SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Wednesday, June 4th, 2025: vBulletin Exploited; Chrome 0-Day Patch; Roundcube RCE Patch; Multiple HP StoreOnce Vulns Patched
15 snips
Jun 4, 2025 Delve into the cybersecurity landscape as recent exploits in vBulletin create concern, especially for PHP 8.1 users. Google Chrome receives urgent patches for flaws, one of which is actively exploited. Roundcube's vulnerability allows any logged-in user to execute code, highlighting serious webmail risks. Additionally, HP’s StoreOnce faces vulnerabilities that could enable remote code execution. The discussion emphasizes the critical importance of timely updates and hints at exciting upcoming events at the SANS Fire conference.
AI Snips
Chapters
Transcript
Episode notes
PHP 8.1 Accessibility Change
- PHP 8.1 changed method accessibility, exposing protected/private methods via reflection.
- This undocumented change introduced new vulnerabilities in vBulletin's API usage.
Urgent vBulletin Patch Needed
- If you run vBulletin on PHP 8.1, apply the patch released over a year ago immediately.
- Scans show active exploitation attempts, so patching is urgent despite vague vendor details.
Keep Chrome Updated and Restarted
- Restart Google Chrome daily to ensure automatic security patches take effect.
- Google patched three vulnerabilities, with one zero-day already exploited in the wild.