GitLab Product Security Update Advisory
Security Advisory

GitLab Product Security Update Advisory

Overview   We have released security updates to fix vulnerabilities in GitLab products. Users of affected products are advised to update to the latest version.    Affected Products   CVE-2025-0673   GitLab CE/EE Versions: 17.7 and later but not earlier than 17.10.8GitLab CE/EE Versions: 17.11 and later but not earlier

  • Jul 04 2025
Sudo Security Update Advisory (CVE-2025-32463)
Security Advisory

Sudo Security Update Advisory (CVE-2025-32463)

Overview   we have released a security update that addresses a vulnerability in sudo. Users of affected products are advised to update to the latest version.    Affected Products   CVE-2025-32463   Sudo Versions: 1.9.14 and above and 1.9.17p1 and below     Resolved Vulnerabilities   Root privilege escalation vulnerability

  • Jul 04 2025
MCP Inspector Security Update Advisory (CVE-2025-49596)
Security Advisory

MCP Inspector Security Update Advisory (CVE-2025-49596)

Overview   We have released a security update to address a vulnerability in MCP Inspector. Affected product users are advised to update to the latest version.    Affected Products   CVE-2025-49596   MCP Inspector Version: 0.14.1 and earlier     Resolved Vulnerabilities   Remote code execution vulnerability due to lack

  • Jul 04 2025
Apache Tomcat July Vulnerability Security Update Advisory
Security Advisory

Apache Tomcat July Vulnerability Security Update Advisory

Overview   Apache Tomcat(https://tomcat.apache.org/) has released a security update that addresses a vulnerability in its shipped products. Users of affected products are advised to update to the latest version.   Affected Products   Apache Tomcat 9.0.0.M1 – 9.0.106   Resolved Vulnerabilities   Denial of Service Attack Vulnerability in Apache Tomcat

  • Jul 04 2025
XwormRAT Being Distributed Using Steganography
Malware

XwormRAT Being Distributed Using Steganography

AhnLab SEcurity intelligence Center (ASEC) collects information on malware distributed through phishing emails by using its own “email honeypot system.” Based on this information, ASEC publishes the “Phishing Email Trend Report” and “Infostealer Trend Report” on the ASEC Blog every month. Recently, XwormRAT has been confirmed to be distributed using

  • Jul 04 2025
Threat Views

July 04, 2025

July 04, 2025 Hash 145bf035f15dec591871526312a88c703 296a3ecdd3e195998a31ebef46dd9aa94 3030d5d038b3223a98c8ee0cebf030e05 URL 1http[:]//tronstar[.]top/ 2https[:]//paardenwijzer[.]com/ 3https[:]//kevinmbuck[.]com/ IP 1103[.]189[.]235[.]159 246[.]101[.]1[.]225 3165[.]154[.]36[.]71...

  • Jul 04 2025
Mobile Security & Malware Issue 1st Week of July, 2025
Mobile

Mobile Security & Malware Issue 1st Week of July, 2025

ASEC Blog publishes “Mobile Security & Malware Issue 1st Week of July, 2025”

  • Jul 04 2025
Atlassian Product Security Update Advisory (CVE-2025-22157)
Security Advisory

Atlassian Product Security Update Advisory (CVE-2025-22157)

Overview   We have released security updates to fix vulnerabilities in Atlassian products. Users of affected products are advised to update to the latest version.    Affected Products   CVE-2025-22157   Jira Data Center and Server versions: 10.5.0 and later and 10.5.1 and earlierJira Data Center and Server versions: 10.4.0

  • Jul 04 2025