Meta’s Llama Firewall Bypassed Using Prompt Injection Vulnerability https://cybersecuritynews.com/metas-llama-firewall/ #CyberSecurityNews #cybersecuritynews #Vulnerabilities #CyberSecurity #cybersecurity #vulnerability #Firewall
#vulnerability
154 posts40 participants0 posts today
GPUHammer – First Rowhammer Attack Targeting NVIDIA GPUs https://cybersecuritynews.com/gpuhammer-attack/ #CyberSecurityNews #VulnerabilityNews #cybersecuritynews #CyberSecurity #cybersecurity #vulnerability
Breaking down the Zero-Click AI Vulnerability Enabling Data Ex-filtration Through Calendar Invites in Eleven-labs Voice Assistants - by repello.ai
https://repello.ai/blog/zero-click-calendar-exfiltration-reveals-mcp-security-risk-in-11-ai
repello.aiRepello AI - Zero-Click Calendar Exfiltration Reveals MCP Security Risk in 11.aiRepello AI provides enterprise AI security platform with automated AI red teaming, adaptive guardrails and threat modelling. Secure your GenAI systems from deployment to production.
McDonald’s AI Hiring Tool McHire Security Flaw Exposed Candidate Chat Data – Source:hackread.com https://ciso2ciso.com/mcdonalds-ai-hiring-tool-mchire-security-flaw-exposed-candidate-chat-data-sourcehackread-com/ #1CyberSecurityNewsPost #CyberSecurityNews #cybersecurity #Vulnerability #Hackread #McDonald #security #Paradox #privacy #Leaks #IDOR #AI
CISO2CISO.COM & CYBER SECURITY GROUP · McDonald’s AI Hiring Tool McHire Security Flaw Exposed Candidate Chat Data – Source:hackread.comSource: hackread.com - Author: Deeba Ahmed. McHire’s AI system vulnerability briefly exposed limited candidate chat information. Learn how Paradox pr
Critical remote code execution flaw in mcp-remote exposes AI Systems to compromise
JFrog Security Research discovered a critical vulnerability (CVE-2025-6514) in the widely-used mcp-remote project that allows attackers to execute arbitrary operating system commands through OAuth authentication manipulation.
**If you use the mcp-remote npm package for connecting local LLM hosts to remote MCP servers, plan an urgent update to version 0.1.16. The flaw allows malicious MCP servers can push back commands to your computer and hack you. Also, make sure to only connect to trusted MCP servers using HTTPS connections.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-remote-code-execution-flaw-in-mcp-remote-exposes-ai-systems-to-compromise-g-r-q-n-e/gD2P6Ple2L
SureForms WordPress Plugin flaw enables unauthenticated file deletion, potential site takeover
A vulnerabilityin the SureForms WordPress plugin (CVE-2025-6691) allows unauthenticated attackers to delete arbitrary files, including the wp-config.php file, which can force sites into setup mode and enable complete website takeover. Patches are available in multiple updated versions.
**If you have the SureForms WordPress plugin installed, immediately check your version and update to the latest patched release (1.7.4 or appropriate version for your branch). Don't delay this one, because you can't really hide the form, and updating the plugin is nearly trivial.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/sureforms-wordpress-plugin-flaw-enables-unauthenticated-file-deletion-potential-site-takeover-e-k-3-m-q/gD2P6Ple2L
BeyondMachinesSureForms WordPress Plugin flaw enables unauthenticated file deletion, potential site takeoverA vulnerabilityin the SureForms WordPress plugin (CVE-2025-6691) allows unauthenticated attackers to delete arbitrary files, including the wp-config.php file, which can force sites into setup mode and enable complete website takeover. Patches are available in multiple updated versions.
Multiple flaws in Schneider Electric EcoStruxure IT Data Center Expert, at least one critical
Schneider Electric reports multiple vulnerabilities in its EcoStruxure IT Data Center Expert platform, including a CVSS 10.0 flaw (CVE-2025-50121) that enables unauthenticated remote code execution. The company released version 9.0 to patch all vulnerabilities.
**If you have Schneider Electric EcoStruxure IT Data Center Expert, make sure it's isolated from the internet and accesible from trusted networks only. Then plan an update cycle to version 9.0 available through Schneider's Customer Care Center with proper testing.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/multiple-flaws-in-schneider-electric-ecostruxure-it-data-center-expert-at-least-one-critical-f-7-2-q-w/gD2P6Ple2L
BeyondMachinesMultiple flaws in Schneider Electric EcoStruxure IT Data Center Expert, at least one criticalSchneider Electric reports multiple vulnerabilities in its EcoStruxure IT Data Center Expert platform, including a CVSS 10.0 flaw (CVE-2025-50121) that enables unauthenticated remote code execution. The company released version 9.0 to patch all vulnerabilities.
