Lanscope Bug Hit in Attacks, CISA Warns of Exploits

The U.S. Cybersecurity and Infrastructure Security Agency on Wednesday confirmed that a critical vulnerability in Motex Lanscope Endpoint Manager is being actively exploited in cyberattacks. The Lanscope bug hit on-premises versions of the software, prompting the agency to add the flaw to its Known Exploited Vulnerabilities catalog. Tracked as CVE-2025-61932, the security issue carries a CVSS v4 severity score of 9.3.

CISA warned that attackers are leveraging the bug in real-world operations, increasing the urgency for organizations to apply patches. The flaw specifically affects the Lanscope Endpoint Manager Client, which is used to monitor and manage endpoint devices across enterprise networks. The Lanscope bug hit has raised concerns about broader exposure in environments that rely on legacy or unpatched systems.

CISA has advised federal agencies and private organizations to take immediate action. For more details on the vulnerability and mitigation steps, read the full report from The Hacker News:
https://thehackernews.com/2025/10/critical-lanscope-endpoint-manager-bug.html