Aggregator

A vulnerability has been found in Siemens Simcenter Femap V2406 and Simcenter Femap V2412 and classified as critical. Affected by this vulnerability is an unknown functionality of the component STP File Parser. Performing manipulation results in out-of-bounds write. This vulnerability is cataloged as CVE-2025-40762. It is possible to initiate the attack remotely. There is no exploit available. The affected component should be upgraded.

A vulnerability was found in Siemens Simcenter Femap V2406 and Simcenter Femap V2412 and classified as critical. Affected by this issue is some unknown functionality of the component BMP File Parser. Executing manipulation can lead to out-of-bounds read. This vulnerability is registered as CVE-2025-40764. It is possible to launch the attack remotely. No exploit is available. It is suggested to upgrade the affected component.

A vulnerability categorized as problematic has been discovered in Siemens SIMATIC RTLS Locating Manager up to 3.2. Impacted is an unknown function of the component Local Loopback Interface. Such manipulation leads to reachable assertion. This vulnerability is traded as CVE-2025-30034. An attack has to be approached locally. There is no exploit available. It is advisable to upgrade the affected component.

A vulnerability labeled as problematic has been found in Siemens SIMATIC RTLS Locating Manager up to 3.2. The impacted element is an unknown function. Executing manipulation can lead to insufficiently protected credentials. This vulnerability is handled as CVE-2025-40751. It is possible to launch the attack on the local host. There is not any exploit available. The affected component should be upgraded.

字节跳动开源Seed-OSS-36B系列AI模型，支持512K上下文处理长文档和复杂推理。采用Apache-2.0许可证免费使用，提供多个版本供开发者选择。

文章指出 Steam 用户购买的游戏中有 56.7% 从未被游玩过，平均每 10 款游戏中约有 5.7 款未被打开。通过随机调查 22 位好友及其好友的数据得出这一结论，并引用游戏从业者的研究进一步证实 Steam 用户囤积未玩游戏的现象普遍。

谷歌与苹果围绕绿色与蓝色气泡的争议已结束。苹果计划在iOS26中支持RCS消息的端到端加密协议MLS，实现更安全的通信。

Забудьте про множество таскеров и разрознённые задачи в ИБ.

Intermesh BVが提供するGroup-Officeには、複数の脆弱性が存在します。

本周，互联网网络安全态势整体评价为良。

当前网络环境出现异常，需完成验证后方可继续访问。

文章探讨了首席信息安全官（CISO）的角色与职责、招聘热潮、预算削减应对策略及区块链安全应用等议题，分析了企业网络安全面临的挑战与解决方案。

A vulnerability, which was classified as critical, was found in BEC Router. This affects an unknown part of the component sys ping Handler. The manipulation results in command injection. This vulnerability is known as CVE-2025-2773. It is possible to launch the attack remotely. No exploit is available.

A vulnerability has been found in BEC Router and classified as problematic. This vulnerability affects unknown code. This manipulation causes insufficiently protected credentials. This vulnerability is handled as CVE-2025-2772. The attack can only be done within the local network. There is not any exploit available.

A vulnerability identified as problematic has been detected in IBM Process Mining 2.0.1 IF001/2.0.1. The impacted element is an unknown function. The manipulation leads to open redirect. This vulnerability is referenced as CVE-2025-36016. Remote exploitation of the attack is possible. No exploit is available. You should upgrade the affected component.