Alexander Leonov
@leonov_av
Vulnerability assessment, *nix security, compliance management, security automation
You might like
📄 November Linux Patch Wednesday. 516 vulns, 232 in Linux Kernel. One exploited in the wild. 64 more with public exploits. #Vulristics #Linux #Samba #ApacheTomcat #NVIDIACTK #Lasso #QuickJS #Keras #Django #Webmin #Squid #BIND #Suricata ➡️ t.me/avleonovcom/16…
⚡️ November "In the Trend of VM" (#21): vulnerabilities in Windows, SharePoint, Redis, XWiki, Zimbra Collaboration, and Linux. Here's a big digest after several months - a total of 9 vulnerabilities! 🔥 #TrendVulns #PositiveTechnologies ➡️ t.me/avleonovcom/16…
🚨 November Microsoft Patch Tuesday: 65 vulnerabilities, including 1 exploited in the wild (Windows Kernel EoP CVE-2025-62215). Linux CVEs clutter extended MSPT reports, so I'm covering MSPT-day only. #PatchTuesday #Microsoft #Windows #WinKernel ➡️ t.me/avleonovcom/16…
🔎 ToolShell's original SharePoint RCE (CVE-2025-49704): demoed at Pwn2Own; PoCs on GitHub; observed exploited in the wild since July 7. #Microsoft #ToolShell #SharePoint ➡️ t.me/avleonovcom/16…
👾 October’s exploited Windows EoP vulnerability (CVE-2025-59230) hits RasMan – few details so far, but it’s already in CISA KEV. #Microsoft #RasMan ➡️ t.me/avleonovcom/16…
👾 CVE-2025-9491 - attackers can hide command-line args in a .LNK file’s Target field using whitespace characters to trigger RCE - used to deploy PlugX against diplomatic missions 🇭🇺🇧🇪. Microsoft refuses to fix. 🤷♂️⚠️ #PlugX #TrendMicro ➡️ t.me/avleonovcom/16…
🚨 RCE in XWiki (CVE-2025-24893) lets guest users run arbitrary code via crafted SolrSearch requests. Fixed in 15.10.11 / 16.4.1 / 16.5.0RC1 (July 2024). 30+ exploits on GitHub. Now exploited in the wild to deploy cryptominers. #XWiki #VulnCheck ➡️ t.me/avleonovcom/16…
🎯🐧 CVE-2025-38001: Linux Kernel HFSC vulnerability = root privileges for local attackers. Patch came in June, exploit in July, media silence since. #Linux #LinuxKernel #HFSC ➡️ t.me/avleonovcom/16…
⚠️ Redis RCE "RediShell" (CVE-2025-49844): ~330k instances exposed on the Internet; PoC public. Patch to 8.2.2 now. #Redis #Wiz ➡️ t.me/avleonovcom/16…
🚨 Windows Agere Modem Driver (ltmdm64.sys) CVE‑2025‑24990 lets local attackers gain admin privileges — patched Oct 14, known since 2014; exploit public on Oct 16, CISA flags active attacks. #Windows #Agere #ltmdm64 ➡️ t.me/avleonovcom/15…
⚠️ XSS in Zimbra (CVE-2025-27915) lets JS run via an email with a malicious .ics — exploit published Sep 30; used in the wild vs Brazil’s military before Jan 27 patch. #Zimbra #StrikeReadyLabs ➡️ t.me/avleonovcom/15…
⚠️ CVE-2025-59287 — RCE in WSUS is being actively exploited in the wild; a public exploit is available — patch and reboot your WSUS servers now! #Microsoft #Windows #WSUS ➡️ t.me/avleonovcom/15…
October Linux Patch Wednesday. 801 vulns, 546 in Kernel. One exploited in wild. 39 more with public exploits. #Vulristics #Linux #VMware #Redis #RediShell #OpenSSH #7Zip #FreeIPA #Asterisk #MapServer #Binutils #OpenBabel ➡️ t.me/avleonovcom/15…
🪟 October Microsoft Patch Tuesday. 213 vulns - 2× September. 41 added mid-cycle. 4 exploited in the wild. #Vulristics #PatchTuesday #Microsoft #Windows #IGELOS #Chromium #Unity #WSUS ➡️ t.me/avleonovcom/15…
🚨 Elevation of Privilege in Sudo (CVE-2025-32463): local attackers can escalate to root. Exploits are public, patches released, KEV listed. #Linux #sudo ➡️ t.me/avleonovcom/15…
👾 ArcaneDoor strikes again: CVE-2025-20333 & CVE-2025-20362 allow remote code execution on Cisco ASA/FTD. Over 45k hosts at risk. #Cisco #CiscoASA #CiscoFTD #ArcaneDoor #RayInitiator #LINEVIPER #Shadowserver ➡️ t.me/avleonovcom/15…
Exploit PoCs often hide in blogs or vendor pages. Now @VulnersCom gathers them too, making data more complete. 🧰📈 #Vulners #Vulristics #exploit ➡️ t.me/avleonovcom/15…
September "In the Trend of VM" (#19): WinRAR, 7-Zip, SAP NetWeaver & TrueConf Server vulnerabilities — no Microsoft flaws this month! 😲🙂#TrendVulns #PositiveTechnologies #WinRAR #BiZone #ESET #RomCom #SAP #NetWeaver #Onapsis #7Zip #TrueConf #PTSWARM ➡️ t.me/avleonovcom/15…
🚨 Critical RCE vulnerabilities found in TrueConf Server (BDU:2025-10114/15/16), security updates released Aug 27. #TrueConf #PTSWARM #PositiveTechnologies ➡️ t.me/avleonovcom/15…
September Linux Patch Wednesday. In September, Linux vendors began addressing 748 vulnerabilities, slightly fewer than in August. Of these, 552 are in the Linux Kernel. Of all of them, the RCE in Asterisk looks the most promising. 🤔 What do you think? ➡️ t.me/avleonovcom/15…
United States Trends
- 1. #BaddiesUSA 53.7K posts
- 2. Rams 28.2K posts
- 3. Scotty 9,144 posts
- 4. #TROLLBOY 1,752 posts
- 5. Chip Kelly 8,093 posts
- 6. Cowboys 98.1K posts
- 7. Eagles 138K posts
- 8. Stafford 14.2K posts
- 9. Bucs 12.1K posts
- 10. Baker 20.5K posts
- 11. Raiders 65.6K posts
- 12. #RHOP 11.1K posts
- 13. Stacey 27.6K posts
- 14. #ITWelcomeToDerry 13.9K posts
- 15. Todd Bowles 1,974 posts
- 16. Teddy Bridgewater 1,174 posts
- 17. Ahna 6,326 posts
- 18. #LAShortnSweet 14K posts
- 19. Vin Diesel 1,036 posts
- 20. Lemmy 4,619 posts
Something went wrong.
Something went wrong.