7762 matches found
A First Look at Common RPKI Publication Practices
The RPKI is crucial for securing the routing system of the Internet. With the RPKI, owners of Internet resources can make cryptographically backed claims, for example about the legitimate origin of their IP space. Thousands of networks use this information to detect malicious or accidental route...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a delayed anonymous key distribution that could lead to null pointer dereferencing...
An Empirical Analysis of Zero-Day Vulnerabilities Disclosed by the Zero Day Initiative
Zero-day vulnerabilities represent some of the most critical threats in cybersecurity, as they correspond to previously unknown flaws in software or hardware that are actively exploited before vendors can develop and deploy patches. During this exposure window, affected systems remain defenseless...
Frogblight threatens you with a court case: a new Android banker targets Turkish users
In August 2025, we discovered a campaign targeting individuals in Turkey with a new Android banking Trojan we dubbed "Frogblight". Initially, the malware was disguised as an app for accessing court case files via an official government webpage. Later, more universal disguises appeared, such as th...
CVE-2025-46266
A vulnerability in TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 25.11 for Windows allows malicious actors to coerce the service into transmitting data to an arbitrary internal IP address, potentially leaking sensitive information...
CVE-2025-12687
A vulnerability in TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 25.11 for Windows allows malicious actors to cause a denial of service application crash via a crafted command, resulting in service termination...
CVE-2025-44016
A vulnerability in TeamViewer DEX Client former 1E client - Content Distribution Service NomadBranch.exe prior version 25.11 for Windows allows malicious actors to bypass file integrity validation via a crafted request. By providing a valid hash for a malicious file, an attacker can cause the...
CVE-2025-66492
Masa CMS is an open source Enterprise Content Management platform. Versions 7.2.8 and below, 7.3.1 through 7.3.13, 7.4.0-alpha.1 through 7.4.8 and 7.5.0 through 7.5.1 are vulnerable to XSS when an unsanitized value of the ajax URL query parameter is directly included within the section of the HTM...
CVE-2025-46266
A vulnerability in TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 25.11 for Windows allows malicious actors to coerce the service into transmitting data to an arbitrary internal IP address, potentially leaking sensitive information...
CVE-2025-44016
A vulnerability in TeamViewer DEX Client former 1E client - Content Distribution Service NomadBranch.exe prior version 25.11 for Windows allows malicious actors to bypass file integrity validation via a crafted request. By providing a valid hash for a malicious file, an attacker can cause the...
CVE-2025-46266
A vulnerability in TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 25.11 for Windows allows malicious actors to coerce the service into transmitting data to an arbitrary internal IP address, potentially leaking sensitive information...
CVE-2025-12687
A vulnerability in TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 25.11 for Windows allows malicious actors to cause a denial of service application crash via a crafted command, resulting in service termination...
CVE-2025-12687
A vulnerability in TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 25.11 for Windows allows malicious actors to cause a denial of service application crash via a crafted command, resulting in service termination...
CVE-2025-46266
CVE-2025-46266 describes a flaw in TeamViewer DEX Client (formerly 1E Client) – Content Distribution Service (NomadBranch.exe) prior to version 25.11 on Windows. The issue allows a malicious actor to coerce the NomadBranch service into transmitting data to an arbitrary internal IP address, potent...
EUVD-2025-202679
A vulnerability in TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 25.11 for Windows allows malicious actors to coerce the service into transmitting data to an arbitrary internal IP address, potentially leaking sensitive information...
EUVD-2025-202681
A vulnerability in TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 25.11 for Windows allows malicious actors to cause a denial of service application crash via a crafted command, resulting in service termination...
CVE-2025-12687
CVE-2025-12687 affects TeamViewer DEX Client (Content Distribution Service, NomadBranch.exe) for Windows, with vulnerable versions prior to 25.11. A crafted command can cause an application crash, leading to service termination (Denial of Service). Multiple sources confirm the impact is an availa...
PT-2025-50591
Name of the Vulnerable Software and Affected Versions TeamViewer DEX Client versions prior to 25.11 Description A flaw exists in the TeamViewer DEX Client Content Distribution Service NomadBranch.exe that allows attackers to circumvent file integrity checks. By supplying a valid hash for a...
PT-2025-50589
Name of the Vulnerable Software and Affected Versions TeamViewer DEX Client versions prior to 25.11 Description A flaw exists in the Content Distribution Service NomadBranch.exe of TeamViewer DEX Client, potentially leading to a denial of service. Specifically, a crafted command can cause the...
PT-2025-50592
A vulnerability in TeamViewer DEX Client former 1E Client - Content Distribution Service NomadBranch.exe prior version 25.11 for Windows allows malicious actors to coerce the service into transmitting data to an arbitrary internal IP address, potentially leaking sensitive information...