cyberfeed.io — security news aggregator

Risky Business #804 -- Phrack's DPRK hacker is probably a Chinese APT guy

Risky Business Media • 2025-08-27 • risky.biz

On this week's show Patrick Gray and Adam Boileau discuss the week's cybersecurity news, including: Australia expels Iranian ambassador Hackers sabotage Iranian shipping satcoms APT hacker got doxxed in Phrack. Kind of. They're probably Chinese, not DPRK? Trail of Bits uses image-downscaling to sneak prompts into Google Gemini The Com's King Bob gets ten years in the slammer It's a day that ends in -y, so of course there's a new Citrix Netscaler RCE being used in the wild. This week's episode...

#rce

A Vulnerability in Git Could Allow for Remote Code Execution

Cyber Security Advisories - MS-ISAC • 2025-08-27 • www.cisecurity.org

A vulnerability has been discovered in Git, which could allow for remote code execution. Git is a free and open-source distributed version control system (VCS). It is designed to track changes in source code during software development and is widely used for coordinating work among multiple developers on the same project. Successful exploitation of this vulnerability could allow an attacker to write a malicious Git Hook script, resulting in remote code execution (RCE) whenever subcommands like...

#rce #vulnerability #patch-management #exploit

Xpost: Achieving RCE via in-game MMO Scripting Engine

cybersecurity • 2025-08-26 • www.reddit.com

submitted by /u/0xv1n [link] [comments]

#rce

Citrix fixes critical NetScaler RCE flaw exploited in zero-day attacks

BleepingComputer • 2025-08-26 • www.bleepingcomputer.com

Citrix fixed three NetScaler ADC and NetScaler Gateway flaws today, including a critical remote code execution flaw tracked as CVE-2025-7775 that was actively exploited in attacks as a zero-day vulnerability.

#rce #vulnerability #patch-management #zero-day

Git vulnerability leading to RCE is being exploited by attackers

cybersecurity • 2025-08-26 • www.reddit.com

https://www.helpnetsecurity.com/2025/08/26/git-vulnerability-exploited-cve-2025-48384/ submitted by /u/tekz [link] [comments]

#rce #vulnerability #patch-management

The Prevalence of Web-Based RCE Vulnerabilities

F5 Labs All • 2025-08-26 • www.f5.com

Sensor Intel Series: July 2025 CVE Trends

#rce #vulnerability

This House is Haunted: a decade old RCE in the AION client

Technical Information Security Content & Discussion • 2025-08-26 • www.reddit.com

submitted by /u/himazawa [link] [comments]

#rce

Citrix NetScaler ADC and Gateway 0-Day RCE Vulnerability Actively Exploited in Attacks

Cyber Security News • 2025-08-26 • cybersecuritynews.com

Cloud Software Group has disclosed multiple high-severity vulnerabilities in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway) that can lead to remote code execution (RCE) and denial of service (DoS). Exploitation of CVE-2025-7775 has been observed in the wild against unmitigated appliances, and customers are urged to upgrade immediately. Affected versions include

#cloud #rce #vulnerability #patch-management #exploit

CISA Warns of Citrix RCE and Privilege Escalation Vulnerabilities Exploited in Attacks

Cyber Security News • 2025-08-26 • cybersecuritynews.com

CISA has issued a critical alert regarding three newly identified vulnerabilities being actively exploited by threat actors. On August 25, 2025, CISA added these high-risk Common Vulnerabilities and Exposures (CVEs) to its Known Exploited Vulnerabilities (KEV) Catalog, signaling immediate concern for federal agencies and private organizations alike. Key Takeaways1. CISA added two Citrix Session Recording

#rce #vulnerability #privilege-escalation

[remote] GeoVision ASManager Windows Application 6.1.2.0 - Remote Code Execution (RCE)

Exploit-DB.com RSS Feed • 2025-08-26 • www.exploit-db.com

GeoVision ASManager Windows Application 6.1.2.0 - Remote Code Execution (RCE)

#rce

Vtenext 25.02: A three-way path to RCE

Technical Information Security Content & Discussion • 2025-08-25 • www.reddit.com

submitted by /u/theMiddleBlue [link] [comments]

