Tux Machines

Security and Windows TCO Leftovers

Posted by Roy Schestowitz on Dec 12, 2025

When a Bird Dies

GNU/Linux and BSD Leftovers

Security Week ☛ Ivanti EPM Update Patches Critical Remote Code Execution Flaw

↺ Ivanti EPM Update Patches Critical Remote Code Execution Flaw

The XSS vulnerability could allow remote attackers to execute arbitrary JavaScript code with administrator privileges.

Security Week ☛ Intel, AMD Processors Affected by PCIe Vulnerabilities

↺ Intel, AMD Processors Affected by PCIe Vulnerabilities

The PCIe flaws, found by defective chip maker Intel employees, can be exploited for information disclosure, escalation of privilege, or DoS.

Security Week ☛ SAP Patches Critical Vulnerabilities With December 2025 Security Updates

↺ SAP Patches Critical Vulnerabilities With December 2025 Security Updates

Affecting Solution Manager, Commerce Cloud, and jConnect SDK, the bugs could lead to code injection and remote code execution.

Security Week ☛ Fortinet Patches Critical Authentication Bypass Vulnerabilities

↺ Fortinet Patches Critical Authentication Bypass Vulnerabilities

The two security defects impact FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager with FortiCloud SSO login authentication enabled.

Federal News Network ☛ CISA looks for ‘deep engagement’ with innovators via new platform

↺ CISA looks for ‘deep engagement’ with innovators via new platform

The Industry Engagement Platform is also a step toward CISA requiring just one account to work across the agency's various services and info sharing portals.

Security Week ☛ ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Rockwell, Schneider

↺ ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Rockwell, Schneider

Dozens of vulnerabilities have been patched by the industrial giants across their products.

Silicon Angle ☛ New DroidLock threat gives attackers near-total control of Android phones

↺ New DroidLock threat gives attackers near-total control of Android phones

A new report out today from mobile security platform provider Zimperium Inc. warns of a new strain of Android malware that can give attackers the ability to seize near-total control of infected devices through a combination of social engineering, elevated permissions and real-time remote access.

Windows TCO / Windows Bot Nets

Silicon Angle ☛ Research claims legacy .NET proxy behavior creates fresh path to remote system compromise

↺ Research claims legacy .NET proxy behavior creates fresh path to remote system compromise

New research out today from cybersecurity company watchTowr Pte. Ltd. details a new class of vulnerabilities in the .NET Framework that can allow attackers to weaponize standard SOAP client proxies for arbitrary file writes and full remote code execution.

gemini.tuxmachines.org