TP-Link, Canva, HikVision vulnerabilities

TP-Link, Canva, HikVision vulnerabilities

Cisco Talos’ Vulnerability Discovery & Research team recently disclosed a vulnerability in HikVision, as well as 10 in TP-Link, and 19 in Canva.

The vulnerabilities mentioned in this blog post have been patched by their respective vendors, all in adherence to Cisco’s third-party vulnerability disclosure policy.

For Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from Snort.org, and our latest Vulnerability Advisories are always posted on Talos Intelligence’s website.     

Canva Affinity vulnerabilities

Discovered by KPC of Cisco Talos.

Canva Affinity is a free-to-use tool for pixel and vector art manipulation used in graphic and document design.

Talos researchers found 19 vulnerabilities in Affinity. Eighteen of them are out-of-bounds read vulnerabilities in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit these vulnerabilities to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information.

The last vulnerability is TALOS-2025-2297 (CVE-2025-66342), a type confusion vulnerability in the EMF functionality of Canva Affinity. A specially crafted EMF file can trigger this vulnerability, which can lead to memory corruption and result in arbitrary code execution.

TP-Link vulnerabilities

Discovered by Lilith >_> of Cisco Talos.

The TP-Link Archer AX53 is a dual band gigabit Wi-Fi router. Talos researchers found 10 vulnerabilities in the router functionality.

TALOS-2025-2290 (CVE-2025-62673) is a stack-based buffer overflow vulnerability in the tdpServer ssh port update functionality of Tp-Link AX53. A specially crafted network packet can lead to stack-based buffer overflow.

These eight vulnerabilities exist in the tmpServer opcode of the AX53:

A specially crafted set of network packets can be sent to trigger these vulnerabilities, which can lead to arbitrary code execution.

TALOS-2025-2291 (CVE-2025-62501) is a misconfiguration vulnerability in the SSH Hostkey functionality. A specially crafted man-in-the-middle attack can lead to credentials leak.

HikVision buffer overflow vulnerability

Discovered by a member of Cisco Talos.

HikVision creates AI-trained machine perception for use in security surveillance and other monitoring hardware, including Ultra Face Recognition Terminals for authentication.

Talos researchers found TALOS-2025-2281 (CVE-2025-66176), a stack-based buffer overflow vulnerability, in the SADP XML parsing functionality of Hangzhou Hikvision Digital Technology Co., Ltd. Ultra Face Recognition Terminal 3.7.60_250613 and Face Recognition Terminal for Turnstyle 3.7.0_240524 (under emulation). A specially crafted network packet can lead to remote code execution. An attacker can send a malicious packet to trigger this vulnerability.

Cisco Talos Blog – ​Read More

This DeWalt cordless power tool set is nearly 50% off on Amazon – and I can vouch for it

My favorite DeWalt power tool kit is ideal for DIY beginners and tradespeople, and it’s near an all-time low price right now.

Latest news – ​Read More

The most popular Amazon Spring Sale deals, according to thousands of readers

Amazon’s Spring Sale is live, and we’ve got the scoop on the top products ZDNET readers are clicking on the most, from inexpensive gadgets to flagship phones.

Latest news – ​Read More

I went biking with this $100 bone conduction headset and it rocked for 6 hours

If you’re curious about bone conduction technology, the H2O Audio Tri Run is a solid entry-level pair.

Latest news – ​Read More

I can’t stop talking about the Ninja Creami Swirl – and it’s on sale at Amazon right now

This version of the popular Ninja Creami ice cream maker lets you dispense your own soft serve, and makes an excellent gift ahead of the summer.

Latest news – ​Read More

The best Amazon Spring Sale Bluetooth devices that make life easier

Discover my favorite practical Bluetooth gadgets on sale now for Amazon’s Big Spring Sale. Don’t miss these deals (save up to 40%).

Latest news – ​Read More

A major hacking tool has leaked online, putting millions of iPhones at risk. Here’s what you need to know

Here’s what we know, and what you need to know, about Coruna and DarkSword, two advanced iPhone hacking tools discovered by security researchers. DarkSword has now leaked online.

Security News | TechCrunch – ​Read More

Talos Takes: 2025 insights from Talos and Splunk

Talos Takes: 2025 insights from Talos and Splunk

In this episode of Talos Takes, Amy is joined by William Largent (Cisco Talos) and Lou Stella (Splunk) for a “double-header” discussion. With the recent release of the Cisco Talos 2025 Year in Review and the Splunk Top 50 Cybersecurity Threats report, we’re breaking down the most critical trends that shaped the security landscape last year — all based on Cisco telemetry, Talos’ original research, and Talos Incident Response engagements.

From the professionalization of ransomware-as-a-service to the persistent challenge of decade-old vulnerabilities, this episode moves beyond the headlines to provide a practical roadmap for defenders. You’ll get tips on how to prioritize your defenses and reduce your attack surface for the year ahead.

View the 2025 Year in Review today.

Cisco Talos Blog – ​Read More

Russia detains alleged admin of LeakBase cybercrime forum weeks after global crackdown

Russian authorities have detained a suspected administrator of LeakBase, a major online marketplace for stolen data, weeks after U.S. and European law enforcement agencies carried out a global crackdown on the platform.

The Record from Recorded Future News – ​Read More

I let Claude AI control my Mac, and it worked flawlessly – with only two minor issues

Claude can take over your PC screen to carry out tasks now, like finding files and writing emails. Here’s how well it works.

Latest news – ​Read More