All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Critical Vulnerability in GoSign Desktop Allows Remote Code Execution via Insecure Updates

By

ascii

6mo ago· 15 min readenNews
Bagel score 90 of 100
90/100
Golden Brown
Bagelometer

Master baker tier. Every paragraph earns its place on the tray.

Score90TypenewsSentimentnegative

Summary

Security researcher Pasquale 'sid' Fiorillo discovered a critical vulnerability in GoSign Desktop software (version <= 2.4.0) that allows remote code execution through insecure update mechanisms and TLS bypass. The vulnerability exploits disabled TLS certificate verification when a proxy is configured, combined with unsigned update manifests. The vendor, Tinexta InfoCert, initially cooperated but then ceased communication, released version 2.4.1 without acknowledging the researcher or addressing the vulnerability publicly.

Key quotes

· 3 pulled
Pasquale 'sid' Fiorillo discovered a critical vulnerability in GoSign Desktop <= 2.4.0 that allows an attacker to execute arbitrary code on the system through insecure updates and a TLS bypass.
The exploit leverages the deactivation of TLS certificate verification when a proxy is configured, together with an update mechanism based on unsigned manifests.
The vendor, Tinexta InfoCert, initially cooperative, ceased all communication after receiving the technical details, ignoring follow-up requests and releasing version 2.4.1 without any public notice or acknowledgment of the researchers.
Snippet from the RSS feed
Pasquale "sid" Fiorillo discovered a critical vulnerability in GoSign Desktop <= 2.4.0 that allows an attacker to execute arbitrary code on the system through insecure updates and a TLS bypass. The exploit leverages the deactivation of TLS certificate ver

You might also wanna read

OpenSSL Vulnerability CVE-2025-15467: Stack Overflow with Remote Code Execution Risk

JFrog Security Research team reports on a newly disclosed OpenSSL vulnerability, CVE-2025-15467, which is a stack overflow issue that could

research.jfrog.com·4mo ago

Notion AI Vulnerability Enables Data Exfiltration Through Prompt Injection Attacks

Notion AI has a security vulnerability that allows data exfiltration through indirect prompt injection attacks. The vulnerability occurs bec

promptarmor.com·4mo ago

Security Researchers Discover RCE Chain in PostHog Analytics Platform Through SSRF, ClickHouse Zero-Day, and Default PostgreSQL Credentials

A security research team discovered multiple critical vulnerabilities in PostHog analytics platform that could be chained together for remot

mdisec.com·5mo ago

Critical Redis Vulnerability (CVE-2025-49844) Allows Remote Code Execution with Maximum CVSS Score

Wiz Research has discovered a critical remote code execution vulnerability (CVE-2025-49844, nicknamed #RediShell) in Redis, the widely used

wiz.io·7mo ago

Critical Buffer Overflow Vulnerability Discovered in cURL Cookie Parsing Mechanism

A security researcher discovered a critical stack-based buffer overflow vulnerability in cURL's cookie parsing mechanism that can lead to re

hackerone.com·8mo ago

Prompt Injection Attacks: The Top Security Threat Hijacking AI Chatbots

Prompt injection attacks are a critical security vulnerability in AI systems where hidden instructions within user data (like emails or docu

buff.ly·7h ago