Gh0st RAT – Active IOCs

June 8, 2025

CVE-2025-5806 – Jenkins Gatling Plugin Vulnerability

June 8, 2025

CVE-2025-27531 – Apache InLong Vulnerability

June 8, 2025

Severity

High

Analysis Summary

CVE-2025-27531

Apache InLong could allow a remote to obtain sensitive information, caused by the deserialization of untrusted data. By double writing the param, an attacker could exploit this vulnerability to read arbitrary files for JDBC.

Impact

Information Disclosure

Indicators of Compromise

CVE

CVE-2025-27531

Affected Vendors

Apache

Affected Products

Apache InLong - 1.13.0
Apache InLong - 2.0.0

Remediation

Refer to the Apache Security Advisory for patch, upgrade, or suggested workaround information.

Apache Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

New AD Lateral Movement Bypasses Authentication, Steals Data

Windows UAC Bypassed via Character Map

SideWinder APT Group aka Rattlesnake – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Gh0st RAT – Active IOCs

CVE-2025-5806 – Jenkins Gatling Plugin Vulnerability

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation