F5: BIG-IP Important Privilege Escalation Flaw ID 2023-1026
A new set of F5 BIG-IP vulnerabilities is forcing security teams to re-evaluate the trust they place in Linux-based appliances.
Security Vulnerabilities - Page 2
Langflow 1.9.0 Advisory CVE-2026-5027 High File Write Threat
Attackers are actively exploiting a high-severity vulnerability in Langflow, an open-source platform used to build and run AI workflows. ...
Actively Exploited Chromium V8 Zero-Day: What Linux Admins Need to Know
CISA added CVE-2026-11645 to its Known Exploited Vulner...
IronWorm Supply Chain Threat from Linux Credential Theft
IronWorm steals credentials and uses them to spread bey...
Discover Security Vulnerabilities News
Unity: Runtime Critical Security Flaw CVE-2025-59489 Exposes Linux Builds
A new Unity runtime vulnerability has surfaced, and Linux users are the ones left exposed. The flaw allows untrusted files to execute code inside affected applications — a confirmed Linux security vulnerability with the potential to compromise systems running unpatched builds.
Linux Kernel Vulnerabilities Exploited in 2025: CISA KEV Insights
It wasn’t easy to be on an admin or cybersecurity team in 2025.
RHEL: Vim Moderate Code Execution Bug CVE-2025-53905 Advisory
Two new flaws in Vim could let attackers run code on Linux systems. Red Hat confirmed the issue in a recent advisory, describing it as a Linux code execution vulnerability with impact well beyond the editor itself.
RHEL: Critical Privilege Escalation Flaw in open-vm-tools CVE-2025-41244
Red Hat confirmed a privilege escalation flaw in open-vm-tools (CVE-2025-41244), the utility that keeps Linux guests talking to VMware hosts. It handles the small things — time sync, clipboard sharing, system events — the background work that makes virtual machines feel seamless. Most systems run it by default, and most admins forget it’s even there once the guest comes online.
Ubuntu: Kernel Critical Updates Network DoS Vulnerabilities 2025:0011-1
Canonical has released a coordinated set of Ubuntu kernel advisories, including USN-7789-2, USN-7792-3, USN-7809-1, USN-7810-1, and USN-7811-1. Each update addresses critical flaws affecting several kernel builds. The patches span cloud environments like AWS, Azure, and GKE, as well as hardware targets such as Tegra IGX and Raspberry Pi.
Oracle Linux: Advisory CVE-2025-61882 Critical RCE Threat from Cl0p
Oracle has confirmed a critical remote code execution flaw in E-Business Suite, tracked as CVE-2025-61882. The bug resides in the Concurrent Processing and BI Publisher components, which handle reporting and job scheduling. It can be reached remotely over HTTP without authentication. One exposed instance is enough for complete control.
Linux: OpenSSL Flaws Important DoS Issues CVE-2025-9230, 9231, 9232
Three new OpenSSL flaws, CVE-2025-9230, 9231, and 9232, were patched upstream this week. They aren’t another Heartbleed, but they still matter. Each one can open a small gap in encryption or memory handling, depending on how your distribution builds and ships OpenSSL.
NPM Attack Exposes Supply Chain Risks in Open Source Software
An attack against the npm ecosystem compromised 18 widely used packages — libraries downloaded more than 2.6 billion times each week. The malicious versions were uploaded through a maintainer account compromise, turning trusted dependencies into a malware download pipeline.
Core Linux System Component "Udisks" Opens the Door to Unauthorized Access, Data Leaks
It’s always unnerving when a system service you rely on day-to-day turns out to be a potential gateway for unauthorized access. That’s the story with CVE-2025-8067, a newly identified flaw in the Udisks daemon that could allow unprivileged users to peek into files owned by privileged accounts. If you’re using systems based on Red Hat Enterprise Linux (RHEL)—or potentially other Linux distributions that rely on Udisks—this vulnerability could lead to sensitive data exposure, which is not something you want lurking in the background.
New Docker Vulns Threaten Container Escape, Host Machine Compromise
Containers were never just a convenience—they were a promise. A promise of isolation, security, and the ability to run workloads in confined, controlled environments where nothing leaks, nothing escapes, and the risks to the host system remain minimal. But when that promise is broken, when the boundaries between a container and the underlying host collapse, the implications are severe. That’s exactly what the vulnerabilities addressed in Docker Desktop 4.44.3 threaten to do. These flaws don’t just challenge best practices—they actively undermine the fundamental assurances Docker containers were designed to provide.
