Trend Micro Apex One (On-Prem) Zero-day Vulnerabilities Exploited in the Wild (CVE-2025-54948 & CVE-2025-54987)

Threat actors are exploiting two vulnerabilities impacting Trend Micro Apex One  (on-prem) devices. Tracked as CVE-2025-54948 & CVE-2025-54987, the vulnerabilities may allow attackers to achieve remote code execution upon successful exploitation. Both vulnerabilities have a critical severity rating with a CVSS score of 9.4. Trend Micro mentioned in the advisory that they had observed at least … Continue reading “Trend Micro Apex One (On-Prem) Zero-day Vulnerabilities Exploited in the Wild (CVE-2025-54948 & CVE-2025-54987)”

Adobe Experience Manager Forms on JEE Zero-day Vulnerabilities (CVE-2025-54253 & CVE-2025-54254)

Adobe released an emergency update to address two zero-day vulnerabilities (CVE-2025-54253 & CVE-2025-54254) impacting Adobe Experience Manager (AEM) Forms on JEE. Successful exploitation of the vulnerabilities may allow a remote unauthenticated attacker to read sensitive files and execute arbitrary code, leading to critical data loss and complete system compromise. The security researchers at Searchlight Cyber … Continue reading “Adobe Experience Manager Forms on JEE Zero-day Vulnerabilities (CVE-2025-54253 & CVE-2025-54254)”

PaperCut NG/MF Vulnerability added to CISA KEV and Active Exploitation (CVE-2023-2533)

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a high-severity vulnerability to its Known Exploitable Vulnerabilities Catalog, urging users to patch it before August 18, 2025. Tracked as CVE-2023-2533, the vulnerability in PaperCut NG/MF may allow an attacker to alter security settings or execute arbitrary code.

CrushFTP Authentication Bypass Vulnerability Exploited in the Wild (CVE-2025-54309)

CrushFTP warned its users about active exploitation of a zero-day vulnerability tracked as CVE-2025-54309. Successful exploitation of this vulnerability may allow remote attackers to obtain admin access via HTTPS on vulnerable servers. The vendor mentioned in the advisory that they observed many exploits on the morning of July 18th; the actual exploits may have occurred … Continue reading “CrushFTP Authentication Bypass Vulnerability Exploited in the Wild (CVE-2025-54309)”

Microsoft SharePoint Server Zero-day Vulnerability Exploited in the Wild (CVE-2025-53770)

Microsoft released patches for an actively exploited vulnerability impacting SharePoint Server. Tracked as CVE-2025-53770, the vulnerability was part of an “active, large-scale” exploitation campaign. Successful exploitation of the vulnerability may allow a remote unauthenticated attacker to execute arbitrary code, leading to critical data loss and possible system compromise. Viettel Cyber Security with Trend Zero Day … Continue reading “Microsoft SharePoint Server Zero-day Vulnerability Exploited in the Wild (CVE-2025-53770)”

Oracle Critical Patch Update, July 2025 Security Update Review

Oracle released its second quarterly edition of this year’s Critical Patch Update. The update received patches for 309 security vulnerabilities. Some of the vulnerabilities addressed in this update impact more than one product. These patches address vulnerabilities in various product families, including third-party components in Oracle products. In this quarterly Oracle Critical Patch Update, Oracle … Continue reading “Oracle Critical Patch Update, July 2025 Security Update Review”

Google Addresses Fifth Zero-day Vulnerability impacting Chrome Browser (CVE-2025-6558)

Google addressed six vulnerabilities impacting the Chrome browser. One of the vulnerabilities tracked as CVE-2025-6558 is being exploited in the wild. Clément Lecigne and Vlad Stolyarov of Google’s Threat Analysis Group discovered and reported the vulnerability to Google.

Fortinet FortiWeb Unauthenticated SQL Injection Vulnerability (CVE-2025-25257)

Kentaro Kawane from GMO Cybersecurity discovered a vulnerability of critical severity impacting FortiWeb. Tracked as CVE-2025-25257, the vulnerability has a CVSS score of 9.6. Upon successful exploitation of the vulnerability, an unauthenticated attacker can execute unauthorized SQL code via crafted HTTP or HTTPS requests. FortiWeb is a web application firewall (WAF) designed to protect web … Continue reading “Fortinet FortiWeb Unauthenticated SQL Injection Vulnerability (CVE-2025-25257)”

Microsoft Patch Tuesday, July 2025 Security Update Review

With cybersecurity threats continuing to evolve, Microsoft’s July 2025 Patch Tuesday highlights the need for consistent patching — this month’s release includes key fixes for actively exploited vulnerabilities. Here’s a quick breakdown of what you need to know. In this month’s Patch Tuesday, the July 2025 edition, Microsoft addressed 140 vulnerabilities. The updates include 14 … Continue reading “Microsoft Patch Tuesday, July 2025 Security Update Review”