Cyber Threat Digest – 2025-10-16
🔥 Known Exploited Vulnerabilities (CISA KEV)
1 exploited vulns of note in the last 48 hours.
- CVE-2025-54253 — Adobe Experience Manager Forms Code Execution Vulnerability — Adobe Experience Manager (AEM) Forms (Added: 2025-10-15) — Details
⚠️ Recent CVEs (NVD)
Latest CVEs with CVSS badges.
- CVE-2025-41430 — When BIG-IP SSL Orchestrator is enabled, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of T… HIGH 8.7 — Details
- CVE-2025-46706 — When an iRule containing the HTTP::respond command is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note: Software vers… HIGH 8.7 — Details
- CVE-2025-47148 — When the BIG-IP system is configured as both a Security Assertion Markup Language (SAML) service provider (SP) and Identity Provider (IdP), with single logout (SLO) enabled on an a… HIGH 7.1 — Details
- CVE-2025-47150 — When SNMP is configured on F5OS Appliance and Chassis systems, undisclosed requests can cause an increase in SNMP memory resource utilization. Note: Software versions which have r… HIGH 7.1 — Details
- CVE-2025-48008 — When a TCP profile with Multipath TCP (MPTCP) enabled is configured on a virtual server, undisclosed traffic along with conditions beyond the attacker's control can cause the Traff… HIGH 8.7 — Details
- CVE-2025-53474 — When an iRule using an ILX::call command is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software ver… HIGH 8.7 — Details
📰 Security News
Top headlines from trusted sources.
- Microsoft adds Copilot voice activation on Windows 11 PCs
— Thu, 16 Oct 2025 13:00:00 GMT - Microsoft debuts Copilot Actions for agentic AI-driven Windows tasks
— Thu, 16 Oct 2025 13:00:00 GMT - YouTube is down worldwide with playback error
— Thu, 16 Oct 2025 00:09:53 GMT - Capita to pay £14 million for data breach impacting 6.6 million people
— Wed, 15 Oct 2025 20:53:05 GMT - PowerSchool hacker gets sentenced to four years in prison
— Wed, 15 Oct 2025 19:41:51 GMT - Fake LastPass, Bitwarden breach alerts lead to PC hijacks
— Wed, 15 Oct 2025 19:22:08 GMT
Comments
Post a Comment