Critical Vulnerabilities and Updates Discussed in SANS Internet Storm Center's Stormcast
In the June 26, 2025 edition of the SANS Internet Storm Center's Stormcast, Johannes Ullrich discusses several critical vulnerabilities and their practical implications. The first vulnerability concerns Citrix Netscaler, a device commonly used for VPN configurations and proxies. This vulnerability, which allows for a denial of service, is already being actively exploited. It affects Netscalers configured as gateways, including virtual VPN servers, ICA proxies, CVPN proxies, and RDP proxies. Although patches are available for supported versions, end-of-life versions remain vulnerable without the possibility of updates. Another topic covered is a vulnerability in Web Panel software, used to manage CentOS servers. This vulnerability allows an attacker to upload arbitrary files, which can lead to arbitrary code execution. Even if you do not directly administer a server via Web Panel, it is crucial to ensure that the version of Web Panel used by your service provider is up-to-date to protect your data. Johannes Ullrich also mentions a vulnerability in Gogs, a self-hosted Git server. This vulnerability allows for the arbitrary deletion of files, which can invalidate a Git repository and allow for code execution. This flaw is related to a previous vulnerability, highlighting the importance of properly fixing security flaws. Finally, Let's Encrypt announces that they are almost ready to issue certificates based on IP addresses, a novelty compared to traditional TLS certificates based on hostnames. These certificates will be valid for 6 days and will require a whitelisting procedure. Although compatibility issues have been encountered with some browsers, Let's Encrypt plans to start issuing these certificates soon. This information is crucial for cybersecurity professionals and system administrators, as it highlights the importance of vigilance and rapid system updates to protect against emerging threats. For more details, watch the full video at the following address: https://www.youtube.com/watch?v=BIZnHBwePm8