Skip to main content

Tag: unauthenticatedrce

8 articles

RondoDox Exclusive: Dangerous Botnet Widens Reach

RondoDox Exclusive: Dangerous Botnet Widens Reach

XWiki admins, take note: RondoDox is actively exploiting a critical eval‑injection (CVE‑2025‑24893) to achieve unauthenticated remote code execution and enroll unpatched hosts into its botnet. Patch immediately and harden exposed endpoints—or assume compromise and start remediation.

Analyst 207
WatchGuard Fireware vulnerability: Urgent Critical Fix

WatchGuard Fireware vulnerability: Urgent Critical Fix

Imagine one packet handing an attacker the keys to your network — that’s exactly what the critical CVE-2025-9242 WatchGuard Fireware flaw made possible. Inventory affected devices and apply WatchGuard’s patches now, or at minimum lock down management interfaces and enforce MFA to keep your gateways secure.

Analyst 207
E-Business Suite Critical Patch: Must-Have Fix

E-Business Suite Critical Patch: Must-Have Fix

Oracle rushed an out-of-cycle emergency patch for a 9.8 CVSS flaw in E-Business Suite after a wave of Cl0p-linked data theft, and customers are racing to patch, isolate systems, and hunt for signs of exfiltration. If your E-Business Suite is reachable over HTTP, treat it as potentially compromised—inventory, patch, and lock down access now.

Analyst 207
Ivanti EPMM Critical Risk: Exclusive Malware Warning

Ivanti EPMM Critical Risk: Exclusive Malware Warning

CISA is warning that threat actors have exploited critical Ivanti EPMM flaws (CVE-2025-4427/4428) to drop stealthy loaders and listeners that give attackers remote control and a wide blast radius. If you manage EPMM, patch now, lock down access and credentials, and start looking for suspicious listener and remote-execution activity before it’s too late.

Analyst 207
unauthenticated remote code execution: Critical Must-Have Patch

unauthenticated remote code execution: Critical Must-Have Patch

Commvault has released urgent patches after researchers published working exploits for two unauthenticated remote‑code‑execution chains—if you use Commvault, update now and audit your systems. This wake‑up call shows how critical backup infrastructure is and why quick patching, stronger access controls, and offline or immutable backups are essential to avoid catastrophic breaches.

Analyst 207
Secure Firewall Management Center: Critical Must-Have Patch

Secure Firewall Management Center: Critical Must-Have Patch

Cisco just released emergency patches after a rare CVSS 10.0 remote code execution in Secure Firewall Management Center that lets unauthenticated attackers run shell commands — if you manage FMC, inventory, patch or isolate it now to avoid full-blown compromise. This flaw lets attackers alter firewall rules and pivot into networks, so prioritize updates and tight access controls immediately.

Analyst 207
Cisco firewall management Critical Risk: Must-Harden

Cisco firewall management Critical Risk: Must-Harden

Cisco just released a patch for a critical unauthenticated RCE in its firewall management interface—if left unpatched, attackers could run shell commands as the service. Patch immediately, restrict access to management ports, and watch your logs for signs of compromise.

Analyst 207
Erlang/OTP SSH daemon Critical: Urgent Must-Have Fix

Erlang/OTP SSH daemon Critical: Urgent Must-Have Fix

A critical unauthenticated RCE in the Erlang/OTP SSH daemon lets attackers run commands on vulnerable systems, putting telecom, messaging and network appliances at immediate risk. Apply vendor patches, isolate exposed SSH services, and scan for signs of compromise right away.

Analyst 207