category_news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.3	MS:CVE-2025-55229	Windows Certificate Spoofing Vulnerability_MS:CVE-2025-55229 Improper verification of cryptographic signature in Windows Certificates allows an unauthorized attacker to perform spoofing over a network.	N/A	N/A	Aug 21, 2025	MSCVE
HIGH 7.5	MS:CVE-2025-55231	Windows Storage-based Management Service Remote Code Execution Vulnerability_MS:CVE-2025-55231 Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Storage allows an unauthorized attacker to e...	N/A	N/A	Aug 21, 2025	MSCVE
CRITICAL 9.8	MS:CVE-2025-53763	Azure Databricks Elevation of Privilege Vulnerability_MS:CVE-2025-53763 Improper access control in Azure Databricks allows an unauthorized attacker to elevate privileges over a network.	N/A	N/A	Aug 21, 2025	MSCVE
CRITICAL 9.1	MS:CVE-2025-53795	Microsoft PC Manager Elevation of Privilege Vulnerability_MS:CVE-2025-53795 Improper authorization in Microsoft PC Manager allows an unauthorized attacker to elevate privileges over a network.	N/A	N/A	Aug 21, 2025	MSCVE
HIGH 8.8	MS:CVE-2025-9132	Chromium: CVE-2025-9132 Out of bounds write in V8_MS:CVE-2025-9132 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Aug 21, 2025	MSCVE
HIGH 10	TALOSBLOG:60DF3...	Cherry pie, Douglas firs and the last trip of the summer_TALOSBLOG:60DF3AC86E1FC1D090C956EBD4DC19B5 ![Cherry pie, Douglas firs and the last trip of the summer](https://blog.talosintelligence.com/content/images/2025/08/threat-source-newsletter-2.jp...	N/A	N/A	Aug 21, 2025	TALOSBLOG
NONE	HACKREAD:913C49...	Qilin Ransomware Gang Claims 4TB Data Breach at Nissan CBI_HACKREAD:913C49F13AF09B6F741DC7BA0E24C572 Qilin ransomware claims a 4TB data breach at Nissan CBI, leaking car design files, financial data, 3D models,…	N/A	N/A	Aug 21, 2025	HACKREAD
NONE	HACKREAD:F574EF...	Europol Denies $50K Reward for Qilin Ransomware, Calls It a Scam_HACKREAD:F574EF87DDE2022E4B545473A2505BC3 Europol has confirmed that a widely reported $50,000 reward for information on the Qilin ransomware group is a…	N/A	N/A	Aug 21, 2025	HACKREAD
NONE	IMPERVABLOG:5E1...	Smuggling Requests with Chunked Extensions: A New HTTP Desync Trick_IMPERVABLOG:5E131D8E57BD4CB674003030C0CA9080 A new HTTP request smuggling technique was recently discovered, where attackers take advantage of inconsistent parsing behaviors between front-end ...	N/A	N/A	Aug 21, 2025	IMPERVABLOG
NONE	MSSECURE:A9162A...	Think before you Click(Fix): Analyzing the ClickFix social engineering technique_MSSECURE:A9162A7E0D86CEB6BC343434280907F9 Over the past year, Microsoft Threat Intelligence and Microsoft Defender Experts have observed the ClickFix social engineering technique growing in...	N/A	N/A	Aug 21, 2025	MSSECURE