Germany

Linksys MR9600 Router Vulnerability Allows Code Execution

CERT-Bund has issued a security advisory for the Linksys MR9600 Router, detailing a vulnerability that allows remote, authenticated attackers to execute arbitrary code. The advisory highlights a CVSS Base Score of 8.8, indicating a high severity.

etcd Security Advisory: Multiple Vulnerabilities

CERT-Bund has issued a security advisory regarding multiple vulnerabilities in etcd, versions prior to 3.6.9, 3.5.28, and 3.4.42. These vulnerabilities allow attackers to bypass security measures, with a high CVSS base score of 8.6. Affected systems include Linux, UNIX, and Windows.

Keycloak Vulnerabilities Allow Remote Authenticated Attacks

CERT-Bund has issued a security advisory for Keycloak, detailing vulnerabilities that allow remote authenticated attackers to bypass security measures and disclose information. The advisory highlights a CVSS base score of 5.8 and affects Keycloak versions used on Linux and UNIX operating systems.

BaFin Imposes Administrative Fine on a.i.s. AG

BaFin has imposed an administrative fine of €25,000 on a.i.s. AG for failing to publish its half-yearly financial report for the 2025 financial year. This contravenes obligations under the German Securities Trading Act (WpHG), which requires timely publication of financial reports for investor information.

BaFin Warns Consumers About MORRISONBOOST Services on WhatsApp

BaFin has issued a warning to consumers regarding unauthorized financial services offered through WhatsApp groups by MORRISONBOOST. The platform allegedly encourages trading in financial instruments without the required authorization from BaFin, raising concerns about potential banking and financial service violations.

BaFin Restricts Marketing, Distribution, and Sale of Futures to Retail Clients

The German Federal Financial Supervisory Authority (BaFin) has issued a general administrative act restricting the marketing, distribution, and sale of futures to retail clients. This measure, effective January 1, 2023, prohibits investment firms from offering futures to retail clients unless specific exceptions apply, such as excluding additional payment obligations or confirming the purchase is solely for hedging purposes.

BaFin Warns Consumers About Tradealles.com Website and Identity Fraud

Germany's BaFin has issued a warning regarding the website tradealles.com, which is suspected of offering unauthorized financial, investment, and cryptoasset services. The warning also highlights potential identity fraud, as the operators appear to be misusing registration details of another company.

BaFin Warns Consumers About Panthera-gmbh.com Identity Fraud

BaFin has issued a warning regarding the website panthera-gmbh.com, suspecting its operators of offering financial and investment services without authorization. The agency also confirmed that this is a case of identity fraud, with no connection to the legitimate company Panthera AM GmbH.

Bundeskartellamt Clears Adobe's Takeover of Semrush

The German Federal Cartel Office (Bundeskartellamt) has cleared Adobe Inc.'s acquisition of Semrush Holdings, Inc. in the first phase of merger control. The investigation found no serious concerns regarding market foreclosure or product bundling, allowing the transaction to proceed.

Atlassian Bamboo Data Center Vulnerability Allows Code Execution

CERT-Bund has issued a security advisory regarding a vulnerability in Atlassian Bamboo Data Center versions prior to 9.6.24, 10.2.16, and 12.1.3. The vulnerability allows remote, authenticated attackers to execute arbitrary code, posing a high risk.