CVE-2023-46604: Critical Threat for Linux Servers Running ActiveMQ
CVE-2023-46604 is not just another box on your patching to-do list—it’s a major remote code execution (RCE) vulnerability in Apache ActiveMQ that admins need to get ahead of before they find their system infected with DripDropper malware. This stealthy flaw allows attackers to gain control of unpatched systems, establish persistence, install malware, and evade detection. And the real kicker? They’re covering their tracks using “self-patching” techniques, making it incredibly hard to spot once your system is compromised.
CVE-2024-53141: Root-Level Escalation in Linux Netfilter
A new Linux kernel vulnerability has surfaced, and if you're managing Linux systems, this flaw necessitates your immediate attention. CVE-2024-53141 is a critical bug affecting the netfilter subsystem—specifically, its ipset bitmap functionality.
Ubuntu: Chrome High Severity CVE-2025-38235 Escalation Risk MSG_OOB
Let’s talk about CVE-2025-38236. If you’ve been following the Linux kernel's security track record, you already know how hard developers work to keep it solid. But every now and then, something slips through the cracks—and this time, it’s a big one. This vulnerability, disclosed by Jann Horn of Google’s Project Zero, allows an attacker to bridge the gap between user-level code running inside Chrome’s renderer sandbox and full-blown kernel-level control. That’s not just breaking out of one of the most hardened sandboxes out there—it’s obliterating it.
Critical NestJS Vulnerability Exposes Developers to RCE Risk
Imagine this: You’re a developer, working on your local machine, crunching out APIs, or perhaps debugging your ambitious NestJS-powered application. Harmless, right? What if I told you that a malicious link you just clicked on could plant a ticking time bomb on your system? That’s the risk we’re staring down with CVE-2025-54782, a serious Remote Code Execution (RCE) vulnerability lurking in the widely used @nestjs/devtools-integration package.
Google Chrome: CVE-2025-6558 Critical Remote Code Execution Advisory
Let’s talk about CVE-2025-6558—the latest zero-day vulnerability in Google Chrome. If you’re managing Linux systems or handling infosec at any level, you should care about this one. It’s actively being exploited, which means attackers aren’t waiting for you to patch—they’re already leveraging it to break into systems.
ImageMagick 7.1.2-0 Critical Buffer Overflow DoS Issue GHSA-qh3h-j545-h8c9
Exploring vulnerabilities in server tools sometimes feels like peeling back layers of assumptions buried deep in the code. The latest flaw discovered in ImageMagick, a widely used image processing tool popular among the Linux community, exemplifies just that—how seemingly innocuous functionality can become a security nightmare. If you’re running ImageMagick in your environment, especially on Linux systems, this vulnerability deserves your immediate attention.
Linux Initramfs Weakness: Critical Flaw Bypasses Encryption via Debug Shell
Linux admins, take a moment to breathe. We all know the mantra—full-disk encryption is the gold standard for safeguarding data at rest. But what if I told you there’s a crack in the armor, lurking in the boot process itself? It’s subtle, it’s sneaky, but it’s effective. A flaw in how Linux handles the early stages of booting can let an attacker sidestep your full-disk encryption and bring your system to its knees. No need for fancy malware or remote exploits—just a bit of physical access and a dash of clever manipulation.
Ubuntu: Sudo Critical Flaws - Local Privilege Escalation Threat
It’s no exaggeration to call sudo the cornerstone of Linux privilege management. It’s one of the first utilities we configure on fresh installs, and it’s baked into almost every Linux distribution by default. Which is precisely why reports of two significant vulnerabilities in sudo—CVE-2025-32462 and CVE-2025-32463—are grabbing headlines and raising red flags. These are local privilege escalation flaws, and if they’re exploited, an attacker could jump from a non-privileged user account straight into the shoes of the almighty root user.
Linux: Ivanti CSA critical flaws exploited by Houken for rootkit access
Linux admins and infosec pros, we’ve got a real problem on our hands. There’s a group out there—the Houken threat actor—that’s not messing around. These guys have been targeting industries that form the backbone of society: government, telecoms, finance, you name it. Using unpatched Ivanti devices as their entry point, they’re pulling off some slick and dangerous moves. This isn’t some dime-a-dozen botnet attack or basic ransomware scheme—it’s targeted, it’s precise, and it’s making life a nightmare for Linux admins tasked with safeguarding critical systems.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!