Cyber Security

Articles on SystemTek’s website that relate to cyber security.

NewsSecurity Vulnerabilities

Jenkins Host key reuse in SSH build agent Docker images (CVE-2025-32754 and CVE-2025-32755)

Jason Davies 138 Views 0 Comments 1 min read

CVE numbers CVE-2025-32754 and CVE-2025-32755. In jenkins/ssh-slave Docker images based on Debian, SSH host keys are generated on image creation

Read More
Tech TipsCyber SecurityInternet

Warning issued over MOONSHINE and BADBAZAAR malware

Jason Davies 138 Views 0 Comments 1 min read

MOONSHINE and BADBAZAAR are examples of apps that embed harmful functionalities within seemingly legitimate software—a method known as trojanising.

Read More
NewsSecurity Vulnerabilities

Fortinet FortiWeb cgi_xmlprotection_xmlschemafile_post Directory Traversal Arbitrary File Write Vulnerability (CVE-2024-55597)

Jason Davies 117 Views 0 Comments 0 min read

This vulnerability allows remote attackers to create arbitrary XML schema files on affected installations of Fortinet FortiWeb.

Read More
NewsSecurity Vulnerabilities

Trend Micro Cleaner One Pro Link Following Denial-of-Service Vulnerability (CVE-2025-27529)

Jason Davies 162 Views 0 Comments 0 min read

This vulnerability (CVE-2025-27529) allows local attackers to create a denial-of-service condition on affected installations of Trend Micro Cleaner One Pro.

Read More
NewsCyber Security

Multiple Australian superannuation funds targeted in a coordinated cyberattack

Luke Simmonds 160 Views 0 Comments 1 min read

Multiple Australian superannuation funds have been targeted in a coordinated cyberattack that has compromised thousands of accounts and resulted in some members losing thousands in savings.

Read More
NewsSecurity Vulnerabilities

Autodesk Navisworks Freedom DWFX File Parsing Memory Corruption Remote Code Execution Vulnerability (CVE-2025-1660)

Luke Simmonds 156 Views 0 Comments 0 min read

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk Navisworks Freedom.

Read More
NewsSecurity Vulnerabilities

Cisco Enterprise Chat and Email Denial of Service Vulnerability (CVE-2025-20139)

Jason Davies 284 Views 0 Comments 1 min read

A vulnerability in chat messaging features of Cisco Enterprise Chat and Email (ECE) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.

Read More
NewsSecurity Vulnerabilities

Cisco Meraki MX and Z Series AnyConnect VPN Denial of Service Vulnerability (CVE-2025-20212)

Jason Davies 256 Views 0 Comments 1 min read

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series devices could allow an authenticated, remote attacker to cause a denial of service (DoS) condition in the Cisco AnyConnect service on an affected device.

Read More
NewsSecurity Vulnerabilities

Zabbix server DoS vulnerability (CVE-2024-45700)

Jason Davies 205 Views 0 Comments 0 min read

CVE-2024-45700 – Zabbix server is vulnerable to a DoS vulnerability due to uncontrolled resource exhaustion.

Read More
NewsSecurity Vulnerabilities

Apple macOS AudioToolboxCore WAV File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability (CVE-2025-24244)

Jason Davies 175 Views 0 Comments 0 min read

CVE-2025-24244 – This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS.

Read More