Recent Vulnerabilities in Redis Server’s Lua Scripting Engine

CVE-2025-59287 exposes a critical WSUS deserialization flaw enabling unauthenticated remote code execution via unsafe AuthorizationCookie handling. Learn the risks and fixes. The post Recent Vulnerabilities in Redis Server’s Lua Scripting Engine appeared first on OffSec. This article has been indexed…

RediShell RCE Vulnerability Exposes 8,500+ Redis Instances to Code Execution Attacks

itsecuritynews.info - 30/Oct 18:04

The cybersecurity landscape faced a critical threat in early October 2025 with the public disclosure of RediShell, a severe use-after-free...

RediShell RCE Vulnerability Exposes 8,500+ Redis Instances to Code Execution Attacks

itsecuritynews.info - 30/Oct 18:04

The cybersecurity landscape faced a critical threat in early October 2025 with the public disclosure of RediShell, a severe use-after-free...

CISA Beware! Hackers Are Actively Exploiting Windows Server Update Services RCE Flaw in the Wild

itsecuritynews.info - 25/Oct 17:05

Cybersecurity researchers are sounding the alarm after discovering that hackers are actively exploiting a critical remote code execution (RCE)...

Critical Windows Server WSUS Vulnerability Exploited in the Wild

itsecuritynews.info - 24/Oct 15:05

CVE-2025-59287 allows a remote, unauthenticated attacker to execute arbitrary code and a PoC exploit is available. The post Critical Windows Server...

CVE-2025-59287: Microsoft fixes critical WSUS flaw under active attack

securityaffairs.co - 25/Oct 10:49

Microsoft released urgent updates to address the critical WSUS RCE vulnerability CVE-2025-59287, which is under active attack.. Microsoft released an...

Microsoft WSUS Remote Code Execution (CVE-2025-59287) Actively Exploited in the Wild (Updated November 3)

itsecuritynews.info - 04/Nov 01:06

CVE-2025-59287 is a critical RCE vulnerability identified in Microsoft’s WSUS. Our observations from cases show a consistent methodology. The post...

Microsoft WSUS Remote Code Execution (CVE-2025-59287) Actively Exploited in the Wild (Updated November 3)

itsecuritynews.info - 04/Nov 01:06

CVE-2025-59287 is a critical RCE vulnerability identified in Microsoft’s WSUS. Our observations from cases show a consistent methodology. The post...

CISA Adds Two Known Exploited Vulnerabilities to Catalog

itsecuritynews.info - 24/Oct 18:04

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation....

Unauthenticated RCE in WSUS Puts Organizations at Risk

itsecuritynews.info - 03/Nov 18:34

Microsoft patches WSUS RCE flaw letting attackers gain SYSTEM access. Learn how to secure servers and prevent exploitation. The post Unauthenticated...

CISA Warns of Hackers Actively Exploiting Windows Server Update Services RCE Vulnerability in the Wild

itsecuritynews.info - 25/Oct 03:34

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned organizations worldwide about active exploitation of a critical remote...

Rubriques :

Recent Vulnerabilities in Redis Server’s Lua Scripting Engine

Articles similaires

RediShell RCE Vulnerability Exposes 8,500+ Redis Instances to Code Execution Attacks

RediShell RCE Vulnerability Exposes 8,500+ Redis Instances to Code Execution Attacks

CISA Beware! Hackers Are Actively Exploiting Windows Server Update Services RCE Flaw in the Wild

Critical Windows Server WSUS Vulnerability Exploited in the Wild

CVE-2025-59287: Microsoft fixes critical WSUS flaw under active attack

Microsoft WSUS Remote Code Execution (CVE-2025-59287) Actively Exploited in the Wild (Updated November 3)

Microsoft WSUS Remote Code Execution (CVE-2025-59287) Actively Exploited in the Wild (Updated November 3)

CISA Adds Two Known Exploited Vulnerabilities to Catalog

Unauthenticated RCE in WSUS Puts Organizations at Risk

CISA Warns of Hackers Actively Exploiting Windows Server Update Services RCE Vulnerability in the Wild

Les derniers communiqués