CODEREDVTA

Vulnerability and Threat Advisories

“Security rules and techniques that helping you stay ahead of cyber threats”

Credited by Freepik
19/08/2025

Palo Alto GlobalProtect Certificate Validation Flaw Enables Privilege Escalation

Palo Alto GlobalProtect Certificate Validation Flaw Enables Privilege Escalation Credited by Freepik VTA-004534 – Palo Alto GlobalProtect Certificate Validation Flaw Enables Privilege Escalation CVE-2025-2183 exposes a critical certificate validation flaw in Palo Alto GlobalProtect VPN clients (Windows/Linux) that allows adjacent …

Read More
Credited by Freepik
15/08/2025

Microsoft Warns of Critical IIS Web Deploy Flaw Enabling Remote Code Execution

Microsoft Warns of Critical IIS Web Deploy Flaw Enabling Remote Code Execution Credited by Freepik VTA-004533 – Microsoft Warns of Critical IIS Web Deploy Flaw Enabling Remote Code Execution On August 12, 2025, Microsoft disclosed CVE-2025-53772, a critical vulnerability in …

Read More
Credited by Freepik
11/08/2025

Critical Windows Flaw Turns Domain Controllers into Unwitting DDoS Weapons

Critical Windows Flaw Turns Domain Controllers into Unwitting DDoS Weapons Credited by Freepik VTA-004532 – Critical Windows Flaw Turns Domain Controllers into Unwitting DDoS Weapons The Win-DDoS vulnerability, revealed by SafeBreach researchers Or Yair and Shahak Morag at DEF CON …

Read More
Credited by Freepik
11/08/2025

SocGholish Malware Exploits TDS Networks to Target Victims

SocGholish Malware Exploits TDS Networks to Target Victims Credited by Freepik VTA-004531 – SocGholish Malware Exploits TDS Networks to Target Victims Cybercriminals behind SocGholish malware are using Traffic Distribution Systems (TDS) like Parrot TDS and Keitaro TDS to filter and …

Read More
Credited by Freepik
11/08/2025

ECScape Vulnerability Exploits Amazon ECS Protocol to Steal Cross-Task AWS Credentials

ECScape Vulnerability Exploits Amazon ECS Protocol to Steal Cross-Task AWS Credentials Credited by Freepik VTA-004530 – ECScape Vulnerability Exploits Amazon ECS Protocol to Steal Cross-Task AWS Credentials The ECScape vulnerability exposes a critical design flaw in Amazon ECS where malicious …

Read More

Case Study