SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Monday, August 18th, 2025: 5G Attack Framework; Plex Vulnerability; Fortiweb Exploit; Flowise Vuln
Aug 18, 2025
A new tool allows passive interception of 5G traffic, raising concerns about security and potential attacks. Plex has patched a vulnerability in its media server, urging users to update. Details of a critical exploit for FortiWeb have emerged, showcasing a complete authentication bypass. Additionally, new vulnerabilities in AI tools highlight risks associated with untrusted data, making cybersecurity more crucial than ever.
AI Snips
Chapters
Transcript
Episode notes
Passive 5G Sniffing Enables Injection
- Passive 5G sniffing enables precise, timed injection attacks without rogue base stations.
- These timing attacks can cause DoS and force downgrade to less secure 4G connections.
Patch Plex Media Server Now
- Update Plex Media Server immediately to a patched release (at least 1.42.1).
- Don't leave developer machines or media servers unpatched where they can provide an initial breach path.
FortiWeb Cookie Key Bypass
- FortiWeb had a web parameter validation flaw that allowed auth bypass by manipulating a cookie key.
- Supplying an out-of-range ERA cookie parameter can produce a null encryption key and let attackers impersonate arbitrary users.