| CVE | CVSS | EPSS | Posts | Repos | Nuclei | Updated | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-24304 | 9.9 | 0.00% | 4 | 0 | 2026-01-23T02:15:55.547000 | Improper access control in Azure Resource Manager allows an authorized attacker | |
| CVE-2026-24138 | 7.5 | 0.00% | 2 | 0 | 2026-01-23T01:15:51.023000 | FOG is a free open-source cloning/imaging/rescue suite/inventory management syst | |
| CVE-2026-24306 | 9.8 | 0.00% | 4 | 0 | 2026-01-23T00:31:24 | Improper access control in Azure Front Door (AFD) allows an unauthorized attacke | |
| CVE-2026-24305 | 9.3 | 0.00% | 2 | 0 | 2026-01-23T00:31:24 | Azure Entra ID Elevation of Privilege Vulnerability | |
| CVE-2025-54816 | 9.4 | 0.00% | 2 | 0 | 2026-01-23T00:31:17 | This vulnerability occurs when a WebSocket endpoint does not enforce proper aut | |
| CVE-2026-24307 | 9.3 | 0.00% | 2 | 0 | 2026-01-22T23:15:59.003000 | Improper validation of specified type of input in M365 Copilot allows an unautho | |
| CVE-2026-21520 | 7.5 | 0.00% | 4 | 0 | 2026-01-22T23:15:57.657000 | Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio all | |
| CVE-2026-21264 | 9.3 | 0.00% | 4 | 0 | 2026-01-22T23:15:57.407000 | Improper neutralization of input during web page generation ('cross-site scripti | |
| CVE-2026-21227 | 8.2 | 0.00% | 4 | 0 | 2026-01-22T23:15:57.220000 | Improper limitation of a pathname to a restricted directory ('path traversal') i | |
| CVE-2025-53968 | 7.5 | 0.00% | 4 | 0 | 2026-01-22T23:15:49.800000 | This vulnerability arises because there are no limitations on the number of aut | |
| CVE-2025-31125 | 5.3 | 3.61% | 5 | 7 | template | 2026-01-22T21:47:41 | ### Summary The contents of arbitrary files can be returned to the browser. ## |
| CVE-2025-34026 | None | 7.88% | 5 | 0 | template | 2026-01-22T21:34:49 | The Versa Concerto SD-WAN orchestration platform is vulnerable to an authenticat |
| CVE-2026-24061 | 9.8 | 0.36% | 11 | 11 | 2026-01-22T21:15:50.227000 | telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a " | |
| CVE-2026-23954 | 8.7 | 0.00% | 2 | 0 | 2026-01-22T20:26:11 | ### Summary A user with the ability to launch a container with a custom image (e | |
| CVE-2026-23953 | 8.7 | 0.00% | 2 | 0 | 2026-01-22T20:22:11 | ### Summary A user with the ability to launch a container with a custom YAML con | |
| CVE-2026-21962 | 10.0 | 0.03% | 2 | 3 | 2026-01-22T20:16:12.937000 | Vulnerability in the Oracle HTTP Server, Oracle Weblogic Server Proxy Plug-in pr | |
| CVE-2025-68645 | 8.8 | 9.77% | 5 | 3 | template | 2026-01-22T19:15:56.323000 | A Local File Inclusion (LFI) vulnerability exists in the Webmail Classic UI of Z |
| CVE-2025-54313 | 7.5 | 0.02% | 5 | 3 | 2026-01-22T19:15:53.500000 | eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious | |
| CVE-2026-24009 | 8.1 | 0.00% | 2 | 0 | 2026-01-22T18:43:46 | ### Impact A PyYAML-related Remote Code Execution (RCE) vulnerability, namely C | |
| CVE-2025-69828 | 10.0 | 0.00% | 2 | 0 | 2026-01-22T18:30:41 | File Upload vulnerability in TMS Global Software TMS Management Console v.6.3.7. | |
