Security Boulevard

CVE-2025-61882 Explained: The Oracle Zero-Day Breach That Hit Enterprises Hard

A critical zero-day vulnerability in Oracle E-Business Suite (EBS) was exploited by the Cl0p ransomware group in mid-2025.
SecurityWeek

Juniper Networks Patches Critical Junos Space Vulnerabilities

Juniper Networks has patched nearly 220 vulnerabilities in Junos OS, Junos Space, and Security Director products.
The Hacker News

Severe Framelink Figma MCP Vulnerability Lets Hackers Execute Code Remotely

Cybersecurity company Imperva, which discovered and reported the problem in July 2025, described CVE-2025-53967 as a "design ...
Security Boulevard

Response to Oracle Security Alert Advisory: Oracle E-Business Suite Pre-Auth RCE (CVE-2025-61882)

AttackIQ has released a new emulation in response to the Oracle Security Alert Advisory detailing the CVE-2025-61882 vulnerability, which impacts Oracle E-Business Suite versions 12.2.3 through ...
The Hacker News

From LFI to RCE: Active Exploitation Detected in Gladinet and TrioFox Vulnerability

Huntress reports active exploitation of Gladinet CVE-2025-11371, exposing system files and enabling remote code execution.
Infosecurity Magazine

Critical Flaw Exposes 60,000 Redis Servers to Remote Exploitation

A critical security flaw in Redis, a popular in-memory database platform used by about 75% of cloud environments, has left an ...
TechJuice

NCERT Issues Red Alert on SAP NetWeaver Vulnerabilities

Pakistan’s CERT warns of critical SAP NetWeaver flaws (CVE-2025-42944, 42922, 42958) risking full system takeover. Urges ...
Cyber Daily

Another 5 vulnerabilities added to CISA’s KEV catalogue

The United States Cybersecurity and Infrastructure Security Agency (CISA) has added another five vulnerabilities to its Known ...

Hackers exploit auth bypass in Service Finder WordPress theme

Threat actors are actively exploiting a critical vulnerability in the Service Finder WordPress theme that allows them to ...