This lab uses an OAuth service to allow users to log in with their social media account. Flawed validation by the client application makes it possible for ...

Eine kritische Sicherheitslücke in der Fernwartungsfirmware AMI MegaRAC wird im Netz angegriffen, warnt die CISA.

Trend Micro has rolled out essential security updates to address a series of high-impact vulnerabilities discovered in two of its enterprise security solutions: Apex Central and the Endpoint Encryption (TMEE) PolicyServer. These newly disclosed issues, which include critical remote code execution (RCE) and authentication bypass bugs, could allow attackers to compromise systems without needing login credentials.  Although there have been no confirmed cases of exploitation so far, Trend Micro strongly recommends immediate patching to mitigate any potential threats. The vulnerabilities are especially concerning for organizations operating in sensitive sectors, where data privacy and regulatory compliance are paramount.  The Endpoint Encryption PolicyServer is a key management solution used to centrally control full disk and media encryption across Windows-based systems. Following the recent update, four critical issues in this product were fixed. Among them is CVE-2025-49212, a remote code execution bug that stems from insecure deserialization within PolicyValue Table Serialization Binder class. This flaw enables threat actors to run code with SYSTEM-level privileges without any authentication.  Another serious issue, CVE-2025-49213, was found in the PolicyServerWindowsService class, also involving unsafe deserialization. This vulnerability similarly allows arbitrary code execution without requiring user credentials. An additional bug, CVE-2025-49216, enables attackers to bypass authentication entirely due to faulty logic in the DbAppDomain service. Lastly, CVE-2025-49217 presents another RCE risk, though slightly more complex to exploit, allowing code execution via the ValidateToken method.  While Trend Micro categorized all four as critical, third-party advisory firm ZDI classified CVE-2025-49217 as high-severity. Besides these, the latest PolicyServer release also fixes multiple other high-severity vulnerabilities, such as SQL injection and privilege escalation flaws. The update applies to version 6.0.0.4013 (Patch 1 Update 6), and all earlier versions are affected. Notably, there are no workarounds available, making the patch essential for risk mitigation.  Trend Micro also addressed separate issues in Apex Central, the company’s centralized console for managing its security tools. Two pre-authentication RCE vulnerabilities—CVE-2025-49219 and CVE-2025-49220—were identified and patched. Both flaws are caused by insecure deserialization and could allow attackers to execute code remotely as NETWORK SERVICE without authentication.  These Apex Central vulnerabilities were resolved in Patch B7007 for the 2019 on-premise version. Customers using Apex Central as a Service will receive fixes automatically on the backend.  Given the severity of these cybersecurity vulnerabilities, organizations using these Trend Micro products should prioritize updating their systems to maintain security and operational integrity.

Fortinet has disclosed a significant security vulnerability affecting multiple Fortinet products, allowing attackers to bypass authentication and gain administrative access to affected systems.

Explore the critical CrushFTP authentication bypass vulnerability and its global impact on cybersecurity.

Explore the VMware Tools authentication bypass vulnerability and its impact on virtual environments.

GitLab addresses critical vulnerabilities in SAML SSO, urging immediate updates to prevent unauthorized access.

attacks to guess legitimate credentials read more about Moxa Issues Fix for Critical Authentication Bypass Vulnerability in PT Switches

A critical vulnerability has been discovered in Perforce software, allowing attackers to gain full administrative access to systems worldwide

Explore the critical CVE-2025-0108 vulnerability in PAN-OS and learn how to protect your systems from authentication bypass threats.

the company stated in an advisory read more about Palo Alto Networks Patches Authentication Bypass Exploit in PAN-OS Software

SonicWall has released patches for multiple vulnerabilities in SonicOS, including high-severity authentication bypass flaws.

GitLab, the popular DevOps platform, has issued a critical security advisory urging organizations to immediately patch their self-managed

GitLab has issued an urgent call to action for organizations using its platform to patch a critical authentication bypass vulnerability.