Cyber Security

Articles on SystemTek’s website that relate to cyber security.

NewsSecurity Vulnerabilities

Samsung SmartThings Improper Verification of Cryptographic Signature Authentication Bypass Vulnerability (CVE-2025-2233)

CVE-2025-2233 allows attackers to bypass authentication on Samsung SmartThings due to improper signature verification.

Read More
NewsSecurity Vulnerabilities

Veritas Arctera InfoScale Critical Vulnerability (CVE-2025-27816)

CVE-2025-27816 is a critical vulnerability that was discovered in the Arctera InfoScale 7.0 through 8.0.2 where a .NET remoting endpoint can be exploited due to the insecure deserialization of potentially untrusted messages.

Read More
NewsCyber Security

Research reveals NHS cyber security perceptions

94% of NHS staff understand their role in protecting the organisation from cyber-attacks, yet only 36% believe current measures are sufficient, new online research from BT has found.

Read More
NewsSecurity Vulnerabilities

Trimble SketchUp SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability (CVE-2025-2024)

CVE-2025-2024 – This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp.

Read More
NewsSecurity Vulnerabilities

Cisco Small Business Routers Vulnerabilities (CVE-2023-20025 and CVE-2023-20026 and CVE-2023-20118)

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow a remote attacker to bypass authentication or execute arbitrary commands on the underlying operating system of an affected device.

Read More
NewsSecurity Vulnerabilities

Apache Pinot Improper Neutralization of Special Elements Authentication Bypass Vulnerability (CVE-2024-56325)

CVE-2024-56325 vulnerability allows remote attackers to bypass authentication on affected installations of Apache Pinot.

Read More
NewsSecurity Vulnerabilities

Cisco Webex for BroadWorks Credential Exposure Vulnerability

A low-severity vulnerability in Cisco Webex for BroadWorks Release 45.2 could allow an unauthenticated, remote attacker to access data and credentials if unsecure transport is configured for the SIP communication.

Read More
NewsSecurity Vulnerabilities

Critical Zero-day Vulnerabilities in VMware ESXi, Workstation, and Fusion (CVE-2025-22224, CVE-2025-22225 and CVE-2025-22226)

CVE-2025-22224 and CVE-2025-22225 and CVE-2025-22226 – Broadcom has addressed three exploited vulnerabilities that, when chained, can allow an attacker to access the hypervisor through a running virtual machine.

Read More
NewsCyber Security

Russian telecom Beeline hit by cyberattack

Yesterday, a targeted distributed denial-of-service (DDoS) attack disrupted internet service for some Russians, affecting the telecom provider Beeline. This marks the second significant attack on the Moscow-based company in recent weeks.

Read More
NewsSecurity Vulnerabilities

Delta Electronics CNCSoft-G2 DPAX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-22880)

CVE-2025-22880 – This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics CNCSoft-G2.

Read More