Found 3 bookmarks
Custom sorting
ASUS Urges Users to Patch AiCloud Router Vuln Immediately
ASUS Urges Users to Patch AiCloud Router Vuln Immediately
ASUS recently disclosed a critical security vulnerability affecting routers that have AiCloud enabled, potentially allowing remote attackers to perform unauthorized execution functions on vulnerable devices. The vulnerability is being tracked as CVE-2025-2492 and was given a CVSS score of 9.2 on a 10.0 scale, making it classified as critical. According to ASUS researchers, the "improper authentication control vulnerability," which only exists in certain ASUS router firmware series, can be triggered by a "crafted request" on behalf of the attackers.
#darkreading#EN#2025#Asus#CVE-2025-2492#vulnerability#AiCloud#enabled#routers#firmware-authentication
·darkreading.com·
ASUS Urges Users to Patch AiCloud Router Vuln Immediately
Apple Drops Another WebKit Zero-Day Bug
Apple Drops Another WebKit Zero-Day Bug
For the third time in as many months, Apple has released an emergency patch to fix an already exploited zero-day vulnerability impacting a wide range of its products. The new vulnerability, identified as CVE-2025-24201, exists in Apple's WebKit open source browser engine for rendering Web pages in Safari and other apps across macOS, iOS, and iPadOS. WebKit is a frequent target for attackers because of how deeply integrated it is with Apple's ecosystem.
#darkreading#EN#2025#CVE-2025-24201spyware#Apple#vulnerability#0-day#WebKit
·darkreading.com·
Apple Drops Another WebKit Zero-Day Bug