CVE-2025-21301 Windows Geolocation Service Information Disclosure Vulnerability

...

CVE-2025-21301

CVE-2025-21301 is a Windows Geolocation Service Information Disclosure vulnerability with CVSS 3.1 base score 6.5 (Network attack, Low attack complexity, Privileges required: Low, User interaction: None). The vulnerability is disclosed as affecting Windows Geolocation Service and is addressed by ...

Windows Geolocation Service Information Disclosure Vulnerability

...

Microsoft Windows Geolocation Service 访问控制错误漏洞

Microsoft Windows Geolocation Service is a service for determining the geographic location of a device and providing location information to applications on Windows systems from Microsoft Corporation USA. An access control error vulnerability exists in Microsoft Windows Geolocation Service. An...

PT-2025-4205

Name of the Vulnerable Software and Affected Versions Windows Geolocation Service affected versions not specified Description The issue allows attackers to obtain sensitive information and affect the system. It is related to the Windows Geolocation Service. No information is available about the...

Cisco Firepower Threat Defense Code Issue Vulnerability (CNVD-2024-44487)

Cisco Firepower Threat Defense FTD is a suite of unified software from the U.S. company Cisco Cisco that provides next-generation firewall services. Cisco Firepower Threat Defense has a code issue vulnerability that stems from improper allocation of geolocation data. An attacker could exploit the...

The vulnerability of the access control function for geolocation in Cisco Firepower Threat Defense’s microprogramming operating system allows a hacker to circumvent security restrictions.

The vulnerability of the access control function for geolocation in Cisco Firepower Threat Defense FTD software relates to incorrect handling of values. Exploiting this vulnerability can allow an attacker operating remotely to circumvent security restrictions...

CVE-2024-20431

A vulnerability in the geolocation access control feature of Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass an access control policy. This vulnerability is due to improper assignment of geolocation data. An attacker could exploit this...

CVE-2024-20431

A vulnerability in the geolocation access control feature of Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass an access control policy. This vulnerability is due to improper assignment of geolocation data. An attacker could exploit this...

CVE-2024-20431

A vulnerability in the geolocation access control feature of Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass an access control policy. This vulnerability is due to improper assignment of geolocation data. An attacker could exploit this...

CVE-2024-20431

A vulnerability in the geolocation access control feature of Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass an access control policy. This vulnerability is due to improper assignment of geolocation data. An attacker could exploit this...

CVE-2024-20431

Cisco Firepower Threat Defense (FTD) contains a geolocation data handling flaw that can allow an unauthenticated, remote attacker to bypass geolocation-based access control and send traffic to a protected device. The issue stems from improper assignment of geolocation data within the geolocation ...

Cisco Firepower Threat Defense Software Geolocation ACL Bypass Vulnerability

A vulnerability in the geolocation access control feature of Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass an access control policy. This vulnerability is due to improper assignment of geolocation data. An attacker could exploit this...

Cisco Firepower Threat Defense 安全漏洞

Cisco Firepower Threat Defense FTD is a suite of unified software from the U.S. company Cisco Cisco that provides next-generation firewall services. Cisco Firepower Threat Defense has a code issue vulnerability that stems from improper allocation of geolocation data. An attacker could exploit the...

TrickMo Banking Trojan Can Now Capture Android PINs and Unlock Patterns

New variants of an Android banking trojan called TrickMo have been found to harbor previously undocumented features to steal a device's unlock pattern or PIN. "This new addition enables the threat actor to operate on the device even while it is locked," Zimperium security researcher Aazim Yaswant...

Geolocation redirection not working

The Citrix Optimizer's default OS templates disable the "Geolocation Service" on Citrix VDAs, which causes the geolocation redirection to fail...

New "Raptor Train" IoT Botnet Compromises Over 200,000 Devices Worldwide

Cybersecurity researchers have uncovered a never-before-seen botnet comprising an army of small office/home office SOHO and IoT devices that are likely operated by a Chinese nation-state threat actor called Flax Typhoon aka Ethereal Panda or RedJuliett. The sophisticated botnet, dubbed Raptor Tra...

BlindEagle flying high in Latin America

BlindEagle, also known as "APT-C-36", is an APT actor recognized for employing straightforward yet impactful attack techniques and methodologies. The group is known for their persistent campaigns targeting entities and individuals in Colombia, Ecuador, Chile, Panama and other countries in Latin...

Chameleon Android Banking Trojan Targets Users Through Fake CRM App

Cybersecurity researchers have lifted the lid on a new technique adopted by threat actors behind the Chameleon Android banking trojan targeting users in Canada by masquerading as a Customer Relationship Management CRM app. "Chameleon was seen masquerading as a CRM app, targeting a Canadian...

Void Banshee APT Exploits Microsoft MHTML Flaw to Spread Atlantida Stealer

An advanced persistent threat APT group called Void Banshee has been observed exploiting a recently disclosed security flaw in the Microsoft MHTML browser engine as a zero-day to deliver an information stealer called Atlantida. Cybersecurity firm Trend Micro, which observed the activity in mid-Ma...