Subscribe
Monday, April 27, 2026
type here...
Subscribe
HomeUncategorized

Uncategorized

Critical Windows BitLocker Vulnerability Lets Attackers Bypass Encryption

A new security vulnerability in Windows BitLocker that could allow attackers to bypass the encryption software's security features through a physical attack. The vulnerability, designated CVE-2025-48818, was released on July 8, 2025, and has been classified as "Important" severity by Microsoft, with a CVSS...
Read more

Critical SOAR Security Update: Splunk Patches Third-Party Package Vulnerabilities

Splunk has released a comprehensive security advisory addressing multiple critical vulnerabilities in third-party packages within SOAR versions 6.4.0 and 6.4.1. The advisory, published on July 7, 2025, identifies significant security vulnerabilities across various components including git, Django, cryptography libraries, and JavaScript frameworks that could...
Read more

Critical Security Update: Splunk Enterprise Addresses Third-Party Vulnerabilities

Splunk has released critical security updates addressing multiple vulnerabilities in third-party packages across Enterprise versions 9.4.3, 9.3.5, 9.2.7, and 9.1.10, with severity ratings ranging from informational to critical. The advisory, published on July 7, 2025, under Advisory ID SVD-2025-0710, encompasses fixes for numerous Common...
Read more

Critical Citrix VDA Vulnerability Allows Attackers to Gain SYSTEM-Level Access on Windows

A high-severity security vulnerability affecting Citrix Virtual Apps and Desktops and Citrix DaaS systems worldwide. The vulnerability, designated as CVE-2025-6759, enables local attackers with low-level privileges to escalate their access to SYSTEM-level privileges on affected Windows Virtual Delivery Agent installations. With a CVSS v4.0...
Read more

FortiWeb SQL Injection Vulnerability Allows Execution of Malicious SQL Code

Fortinet has disclosed a critical SQL injection vulnerability affecting multiple versions of FortiWeb, their web application firewall solution. The security vulnerability, classified as CWE-89, enables unauthenticated attackers to execute unauthorized SQL commands through specially crafted HTTP and HTTPS requests, potentially compromising entire database systems...
Read more

Zoom for Windows Vulnerabilities Leaves Users Open to DoS Attacks

A critical buffer overflow vulnerabilities in multiple Zoom clients for Windows that could enable authorized users to launch denial-of-service attacks through network access. The vulnerabilities, tracked as CVE-2025-49464 and CVE-2025-46789, both carry a medium severity rating with CVSS scores of 6.5, highlighting significant security...
Read more

About us

The Cyber News is an online community for security professionals. It features articles from top security researchers, CISOs, and technology experts.

Company

The latest

Burp Suite Supercharges Its Scanning Capabilities With React2Shell Vulnerability Detection

Cybersecurity News 0
PortSwigger has leveled up Burp Suite's scanning arsenal with...

Malicious MCP Servers Enable New Prompt Injection Attack To Drain Resources

Cybersecurity News 0
Unit 42 researchers at Palo Alto Networks exposed serious...

Law Enforcement Detains Hackers Equipped With Specialized Flipper Hacking Tools

Cyber News 0
Polish police have arrested three Ukrainian men traveling through...

Subscribe

© 2025 the Cyber News