| CVE-2025-67968 | None | 0.00% | 2 | 0 | 2026-01-22T18:30:41 | Unrestricted Upload of File with Dangerous Type vulnerability in InspiryThemes R | |
| CVE-2025-69764 | 9.8 | 0.00% | 2 | 0 | 2026-01-22T18:30:37 | Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the fo | |
| CVE-2025-36588 | 8.8 | 0.00% | 2 | 0 | 2026-01-22T18:30:32 | Dell Unisphere for PowerMax, version(s) 10.2.0.x, contain(s) an Improper Neutral | |
| CVE-2026-22643 | 0 | 0.08% | 1 | 0 | 2026-01-22T18:16:45.003000 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering | |
| CVE-2026-22642 | 0 | 0.04% | 1 | 0 | 2026-01-22T18:16:44.930000 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering | |
| CVE-2026-24006 | 7.5 | 0.04% | 2 | 0 | 2026-01-22T18:02:24 | Serialization of objects with extreme depth can **exceed the maximum call stack | |
| CVE-2026-22641 | 0 | 0.03% | 1 | 0 | 2026-01-22T17:16:36.630000 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering | |
| CVE-2026-22640 | 0 | 0.06% | 1 | 0 | 2026-01-22T17:16:36.570000 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering | |
| CVE-2026-22638 | 0 | 0.04% | 1 | 0 | 2026-01-22T17:16:36.450000 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering | |
| CVE-2026-22278 | 8.1 | 0.00% | 2 | 0 | 2026-01-22T17:16:31.027000 | Dell PowerScale OneFS versions prior to 9.13.0.0 contains an improper restrictio | |
| CVE-2026-22200 | 0 | 0.22% | 2 | 1 | 2026-01-22T17:16:30.900000 | Enhancesoft osTicket versions 1.18.x prior to 1.18.3 and 1.17.x prior to 1.17.7 | |
| CVE-2025-67221 | 7.5 | 0.00% | 2 | 1 | 2026-01-22T17:16:01.433000 | The orjson.dumps function in orjson thru 3.11.4 does not limit recursion for dee | |
| CVE-2026-23956 | 7.5 | 0.04% | 2 | 0 | 2026-01-22T15:43:56 | Overriding RegExp serialization with extremely large patterns can **exhaust Java | |
| CVE-2026-23965 | 7.5 | 0.01% | 2 | 0 | 2026-01-22T15:43:31 | ### Summary A signature forgery vulnerability exists in the SM2 signature verif | |
| CVE-2026-23966 | 9.1 | 0.01% | 4 | 0 | 2026-01-22T15:43:16 | ### Summary A private key recovery vulnerability exists in the SM2 decryption l | |
| CVE-2026-23737 | 7.5 | 0.07% | 2 | 0 | 2026-01-22T15:39:50 | Improper input handling in the JSON deserialization component can lead to arbitr | |
| CVE-2026-23524 | 9.8 | 0.57% | 1 | 0 | 2026-01-22T15:39:15 | ### Impact This vulnerability affects Laravel Reverb versions prior to v1.7.0 w | |
| CVE-2026-22807 | 8.8 | 0.05% | 1 | 0 | 2026-01-22T15:38:35 | # Summary vLLM loads Hugging Face `auto_map` dynamic modules during model resol | |
| CVE-2026-1328 | 8.8 | 0.00% | 2 | 0 | 2026-01-22T15:31:44 | A vulnerability was detected in Totolink NR1800X 9.1.0u.6279_B20210910. Impacted | |
| CVE-2025-13928 | 7.5 | 0.00% | 2 | 0 | 2026-01-22T15:31:39 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.7 | |
| CVE-2025-10856 | 8.1 | 0.00% | 2 | 0 | 2026-01-22T15:31:39 | Unrestricted Upload of File with Dangerous Type vulnerability in Solvera Softwar | |
