Broadcom VMware Aria Operations and VMware Tools Privilege Defined with Unsafe Actions Vulnerability

Broadcom VMware Aria Operations and VMware Tools contain a privilege defined with unsafe actions vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed and managed by Aria Operations with SDMP enabled may exploit this...

Exploit for Authentication Bypass by Primary Weakness in Crushftp

The-Challenge-Soulmate- The "Soulmate" machine from HackTheBox...

Malicious code in ft-flow (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c048d30efedaea5fdd0efeaa12f5ac0fc2498a9a3ff8698af6c96566e5542825 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

EUVD-2025-36706

MLflow Weak Password Requirements Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of MLflow. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of passwords...

KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid

...

An In-Depth Analysis of Cyber Attacks in Secured Platforms

There is an increase in global malware threats. To address this, an encryption-type ransomware has been introduced on the Android operating system. The challenges associated with malicious threats in phone use have become a pressing issue in mobile communication, disrupting user experiences and...

CVE-2025-60349

An issue was discovered in Prevx v3.0.5.220 allowing attackers to cause a denial of service via sending IOCTL code 0x22E044 to the pxscan.sys driver. Any processes listed under registry key HKEYLOCALMACHINE\System\CurrentControlSet\Services\pxscan\Files will be terminated...

EUVD-2025-36441

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Don't recheck L1 intercepts when completing userspace I/O When completing emulation of instruction that generated a userspace exit for I/O, don't recheck L1 intercepts as KVM has already finished that phase of instructi...

CVE-2025-40038

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid Skip the WRMSR and HLT fastpaths in SVM's VM-Exit handler if the next RIP isn't valid, e.g. because KVM is running with nrips=false. SVM must decode and emulate...

UBUNTU-CVE-2025-40038

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid Skip the WRMSR and HLT fastpaths in SVM's VM-Exit handler if the next RIP isn't valid, e.g. because KVM is running with nrips=false. SVM must decode and emulate...

CVE-2025-40065

In the Linux kernel, the following vulnerability has been resolved: RISC-V: KVM: Write hgatp register with valid mode bits According to the RISC-V Privileged Architecture Spec, when MODE=Bare is selected,software must write zero to the remaining fields of hgatp. We have detected the valid mode...

CVE-2025-40061 RDMA/rxe: Fix race in do_task() when draining

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix race in dotask when draining When dotask exhausts its iteration budget !ret, it sets the state to TASKSTATEIDLE to reschedule, without a secondary check on the current task-state. This can overwrite the...

CVE-2025-40038

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid Skip the WRMSR and HLT fastpaths in SVM's VM-Exit handler if the next RIP isn't valid, e.g. because KVM is running with nrips=false. SVM must decode and emulate...

CVE-2025-40026

The CVE-2025-40026 entry concerns the Linux kernel KVM on x86. The issue arises when completing userspace I/O emulation: KVM should not recheck L1 intercepts because it has already completed that phase, but if the I/O permission bitmaps are modified during the exit to userspace, KVM may treat the...

CVE-2025-40026

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Don't recheck L1 intercepts when completing userspace I/O When completing emulation of instruction that generated a userspace exit for I/O, don't recheck L1 intercepts as KVM has already finished that phase of instructi...

MAL-2025-48927 Malicious code in func-analysist (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80289c38bf711f5ac60787399d199be29ca23f0695b947ee46825c9a3ce226bf The package func-analysist was found to contain malicious code. Source: ghsa-malware bb257e8ae472109cbe751b79ea838ddb8a0272301fac276ca6ade81aaa72b7d9...

MAL-2025-48929 Malicious code in graphnet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 022ef4190a3153420248771034a085983347a98a7bbd3be8ce4eaf80b0d0dfd8 The package graphnet was found to contain malicious code. Source: ghsa-malware f027c14837595ab3595469caa7197e8cdf4f3288a53a4c1fbf970cbb7cd6018d Any...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: open-vm-tools (UTSA-2025-988601)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988601 advisory. VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability.A malicious local actor with non-administrative privileges having access t...

Linux Distros Unpatched Vulnerability : CVE-2025-40026

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KVM: x86: Don't recheck L1 intercepts when completing userspace I/O When completing emulation of instruction that generated a userspace exit for I/O, don't...

MAL-2025-48774 Malicious code in badgekit-api-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 845af37fdbb4804eebee38f23aa25a4147f6e1d3a5e908d5d3bbe855105da3a3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...