Hong Kong Computer Emergency Reponse Team Coordination Centre

Apple Products Multiple Vulnerabilities 發佈於 12月 15, 2025 09:00 上午

Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, denial of service condition, elevation of privilege, spoofing, sensitive information disclosure, data manipulation and security restriction bypass on the targeted system. Note... Impact ...

繼續閱讀 »

Microsoft Edge Multiple Vulnerabilities 發佈於 12月 12, 2025 09:00 上午

Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition and remote code execution on the targeted system. Impact Denial of Service ...

繼續閱讀 »

React Multiple Vulnerabilities 發佈於 12月 12, 2025 09:00 上午

Multiple vulnerabilities were identified in React. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition and sensitive information disclosure on the targeted system. Impact Denial of Service ...

繼續閱讀 »

Apache Struts Denial of Service Vulnerability 發佈於 12月 12, 2025 12:00 上午

A vulnerability was identified in Apache Struts, a remote user can exploit this vulnerability to trigger Denial of Service condition on the targeted system. Impact Denial of Service ...

繼續閱讀 »

GitLab Multiple Vulnerabilities 發佈於 12月 11, 2025 09:00 上午

Multiple vulnerabilities were identified in GitLab. A remote attacker could exploit some of these vulnerabilities to trigger cross-site scripting, denial of service condition, sensitive information disclosure and security restriction bypass on the targeted system. Impact Denial ...

繼續閱讀 »

Google Chrome Multiple Vulnerabilities 發佈於 12月 11, 2025 09:00 上午

Multiple vulnerabilities were identified in Google Chrome. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition and remote code execution on the targeted system. Note: CVE-2025-14174 is being exploited in the wild. The vulnerability is caused... Impact ...

繼續閱讀 »

Jenkins Multiple Vulnerabilities 發佈於 12月 11, 2025 09:00 上午

Multiple vulnerabilities were identified in Jenkins. A remote attacker could exploit some of these vulnerabilities to trigger spoofing, denial of service condition and sensitive information disclosure on the targeted system. Impact Information Disclosure ...

繼續閱讀 »

Mozilla Thunderbird Multiple Vulnerabilities 發佈於 12月 11, 2025 09:00 上午

Multiple vulnerabilities were identified in Mozilla Thunderbird. A remote attacker could exploit some of these vulnerabilities to trigger spoofing, elevation of privilege, remote code execution and security restriction bypass on the targeted system. Impact Elevation of Privilege ...

繼續閱讀 »

Adobe Monthly Security Update (December 2025) 發佈於 12月 10, 2025 11:00 上午

Adobe has released monthly security update for their products: Vulnerable Product Risk Level Impacts Notes Details (including CVE) Adobe ColdFusion Medium Risk Remote Code Execution Security Restriction Bypass Information Disclosure Data Manipulation Elevation of Privilege APSB25... Impact Remote Code Execution ...

繼續閱讀 »

Microsoft Monthly Security Update (December 2025) 發佈於 12月 10, 2025 11:00 上午

Microsoft has released monthly security update for their products: Vulnerable Product Risk Level Impacts Notes Browser Low Risk Spoofing Windows Medium Risk Elevation of Privilege Remote Code Execution Information Disclosure Denial of Service CVE-2025... Impact Remote Code Execution Denial ...

繼續閱讀 »