| CVE-2026-0723 | 7.4 | 0.00% | 1 | 0 | 2026-01-22T15:31:39 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 | |
| CVE-2025-13927 | 7.5 | 0.00% | 2 | 0 | 2026-01-22T15:31:38 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.9 | |
| CVE-2026-23760 | 0 | 0.00% | 2 | 0 | template | 2026-01-22T15:16:55.120000 | SmarterTools SmarterMail versions prior to build 9511 contain an authentication |
| CVE-2026-1329 | 8.8 | 0.00% | 2 | 0 | 2026-01-22T15:16:54.757000 | A flaw has been found in Tenda AX1803 1.0.0.1. The affected element is the funct | |
| CVE-2026-1324 | 8.8 | 0.00% | 2 | 0 | 2026-01-22T15:16:50.420000 | A vulnerability was identified in Sangfor Operation and Maintenance Management S | |
| CVE-2025-69766 | 9.8 | 0.05% | 2 | 0 | 2026-01-22T15:16:48.843000 | Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the fo | |
| CVE-2025-10855 | 7.5 | 0.00% | 2 | 0 | 2026-01-22T13:16:03.340000 | Authorization Bypass Through User-Controlled Key vulnerability in Solvera Softwa | |
| CVE-2025-10024 | 7.5 | 0.04% | 2 | 0 | 2026-01-22T12:15:53.980000 | Authorization Bypass Through User-Controlled Key vulnerability in EXERT Computer | |
| CVE-2025-4764 | 8.0 | 0.03% | 2 | 2 | 2026-01-22T10:16:07.520000 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injecti | |
| CVE-2026-1331 | 9.8 | 0.19% | 2 | 0 | 2026-01-22T09:31:48 | MeetingHub developed by HAMASTAR Technology has an Arbitrary File Upload vulnera | |
| CVE-2026-0920 | 9.8 | 0.03% | 2 | 1 | 2026-01-22T09:31:48 | The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Ad | |
| CVE-2026-1330 | 7.5 | 0.02% | 2 | 0 | 2026-01-22T09:31:40 | MeetingHub developed by HAMASTAR Technology has an Arbitrary File Read vulnerabi | |
| CVE-2026-24042 | 9.4 | 0.14% | 2 | 0 | 2026-01-22T04:16:00.187000 | Appsmith is a platform to build admin panels, internal tools, and dashboards. In | |
| CVE-2025-27380 | 7.6 | 0.03% | 2 | 0 | 2026-01-22T03:31:34 | HTML injection in Project Release in Altium Enterprise Server (AES) 7.0.3 on all | |
| CVE-2026-24002 | 9.0 | 0.05% | 2 | 0 | 2026-01-22T03:15:47.777000 | Grist is spreadsheet software using Python as its formula language. Grist offers | |
| CVE-2026-23967 | 7.5 | 0.01% | 4 | 0 | 2026-01-22T03:15:47.167000 | sm-crypto provides JavaScript implementations of the Chinese cryptographic algor | |
| CVE-2026-23957 | 7.5 | 0.04% | 2 | 0 | 2026-01-22T02:15:52.470000 | seroval facilitates JS value stringification, including complex structures beyon | |
| CVE-2025-27378 | 8.6 | 0.04% | 2 | 0 | 2026-01-22T01:15:51.077000 | AES contains a SQL injection vulnerability due to an inactive configuration that | |
| CVE-2026-22022 | 8.2 | 0.04% | 1 | 0 | 2026-01-21T22:56:48 | Deployments of Apache Solr 5.3.0 through 9.10.0 that rely on Solr's "Rule Based | |
| CVE-2026-20045 | 8.2 | 1.76% | 15 | 1 | 2026-01-21T21:31:31 | A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unif | |
| CVE-2026-22792 | 9.6 | 0.12% | 1 | 0 | 2026-01-21T21:16:09.957000 | 5ire is a cross-platform desktop artificial intelligence assistant and model con | |
