ACLs
-
Zero‑day FreePBX vulnerability exploited in the wild; active exploitation prompts urgent security advisories
Administrators of FreePBX are urged to upgrade and restrict access after a zero-day vulnerability (CVE-2025-57819) was actively exploited on public-facing systems, with a maximum CVSS score of 10.0 and multiple indicators of compromise identified.
-
New Vulnerability in ServiceNow Exposes Sensitive Data to Low-Privileged Users
A newly identified vulnerability in ServiceNow, known as Count(er) Strike, allows low-privileged users to access sensitive data improperly, prompting urgent calls for enhanced security measures from enterprises using the platform.
