InfoSecBulletin Cybersecurity for mankind
On April 24, 2025, CISA published seven advisories addressing security issues, vulnerabilities, and exploits related to Industrial Control Systems (ICS).
ICSA-25-114-01 Schneider Electric Modicon Controllers
ICSA-25-114-02 ALBEDO Telecom Net.Time – PTP/NTP Clock
ICSA-25-114-03 Vestel AC Charger
ICSA-25-114-04 Nice Linear eMerge E3
ICSA-25-114-05 Johnson Controls Software House iSTAR Configuration Utility (ICU) Tool
ICSA-25-114-06 Planet Technology Network Products
ICSA-24-338-05 Fuji Electric Monitouch V-SFT (Update A)
CISA Releases Seven ICS Advisories
By infosecbulletin
/ Monday , April 28 2025
On April 24, 2025, CISA published seven advisories addressing security issues, vulnerabilities, and exploits related to Industrial Control Systems (ICS)....
Read More
India Launches First Quantum Computing Village in Amaravati
By infosecbulletin
/ Monday , April 28 2025
India has taken a monumental stride toward next-generation technology by initiating its first Quantum Computing Village, a state-of-the-art project in...
Read More
400+ SAP NetWeaver Devices Vulnerable to 0-Day Attacks
By infosecbulletin
/ Monday , April 28 2025
Shadow servers found 454 vulnerable SAP NetWeaver systems at risk from a critical zero-day exploit currently being used in attacks....
Read More
30 Teams Qualify for Online Preliminary Round At UAP CTF Contest
By infosecbulletin
/ Monday , April 28 2025
Blind_Virus, DU_Featherless_Bipeds and Hidden investigations team secure the 1st , 2nd and 3rd positions accordingly for online preliminary round at...
Read More
CVE-2025-43859
Request Smuggling Vulnerability in Python’s h11 HTTP Library
By infosecbulletin
/ Sunday , April 27 2025
A critical vulnerability tracked as CVE-2025-43859 has been disclosed in h11, a minimalist, I/O-agnostic HTTP/1.1 protocol library written in Python....
Read More
NVIDIA Releases Security Update For GPU Driver Vulnerabilities
By infosecbulletin
/ Saturday , April 26 2025
NVIDIA has released a software security update for its GPU Display Driver to fix multiple vulnerabilities affecting both the driver...
Read More
‘SessionShark’ ToolKit Bypasses Microsoft Office 365 MFA
By infosecbulletin
/ Saturday , April 26 2025
The SessionShark phishing kit bypasses Office 365 MFA by stealing session tokens. Experts warn about real-time attacks using fake login...
Read More
159 CVEs Exploited in Q1 2025 : 28.3% Within 24 Hours of Disclosure
By infosecbulletin
/ Friday , April 25 2025
In Q1 2025, VulnCheck identified evidence of 159 CVEs publicly disclosed for the first time as exploited in the wild....
Read More
NVIDIA NeMo Framework Vuln Allow Attackers RCE
By infosecbulletin
/ Friday , April 25 2025
The NVIDIA NeMo Framework has three vulnerabilities that could enable attackers to execute remote code, risking AI system compromise and...
Read More
Cisco Issued Urgent Security Advisories For Multiple Products
By infosecbulletin
/ Thursday , April 24 2025
Cisco issued a security advisory about a remote code execution (RCE) vulnerability (CVE-2025-32433) affecting multiple products in its portfolio due...
Read More
CISA advises users to check new ICS advisories for details and solutions.