| CVE-2025-59465 | 7.5 | 0.05% | 1 | 0 | 2026-01-21T21:16:07.270000 | A malformed `HTTP/2 HEADERS` frame with oversized, invalid `HPACK` data can caus | |
| CVE-2025-13878 | 7.5 | 0.03% | 3 | 0 | 2026-01-21T19:16:02.960000 | Malformed BRID/HHIT records can cause `named` to terminate unexpectedly. This is | |
| CVE-2026-0629 | None | 0.05% | 2 | 0 | 2026-01-21T18:31:35 | Authentication bypass in the password recovery feature of the local web interfac | |
| CVE-2026-20092 | 6.0 | 0.01% | 1 | 0 | 2026-01-21T18:30:38 | A vulnerability in the read-only maintenance shell of Cisco Intersight Virtual A | |
| CVE-2026-20109 | 4.8 | 0.03% | 1 | 0 | 2026-01-21T18:30:38 | Multiple vulnerabilities in the web-based management interface of Cisco Packaged | |
| CVE-2025-70650 | 7.5 | 0.04% | 1 | 0 | 2026-01-21T18:30:37 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceL | |
| CVE-2025-70645 | 7.5 | 0.04% | 1 | 0 | 2026-01-21T18:30:32 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceL | |
| CVE-2026-21945 | 7.5 | 0.04% | 2 | 0 | 2026-01-21T18:30:29 | Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Ente | |
| CVE-2026-21956 | 8.3 | 0.01% | 1 | 0 | 2026-01-21T18:30:29 | Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp | |
| CVE-2026-21955 | 8.3 | 0.01% | 1 | 0 | 2026-01-21T18:30:29 | Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp | |
| CVE-2026-20080 | 5.3 | 0.10% | 1 | 0 | 2026-01-21T17:16:08.410000 | A vulnerability in the SSH service of Cisco IEC6400 Wireless Backhaul Edge Compu | |
| CVE-2026-20055 | 4.8 | 0.03% | 1 | 0 | 2026-01-21T17:16:08.253000 | Multiple vulnerabilities in the web-based management interface of Cisco Packaged | |
| CVE-2025-66692 | 7.5 | 0.04% | 1 | 0 | 2026-01-21T17:16:06.450000 | A buffer over-read in the PublicKey::verify() method of Binance - Trust Wallet C | |
| CVE-2025-65482 | 9.8 | 0.06% | 1 | 1 | 2026-01-21T16:56:56 | An XML External Entity (XXE) vulnerability in opensagres XDocReport v0.9.2 to v2 | |
| CVE-2026-21957 | 7.5 | 0.01% | 1 | 0 | 2026-01-21T16:16:09.647000 | Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp | |
| CVE-2025-70651 | 7.5 | 0.04% | 1 | 0 | 2026-01-21T16:16:07.657000 | Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow in the ssid pa | |
| CVE-2025-57156 | 7.5 | 0.10% | 1 | 0 | 2026-01-21T15:32:23 | NULL pointer dereference in the dacp_reply_playqueueedit_clear function in src/h | |
| CVE-2025-63648 | 7.5 | 0.04% | 1 | 0 | 2026-01-21T15:32:22 | A NULL pointer dereference in the dacp_reply_playqueueedit_move function (src/ht | |
| CVE-2025-63647 | 7.5 | 0.04% | 1 | 0 | 2026-01-21T15:32:22 | A NULL pointer dereference in the parse_meta function (src/httpd_daap.c) of ownt | |
| CVE-2026-21940 | 7.5 | 0.03% | 1 | 0 | 2026-01-21T15:32:22 | Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: | |
| CVE-2026-21982 | 7.5 | 0.02% | 1 | 0 | 2026-01-21T15:32:22 | Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp | |
| CVE-2025-57155 | 7.5 | 0.11% | 1 | 0 | 2026-01-21T15:32:17 | NULL pointer dereference in the daap_reply_groups function in src/httpd_daap.c i | |
