New assessment for topic: CVE-2025-25065

Topic description: "SSRF vulnerability in the RSS feed parser in Zimbra Collaboration 9.0.0 before Patch 43, 10.0.x before 10.0.12, and 10.1.x before 10.1.4 allows unauthorized redirection to internal network endpoints. ..."

"On the 17th December 2024, Zimbra released an [advisory](https://wiki.zimbra.com/wiki/Zimbra_Releases/10.1.4#Security_Fixes) warning that Zimbra versions before 10.1.4 were susceptible to Server-Side Request Forgery (SSRF) via the RSS feed parser ..."

Link: https://attackerkb.com/assessments/3a9053d9-8891-4e66-8d99-af387e965048

New assessment for topic: CVE-2025-32354

Topic description: "In Zimbra Collaboration (ZCS) 9.0 through 10.1, a Cross-Site Request Forgery (CSRF) vulnerability exists in the GraphQL endpoint (/service/extension/graphql) of Zimbra webmail due to a lack of CSRF token validation ..."

"On the 17th December 2024, Zimbra released an [advisory](https://wiki.zimbra.com/wiki/Zimbra_Releases/10.1.4#Security_Fixes) warning that Zimbra versions before `10.1.4` were susceptible to Cross-Site Request Forgery (CSRF) attacks on an exposed GraphQL endpoint ..."

Link: https://attackerkb.com/assessments/48571868-d8f5-4408-8e24-b7ccec2ef7e3

New assessment for topic: CVE-2025-30406

Topic description: "Gladinet CentreStack through 16.1.10296.56315 (fixed in 16.4.10315.56368) has a deserialization vulnerability due to the CentreStack portal's hardcoded machineKey use, as exploited in the wild in March 2025 ..."

"[metadata only] ..."

Link: https://attackerkb.com/assessments/25edbe02-53c3-4f7b-9993-e57282580766

New assessment for topic: CVE-2024-38475

Topic description: "Improper escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure ..."

"SonicWall [updated a 2024 advisory](https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0018) to note that this third-party vulnerability is being exploited in the wild in their SMA100 devices ..."

Link: https://attackerkb.com/assessments/306036ec-fc18-46f2-91b8-d8c5391031c5

New assessment for topic: CVE-2025-3935

Topic description: "ScreenConnect versions 25.2.3 and earlier versions may be susceptible to a ViewState code injection attack ..."

"On the 24th April 2025 Connectwise released an advisory warning that ScreenConnect versions before `25.2.3` were susceptible to ViewState code injection attacks, if an attacker had privileged access and hence access to the machine keys defined in application config ..."

Link: https://attackerkb.com/assessments/cd141f73-7686-4848-b0cd-2893225b446b

New assessment for topic: CVE-2025-31324

Topic description: "SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries that could severely harm the host system ..."

"Rapid7 MDR has observed exploitation of this zero-day vulnerability in multiple customer environments ..."

Link: https://attackerkb.com/assessments/462e2d0c-2cf2-4306-94f5-901badbb072d

New assessment for topic: CVE-2024-6235

Topic description: "Sensitive information disclosure in NetScaler Console ..."

"On July 9, 2024, Citrix [disclosed](https://support.citrix.com/s/article/CTX677998-netscaler-console-agent-and-sdx-svm-security-bulletin-for-cve20246235-and-cve20246236?language=en_US) CVE-2024-6235, a sensitive information disclosure vulnerability affecting NetScaler Console ..."

Link: https://attackerkb.com/assessments/3bf5c123-41fa-47c5-9eb1-d139317061b8

New assessment for topic: CVE-2025-32433

Topic description: "Erlang/OTP is a set of libraries for the Erlang programming language ..."

"[metadata only] ..."

Link: https://attackerkb.com/assessments/697e0085-6e15-4860-8967-de67ec8f0cfa

New assessment for topic: CVE-2025-30406

Topic description: "Gladinet CentreStack through 16.1.10296.56315 (fixed in 16.4.10315.56368) has a deserialization vulnerability due to the CentreStack portal's hardcoded machineKey use, as exploited in the wild in March 2025 ..."

"CVE-2025-30406 is a critical remote code execution (RCE) vulnerability affecting Gladinet's CentreStack and Triofox platforms ..."

Link: https://attackerkb.com/assessments/2bb4e3bd-b6fd-4241-a58b-9067960e0375

New assessment for topic: CVE-2024-38809

Topic description: "Applications that parse ETags from "If-Match" or "If-None-Match" request headers are vulnerable to DoS attack. ..."

"For successful exploitation of the vulnerability, applications must process or parse ETags in the following HTTP headers: 'If-Match' or 'If-None-Match' ..."

