PT-2025-46659

Name of the Vulnerable Software and Affected Versions affected versions not specified Description An issue exists related to incorrect default permissions that may lead to elevated system access. This occurs when the target installation folder is not adequately secured. Approximately 1000 devices...

Phone Searches at the US Border Hit a Record High

Customs and Border Protection agents searched nearly 15,000 devices from April through June of this year, a nearly 17 percent spike over the previous three-month high in 2022...

CVE-2025-8762

CVE-2025-8762 affects INSTAR 2K+ and 4K devices running version 3.11.1 Build 1124, specifically the UART Interface component. The issue arises from improper physical access control, enabling potential attacks on the physical device. Public disclosure of the exploit is noted. Available documents d...

Fortinet Firewalls Hit with New Zero-Day Attack, Older Data Leak

Executive summary Rapid7 is investigating two separate events affecting Fortinet firewall customers: Zero-day exploitation of CVE-2024-55591, an authentication bypass vulnerability in FortiOS and FortiProxy disclosed earlier this week. Successful exploitation could allow remote attackers to gain...

CVE-2021-34769

Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected...