Apache Tomcat October Vulnerability Security Update Advisory
Overview Apache Tomcat(https://tomcat.apache.org/) has released a security update that addresses a vulnerability in its shipped products. Users of affected products are advised to update to the latest version. Affected Products Apache Tomcat 9.0.40 – 9.0.108 Apache Tomcat 9.0.0.M11 – 9.0.108 Apache Tomcat 9.0.0.M1 – 9.0.109 Apache Tomcat
October 29, 2025
October 29, 2025 Hash 1ba64b4d65b2a58eda43e3e5c99c7e360 29f68529fdeb94a0c662cfd89b2874c0c 35dd724c891eef78598e69fef5f696adc URL 1https[:]//m-bbsports[.]com/W-8BEN[.]html?CsGfOItW77O8DLRd1KYSXOA1yDfwlzkEe7c8UpwDrpXF2reC34aZ8Kp2WmR7xLqT1vYeCdCsGfOItW77O8DLRd1KYSXOA1yDfwlzkEe7c8UpwDrpXF2reC34 2https[:]//dinnerling[.]ykdrdxqw[.]cn/amcmembr_Loginam/ 3https[:]//everpure288[.]weebly[.]com/ IP 1122[.]35[.]192[.]61 28[.]217[.]177[.]33 3190[.]181[.]44[.]194...
October 28, 2025
October 28, 2025 Hash 121ca089937ac51a71a50e7dad0aa0d1a 2af4ad7e524ac8150b82e6838e416822f 3d51966cd94baa8d1df362c7babdcecb9 URL 1http[:]//202[.]85[.]222[.]160/ 2https[:]//recomandat[.]com/ 3https[:]//portalver[.]weebly[.]com/ IP 1195[.]158[.]4[.]216 2187[.]174[.]238[.]116 3123[.]240[.]255[.]61...
Case of ActiveMQ Vulnerability Exploitation to Install Sharpire (Kinsing)
AhnLab SEcurity intelligence Center (ASEC) has confirmed that the Kinsing threat actor is still distributing malware by exploiting known vulnerabilities. Since the disclosure of the CVE-2023-46604 vulnerability in ActiveMQ, the threat actor has been exploiting it to install malware on both Linux and Windows systems. [1] Aside from the well-known XMRig
ManageEngine (ADManager Plus) Products October 2025 Security Update Advisory
Overview Zoho(https://www.zohocorp.com/) has released a security update that addresses a vulnerability in its ManageEngine suite of products. Users of affected products are advised to update to the latest version. Affected Products ADManager Plus 8023 and later versions Resolved Vulnerabilities High Impact Authenticated Command Injection Vulnerability
MOTEX Product Security Update Advisory (CVE-2025-61932)
Overview We have released a security update to fix vulnerabilities in MOTEX products. Users of affected products are advised to update to the latest version. Affected Products CVE-2025-61932 Lanscope Endpoint Manager (On-Premises) Versions: 9.4.7.1 and earlier Resolved Vulnerabilities Remote arbitrary code execution vulnerability
Siemens Family Security Update Advisory
Overview We have released a security update that fixes vulnerabilities in the Siemens family of products. Users of affected products are advised to update to the latest version. Affected Products CVE-2025-40755 SINEC NMS Version: 4.0 SP1 and earlier CVE-2025-40765 TeleControl Server Basic Version: 3.1.2.2
October 27, 2025
October 27, 2025 Hash 1cf062838428bc31557beaea0572d8617 293f6e19df7298109bfe3b976607c9fb8 3fd64e0407d959e497c1439d6bdad9720 URL 1https[:]//s3d-print[.]hr/ 2http[:]//marcosbicicletas[.]com[.]br/ 3http[:]//176[.]46[.]152[.]62[:]5858/eee9d37688974ce08f52ac5d50dbf1a8_build[.]bin IP 1183[.]195[.]140[.]254 2167[.]71[.]11[.]189 3118[.]145[.]184[.]208...
GitLab Product Security Update Advisory
Overview We have released security updates to fix vulnerabilities in GitLab products. Users of affected products are advised to update to the latest version. Affected Products CVE-2025-11702 GitLab EE Versions: 17.1 and above but below 18.3.5GitLab EE version: 18.4 and above but below 18.4.3GitLab EE version:
October 26, 2025
October 26, 2025 Hash 1a26f310ad5dba76691524484302ea73a 2b186f46d50276d28aef07ad167778faf 3218e832fdda7085412b6113bbde93b0d URL 1https[:]//sidegost[.]weebly[.]com/ 2https[:]//summitglobalmachinery[.]com/ 3http[:]//178[.]16[.]55[.]189/files/5917492177/J3Emhcx[.]exe IP 1103[.]200[.]25[.]197 2203[.]150[.]162[.]250 3219[.]151[.]186[.]25...
