Welcome to TheCyberThrone cybersecurity month in review will be posted covering the important security happenings . This review is for the month ending February 2025
Subscribers favorite #1
CVE-2025-1094 impacts PostgreSQL with SQL Injection
CVE-2025-1094 is a critical security vulnerability affecting the PostgreSQL interactive tool psql. This vulnerability presents significant risks to the integrity and security of database systems using PostgreSQL.
CVE-2025-1094 is an SQL Injection vulnerability that arises from improper neutralization of quoting syntax in PostgreSQL’s libpq functions, such as PQescapeLiteral(), PQescapeIdentifier(), PQescapeString(), and PQescapeStringConn(). This flaw allows attackers to inject malicious data into some of the REST API endpoints’ query parameters. When the PostgreSQL interactive tool reads untrusted input, it can lead to unauthorized access, data manipulation, and potentially severe security breaches….
Subscribers favorite #2
Exploit Code Released for Microsoft CVE-2024-38193
A critical use-after-free vulnerability, tracked as CVE-2024-38193 with a CVSS score of 7.8, has been discovered in the afd.sys Windows driver that allows attackers to escalate privileges and execute arbitrary code. This vulnerability has been fixed during the August 2024 patch on Tuesday.
Security researchers from Gen Digita discovered and reported the vulnerability to Microsoft, stated that this flaw allows attackers to bypass normal security restrictions and access sensitive system areas that are typically inaccessible to most users and administrator This attack is both complex and cunning, potentially worth hundreds of thousands of dollars on the black market
Subscribers favorite #3
Redis was affected by CVE-2024-51741 and CVE-2024-46981
CVE-2024-51741
This vulnerability affects Redis, an open-source in-memory data structure store used as a database, cache, and message broker. The issue arises when an authenticated user with sufficient privileges creates a malformed Access Control List (ACL) selector. When this malformed selector is accessed, it causes the Redis server to panic and crash, leading to a denial of service (DoS).
CVE-2024-46981
This vulnerability also affects Redis. It involves the misuse of the Lua scripting functionality within Redis. An authenticated user can craft a specific Lua script that manipulates the garbage collector in a way that could lead to remote code execution (RCE). This allows an attacker to execute arbitrary code on the server, potentially leading to full system compromise…..
Subscribers favorite #4
CVE-2025-21293 PoC Exploit Code Released
CVE-2025-21293 is an elevation of privilege vulnerability in Active Directory Domain Services. The vulnerability arises from excessive permissions granted to the Network Configuration Operators group, which can be exploited to achieve system-level privileges. This issue was initially discovered in September 2024 and was subsequently patched in January 2025…..
Subscribers favorite #5
CVE-2025-0107 PoC Exploit Code Released for PaloAlto Flaw
CVE-2025-0107 is a critical OS command injection vulnerability discovered in Palo Alto Networks’ Expedition Tool, version 1.2.101 and earlier. Recently, security researchers released a Proof-of-Concept (PoC) exploit code, which demonstrates how this vulnerability can be exploited to execute arbitrary commands on affected systems, posing significant security risks…..
This brings the end of this month in review security coverage. Thanks for visiting TheCyberThrone. If you like us, please follow us on Facebook, Twitter, Instagram
