Categories:
Uncategorized
CVE-2025-23298: Getting Remote Code Execution in NVIDIA Merlin
403 Forbidden 403 Forbidden
0
Categories:
Uncategorized
Is This Bad? This Feels Bad. (GoAnywhere CVE-2025-10035)
# Is This Bad? This Feels Bad. (GoAnywhere CVE-2025-10035) File transfer used to be simple fun – fire up your favourite FTP client, log in to a glFTPd site, and you were done. Fast forward to 2025, and the same act requires a procurement team, a web interface, and a […]
Categories:
Uncategorized
NVIDIA cuobjdump DWARF debug abbreviations parsing arbitrary code execution vulnerability
This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data. You can email the site owner […]
Categories:
Uncategorized
NVIDIA nvdisasm REL section header parsing out-of-bounds write vulnerability
This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data. You can email the site owner […]
Categories:
Uncategorized
NVIDIA nvdisasm REL section header parsing heap-based buffer overflow vulnerability
This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data. You can email the site owner […]
Categories:
Uncategorized
Our plan for a more secure npm supply chain
Addressing a surge in package registry attacks, GitHub is strengthening npm’s security with stricter authentication, granular tokens, and enhanced trusted publishing to restore trust in the open source ecosystem. Open source software is the bedrock of the modern software industry. Its collaborative nature and vast ecosystem empower developers worldwide, driving […]
Categories:
Uncategorized
Adobe Acrobat Reader Page Property Use-After-Free Vulnerability
This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data. You can email the site owner […]
Categories:
Uncategorized
The Phantom Extension: Backdooring chrome through uncharted pathways
# The Phantom Extension: Backdooring chrome through uncharted pathways The increasing hardening of traditional Windows components such as LSASS has pushed attackers to explore alternative entry points. Among these, web browsers have emerged as highly valuable targets since they are now the primary gateway to sensitive data and enterprise cloud […]
Categories:
Uncategorized
Nimbus Manticore Deploys New Malware Targeting Europe
Since early 2025, Check Point Research (CPR) has tracked waves of Nimbus Manticore activity. Known as **UNC1549 or Smoke** **Sandstorm,** Nimbus Manticore is a mature Iran-nexus APT group that primarily targets aerospace and defense organizations in the Middle East and Europe. Some of its operations were also previously described as the _Iranian DreamJob_ campaign. […]
Categories:
Uncategorized
Exploring GrapheneOS secure allocator: Hardened Malloc
# Exploring GrapheneOS secure allocator: Hardened Malloc GrapheneOS is a mobile operating system based on Android and focusing on privacy and security. To enhance further the security of their product, GrapheneOS developpers introduced a new libc allocator : **hardened malloc.** This allocator has a security-focused design in mind to protect […]