Secure Bulletin Navigating the cyber sea with knowledge
Home > Categoria > Vulnerability
Latest news

Critical Roundcube vulnerability (CVE-2025-49113): exploit sold in Darknet as “Email Armageddon” looms

6 June 2025  |  securebulletin.com  |  Vulnerability

A decade-old Remote Code Execution (RCE) flaw in Roundcube, the widely used open-source email client, has escalated into a global cybersecurity emergency. Designated CVE-2025-49113 with a near-maximum CVSS...

>> read more

Windows 11 fails to start after KB5058405 update

29 May 2025  |  securebulletin.com  |  Vulnerability

The recent disclosure by Microsoft regarding the KB5058405 cumulative update for Windows 11 has significant implications for enterprise cybersecurity and IT operations. This update, released as part of...

>> read more

Analysis of recent high-severity vulnerabilities in GitLab and Atlassian products

22 May 2025  |  securebulletin.com  |  Vulnerability

Both GitLab and Atlassian have recently released critical security patches addressing a series of high-severity vulnerabilities across their core product lines. This coordinated disclosure and remediation effort underscores...

>> read more

Malicious npm packages hijack macOS Cursor AI IDE

9 May 2025  |  securebulletin.com  |  Vulnerability

The Socket Threat Research Team has uncovered a sophisticated supply chain attack targeting macOS developers using the Cursor AI code editor. Three malicious npm packages-sw-cur, sw-cur1, and aiide-cur-have...

>> read more

Stealthy Linux backdoor leveraging residential proxies and NHAS reverse SSH

4 May 2025  |  securebulletin.com  |  Vulnerability

A recently discovered Linux backdoor (SHA256: ea41b2bf1064efcb6196bb79b40c5158fc339a36a3d3ddee68c822d797895b4e) employs advanced evasion techniques to bypass detection while establishing persistent access via SOCKS5 proxies and in-memory payload execution. This analysis breaks...

>> read more

MITRE Signals Critical Risk to CVE Program as Federal Funding Expires

15 April 2025  |  securebulletin.com  |  Vulnerability

The cybersecurity world faces a significant challenge as the Common Vulnerabilities and Exposures (CVE) program, a cornerstone of global vulnerability management, risks disruption due to expiring federal funding....

>> read more

Surge in Palo Alto Networks scanner activity

1 April 2025  |  securebulletin.com  |  Vulnerability

GreyNoise has detected a significant surge in login scanning activity aimed at Palo Alto Networks PAN-OS GlobalProtect portals. In the last month, nearly 24,000 unique IP addresses have...

>> read more

Critical Remote Code Execution vulnerability discovered in GiveWP WordPress Plugin (CVE-2025-0912)

5 March 2025  |  securebulletin.com  |  Vulnerability

A critical security vulnerability, identified as CVE-2025-0912, has been discovered in the GiveWP WordPress donation plugin. This flaw potentially exposes over 100,000 WordPress websites to remote code execution...

>> read more