Link: https://attackerkb.com/assessments/173a9051-0955-4b4e-8bae-de52c949b516

New assessment for topic: CVE-2025-30065

Topic description: "Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code ..."

"[Apache Parquet](https://parquet.apache.org/) is a popular data storage format that was originally developed in the early 2010s as part of the Apache Hadoop ecosystem ..."

Link: https://attackerkb.com/assessments/3c043281-25a1-44fc-a361-00e02ec2bc60

New assessment for topic: CVE-2025-22457

Topic description: "A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA Gateways before version 22.8R2.2 allows a remote unauthenticated attacker to achieve remote code execution. ..."

"Based on writing the [Rapid7 Analysis](https://attackerkb.com/topics/0ybGQIkHzR/cve-2025-22457/rapid7-analysis) and developing a [PoC exploit script](https://github.com/sfewer-r7/CVE-2025-22457), I am rating the `Attacker Value` for this vulnerability as `Very High`, as Ivanti Connect Secure, Pulse Connect Secure, Ivanti Policy Secure, and ZTA Gateways are high profile targets for state-sponsored threat actors and have been regularly exploited in the wild in the past (including this vulnerability CVE-2025-22457) ..."

Link: https://attackerkb.com/assessments/fa985251-6adb-46fd-b1c6-9a84dbffb823

New assessment for topic: CVE-2025-2945

Topic description: "Remote Code Execution security vulnerability in pgAdmin 4 (Query Tool and Cloud Deployment modules). ..."

"On April 4th, 2025 pgAdmin released version 9.2, of “pgAdmin 4”, which included a fix for CVE-2025-2945, an authenticated RCE vulnerability affecting versions `8.10` through to `9.1` ..."

Link: https://attackerkb.com/assessments/05eb1108-f51a-40b9-bfdd-34885be6d785

New Rapid7 Analysis on AttackerKB topic: CVE-2025-22457

"On April 3, 2025, Ivanti published an [advisory](https://forums.ivanti.com/s/article/April-Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-22457?language=en_US) for CVE-2025-22457, an unauthenticated remote code execution vulnerability due to a stack based buffer overflow ..."

Link: https://attackerkb.com/topics/77a42870-750f-41a9-97ed-07b482eac905

New assessment for topic: CVE-2024-53326

Topic description: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem ..."

"[CVE-2024-53326](https://trustedsec.com/blog/discovering-a-deserialization-vulnerability-in-linqpad) is a .NET deserialization vulnerability in Linqpad up to version 5.52.01 ..."

Link: https://attackerkb.com/assessments/da90857a-39e5-46c6-a30b-c9c628b3222f

New assessment for topic: CVE-2023-36255

Topic description: "An issue in Eramba Limited Eramba Enterprise and Community edition v.3.19.1 allows a remote attacker to execute arbitrary code via the path parameter in the URL. ..."

"Eramba is open source Governance, Risk, and Compliance (GRC) software ..."

Link: https://attackerkb.com/assessments/6ad733b6-6bf1-45a3-a982-9d62dffa9c9e

New assessment for topic: CVE-2025-30065

Topic description: "Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code ..."

"CVE-2025-30065 is a critical deserialization vulnerability (CWE-502: Deserialization of Untrusted Data) in Apache Parquet’s Java library (specifically in the parquet-avro module) ..."

Link: https://attackerkb.com/assessments/1227b01a-c0b5-42ad-a360-b3ce702062e8

New assessment for topic: CVE-2025-2825

Topic description: "CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0 through 11.3.0 are affected by a vulnerability that may result in unauthenticated access ..."

"[CVE-2025-2825](https://nvd.nist.gov/vuln/detail/CVE-2025-2825) is a critical vulnerability affecting CrushFTP 11 below 11.3.1 and 10 below 10.8.4 ..."

Link: https://attackerkb.com/assessments/4c81cb24-aafd-4753-92bb-33c1190c24a5

New Rapid7 Analysis on AttackerKB topic: CVE-2025-2825

"On Friday, March 21, 2025, [CrushFTP](https://www.crushftp.com/), a managed file transfer solution vendor, announced [a new vulnerability](https://www.rapid7.com/blog/post/2025/03/25/etr-notable-vulnerabilities-in-next-js-cve-2025-29927/) to customers via email ..."

Link: https://attackerkb.com/topics/a0e10b90-c471-484c-ace4-4f3ae764c183

New assessment for topic: CVE-2025-29927

Topic description: "Next.js is a React framework for building full-stack web applications ..."

"On the 21st March 2025 Next.js released an advisory notifying users of a vulnerability affecting versions of the framework prior to 14.2.25 and 15.2.3 ..."

Link: https://attackerkb.com/assessments/9152fc92-56bf-4374-96db-9fa9b34cbbf6