| CVE-2026-21983 | 7.6 | 0.01% | 1 | 0 | 2026-01-21T15:31:16 | Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp | |
| CVE-2026-21984 | 7.5 | 0.01% | 1 | 0 | 2026-01-21T15:16:09.493000 | Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp | |
| CVE-2025-66902 | 7.5 | 0.04% | 1 | 0 | 2026-01-21T15:16:07.890000 | An input validation issue in in Pithikos websocket-server v.0.6.4 allows a remot | |
| CVE-2025-64087 | 9.8 | 0.07% | 1 | 1 | 2026-01-21T15:16:07.473000 | A Server-Side Template Injection (SSTI) vulnerability in the FreeMarker componen | |
| CVE-2025-56353 | 7.5 | 0.04% | 1 | 0 | 2026-01-21T15:16:06.640000 | In tinyMQTT commit 6226ade15bd4f97be2d196352e64dd10937c1962 (2024-02-18), a memo | |
| CVE-2025-55423 | 9.8 | 0.19% | 1 | 0 | 2026-01-21T15:16:06.457000 | A command injection vulnerability exists in the upnp_relay() function in multipl | |
| CVE-2026-22812 | 8.8 | 0.02% | 1 | 7 | 2026-01-21T15:14:59.607000 | OpenCode is an open source AI coding agent. Prior to 1.0.216, OpenCode automatic | |
| CVE-2026-23885 | 6.4 | 0.02% | 2 | 1 | 2026-01-21T14:55:34 | ### Summary A vulnerability was discovered during a manual security audit of the | |
| CVE-2025-60021 | 9.8 | 0.67% | 1 | 3 | 2026-01-21T13:46:39.423000 | Remote command injection vulnerability in heap profiler builtin service in Apach | |
| CVE-2026-24016 | 7.8 | 0.01% | 1 | 0 | 2026-01-21T09:31:40 | The installer of ServerView Agents for Windows provided by Fsas Technologies Inc | |
| CVE-2025-15521 | 9.8 | 0.07% | 1 | 0 | 2026-01-21T02:15:48.363000 | The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin fo | |
| CVE-2026-22219 | None | 0.04% | 3 | 0 | 2026-01-21T01:07:03 | Chainlit versions prior to 2.9.4 contain a server-side request forgery (SSRF) vu | |
| CVE-2026-21973 | 8.1 | 0.03% | 1 | 0 | 2026-01-21T00:31:51 | Vulnerability in the Oracle FLEXCUBE Investor Servicing product of Oracle Financ | |
| CVE-2026-21989 | 8.1 | 0.01% | 2 | 0 | 2026-01-21T00:31:51 | Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp | |
| CVE-2026-21988 | 8.3 | 0.01% | 2 | 0 | 2026-01-21T00:31:51 | Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp | |
| CVE-2026-21969 | 9.8 | 0.04% | 1 | 0 | 2026-01-21T00:31:50 | Vulnerability in the Oracle Agile Product Lifecycle Management for Process produ | |
| CVE-2026-21926 | 7.5 | 0.04% | 1 | 0 | 2026-01-21T00:31:49 | Vulnerability in the Siebel CRM Deployment product of Oracle Siebel CRM (compone | |
| CVE-2026-21990 | 8.2 | 0.01% | 1 | 0 | 2026-01-20T22:16:02.590000 | Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp | |
| CVE-2026-21987 | 8.2 | 0.01% | 2 | 0 | 2026-01-20T22:16:02.237000 | Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp | |
| CVE-2026-21967 | 8.6 | 0.04% | 1 | 0 | 2026-01-20T22:15:59.733000 | Vulnerability in the Oracle Hospitality OPERA 5 product of Oracle Hospitality Ap | |
| CVE-2026-0905 | 9.8 | 0.02% | 1 | 0 | 2026-01-20T22:15:52.923000 | Insufficient policy enforcement in Network in Google Chrome prior to 144.0.7559. | |
