F5 has disclosed a high-severity F5 BIG-IP command injection vulnerability identified as CVE-2025-31644, affecting BIG-IP systems operating in Appliance mode. The flaw allows authenticated administrators to execute arbitrary system commands with root privileges. Vulnerability Summary The vulnerability stems from improper input handling in an undisclosed iControl REST API endpoint and the “save” command in TMOS …

F5 BIG-IP Command Injection Exploit Targets iControl REST and tmsh Read More »

CVE-2025-22247 is a moderate-severity vulnerability in VMware Tools affecting versions 11.x.x and 12.x.x on Windows and Linux. It enables low-privileged users within a guest virtual machine to tamper with local files, triggering insecure file operations. macOS is not affected. Vulnerability Summary The flaw resides in the way VMware Tools handles file operations initiated from within …

VMware Tools File Tampering Vulnerability Affects Guest VMs Read More »

Microsoft has patched a privilege escalation vulnerability in Active Directory Domain Services, identified as CVE-2025-29810, during the April 2025 Patch Tuesday release. Technical Overview The vulnerability is caused by improper access control in Windows Active Directory Domain Services and falls under CWE-284: Improper Access Control. An authenticated attacker with low-level privileges on a domain-joined system …

Microsoft Patches Active Directory Privilege Escalation Vulnerability Read More »

A critical security vulnerability, identified as CVE-2025-23120, affects Veeam Backup & Replication versions up to 12.3.0.310. This flaw allows authenticated domain users to execute arbitrary code remotely on domain-joined backup servers. Technical Details: Affected Versions: Impacted Systems: Mitigation: The vulnerability is patched in Veeam Backup & Replication 12.3.1 (build 12.3.1.1139). Users are advised to upgrade …

CVE-2025-23120 Veeam Backup Vulnerability Allows Remote Code Execution Read More »

On March 24, 2025, four critical Ingress NGINX Controller vulnerabilities were publicly disclosed. These flaws enable unauthenticated remote code execution (RCE), unrestricted access to secrets across all namespaces, and the possibility of full Kubernetes cluster takeover. Each vulnerability resides in the controller’s admission component, a service commonly exposed to the internet without authentication controls. Ingress …

Critical Ingress NGINX Controller vulnerabilities disclosed in Kubernetes Read More »

A critical vulnerability in Next.js allows attackers to bypass middleware-based authorization checks in self-hosted applications using next start with output: standalone. Tracked as CVE-2025-29927, the flaw has a CVSS v3.1 score of 9.1 and impacts Next.js versions from 11.1.4 up to 13.5.6, 14.x before 14.2.25, and 15.x before 15.2.3. Affected Configurations Vulnerability Details The vulnerability …

Critical Next.js Middleware Auth Bypass Vulnerability (CVE-2025-29927) Read More »

VMware has released security updates to address multiple vulnerabilities affecting ESXi, Workstation, and Fusion. These flaws, tracked as CVE-2025-22224, CVE-2025-22225, and CVE-2025-22226, enable attackers to execute arbitrary code, escape the virtual machine sandbox, and leak sensitive memory data. Exploitation of these vulnerabilities has been observed in the wild. Affected Products: Vulnerability Details: Confirmed Exploitation VMware …

VMware Critical Vulnerabilities in ESXi, Workstation, and Fusion: Patches Released Read More »