DiscoverSANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)SANS Stormcast Friday, October 3rd, 2025: More .well-known Scans; RedHat Openshift Patch; TOTOLINK Vuln;
SANS Stormcast Friday, October 3rd, 2025: More .well-known Scans; RedHat Openshift Patch; TOTOLINK Vuln;

SANS Stormcast Friday, October 3rd, 2025: More .well-known Scans; RedHat Openshift Patch; TOTOLINK Vuln;

Update: 2025-10-03
Share

Description



More .well-known scans

Attackers are using API documentation automatically published in the .well-known directory for reconnaissance.

https://isc.sans.edu/diary/More%20.well-known%20Scans/32340

RedHat Patches Openshift AI Services

A flaw was found in Red Hat Openshift AI Service. A low-privileged attacker with access to an authenticated account, for example, as a data scientist using a standard Jupyter notebook, can escalate their privileges to a full cluster administrator.

https://access.redhat.com/security/cve/cve-2025-10725#cve-affected-packages

TOTOLINK X6000R Vulnerabilities

Paloalto released details regarding three recently patched vulnerabilities in TotalLink-X6000R routers.

https://unit42.paloaltonetworks.com/totolink-x6000r-vulnerabilities/

DrayOS Vulnerability Patched

Draytek fixed a single memory corruption vulnerability in its Vigor series router. An unauthenticated user may use it to execute arbitrary code.

https://www.draytek.com/about/security-advisory/use-of-uninitialized-variable-vulnerabilities
Comments 
In Channel
loading
00:00
00:00
x

0.5x

0.8x

1.0x

1.25x

1.5x

2.0x

3.0x

Sleep Timer

Off

End of Episode

5 Minutes

10 Minutes

15 Minutes

30 Minutes

45 Minutes

60 Minutes

120 Minutes

SANS Stormcast Friday, October 3rd, 2025: More .well-known Scans; RedHat Openshift Patch; TOTOLINK Vuln;

SANS Stormcast Friday, October 3rd, 2025: More .well-known Scans; RedHat Openshift Patch; TOTOLINK Vuln;

Dr. Johannes B. Ullrich