| CVE-2025-56005 | 9.8 | 0.29% | 1 | 0 | 2026-01-20T21:31:41 | An undocumented and unsafe feature in the PLY (Python Lex-Yacc) library 3.11 all | |
| CVE-2026-22218 | 0 | 0.03% | 3 | 0 | 2026-01-20T19:15:50.700000 | Chainlit versions prior to 2.9.4 contain an arbitrary file read vulnerability in | |
| CVE-2025-71020 | 7.5 | 0.05% | 1 | 0 | 2026-01-20T18:33:03 | Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the securit | |
| CVE-2026-0610 | 9.8 | 0.03% | 1 | 0 | 2026-01-20T18:33:03 | SQL Injection vulnerability in remote-sessions in Devolutions Server.This issue | |
| CVE-2025-33231 | 6.7 | 0.01% | 1 | 0 | 2026-01-20T18:32:08 | NVIDIA Nsight Systems for Windows contains a vulnerability in the application’s | |
| CVE-2025-33230 | 7.3 | 0.03% | 1 | 0 | 2026-01-20T18:32:08 | NVIDIA Nsight Systems for Linux contains a vulnerability in the .run installer, | |
| CVE-2025-33228 | 7.3 | 0.03% | 1 | 0 | 2026-01-20T18:32:08 | NVIDIA Nsight Systems contains a vulnerability in the gfx_hotspot recipe, where | |
| CVE-2026-0943 | 7.5 | 0.04% | 1 | 0 | 2026-01-20T18:31:56 | HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with | |
| CVE-2026-0915 | 7.5 | 0.04% | 2 | 0 | 2026-01-20T18:31:56 | Calling getnetbyaddr or getnetbyaddr_r with a configured nsswitch.conf that spec | |
| CVE-2025-64155 | 9.8 | 0.04% | 3 | 4 | 2026-01-20T18:31:55 | An improper neutralization of special elements used in an os command ('os comman | |
| CVE-2025-33233 | 7.8 | 0.02% | 2 | 0 | 2026-01-20T18:16:02.950000 | NVIDIA Merlin Transformers4Rec for all platforms contains a vulnerability where | |
| CVE-2025-33229 | 7.3 | 0.01% | 1 | 0 | 2026-01-20T18:16:02.500000 | NVIDIA Nsight Visual Studio for Windows contains a vulnerability in Nsight Monit | |
| CVE-2025-62582 | 9.8 | 0.06% | 1 | 0 | 2026-01-20T16:58:23.900000 | Delta Electronics DIAView has multiple vulnerabilities. | |
| CVE-2026-0899 | 8.8 | 0.07% | 1 | 0 | 2026-01-20T15:33:12 | Out of bounds memory access in V8 in Google Chrome prior to 144.0.7559.59 allowe | |
| CVE-2026-22844 | 9.9 | 0.29% | 2 | 1 | 2026-01-20T14:16:21.980000 | A Command Injection vulnerability in Zoom Node Multimedia Routers (MMRs) before | |
| CVE-2025-14533 | 9.8 | 0.08% | 2 | 0 | 2026-01-20T10:16:05.583000 | The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privi | |
| CVE-2026-23838 | 0 | 0.11% | 1 | 0 | 2026-01-19T19:16:03.937000 | Tandoor Recipes is a recipe manager than can be installed with the Nix package m | |
| CVE-2026-20960 | 8.0 | 0.05% | 1 | 0 | 2026-01-17T00:30:30 | Improper authorization in Microsoft Power Apps allows an authorized attacker to | |
| CVE-2026-21223 | 5.1 | 0.05% | 1 | 0 | 2026-01-16T22:16:25.983000 | Microsoft Edge Elevation Service exposes a privileged COM interface that inadequ | |
| CVE-2026-23744 | 9.8 | 0.65% | 2 | 1 | 2026-01-16T21:57:11 | ### Summary MCPJam inspector is the local-first development platform for MCP ser | |
| CVE-2026-23490 | 7.5 | 0.05% | 1 | 0 | 2026-01-16T21:56:00 | ### Summary After reviewing pyasn1 v0.6.1 a Denial-of-Service issue has been fo | |