#rce

PoC Exploit & Vulnerability Analysis Released for Apple 0-Day RCE Vulnerability

Cyber Security News • 2025-08-25 • cybersecuritynews.com

A detailed proof-of-concept exploit and comprehensive vulnerability analysis have been released for CVE-2025-43300, a critical zero-click remote code execution flaw affecting Apple's image processing infrastructure. The vulnerability, discovered in Apple's implementation of JPEG Lossless Decompression within the RawCamera.bundle, allows attackers to achieve code execution without any user interaction through maliciously crafted DNG (Digital Negative) files.

#rce #vulnerability #patch-management #incident #exploit

Node.js Arbitrary File Upload to RCE - AppSecMaster Challenge Writeup

cybersecurity • 2025-08-22 • www.reddit.com

A well written writeup for an interesting technique that cannot be easily spotted without the code. The importance of code review is increasing for organisations https://00xmora.github.io/posts/Node.js-Arbitrary-File-Upload-to-RCE-AppSec-Master-Challenge-Writeup/ submitted by /u/Imaginary_Page_2127 [link] [comments]

#rce

Guess Who Would Be Stupid Enough To Rob The Same Vault Twice? Pre-Auth RCE Chains in Commvault

For [Blue|Purple] Teams in Cyber Defence • 2025-08-20 • www.reddit.com

submitted by /u/digicat [link] [comments]

#rce

Threat Actors Allegedly Listed Windows Zero-Day RCE Exploit For Sale on Dark Web

Cyber Security News • 2025-08-20 • cybersecuritynews.com

An alleged threat actor has listed a Windows Zero-Day Remote Code Execution (RCE) exploit for sale, claiming it targets fully updated Windows 10, Windows 11, and Windows Server 2022 systems. The posting reported by ThreatMon advertises weaponized exploit code purportedly capable of granting SYSTEM-level privileges with no prior authentication or user interaction, bypassing intrinsic Windows

#rce #incident #exploit #authentication #zero-day

Guess Who Would Be Stupid Enough To Rob The Same Vault Twice? Pre-Auth RCE Chains in Commvault - watchTowr Labs

Technical Information Security Content & Discussion • 2025-08-20 • www.reddit.com

submitted by /u/dx7r__ [link] [comments]

#rce

CodeRabbit's Production Servers RCE Vulnerability Enables Write Access on 1M Repositories

Cyber Security News • 2025-08-20 • cybersecuritynews.com

A critical remote code execution (RCE) vulnerability in CodeRabbit's production infrastructure that provided unauthorized access to over one million code repositories, including private ones. The vulnerability, discovered in December 2024 and responsibly disclosed in January 2025, exploited the platform's static analysis tool integration to leak sensitive API credentials and gain write access to GitHub repositories

#security-tools #rce #vulnerability #patch-management #sast

Elastic rejects claims of a zero-day RCE flaw in Defend EDR

BleepingComputer • 2025-08-19 • www.bleepingcomputer.com

Enterprise search and security company Elastic is rejecting reports of a zero-day vulnerability impacting its Defend endpoint detection and response (EDR) product.

#rce #vulnerability #zero-day #edr #detection-engineering

How We Exploited CodeRabbit: From a Simple PR to RCE and Write Access on 1M Repositories

Technical Information Security Content & Discussion • 2025-08-19 • www.reddit.com

submitted by /u/tmlxs [link] [comments]

#rce

Technical Details of SAP 0-Day Exploitation Script Used to Achieve RCE Disclosed

Cyber Security News • 2025-08-19 • cybersecuritynews.com

A sophisticated zero-day exploitation script targeting SAP systems has emerged in the cybersecurity landscape, demonstrating advanced remote code execution capabilities that pose significant risks to enterprise environments worldwide. The malicious payload specifically targets SAP NetWeaver Application Server vulnerabilities, exploiting weaknesses in the Internet Communication Manager (ICM) component to establish unauthorized system access. Security researchers have

#rce #vulnerability #exploit #zero-day