Daily 5 min cyber security news summary. News, patches, vulnerabilities and trends in information and network security. SANS Stormcast Thursday, December 4th, 2025: CDN Headers; React Vulnerabiity; PickleScan Patch

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

Johannes B. Ullrich

SANS Stormcast Thursday, December 4th, 2025: CDN Headers; React Vulnerabiity; PickleScan Patch

DEC 4, 20256 MIN
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS Stormcast Thursday, December 4th, 2025: CDN Headers; React Vulnerabiity; PickleScan Patch

DEC 4, 20256 MIN

Description

<br/> Attempts to Bypass CDNs<br/> Our honeypots recently started receiving scans that included CDN specific headers.<br/> <a href="https://isc.sans.edu/diary/Attempts%20to%20Bypass%20CDNs/32532">https://isc.sans.edu/diary/Attempts%20to%20Bypass%20CDNs/32532</a><br/> React Vulnerability CVE-2025-55182<br/> React patched a critical vulnerability in React server components. Exploitation is likely imminent.<br/> <a href="https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components">https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components</a><br/> Unveiling 3 PickleScan Vulnerabilities<br/> The PyTorch AI model security tool, PickleScan, has patched three critical vulnerabilities.<br/> <a href="https://jfrog.com/blog/unveiling-3-zero-day-vulnerabilities-in-picklescan/">https://jfrog.com/blog/unveiling-3-zero-day-vulnerabilities-in-picklescan/</a><br/>