LR pixel

Ivanti EPMM Zero Day Vulnerabilities

von | 22. Mai 2025 | Unkategorisiert

What is the Vulnerability?On May 15, 2025, Ivanti disclosed two critical vulnerabilities, CVE-2025-4427 and CVE-2025-4428, affecting Ivanti Endpoint Manager Mobile (EPMM) version 12.5.0.0 and earlier. When chained together, these vulnerabilities can allow...

SAP Netweaver Zero-Day Attack

von | 10. Mai 2025 | Unkategorisiert

What is the Attack?A zero-day SAP vulnerability, CVE-2025-31324, with CVSS score of 10.0 is being actively exploited in the wild. This vulnerability affects SAP Visual Composer, allowing unauthenticated threat actors to upload arbitrary files, resulting in full...

Ivanti Connect Buffer Overflow Vulnerability

von | 7. Mai 2025 | Unkategorisiert

What is the Vulnerability?CVE-2025-22457 is identified as a buffer overflow vulnerability affecting Ivanti Connect Secure, Policy Secure and ZTA Gateways. If successfully exploited, can result in remote code execution. This exploitation poses significant risks,...

Langflow Missing Authentication Vulnerability

von | 6. Mai 2025 | Unkategorisiert

What is the Vulnerability?A critical missing authentication vulnerability, identified as CVE-2025-3248, has been discovered in Langflow, a web application designed for creating AI-driven agents. This vulnerability allows remote, unauthenticated attackers to execute...