JPCERT Confirms Active Command Injection Attacks on Array AG Gateways

Updated on December 5, 2025

A command injection vulnerability in Array Networks AG Series secure access gateways has been exploited in the wild since August 2025, according to an alert issued by JPCERT/CC this week.
The vulnerability, which does not have a CVE identifier, was addressed by the company on May 11, 2025. It’s rooted in Array’s DesktopDirect, a remote desktop access solution that allows users to securely access…

Read the rest of the story at Read More

Source: The Hacker News

November 7, 2025 Uncategorized

Hidden Logic Bombs in Malware-Laced NuGe...

October 30, 2025 Uncategorized

Russian Ransomware Gangs Weaponize Open-...

November 10, 2025 Uncategorized

JPCERT Confirms Active Command Injection Attacks on Array AG Gateways

Related posts

Hidden Logic Bombs in Malware-Laced NuGe...

Russian Ransomware Gangs Weaponize Open-...

New Browser Security Report Reveals Emer...

Leave a Comment Cancel reply

Recent News

Amazon Exposes Years-Long GRU Cyber Campaign Targeting Energy and Cloud Infrastructure

Why Data Security and Privacy Need to Start in Code

Fortinet FortiGate Under Active Attack Through SAML SSO Authentication Bypass

React2Shell Vulnerability Actively Exploited to Deploy Linux Backdoors

Google to Shut Down Dark Web Monitoring Tool in February 2026

Featured Chrome Browser Extension Caught Intercepting Millions of Users’ AI Chats

FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE

⚡ Weekly Recap: Apple 0-Days, WinRAR Exploit, LastPass Fines, .NET RCE, OAuth Scams & More

A Browser Extension Risk Guide After the ShadyPanda Campaign

Phantom Stealer Spread by ISO Phishing Emails Hitting Russian Finance Sector