Cyber Security

CISA flags exploited FileZen command injection bug, patch now! (CVE-2026-25108)

CISA flags exploited FileZen command injection bug, patch now! (CVE-2026-25108)

CISA has added CVE-2026-25108, an OS command injection vulnerability in Soliton Systems’ FileZen secure file transfer solution, to its Known Exploited Vulnerabilities (KEV) catalog. The vendor has confirmed active exploitation, stating it has received multiple reports of damage caused by attackers abusing the flaw. Because public disclosures from the Japanese CERT Coordination Center (JPCERT/CC) and a ransomware incident reported by Japan’s Washington Hotel occurred around the same time, there has been speculation that CVE-2026-25108 may … More

The post CISA flags exploited FileZen command injection bug, patch now! (CVE-2026-25108) appeared first on Help Net Security.

Read More

Related Posts

'Richter Scale' Model Measures Magnitude of OT Cyber Incidents

'Richter Scale' Model Measures Magnitude of OT Cyber In...

SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code Execution

SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowin...

UAC-0050 Targets European Financial Institution With Spoofed Domain and RMS Malware

UAC-0050 Targets European Financial Institution With Sp...

Lazarus Group Picks a New Poison: Medusa Ransomware

Lazarus Group Picks a New Poison: Medusa Ransomware

Airline brands become launchpads for phishing, crypto fraud

Airline brands become launchpads for phishing, crypto f...

Microsoft adds domain libraries and Copilot integration to the quantum development kit

Microsoft adds domain libraries and Copilot integration...