Tagged: Cybersecurity Alert

Redis Enterprise Elevation of Privilege Vulnerability More information : https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59271

Copilot Spoofing Vulnerability More information : https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59272

Newforma Info Exchange (NIX) ‘/DownloadWeb/hyperlinkredirect.aspx’ provides an unauthenticated URL redirect via the ‘nhl’ parameter. More information : https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-282-01.json

Newforma Info Exchange (NIX) provides a ‘Send a File Transfer’ feature that allows a remote, authenticated attacker to upload SVG files that contain JavaScript or other content that may be executed or rendered by...

Newforma Info Exchange (NIX) ‘/NPCSRemoteWeb/LegacyIntegrationServices.asmx’ allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the user-configured NIX service...

Newforma Info Exchange (NIX) before version 2023.1 by default allows anonymous authentication which allows an unauthenticated attacker to exploit additional vulnerabilities that require authentication. More information : https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-282-01.json

A logic issue was addressed with improved validation. This issue is fixed in macOS Tahoe 26. An app may bypass Gatekeeper checks. More information : https://support.apple.com/en-us/125110

Improper neutralization of input during web page generation (‘cross-site scripting’) in Azure Monitor allows an unauthorized attacker to perform spoofing over a network. More information : https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55321

Newforma Info Exchange (NIX) ‘/UserWeb/Common/MarkupServices.ashx’ ‘StreamStampImage’ accepts an encrypted file path and returns an image of the specified file. An authenticated attacker can read arbitrary files subject to the privileges of NIX, typically ‘NT...

Newforma Info Exchange (NIX) ‘/RemoteWeb/IntegrationServices.ashx’ allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the NIX service account....

Newforma Info Exchange (NIX) ‘/UserWeb/Common/MarkupServices.ashx’ allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the customer-configured NIX service...

Newforma Info Exchange (NIX) uses a hard-coded key to encrypt certain query parameters. Some encrypted parameter values can specify paths to download files, potentially bypassing authentication and authorization, for example, the ‘qs’ parameter used...

Newforma Info Exchange (NIX) accepts requests to ‘/UserWeb/Common/MarkupServices.ashx’ specifying the ‘DownloadExportedPDF’ command that allow an authenticated user to read and delete arbitrary files with ‘NT AUTHORITYNetworkService’ privileges. In Newforma before 2023.1, anonymous access is...

Newforma Info Exchange (NIX) stores credentials used to configure NPCS in ‘HKLMSoftwareWOW6432NodeNewformaCredentials’. The credentials are encrypted but the encryption key is stored in the same registry location. Authenticated users can access both the credentials...