Security professionals: what’s a vulnerability you discovered that made you question how the system ever passed testing?

Security professionals: what’s a vulnerability you discovered that made you question how the system ever passed testing?
好的，我现在需要帮用户总结这篇文章的内容。用户的要求是用中文总结，控制在100字以内，而且不需要以“文章内容总结”或“这篇文章”这样的开头，直接写描述即可。首先，我仔细阅读了文章内容。文章主要讨论了最近的一些软件漏洞和网络安全问题。包括Windows的两个漏洞CVE-2025-9491和CVE-2025-59287，前者尚未修补，后者修复不完整。此外，还提到了BYOVD攻击、配置错误、恶意浏览器扩展以及Fortinet和Ivanti的零日漏洞。资源方面提到了OpenCVE.io和Exploit-DB.com，还有相关的Subreddit社区。接下来，我需要将这些信息浓缩到100字以内。要抓住关键点：主要漏洞、攻击方式、配置问题、恶意扩展、厂商问题以及资源和社区。然后，我组织语言，确保信息准确且简洁。例如，“Windows的两个关键漏洞”可以涵盖CVE部分，“BYOVD攻击”直接点出攻击方式，“配置错误”简明扼要，“恶意浏览器扩展”说明威胁来源，“厂商修补问题”涉及伦理问题，“资源如OpenCVE.io和Exploit-DB.com”提供工具支持，“社区如r/cybersecurity等”帮助用户获取更多信息。最后，检查字数是否在限制内，并确保没有使用任何开头模板。这样就能满足用户的所有要求了。 </think> 文章讨论了近期网络安全威胁，包括Windows未修补漏洞、BYOVD攻击、配置错误、恶意浏览器扩展及厂商修补问题，并提供了跟踪资源如OpenCVE.io和Exploit-DB.com及社区如r/cybersecurity等。 2026-3-8 00:12:46 Author: www.reddit.com(查看原文) 阅读量:29 收藏

Keeping up with the latest vulnerabilities in popular software is crucial for maintaining cybersecurity. Here are some significant recent vulnerabilities that people should be aware of, as discussed by Redditors:

Windows Vulnerabilities

CVE-2025-9491: A vulnerability in the Windows Shortcut binary format that allows for remote code execution. Microsoft has not yet patched this, and it is being actively exploited by a China-aligned threat group. "Seven months later, Microsoft still hasn’t patched the vulnerability"
CVE-2025-59287: A critical remote code execution vulnerability in Windows Server Update Services (WSUS). Microsoft released an unscheduled update for this, but proof-of-concept code showed the fix was incomplete. "The other Windows vulnerability was patched last week"

General Cybersecurity Concerns

BYO-Vulnerable Driver Attacks: Ransomware gangs are using Bring Your Own Vulnerable Driver (BYOVD) attacks, which exploit legitimate but vulnerable drivers to bypass security measures. "Ransomware gangs are using BYO-Vulnerable Driver account for about 20% of attacks"
Misconfigurations: Many security breaches are due to simple misconfigurations, such as not changing default passwords. "The most frequently encountered vuln in real life is misconfigurations"
Malicious Browser Extensions: Users downloading malicious Chrome plug-ins and other browser extensions from untrusted sources is a significant threat. "Chrome plug-ins. A user googles ‘I want a thing to do a thing’ and the first hit takes them to download a malicious YouTube converter"

Vendor and Software-Specific Vulnerabilities

Fortinet/Ivanti Zero Days: Constant vulnerabilities in products from vendors like Fortinet and Ivanti are a cause for concern. "What about the constant Fortinet/Ivanti zero days"
Vendor Paywalling: Some vendors are charging for patches to known vulnerabilities, which is seen as a unethical practice. "There's a vulnerability in our software? Ok, pay us $3000 to patch it"

Resources for Tracking Vulnerabilities

OpenCVE.io: A comprehensive database that allows users to track CVEs by product and vendor. "I use https://www.opencve.io/ and im happy with selecting the products and vendors im interested of"
Exploit-DB.com: A repository of exploits for various software. "I'll search https://www.exploit-db.com/ for products in our inventory"

Subreddits for Further Discussion

These communities are great places to ask more specific questions and stay updated on the latest cybersecurity threats.

文章来源: https://www.reddit.com/r/blackhat/comments/1rnptnd/security_professionals_whats_a_vulnerability_you/
如有侵权请联系:admin#unsafe.sh