Free Daily Cyber Security Newsletter

Subject: CyberAlerts Daily Newsletter - April 15, 2025

Several critical vulnerabilities have been identified in widely used products, requiring immediate attention. Firstly, the SicommNet BASEC platform is affected by a critical SQL injection vulnerability (CVE-2025-22371) that enables unauthenticated attackers to bypass authentication and execute arbitrary SQL commands. Currently, there is no patch available for this issue, making it a significant concern for users. Another severe vulnerability exists in the Meshtastic firmware (CVE-2025-24797), which improperly handles malformed packets, potentially allowing attackers to execute remote code without authentication. This issue has been fixed in version 2.6.2, and users are urged to update immediately. In the realm of application vulnerabilities, the DevDojo Voyager (CVE-2025-32931) allows authenticated administrators to execute arbitrary OS commands due to a flaw in the PHP artisan command. This critical issue affects versions 1.4.0 to 1.8.0 when using Laravel 8 or later. Additionally, a critical flaw in HylaFAX and AvantFAX (CVE-2025-1782) can allow authenticated users to include arbitrary files in PHP code, posing serious risks to system security. Medium-severity vulnerabilities have also been reported, such as the Directus (CVE-2024-47822) issue where access tokens in logs are not redacted, potentially exposing sensitive information. Users should upgrade to version 10.13.2 or later to mitigate this risk. Similarly, jsonschema2pojo (CVE-2025-3588) has a stack-based buffer overflow vulnerability requiring local exploitation. It is crucial for users of affected systems to take immediate action to upgrade or patch their software to protect against these vulnerabilities and minimize potential exploitation risks.