Vulnerability Archives - GBHackers Security | #1 Globally Trusted Cyber Security News Platform

cyber security

CoreDNS Vulnerability Allows Attackers to Exhaust Server Memory via Amplification Attack

A high-severity vulnerability (CVE-2025-47950) in CoreDNS’s DNS-over-QUIC (DoQ) implementation enables remote attackers to crash DNS servers through stream amplification attacks. Patched in v1.21.2, this...

cyber security

Apache CloudStack Flaw Allows Attackers to Execute Privileged Actions

Apache CloudStack, a leading open-source cloud management platform, has announced the immediate availability of new Long-Term Support (LTS) releases—version 4.19.3.0 and 4.20.1.0—to address multiple...

cyber security

HPE Aruba Network Flaw Exposes Sensitive Data to Potential Hackers

HPE Aruba Networking has issued a critical security advisory regarding a high-severity vulnerability in its Private 5G Core Platform. Tracked as CVE-2025-37100, the flaw...

cyber security

Insyde UEFI Flaw Enables Digital Certificate Injection via NVRAM Variable

A critical vulnerability (CVE-2025-4275) in Insyde H2O UEFI firmware allows attackers to bypass Secure Boot protections by injecting malicious digital certificates via an unprotected...

cyber security

Multiple Chrome Flaws Enable Remote Code Execution by Attackers

Google Chrome’s Stable channel is being updated to version 137.0.7151.103 for Windows and Mac, with Linux receiving version 137.0.7151.103 as well. The rollout will...

Cyber Security News

Microsoft Windows WebDAV 0-Day RCE Vulnerability Actively Exploited in The Wild

A critical zero-day vulnerability in Microsoft Windows, designated CVE-2025-33053, has been actively exploited by the advanced persistent threat (APT) group Stealth Falcon. The flaw, enabling...

Cyber Security News

Ivanti Workspace Control Vulnerability Lets Attackers Remotely Exploit To Steal the Credential

Ivanti has released a critical security update for its Workspace Control software, patching three high-severity vulnerabilities that could allow attackers to compromise sensitive credentials....

cyber security

Severe SAP NetWeaver Vulnerability Allows Attackers to Bypass Authorization Checks

SAP has released nineteen security patches in its June Patch Day, addressing critical vulnerabilities that could allow attackers to bypass authorization controls and escalate...

Vulnerability

CoreDNS Vulnerability Allows Attackers to Exhaust Server Memory via Amplification Attack

Apache CloudStack Flaw Allows Attackers to Execute Privileged Actions

HPE Aruba Network Flaw Exposes Sensitive Data to Potential Hackers

Insyde UEFI Flaw Enables Digital Certificate Injection via NVRAM Variable

Multiple Chrome Flaws Enable Remote Code Execution by Attackers

Microsoft Windows WebDAV 0-Day RCE Vulnerability Actively Exploited in The Wild

Ivanti Workspace Control Vulnerability Lets Attackers Remotely Exploit To Steal the Credential

Severe SAP NetWeaver Vulnerability Allows Attackers to Bypass Authorization Checks

How To Access Dark Web Anonymously and know its Secretive and Mysterious Activities

How to Build and Run a Security Operations Center (SOC Guide) – 2023

Network Penetration Testing Checklist – 2025