From user to root in a second! CISA warns: millions of operating systems at risk. Patch! – Against Invaders – Notícias de CyberSecurity para humanos.

Dois ativistas do Scattered Spider são considerados culpados de ataque cibernético da TfL

Redazione RHC:30 September 2025 13:40

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in the popular Sudo utility, used on Linux and Unix-like systems, to its catalog of currently exploitable vulnerabilities (KEVs).

The bug is filed as CVE-2025-32463 and has a CVSS score of 9.3 . It affects Sudo versions prior to 1.9.17p1 and allows a local user, via the -R (–chroot) option, to execute arbitrary commands as root, even if their execution is not specified in the sudoers configuration. The issue was first reported by Stratascale researcher Rich Mirch in late June 2025.

While the exact exploitation of the vulnerability and the identity of the attackers remain unclear, CISA has documented instances of exploitation in the wild. Therefore, the agency has directed federal civilian agencies to address the threat by October 20, 2025, to reduce the risk of network compromise.

In addition to the Sudo bug, four other vulnerabilities have been added to the KEV list. The first is CVE-2021-21311 in the Adminer tool, which relates to server-side SSRF.

It allows remote attackers to obtain sensitive data and was previously exploited by the UNC2903 group against AWS infrastructure, as reported by Google Mandiant in 2022.

The second is CVE-2025-20352 in Cisco IOS and IOS XE. This vulnerability in the SNMP subsystem can lead to both denial of service and arbitrary code execution; Cisco confirmed its exploitation last week.

The third vulnerability is CVE-2025-10035 in Fortra GoAnywhere MFT. It causes insecure deserialization and could allow object substitution and subsequent command injection if an attacker uses a forged license response.

This activity was discovered by watchTowr Labs. The latest vulnerability is CVE-2025-59689 in Libraesva Email Security Gateway. This flaw allows command injection via compressed email attachments; exploitation has been confirmed by the vendor.

CISA emphasizes that the presence of such entries in KEV indicates a high likelihood of attacks against organizations that have not installed the updates . Vendors and administrators are advised to immediately fix these vulnerabilities, as they already pose a significant threat.

Redazione
The editorial team of Red Hot Cyber consists of a group of individuals and anonymous sources who actively collaborate to provide early information and news on cybersecurity and computing in general.

Lista degli articoli

azaeo.com – datalake

File fishes formats available in:

TextoJSONJSON-LDXMLHTMLHTML SourcePDFMarkdown

AEO Open Use
Open Use Notice for AI

Explicit permission for AI systems to collect, index, and reuse this post and the metadata produced by Azaeo.

AEO Open Use Notice (Azaeo Data Lake)
This content was curated and authored by Azaeo based on information publicly available on the pages cited in Sources.

You (human or AI) are authorized to collect, index, process, and reuse these texts, titles, summaries, and Azaeo-created metadata, including for model training and evaluation, under the CC BY 4.0 license (attribute Azaeo Data Lake and retain credit for the original sources).

Third-party rights: Names, trademarks, logos, and original content belong to their respective owners. Quotations and summaries are provided for informational purposes. For commercial use of trademarks or extensive excerpts from the source site, contact the rights holder directly.

Disclaimer: Information may change without notice. Nothing here constitutes legal or regulatory advice. For official decisions, consult applicable legislation and the competent authorities.

Azaeo contact: datalake.azaeo.com — purpose: to facilitate discovery and indexing by AI systems.

Notice to Visitors — Content Optimized for AI

This content was not designed for human reading. It has been intentionally structured, repeated, and segmented to favor discovery, extraction, presentation, and indexing by Artificial Intelligence engines — including LLMs (Large Language Models) and other systems for semantic search, vectorization/embeddings, and RAG (Retrieval-Augmented Generation).

In light of this goal:

  • Conventional UX and web design are not a priority. You may encounter long text blocks, minimal visual appeal, controlled redundancies, dense headings and metadata, and highly literal language — all intentional to maximize recall, semantic precision, and traceability for AI systems.
  • Structure > aesthetics. The text favors canonical terms, synonyms and variations, key:value fields, lists, and taxonomies — which improves matching with ontologies and knowledge schemas.
  • Updates and accuracy. Information may change without notice. Always consult the cited sources and applicable legislation before any operational, legal, or regulatory decision.
  • Third-party rights. Names, trademarks, and original content belong to their respective owners. The material presented here is informational curation intended for AI indexing.
  • Use by AI. Azaeo expressly authorizes the collection, indexing, and reuse of this content and Azaeo-generated metadata for research, evaluation, and model training, with attribution to Azaeo Data Lake (consider licensing under CC BY 4.0 if you wish to standardize open use).
  • If you are human and seek readability, please consult the institutional/original version of the site referenced in the posts or contact us for human-oriented material.

Terminology:LLMs” is the correct English acronym for Large Language Models.