CISA Warns of CitrixBleed 2 Vulnerability Exploited in Attacks https://cybersecuritynews.com/cisa-warns-citrixbleed-2/ #CyberSecurityNews #VulnerabilityNews #cybersecuritynews #CyberSecurity #cybersecurity #vulnerability
I received an email earlier this week from EA asking if I wanted to be added to a public acknowledgement page they were creating for individuals who responsibly disclosed vulnerabilities to them.
For all the shit people give EA, of the 100+ companies I contacted in the last two years, they were the only company I would say had a decent incident response.
They fixed the issue within 12 hours after validating it as critical, and proactively provided me multiple updates over time.
When the IR was done on their side, they reached out again with some more information about the potential impact if the issue hadn't been solved quickly, and also offered me a reward.
I did not have to keep chasing anyone for updates, I wasn't asked for non-disclosure, or offered money in exchange for it, and people replied instead of ignoring me.
I wasn't blamed for their mistake, either, or reported to the authorities.
Unfortunately, at least one or multiple of the things mentioned above are present in most of my other incidents reported; it's a real shit show out there.
BugCrowd Bug Bounty Disclosure: P5 - Reflected XSS on oceandata.sci.gsfc.nasa.gov - FebriHp - https://www.redpacketsecurity.com/bugcrowd-bugbounty-disclosure-reflected-xss-on-oceandata-sci-gsfc-nasa-gov/
RedPacket Security · BugCrowd Bug Bounty Disclosure: P5 - Reflected XSS on oceandata.sci.gsfc.nasa.gov - FebriHp - RedPacket SecurityThis is a self XSS
McDonald’s AI Hiring Tool McHire Leaked Data of 64 Million Job Seekers https://hackread.com/mcdonalds-ai-hiring-tool-mchire-leaked-job-seekers-data/ #Cybersecurity #Vulnerability #Security #McDonald #Privacy #Paradox #Leaks #IDOR #AI
Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto · McDonald’s AI Hiring Tool McHire Leaked Data of 64 Million Job SeekersFollow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread
Critical #CitrixBleed 2 #vulnerability has been under active #exploit for weeks
A critical vulnerability allowing #hackers to bypass #multifactor #authentication in network management devices made by #Citrix has been actively #exploited for more than a month, researchers said. The finding is at odds with advisories from the vendor saying there is no evidence of in-the-wild #exploitation.
#security #privacy
Ars Technica · Critical CitrixBleed 2 vulnerability has been under active exploit for weeks
Gravityforms victim of supply chain attack?
https://patchstack.com/articles/critical-malware-found-in-gravityforms-official-plugin-site/
Patchstack · Malware Found in Official GravityForms Plugin Indicating Supply Chain Breach - PatchstackUpdate 7-11-2025 14:10 UTC: A version 2.9.13 has been released to ensure customers can safely update to a new version without a backdoor present. In addition, Namecheap (the domain registrar) has suspended the domain name gravityapi.org to avoid successful exploitation of the backdoor portion that connects to this domain name. Update 7-11-2025 12:38 UTC: We […]
Juniper releases patches for Junos OS and Junos OS Evolved to fix "BlastRADIUS" RADIUS protocol flaw
Juniper Networks patched a critical vulnerability called "BlastRADIUS" (CVE-2024-3596) affecting the RADIUS protocol in Junos OS and Junos OS Evolved that allows attackers to bypass authentication and gain unauthorized access to network devices due to improper validation of integrity check values.
**Review your Juniper device configuration. If you have Juniper devices using RADIUS authentication (configurations with [access radius-server]), update to the latest patched Junos OS or Junos OS Evolved versions to fix the BlastRADIUS flaw. If you can't patch, enable RADIUS over TLS (RADSEC) as a temporary workaround to encrypt RADIUS traffic and prevent exploitation of BlastRadius.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/juniper-releases-patches-for-junos-os-and-junos-os-evolved-to-fix-blastradius-radius-protocol-flaw-x-l-7-1-q/gD2P6Ple2L
Authorization bypass flaw in Juniper Security Director enables access to sensitive resources
Juniper Networks patched a critical vulnerability (CVE-2025-52950) in its Security Director network management platform that allows unauthenticated attackers to access sensitive resources and potentially compromise downstream managed devices including firewalls, switches, and routers due to missing authorization controls.
