Welcome to the June 17th edition of ONSEC Cyber Daily, where today's headlines weave a tale of digital urgency and defense. As cyber threats loom large, CISA has sounded the alarm on a critical TP-Link router flaw, CVE-2023-33538, now under active exploitation. Meanwhile, a zero-click vulnerability in iOS devices has been exploited by mercenary spyware, prompting immediate attention. Microsoft urges users to update Windows to thwart a high-severity authentication relay attack, while Tenable vulnerability scanner bugs have been swiftly patched. In the realm of enterprise, Sitecore's chained flaws could allow remote code execution, and Langflow's critical vulnerability is actively exploited by the Flodrix botnet. As hackers target Chrome's Mojo component and Apache Tomcat faces authentication bypass threats, Zyxel devices are under siege from a UDP port RCE flaw. Amidst these challenges, Aeris launches its "IoT Real Talk" podcast, promising unfiltered insights into the future of IoT and cybersecurity. Stay informed, stay secure.

Exploits Alert

1. TP-Link Router Flaw CVE-2023-33538 Under Active Exploit: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding a high-severity security flaw in TP-Link wireless routers. This vulnerability, identified as CVE-2023-33538, is currently being actively exploited, posing significant risks to users. CISA urges immediate action to mitigate potential threats. Source: The Hacker News.
2. CISA Warns of iOS 0-Click Vulnerability Exploited in the Wild: A critical zero-click vulnerability affecting iOS devices has been added to CISA's Known Exploited Vulnerabilities (KEV) catalog. This flaw is reportedly being exploited by mercenary spyware, highlighting the urgent need for users to update their devices to protect against potential breaches. Source: Cyber Security News.

Vulnerabilities & Patches

1. Update Windows Now — Microsoft Confirms System Takeover Danger: A critical vulnerability, CVE-2025-33073, has been identified in Windows, allowing attackers to perform an authentication relay attack. With a CVSS score of 8.8, this high-severity flaw necessitates immediate patching to prevent potential system takeovers. Source
2. High-severity Tenable Vulnerability Scanner Bugs Fixed: Tenable has addressed a significant vulnerability, CVE-2025-36633, which could be exploited for arbitrary system execution. Users are urged to apply the latest patches to safeguard their systems from potential exploitation. Source
3. Chained Flaws in Enterprise CMS Provider Sitecore Could Allow Remote Code Execution: Sitecore has patched multiple vulnerabilities that could lead to remote code execution. Although CVE identifiers are pending, organizations using Sitecore should update immediately to mitigate risks. Source
4. Hackers Exploiting Chrome Zero‑Day Vulnerability in the Wild: A high-severity zero-day vulnerability, CVE-2025-2783, in Google Chrome's Mojo component is actively being exploited. Users are advised to update their Chrome installations to the latest version to protect against potential attacks. Source
5. Apache Tomcat Flaws Allow Auth Bypass and DoS Attacks: Apache Tomcat has released patches for vulnerabilities, including CVE-2025-48988, which could enable denial-of-service attacks through multipart upload abuse. Administrators should apply these patches promptly to ensure system security. Source

Podcasts

1. IoT Real Talk: Aeris has launched a new podcast titled "IoT Real Talk," which delves into unfiltered conversations about the future of global IoT. The podcast aims to provide insights into the challenges and opportunities within the IoT landscape, featuring industry experts and thought leaders. This series is a must-listen for anyone interested in the intersection of IoT and cybersecurity. Source: Silicon UK.
2. Hacking Humans: This podcast explores the human element of cybersecurity, focusing on social engineering and the psychological tactics used by cybercriminals. Each episode features real-world stories and expert interviews, offering listeners practical advice on how to recognize and defend against these threats. Source: The CyberWire.
3. Smashing Security: Hosted by cybersecurity veterans, this podcast covers the latest in cybersecurity news with a humorous twist. The hosts discuss everything from data breaches to hacking trends, making complex topics accessible and entertaining for all listeners. Source: Smashing Security.
4. Malicious Life: This podcast dives deep into the history of cybersecurity, exploring notable hacks and the evolution of cyber threats. Through storytelling and expert interviews, it provides a comprehensive look at how cybersecurity has shaped the digital world. Source: Malicious Life.
5. The Cyber Security Podcast: A collaboration between New America and The Christian Science Monitor, this podcast offers in-depth discussions on the latest cybersecurity issues. It features interviews with policymakers, industry leaders, and researchers, providing a well-rounded perspective on current cyber challenges. Source: New America.

Final Words

As we wrap up today's edition of ONSEC Cyber Daily, remember that staying informed is your first line of defense in the ever-evolving world of cybersecurity. From the TP-Link router flaw CVE-2023-33538 to the critical iOS zero-click vulnerability, and the urgent need to update Windows systems, these stories highlight the importance of vigilance and timely action. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued alerts, emphasizing the active exploitation of these vulnerabilities. Whether it's patching your systems or spreading the word, every step counts in safeguarding our digital lives. We encourage you to share this newsletter with your friends and colleagues. By doing so, you help build a community that is informed and prepared to tackle the challenges of the digital age. Together, we can create a safer cyber environment for everyone. Stay secure, stay informed, and see you in the next issue!

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn

x.com

X (formerly Twitter)