Apple Patches Two Zero-Day Vulnerabilities Actively Exploited in Targeted Attacks Threat Advisories CyberDefenderDecember 29, 2025December 29, 20254 mins0 Apple has released urgent security updates to address two zero-day vulnerabilities that were actively exploited in targeted…continue reading..
Security Advisory: Multiple High-Severity Vulnerabilities in Tenda WH450 Router Threat Advisories CyberDefenderDecember 29, 2025December 29, 20256 mins0 Multiple critical and high-severity vulnerabilities have been published affecting the Tenda WH450 router firmware (version 1.0.0.18) —…continue reading..
Unseen but Persistent: Active Exploitation of Internet-Exposed IoT and Edge Devices CyberSecurity News AegironDecember 29, 2025December 29, 20257 mins0 Low Noise, High Utility Activity Observed Observation window: 27–29 DecemberThreat category: Infrastructure abuse / botnet enablementImpact profile:…continue reading..
CVE-2025-15162: Deep Dive into a High-Risk Tenda WH450 Router Vulnerability Threat Advisories CyberDefenderDecember 29, 2025December 29, 20256 mins0 CVE-2025-15162 is a high-severity stack-based buffer overflow vulnerability affecting the Tenda WH450 router running firmware v1.0.0.18. The…continue reading..
Dumped MacBook Exposed Coupang’s Massive Data Breach Latest Cyber Attack CyberDefenderDecember 29, 2025December 29, 20255 mins0 South Korean authorities are investigating a major data breach at Coupang, after a former employee allegedly accessed…continue reading..
CVE-2025-15136 in TRENDnet TEW-800MB Threat Advisories CyberDefenderDecember 29, 2025December 29, 202512 mins0 CVE-2025-15136 is a remote command-injection vulnerability in the management web interface of the TRENDnet TEW-800MB (firmware v1.0.1.0).…continue reading..
CVE-2025-15137 — Critical Command Injection Vulnerability in TRENDnet TEW-800MB Threat Advisories CyberDefenderDecember 29, 2025December 29, 20255 mins0 CVE Identifier: CVE-2025-15137Published: December 28, 2025Severity: High (CVSS ~8.8 / 9.0, depending on source)Exploit Status: Proof-of-Concept (PoC)…continue reading..
CVE-2025-15067: Critical Unauthenticated File Upload Flaw Enabling Web Shell Deployment and Full Server Takeover Threat Advisories AegironDecember 29, 2025December 29, 202510 mins0 Vulnerability Quick Reference Field Details CVE ID CVE-2025-15067 Vulnerability Name Unrestricted Upload of File with Dangerous Type…continue reading..
CVE-2025-52691: SmarterMail Arbitrary File Upload Leading to Remote Code Execution Threat Advisories AegironDecember 29, 2025December 29, 202512 mins0 Executive Vulnerability Summary (At-a-Glance) Vulnerability Classification Product Background SmarterMail is a widely deployed enterprise email platform positioned…continue reading..
CVE-2025-15226: Critical Unauthenticated Arbitrary File Upload Leading to Remote Code Execution in Sunnet WMPro Threat Advisories AegironDecember 29, 2025December 29, 202511 mins0 Executive Vulnerability Summary Field Details CVE ID CVE-2025-15226 Vulnerability Name WMPro Arbitrary File Upload – Unauthenticated RCE…continue reading..
