VulnHub

ServiceNow has addressed a significant flaw in its AI platform that could allow attackers to impersonate users. The company claims there is no evidence that this vulnerability was exploited before the patch was released in October. However, security researchers warn that the configuration of AI agents could still lead to prompt-injection style abuses, which could potentially compromise user accounts. This situation raises concerns about the security of AI systems and the risks they pose if not properly configured. Organizations using ServiceNow's AI features should ensure they implement the latest updates to mitigate any potential risks.

ServiceNow has reported a serious security vulnerability in its AI Platform that could allow an unauthenticated user to impersonate another user and take actions on their behalf. This flaw, identified as CVE-2025-12420, has a high severity rating of 9.3 out of 10, indicating a significant risk to users. The potential for impersonation means that attackers could exploit this weakness to gain unauthorized access to sensitive information or perform harmful actions. Organizations using ServiceNow's AI Platform should prioritize applying the patch to mitigate this risk and protect their users. The quick response from ServiceNow in addressing this vulnerability is crucial to maintaining trust in their services.

Meta has addressed a vulnerability in Instagram that allowed unauthorized parties to send password reset emails. This flaw raised concerns about potential account takeovers, as attackers could exploit it to gain access to user accounts. Despite claims of leaked data, Meta has denied any data breach, stating they have only fixed the reset issue. Users should be aware of this vulnerability, especially if they received unexpected password reset emails, as it indicates the possibility of malicious activity. It's important for users to enable additional security measures, such as two-factor authentication, to further protect their accounts.

Instagram recently addressed a vulnerability that allowed unauthorized third parties to send password reset emails to users. This issue raised concerns about user security and the potential for unauthorized access to accounts, which could lead to data breaches or identity theft. The platform has confirmed that they have fixed the flaw, but the incident highlights ongoing risks associated with account management and security on social media. Users are urged to remain vigilant and consider changing their passwords regularly to enhance their security. This incident serves as a reminder of the importance of robust security measures in protecting personal information online.

A significant security vulnerability, known as 'Ni8mare', has been discovered affecting nearly 60,000 instances of n8n, an open-source workflow automation tool. This flaw is classified as maximum severity, meaning it poses a serious risk to users who have not yet applied the necessary patches. The vulnerability could potentially allow attackers to exploit exposed instances, leading to unauthorized access or data breaches. As of now, many users remain unprotected, which raises concerns about the security of their automated workflows and sensitive data. It’s crucial for n8n users to address this issue immediately to prevent possible exploitation.

The Illinois Department of Human Services (IDHS) recently reported a data breach affecting nearly 700,000 individuals. The breach resulted from misconfigured privacy settings that exposed sensitive personal and health information. IDHS became aware of the issue on September 22, 2025, when internal maps meant for internal use were inadvertently made accessible. This incident raises concerns about how government agencies handle sensitive data and the potential risks to affected residents, who may now face increased vulnerability to identity theft or other forms of misuse of their information. The IDHS is likely to face scrutiny over its data protection practices and the measures it will take to prevent future breaches.

Cisco has released updates to address a medium-severity vulnerability in its Identity Services Engine (ISE) and ISE Passive Identity Connector, identified as CVE-2026-20029. This flaw was brought to light following the publication of a proof-of-concept exploit, raising concerns about its potential exploitation. Organizations using these Cisco products are at risk, as the vulnerability could allow unauthorized access or manipulation of identity services. It’s crucial for affected users to apply the updates promptly to safeguard their networks and data from possible attacks. The quick response from Cisco highlights the ongoing need for vigilance in cybersecurity practices.

Trend Micro has released patches for a significant code execution vulnerability in its Apex Central product. This flaw could allow attackers to execute arbitrary code, putting systems at risk. Tenable has since provided proof-of-concept code and technical details, which could assist malicious actors in exploiting the vulnerability if users do not update their systems promptly. Companies using Apex Central need to apply the patches to protect their networks from potential attacks. The urgency of this update is underscored by the fact that vulnerabilities of this nature can lead to serious breaches if left unaddressed.

Trend Micro has addressed a serious vulnerability in its Apex Central software, which is used for centralized management of security solutions. This flaw could allow attackers to run arbitrary code with SYSTEM privileges, potentially giving them full control over affected systems. The vulnerability affects the on-premise version of Apex Central, putting companies that rely on this tool at risk. Users are advised to apply the latest patches immediately to protect their systems from potential exploitation. This incident underscores the need for regular updates and vigilance in cybersecurity practices.