RSS HKCERT

  • Microsoft Edge Remote Code Execution Vulnerability August 29, 2025
    A vulnerability was identified in Microsoft Edge. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.     Impact Remote Code Execution System / Technologies affected Microsoft Edge Stable Channel version prior to 139.0.3405.125 Solutions Before installation of the software, please visit the software vendor web-site for more […]
  • Google Chrome Remote Code Execution Vulnerability August 28, 2025
    A vulnerability was identified in Google Chrome. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system. Impact Remote Code Execution System / Technologies affected Google Chrome prior to 139.0.7258.154 (Linux) Google Chrome prior to 139.0.7258.154/.155 (Mac) Google Chrome prior to 139.0.7258.154/.155 (Windows) Solutions Before installation of the software, please visit the software […]
  • GitLab Multiple Vulnerabilities August 28, 2025
    Multiple vulnerabilities were identified in GitLab. A remote attacker could exploit some of these vulnerabilities to trigger spoofing, sensitive information disclosure and denial of service condition on the targeted system. Impact Denial of Service Spoofing Information Disclosure System / Technologies affected GitLab Community Edition (CE) versions prior to 18.3.1, 18.2.5 and 18.1.5 GitLab Enterprise Edition […]
  • Cisco Products Multiple Vulnerabilities August 28, 2025
    Multiple vulnerabilities were identified in Cisco products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, sensitive information disclosure and remote code execution on the targeted system. Impact Denial of Service Information Disclosure Remote Code Execution System / Technologies affected MDS 9000 Series Multilayer Switches Nexus 1000 Virtual Edge for […]
  • Citrix Products Multiple Vulnerabilities August 27, 2025
    Multiple vulnerabilities were identified in Citrix Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, security restriction bypass and remote code execution on the targeted system.   Note: CVE-2025-7775 is being exploited in the wild.  ... Impact Remote Code Execution Security Restriction Bypass Denial of Service System / […]
  • Docker Desktop Security Restriction Bypass Vulnerability August 26, 2025
    A vulnerability has been identified in Docker Desktop. A remote attacker could exploit this vulnerability to trigger security restriction bypass on the targeted system.   Note: Proof of Concept exploit code is publicly available for CVE-2025-9074. The vulnerability may allow unauthorized access... Impact Security Restriction Bypass System / Technologies affected Docker Desktop on Windows below version […]
  • Microsoft Edge Remote Code Execution Vulnerability August 25, 2025
    A vulnerability was identified in Microsoft Edge. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.     Impact Remote Code Execution System / Technologies affected Microsoft Edge Stable Channel version prior to 139.0.3405.111 Microsoft Edge Extended Stable Channel version prior to 138.0.3351.144 Solutions Before installation of the […]
  • Apple Products Remote Code Execution Vulnerability August 21, 2025
    A vulnerability has been identified in Apple Products. A remote attacker could exploit this vulnerability to trigger remote code execution and denial of service condition on the targeted system.   Note: CVE-2025-43300 may have been exploited in an extremely sophisticated attack against specific targeted... Impact Remote Code Execution Denial of Service System / Technologies affected […]
  • Google Chrome Remote Code Execution Vulnerability August 20, 2025
    A vulnerability was identified in Google Chrome. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system. Impact Remote Code Execution System / Technologies affected Google Chrome prior to 139.0.7258.138 (Linux) Google Chrome prior to 139.0.7258.138/.139 (Mac) Google Chrome prior to 139.0.7258.138/.139 (Windows) Solutions Before installation of the software, please visit the software […]
  • ChromeOS Multiple Vulnerabilities August 20, 2025
    Multiple vulnerabilities were identified in ChromeOS. A remote attacker could exploit some of these vulnerabilities to trigger security restriction bypass, remote code execution and cross-site scripting on the targeted system. Impact Remote Code Execution Security Restriction Bypass Cross-Site Scripting System / Technologies affected ChromeOS versions prior to 16328.55.0 (Browser version 139.0.7258.137) Solutions Before installation of the software, […]