RSS HKCERT

  • SUSE Linux Kernel Multiple Vulnerabilities October 8, 2025
    Multiple vulnerabilities were identified in SUSE Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution and security restriction bypass on the targeted system. Impact Remote Code Execution Denial of Service Security Restriction Bypass System / Technologies affected SUSE Linux Enterprise High Performance Computing 12 […]
  • Redis Products Remote Code Execution Vulnerability October 8, 2025
    A vulnerability has been identified in Redis Products. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.   Note: Proof of Concept exploit code Is publicly available for CVE-2025-49844. An authenticated user may use a specially... Impact Remote Code Execution System / Technologies affected All Redis Software releases […]
  • Samsung Products Multiple Vulnerabilities October 8, 2025
    Multiple vulnerabilities were identified in Samsung products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, sensitive information disclosure, data manipulation and security restriction bypass on the targeted system. Impact Remote Code Execution Denial of Service Information Disclosure Security Restriction Bypass Data Manipulation System / Technologies […]
  • Google Chrome Multiple Vulnerabilities October 8, 2025
    Multiple vulnerabilities were identified in Google Chrome. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition and remote code execution on the targeted system. Impact Remote Code Execution Denial of Service System / Technologies affected Google Chrome prior to 141.0.7390.65 (Linux) Google Chrome prior to 141.0.7390.65/.66 (Mac) Google Chrome prior […]
  • Zimbra Collaboration Suite Cross-Site Scripting Vulnerability October 6, 2025
    A vulnerability has been identified in Zimbra Collaboration Suite. A remote attacker could exploit this vulnerability to trigger cross-site scripting on the targeted system.   Note: CVE-2025-27915 is being exploited in the wild. A stored cross-site scripting vulnerability exists... Impact Cross-Site Scripting System / Technologies affected Zimbra Collaboration Kepler prior to 9.0.0 P44 Zimbra Collaboration […]
  • Oracle E-Business Suite Remote Code Execution Vulnerability October 5, 2025
    A vulnerability has been identified in Oracle E-Business Suite. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.   Note: CVE-2025-61882 is being exploited in the wild. This vulnerability allows unauthenticated attacker with network... Impact Remote Code Execution System / Technologies affected Oracle E-Business Suite versions 12.2.3-12.2.14 Solutions […]
  • Jenkins Multiple Vulnerabilities October 3, 2025
    Multiple vulnerabilities were identified in Jenkins. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, denial of service condition, spoofing and elevation of privilege on the targeted system.   Note: CVE-2017-1000353 is being exploited in... Impact Remote Code Execution Denial of Service Spoofing Elevation of Privilege System / Technologies affected Jenkins 2.56 and […]
  • Ubuntu Linux Kernel Multiple Vulnerabilities October 3, 2025
    Multiple vulnerabilities were identified in Ubuntu Linux Kernel. An attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, sensitive information disclosure,  security restriction bypass and data manipulation on the targeted system.   [Updated on 2025... Impact Remote Code Execution Denial of Service Information Disclosure Elevation […]
  • Microsoft Edge Multiple Vulnerabilities October 3, 2025
    Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger security restriction bypass, remote code execution, denial of service condition and sensitive information disclosure on the targeted system. Impact Remote Code Execution Denial of Service Information Disclosure Security Restriction Bypass System / Technologies affected Microsoft Edge version prior to […]
  • OpenSSL Multiple Vulnerabilities October 2, 2025
    Multiple vulnerabilities were identified in OpenSSL. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, denial of service condition and sensitive information disclosure on the targeted system. Impact Denial of Service Remote Code Execution Information Disclosure System / Technologies affected OpenSSL version 1.0.2 OpenSSL version 1.1.1 OpenSSL version 3.0 OpenSSL version 3.2 […]