CISA Archives - Page 2 of 6 - Zecker McDecker LLC

Vulnerability Summary for the Week of April 7, 2025

April 14, 2025

CyberSecurity

High Vulnerabilities

PrimaryVendor — Product
Description
Published
CVSS Score
Source Info

n/a — n/a
A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). Affected devices contain hardcoded credentials f…

Read more →

Vulnerability Summary for the Week of March 31, 2025

April 7, 2025

CyberSecurity

High Vulnerabilities

PrimaryVendor — Product
Description
Published
CVSS Score
Source Info

Aboobacker.–AB Google Map Travel
Cross-Site Request Forgery (CSRF) vulnerability in Aboobacker. AB Google Map Travel allows Cross Site Request For…

Read more →

Vulnerability Summary for the Week of March 24, 2025

March 31, 2025

CyberSecurity

High Vulnerabilities

PrimaryVendor — Product
Description
Published
CVSS Score
Source Info

n/a — n/a
Following the recent Chrome sandbox escape (CVE-2025-2783), various Firefox developers identified a similar pattern in our IPC code. A c…

Read more →

Vulnerability Summary for the Week of March 17, 2025

March 24, 2025

CyberSecurity

High Vulnerabilities

PrimaryVendor — Product
Description
Published
CVSS Score
Source Info

Synology–Unified Controller (DSMUC)
Off-by-one error vulnerability in the transmission component in Synology Replication Service before 1.0.12-006…

Read more →

CISA Adds One Known Exploited Vulnerability to Catalog

March 24, 2025

CyberSecurity

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-30154 reviewdog action-setup […]

Read more →

Schneider Electric EcoStruxure™

March 20, 2025

CyberSecurity

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Low attack complexity Vendor: Schneider Electric Equipment: EcoStruxure™ Vulnerability: Improper Privilege […]

Read more →

CISA Releases Five Industrial Control Systems Advisories

March 20, 2025

CyberSecurity

CISA released five Industrial Control Systems (ICS) advisories on March 20, 2025. These advisories provide timely information about current security […]

Read more →

CISA Adds Three Known Exploited Vulnerabilities to Catalog

March 19, 2025

CyberSecurity

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-1316 Edimax IC-7100 IP […]

Read more →

Supply Chain Compromise of Third-Party GitHub Action, CVE-2025-30066

March 18, 2025

CyberSecurity

A popular third-party GitHub Action, tj-actions/changed-files (tracked as CVE-2025-30066), was compromised. This GitHub Action is designed to detect which files […]

Read more →

Rockwell Automation Lifecycle Services with VMware

March 18, 2025

CyberSecurity

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.4 ATTENTION: Low attack complexity/public exploits are available/known public exploitation Vendor: Rockwell Automation […]

Read more →

Zecker McDecker LLC

Tag: CISA

Vulnerability Summary for the Week of April 7, 2025

Vulnerability Summary for the Week of March 31, 2025

Vulnerability Summary for the Week of March 24, 2025

Vulnerability Summary for the Week of March 17, 2025

CISA Adds One Known Exploited Vulnerability to Catalog

Schneider Electric EcoStruxure™

CISA Releases Five Industrial Control Systems Advisories

CISA Adds Three Known Exploited Vulnerabilities to Catalog

Supply Chain Compromise of Third-Party GitHub Action, CVE-2025-30066

Rockwell Automation Lifecycle Services with VMware

Tags