Recent searches

No recent searches

Search options

Only available when logged in.
mastodon.world is one of the many independent Mastodon servers you can use to participate in the fediverse.
Generic Mastodon server for anyone to use.

Administered by:

Server stats:

8.4K
active users

mastodon.world: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.4.0

#vulnerability

229 posts68 participants38 posts today
Firefox
Vim Command-Line Editor Vulnerability Allows Attackers to Overwrite Sensitive Files A newly identified security vulnerability in Vim’s popular zip.vim plugin has been assigned CVE-2025-53906, hig...

#Cyber #Security #News #Cybersecurity #Vulnerability #Cyber #Security #Cyber #security #news #vulnerability

Origin | Interest | Match
Cyber Security News · Vim Command-Line Editor Vulnerability Allows Attackers to Overwrite Sensitive FilesA newly identified security vulnerability in Vim’s popular zip.vim plugin has been assigned CVE-2025-53906, highlighting a path traversal flaw that could allow attackers to overwrite arbitrary files on victims’ systems. Published on July 15, 2025, the vulnerability affects all Vim versions before 9.1.1551 and carries a CVSS score of 4.1, classified as medium severity. While […]
BeyondMachines :verified:

Critical VMware vulnerabilities enable Virtual Machine escape, host compromise

Broadcom has patched multiple critical VMware vulnerabilities discovered at Pwn2Own 2025 that enable attackers with local admin privileges on virtual machines to escape to host systems and execute arbitrary code, affecting VMware ESXi, Workstation, Fusion, and VMware Tools. The vulnerabilities were demonstrated with near-perfect reliability and have existing proof-of-concept exploits.

**If you are running VMware on your laptop, PC or servers, read this advisory. There are some very nasty flaws that enable user (or process) on a VMware guest OS to breach the isolation and attack the host. Time to patch VERY QUICKLY. Isolation doesn't work because the attacker will already have access to the VMware system.**
#cybersecurity #infosec #advisory #vulnerability
beyondmachines.net/event_detai

BeyondMachinesCritical VMware vulnerabilities enable Virtual Machine escape, host compromiseBroadcom has patched multiple critical VMware vulnerabilities discovered at Pwn2Own 2025 that enable attackers with local admin privileges on virtual machines to escape to host systems and execute arbitrary code, affecting VMware ESXi, Workstation, Fusion, and VMware Tools. The vulnerabilities were demonstrated with near-perfect reliability and have existing proof-of-concept exploits.
BeyondMachines :verified:

Google releases urgent patch for Chrome, fixes actively exploited flaw

Google has released an urgent Chrome security update addressing six vulnerabilities, including a critical zero-day sandbox escape flaw (CVE-2025-6558) that is being actively exploited in the wild. The flaw is discovered by Google's Threat Analysis Group, suggesting potential nation-state involvement.

**Once again - an urgent patch for Chrome - Google is patching an actively exploited flaw in Chrome, and exploitation is just a visit to a malicious site. DONT WAIT! Update all your Chrome and Chromium browsers (Edge, Opera, Brave, Vivaldi...). Updating the browser is easy, all your tabs reopen after the patch.**
#cybersecurity #infosec #advisory #vulnerability
beyondmachines.net/event_detai

BeyondMachinesGoogle releases urgent patch for Chrome, fixes actively exploited flawGoogle has released an urgent Chrome security update addressing six vulnerabilities, including a critical zero-day sandbox escape flaw (CVE-2025-6558) that is being actively exploited in the wild. The flaw is discovered by Google's Threat Analysis Group, suggesting potential nation-state involvement.
TrendingLive feeds
About