Overview CVE-2025-27232 is a significant security vulnerability affecting Zabbix, a widely used open-source monitoring solution. This vulnerability allows an authenticated Zabbix Super Admin to exploit the oauth.authorize action to read arbitrary files from the web server. Successful exploitation can lead to a substantial loss of confidentiality, as sensitive information stored on the server could be accessed. Technical Details The vulnerability resides in the OAuth authorization process within Zabbix. Specifically, the oauth.authorize action, when improperly validated, allows a Super Admin user to manipulate parameters in a way that bypasses intended security checks. This manipulation enables the reading of arbitrary files accessible…

Overview CVE-2025-12106 describes a heap buffer over-read vulnerability affecting OpenVPN versions 2.7_alpha1 through 2.7_rc1. This vulnerability arises due to insufficient argument validation when parsing IP addresses, potentially allowing a malicious attacker to trigger a denial-of-service (DoS) or potentially lead to information disclosure. While the CVSS score is currently N/A, understanding the nature of this vulnerability is crucial for OpenVPN users and administrators. Technical Details The vulnerability stems from the way OpenVPN parses IP addresses. Specifically, the code responsible for interpreting and validating IP address inputs within the affected versions lacks proper bounds checking. This means that if an attacker can…

Overview CVE-2025-58408 describes a vulnerability affecting certain GPU drivers where a non-privileged user application can trigger improper GPU system calls. This allows the application to read stale data, potentially leading to kernel exceptions and, critically, use-after-free conditions within the kernel space. Technical Details The vulnerability stems from insufficient validation and handling of GPU system calls originating from user space. A malicious or compromised application, running with standard user privileges, can manipulate system calls related to GPU operations. This manipulation causes the system to access outdated data related to GPU resources. The stale data can include handles to resources where reference…

Overview CVE-2025-13296 details a Cross-Site Request Forgery (CSRF) vulnerability identified in Tekrom Technology Inc.’s T-Soft E-Commerce platform. This vulnerability allows an attacker to potentially execute unauthorized actions on behalf of a legitimate user without their knowledge or consent. The vulnerability affects T-Soft E-Commerce versions up to and including build 28112025. Technical Details CSRF vulnerabilities arise when a web application does not adequately verify that HTTP requests originate from a legitimate user session. An attacker can exploit this by crafting malicious HTML (often embedded in emails or other websites) that, when visited by an authenticated user, silently triggers requests to the…

Overview CVE-2025-8045 is a use-after-free vulnerability discovered in the Arm Ltd Valhall GPU Kernel Driver and the Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver. This flaw allows a local, non-privileged user process to exploit the GPU by performing improper processing operations that lead to accessing already freed memory. This can potentially lead to system instability, information disclosure, or even arbitrary code execution. The affected versions are Valhall GPU Kernel Driver and Arm 5th Gen GPU Architecture Kernel Driver from r53p0 through r54p1. Technical Details A use-after-free vulnerability occurs when a program attempts to access memory that has already…

Overview CVE-2025-6349 is a critical use-after-free (UAF) vulnerability affecting Arm Ltd Valhall GPU Kernel Driver and Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver. This flaw allows a local, non-privileged user process to potentially gain unauthorized access to already freed memory by performing improper GPU memory processing operations. This vulnerability exists in versions r53p0 through r54p1 of both the Valhall and 5th Gen GPU Kernel Drivers. Technical Details The vulnerability stems from improper handling of GPU memory resources after they have been freed. Specifically, a race condition or incorrect synchronization mechanism allows a user-mode process to continue accessing memory…

Overview CVE-2025-59789 describes an uncontrolled recursion vulnerability in the json2pb component of Apache bRPC versions prior to 1.15.0. This flaw allows remote attackers to potentially crash a server by sending deeply nested JSON data. Exploiting this vulnerability can lead to a denial-of-service (DoS) condition. Technical Details The root cause lies in the way the json2pb component utilizes the rapidjson library to parse incoming JSON data. rapidjson, by default, employs a recursive parsing method. If an attacker crafts a JSON payload with an excessively deep recursive structure, the parsing function can exhaust the server’s stack memory, resulting in a stack overflow…

Overview A Reflected Cross-site Scripting (XSS) vulnerability, identified as CVE-2025-41070, has been discovered in Sanoma’s Clickedu platform. This vulnerability allows an attacker to inject malicious JavaScript code into a victim’s browser by tricking them into clicking a specially crafted link. This is a client-side attack, making it crucial for Clickedu users to understand the risks and mitigation strategies. Technical Details The vulnerability exists in the /students/carpetes_varies.php endpoint of Clickedu. By crafting a malicious URL containing JavaScript code, an attacker can trick a user into executing this code within their browser. The application fails to properly sanitize user-supplied input, leading to…

Overview CVE-2025-2879 describes a vulnerability affecting Arm Ltd’s Valhall GPU Kernel Driver and Arm Ltd’s 5th Gen GPU Architecture Kernel Driver. This vulnerability allows a local, non-privileged user process to perform improper GPU processing operations, potentially exposing sensitive data. This could have serious implications for the security of devices utilizing these GPU drivers. Technical Details The vulnerability resides in how the Arm GPU Kernel Drivers handle certain GPU processing operations. By exploiting this weakness, a malicious local process can manipulate the GPU to leak sensitive information that would otherwise be protected. The specific nature of the improper GPU processing operations…