Multiple CVEs in Cisco EPNM and Prime Infrastructure

During our research activities, we identified multiple vulnerabilities in the webbased management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure. These vulnerabilities could allow a remote attacker, who is authenticated and has limited privileges, to execute malicious code on the client side, obtain sensitive information, or upload arbitrary files to a vulnerable system.

CVE-2025-20269: Cisco EPNM and Prime Infrastructure Arbitrary File Retrieval

CVE202520269 is a vulnerability in the webbased management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure. It allows a remote, authenticated, lowprivileged attacker to retrieve arbitrary files from the underlying file system by sending crafted HTTP requests. Cisco has released software updates to address the issue, and no workarounds are available.

GodFather Android Malware Analysis

GodFather is an Android malware that was first identified in mid 2023 and quickly attracted the attention of security experts because of its advanced capabilities and modular structure. Its design highlights a significant evolution from its predecessors, exploiting sophisticated techniques to circumvent security measures and infect Android devices.In this article, we will explore how this version of the malware communicates with the C2 server, a critical component that allows attackers to manage the malware in real time and receive stolen data....