**If you have Juniper Security Director network management platforms, make sure to isolate the web interface from the internet and make it available only through trusted networks. Then plan an update to Software Bundle Update 24.4.1-1703 or later. Not a panic mode if you have isolated the web interface, but still a lot of endpoints are problematic so better to patch.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/authentication-bypass-flaw-in-juniper-security-director-enables-unauthenticated-access-to-sensitive-resources-8-a-z-m-y/gD2P6Ple2L
BeyondMachinesAuthorization bypass flaw in Juniper Security Director enables access to sensitive resourcesJuniper Networks patched a critical vulnerability (CVE-2025-52950) in its Security Director network management platform that allows unauthenticated attackers to access sensitive resources and potentially compromise downstream managed devices including firewalls, switches, and routers due to missing authorization controls.
Multiple vulnerabilities reported in Siemens SINEC NMS, at least one critical
Siemens patched multiple critical vulnerabilities in its SINEC NMS network management system, including a critical flaw (CVE-2025-40736). The company released SINEC NMS version V4.0 to address the vulnerabilities.
**If you have Siemens SINEC NMS network management systems, make sure they are islated from the internet and accessible only from trusted networks. If you are running versions prior to V4.0, plan an update to version V4.0. There is at least one critical flaw that can easily be exploited if a hacker reaches the system. And given enough time, they will. No isolation is perfect.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/multiple-vulnerabilities-reported-in-siemens-sinec-nms-at-least-one-critical-2-0-m-a-h/gD2P6Ple2L
BeyondMachinesMultiple vulnerabilities reported in Siemens SINEC NMS, at least one criticalSiemens patched multiple critical vulnerabilities in its SINEC NMS network management system, including a critical flaw (CVE-2025-40736). The company released SINEC NMS version V4.0 to address the vulnerabilities.
Fortinet FortiWeb Fabric Connector Vulnerability Exploited to Execute Remote Code https://cybersecuritynews.com/fortiweb-fabric-connector-vulnerability-exploited/ #CyberSecurityNews #VulnerabilityNews #cybersecuritynews #CyberSecurity #cybersecurity #vulnerability
Cyber Security News · Fortinet FortiWeb Fabric Connector Vulnerability Exploited to Execute Remote CodeA critical security vulnerability in Fortinet's FortiWeb Fabric Connector has been discovered and exploited, allowing attackers to execute remote code on affected systems without authentication.
Critical Wing FTP Server vulnerability exploited in the wild (CVE-2025-47812) https://www.helpnetsecurity.com/2025/07/11/critical-wing-ftp-server-vulnerability-exploited-in-the-wild-cve-2025-47812/ #vulnerability #WingFTPServer #filesharing #RCESecurity #Don'tmiss #Hotstuff #Huntress #exploit #Censys #News #SMBs #MSP #PoC
Help Net Security · Critical Wing FTP Server vulnerability exploited in the wild (CVE-2025-47812) - Help Net Security
More from 
Zeljka Zorz
Critical flaws in KUNBUS Revolution Pi industrial control systems enable authentication bypass and command execution
CISA issued advisories warning of critical vulnerabilities in KUNBUS Revolution Pi industrial control systems, including multiple CVSS 9.3 flaws that allow attackers to bypass authentication, gain unauthorized access to critical functions, and execute malicious commands on industrial automation infrastructure. KUNBUS has released patches for the affected Revolution Pi OS, PiCtory, and Webstatus components, and organizations should prioritize updating their industrial control deployments immediately.
**If you have KUNBUS Revolution Pi industrial control systems, as usual first check that they are isolated from the internet and accessible only from trusted networks. Then check your versions and update to the latest releases (PiCtory 2.12, Webstatus 2.4.6, and the new OS Bookworm image from April 2025). There a lot of nasty flaws in the product, so don't ignore patching.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-flaws-in-kunbus-revolution-pi-industrial-control-systems-enable-authentication-bypass-and-command-execution-r-l-x-v-t/gD2P6Ple2L
BeyondMachinesCritical flaws in KUNBUS Revolution Pi industrial control systems enable authentication bypass and command executionCISA issued advisories warning of critical vulnerabilities in KUNBUS Revolution Pi industrial control systems, including multiple CVSS 9.3 flaws that allow attackers to bypass authentication, gain unauthorized access to critical functions, and execute malicious commands on industrial automation infrastructure. KUNBUS has released patches for the affected Revolution Pi OS, PiCtory, and Webstatus components, and organizations should prioritize updating their industrial control deployments immediately.
Vulnerability cve-2025-25257 has received a comment on Vulnerability-Lookup:
Pre-Auth SQL Injection to RCE - Fortinet FortiWeb Fabric Connector (CVE-2025-25257)
http://vulnerability.circl.lu/comment/94b37950-f479-444b-bff8-5571bd15eac5
vulnerability.circl.luComment - Pre-Auth SQL Injection to RCE - Fortinet FortiWeb Fabric Connector (CVE-2025-25257)Vulnerability-Lookup - Fast vulnerability lookup correlation from different sources.