CVE-2025-21396: Critical Microsoft Account Vulnerability Exposes Users to Unauthorized Access

Overview On January 29, 2025, Microsoft disclosed a significant security vulnerability affecting its Microsoft Account infrastructure. Designated as CVE-2025-21396, this flaw arises from missing authorization checks, enabling unauthorized attackers to elevate their privileges over a network. The vulnerability has been assigned a CVSS score of 7.5, indicating a high severity level. Vulnerability Details CVE ID: CVE-2025-21396 Description: The vulnerability stems from inadequate authorization mechanisms within the Microsoft Account system, allowing unauthorized attackers to escalate privileges over a network....

February 6, 2025 · 2 min · Anass

CVE-2025-21298: Critical Zero-Click Vulnerability in Windows OLE

Overview On January 14, 2025, Microsoft disclosed CVE-2025-21298, a critical vulnerability affecting Windows OLE technology. Assigned a CVSS score of 9.8, this zero-click vulnerability enables attackers to execute arbitrary code on a victim’s system without user interaction, simply through email preview. Vulnerability Details CVE ID: CVE-2025-21298 Description: The vulnerability resides in the UtOlePresStmToContentsStm function within the ole32.dll library. This function is responsible for converting data in an “OlePres” stream into the appropriate format and inserting it into the “CONTENTS” stream within an OLE storage....

January 25, 2025 · 2 min · Anass

CVE-2024-10979: PostgreSQL Vulnerability Puts Databases at Risk

A recently discovered critical vulnerability, CVE-2024-10979, in PostgreSQL has raised serious concerns within the cybersecurity community. This flaw allows attackers to exploit database misconfigurations, potentially leading to unauthorized access to sensitive data. PostgreSQL, one of the most widely used open-source relational database systems, is at the center of this alarming issue. Overview PostgreSQL, one of the most popular open-source relational database systems, is under scrutiny due to a critical vulnerability, CVE-2024-10979, discovered recently....

November 19, 2024 · 2 min · Anass

CVE-2024-3596: Blast-RADIUS Vulnerability a Major Threat to RADIUS Authentication Protocol

Overview A critical security flaw, CVE-2024-3596, was recently discovered in the RADIUS (Remote Authentication Dial-In User Service) authentication protocol. This vulnerability, dubbed Blast-RADIUS, poses a serious threat to organizations relying on RADIUS for network authentication and access control. Researchers have demonstrated how attackers could exploit the vulnerability to bypass authentication mechanisms, highlighting the risks in environments using non-EAP (Extensible Authentication Protocol) methods over UDP. Vulnerability Details CVE ID: CVE-2024-3596 Description: The Blast-RADIUS attack allows an adversary to perform a Man-in-the-Middle (MITM) attack on RADIUS authentication....

September 23, 2024 · 3 min · Anass

CVE-2024-43491: Microsoft Windows Update Zero-Day Exploit

Overview CVE-2024-43491 is a critical zero-day vulnerability discovered in Microsoft’s Windows Update system, which allows attackers to reverse previously applied security updates. This vulnerability, actively exploited in the wild, enables a form of “downgrade attack”, effectively nullifying security patches and exposing systems to older vulnerabilities. The flaw was first disclosed by Microsoft in September 2024, after being flagged as a critical issue with a CVSS severity score of 9.8/10, one of the highest possible ratings for a security flaw....

September 17, 2024 · 3 min · Anass

EUCLEAK: How French Researchers Uncovered a Vulnerability in YubiKey Security Keys

A recent breakthrough by French cybersecurity researchers has exposed a side-channel vulnerability in YubiKey 5 Series security keys. This attack demonstrates that even the most secure hardware, which is designed to protect online accounts using two-factor authentication (2FA), can be compromised under the right conditions. Overview of the Side-Channel Attack YubiKeys, often praised for their robust security, rely on the Elliptic Curve Digital Signature Algorithm (ECDSA) for encryption. The Infineon SLE78 microcontroller, which powers these devices, was thought to be secure following its numerous certifications, including from the Common Criteria for Information Technology Security Evaluation....

September 7, 2024 · 3 min · Anass

CVE-2024-6387: Critical Vulnerability in OpenSSH (RegreSSHion Exploit)

A critical vulnerability has been identified in OpenSSH’s server (sshd), affecting many glibc-based systems. Ironically named regreSSHion, it poses a risk of remote code execution (RCE) as root on the affected systems. Overview A critical security flaw, known as “regression” and cataloged under CVE-2024-6387, has been identified in OpenSSH. This vulnerability allows an unauthenticated attacker to execute arbitrary code and potentially obtain root access on the compromised system, Vulnerability Details CVE ID: CVE-2024-6387 Description: A signal handler race condition that allows unauthenticated Remote Code Execution (RCE) as root....

July 9, 2024 · 2 min · Anass

CVE-2024-2973: Critical Vulnerability in Juniper Networks Routers

Juniper Networks has disclosed a critical vulnerability affecting its routers, identified as CVE-2024-2973. This article provides an overview of the vulnerability, its details, past exploitation instances, and recommended actions for mitigation Overview On July 1, 2024, Juniper Networks disclosed a critical vulnerability in its router software, identified as CVE-2024-2973. This vulnerability poses significant risks, including the potential for attackers to gain unauthorized access and execute arbitrary code. Network administrators and security professionals must understand the details of this vulnerability to protect their systems effectively....

July 3, 2024 · 3 min · Anass

CVE-2024-5806: Progress MOVEit Transfer Authentication Bypass Vulnerability

As the cybersecurity landscape evolves, vulnerabilities like CVE-2024-5806 demand our attention. Learn why patching this authentication bypass vulnerability in Progress MOVEit Transfer is critical for safeguarding your organization. Overview Progress Software has patched a high-severity authentication bypass vulnerability in the MOVEit managed file transfer (MFT) solution. As MOVEit has been a popular target for ransomware gangs and other threat actors, it’s crucial to prioritize patching this vulnerability. Vulnerability Details CVE ID: CVE-2024-5806 Description: Authentication Bypass Vulnerability in the SSH File Transfer Protocol (SFTP) module of Progress MOVEit Transfer....

June 30, 2024 · 1 min · Anass