ZeroDay vulnerabilities fixed in Ivanti Endpoint Manager Mobile

Ivanti has fixed two vulnerabilities in Endpoint Manager Mobile EPMM, ok known as MobileIron. The vulnerabilities allow an unauthenticated malicious person to execute arbitrary code on the vulnerable system. Of the vulnerability marked CVE-2026-1281, Ivanti reports that it has been actively...

PT-2025-31173 · Samsung · Samsung Dms

Name of the Vulnerable Software and Affected Versions: Samsung DMS Data Management Server affected versions not specified Description: An arbitrary file creation issue exists in Samsung DMS Data Management Server. This allows attackers to create arbitrary files in unintended locations on the...

SUSE CVE-2020-28017

Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow in receiveaddrecipient via an e-mail message with fifty million recipients. NOTE: remote exploitation may be difficult because of resource consumption...

Chaturbate: Blind SSRF on image proxy camo.stream.highwebmedia.com

The hacker discovered that our secure image proxy camo.stream.highwebmedia.com could be used to access https endpoints on internal ips. The application was patched to not allow access to internal ips. In this case these servers are in a separate cluster with no access to other services so possibl...