HANDALA VICTIM NAME: YG New Idan NOTE: No files or stolen information are by RedPacket Security. Any legal...
CVE Alert: CVE-2025-48919
Vulnerability Summary: CVE-2025-48919 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Simple Klaro allows Cross-Site...
CVE Alert: CVE-2025-49597
Vulnerability Summary: CVE-2025-49597 handcraftedinthealps goodby-csv is a highly memory efficient, flexible and extendable open-source CSV import/export library. Prior to 1.4.3,...
CVE Alert: CVE-2025-48918
Vulnerability Summary: CVE-2025-48918 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Simple Klaro allows Cross-Site...
CVE Alert: CVE-2025-6052
Vulnerability Summary: CVE-2025-6052 A flaw was found in how GLib’s GString manages memory when adding data to strings. If a...
CVE Alert: CVE-2025-6035
Vulnerability Summary: CVE-2025-6035 A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP "Despeckle" plug-in. The...
CVE Alert: CVE-2025-25050
Vulnerability Summary: CVE-2025-25050 An out-of-bounds write vulnerability exists in the cv_upgrade_sensor_firmware functionality of Dell ControlVault3 prior to 5.15.10.14 and Dell...
CVE Alert: CVE-2025-24922
Vulnerability Summary: CVE-2025-24922 A stack-based buffer overflow vulnerability exists in the securebio_identify functionality of Dell ControlVault3 prior to 5.15.10.14 and...
CVE Alert: CVE-2025-24311
Vulnerability Summary: CVE-2025-24311 An out-of-bounds read vulnerability exists in the cv_send_blockdata functionality of Dell ControlVault3 prior to 5.15.10.14 and Dell...
CVE Alert: CVE-2025-25215
Vulnerability Summary: CVE-2025-25215 An arbitrary free vulnerability exists in the cv_close functionality of Dell ControlVault3 prior to 5.15.10.14 and Dell...
