Free Daily Cyber Security Newsletter

Subject: CyberAlerts Daily Newsletter - May 30, 2025

Several critical vulnerabilities have been identified in widely used products, necessitating immediate attention. The Consilium Safety CS5000 Fire Panel contains a critical flaw due to hard-coded credentials and an insecure default account, both of which can allow unauthorized remote access and operational control, posing significant safety risks. Similarly, the Portal for ArcGIS by Esri has a critical Server Side Request Forgery (SSRF) vulnerability that allows remote attackers to bypass protections, which could lead to unauthorized access or data exposure. The MICI Network Co. Ltd. NetFax Server is also critically vulnerable due to command injection that can be exploited by authenticated users, potentially compromising server integrity. In the realm of cybersecurity tools, both the Symantec Messaging Gateway and Deployment Solution exhibit critical buffer overflow vulnerabilities, enabling remote attackers to execute arbitrary code with root or system privileges. Additionally, Cisco Unified Communications products are affected by a critical vulnerability that allows unauthenticated remote attackers to execute arbitrary code, which could lead to complete system takeover. For Mattermost users, a medium-severity issue allows team administrators to improperly modify team privacy settings due to insufficient permission validation, which could lead to unauthorized access to team invite IDs. This is less severe compared to the aforementioned critical vulnerabilities but still warrants attention. To mitigate these risks, organizations should promptly apply security patches, change default credentials, and ensure all devices are configured securely. Regularly reviewing and updating security protocols and user permissions can further protect against exploitation.