| CVE-2026-23745 | None | 0.01% | 1 | 1 | 2026-01-16T21:16:24 | ### Summary The `node-tar` library (`<= 7.5.2`) fails to sanitize the `linkpath | |
| CVE-2026-23800 | 10.0 | 0.05% | 1 | 0 | 2026-01-16T21:15:52.037000 | Incorrect Privilege Assignment vulnerability in Modular DS modular-connector all | |
| CVE-2025-13154 | 5.5 | 0.02% | 1 | 0 | 2026-01-16T15:55:33.063000 | An improper link following vulnerability was reported in the SmartPerformanceAdd | |
| CVE-2026-22919 | 3.8 | 0.04% | 1 | 0 | 2026-01-16T15:55:33.063000 | An attacker with administrative access may inject malicious content into the log | |
| CVE-2026-22908 | 9.1 | 0.20% | 1 | 0 | 2026-01-16T15:55:33.063000 | Uploading unvalidated container images may allow remote attackers to gain full a | |
| CVE-2026-22916 | 4.3 | 0.05% | 1 | 0 | 2026-01-16T15:55:33.063000 | An attacker with low privileges may be able to trigger critical system functions | |
| CVE-2026-22915 | 4.3 | 0.04% | 1 | 0 | 2026-01-16T15:55:33.063000 | An attacker with low privileges may be able to read files from specific director | |
| CVE-2026-22912 | 4.3 | 0.08% | 1 | 0 | 2026-01-16T15:55:33.063000 | Improper validation of a login parameter may allow attackers to redirect users t | |
| CVE-2026-22644 | 5.3 | 0.07% | 1 | 0 | 2026-01-16T15:55:33.063000 | Certain requests pass the authentication token in the URL as string query parame | |
| CVE-2025-62581 | 9.8 | 0.06% | 1 | 0 | 2026-01-16T03:30:27 | Delta Electronics DIAView has multiple vulnerabilities. | |
| CVE-2026-0227 | None | 0.09% | 4 | 2 | 2026-01-15T21:31:54 | A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated | |
| CVE-2025-36911 | 7.1 | 0.00% | 3 | 6 | 2026-01-15T21:31:47 | In key-based pairing, there is a possible ID due to a logic error in the code. T | |
| CVE-2025-9014 | None | 0.11% | 1 | 0 | 2026-01-15T18:31:42 | A Null Pointer Dereference vulnerability exists in the referer header check of t | |
| CVE-2026-0712 | 7.6 | 0.05% | 1 | 0 | 2026-01-15T15:31:35 | An open redirect vulnerability has been identified in Grafana OSS that can be ex | |
| CVE-2026-22907 | 10.0 | 0.07% | 1 | 0 | 2026-01-15T15:31:30 | An attacker may gain unauthorized access to the host filesystem, potentially all | |
| CVE-2026-22910 | 7.5 | 0.05% | 1 | 0 | 2026-01-15T15:31:30 | The device is deployed with weak and publicly known default passwords for certai | |
| CVE-2026-22639 | 4.3 | 0.04% | 1 | 0 | 2026-01-15T15:31:27 | Grafana is an open-source platform for monitoring and observability. The Grafana | |
| CVE-2026-22646 | 4.3 | 0.04% | 1 | 0 | 2026-01-15T15:31:27 | Certain error messages returned by the application expose internal system detail | |
| CVE-2026-22645 | 5.3 | 0.04% | 1 | 0 | 2026-01-15T15:31:27 | The application discloses all used components, versions and license information | |
| CVE-2026-0713 | 8.3 | 0.04% | 1 | 0 | 2026-01-15T15:31:26 | A security vulnerability in the /apis/dashboard.grafana.app/* endpoints allows a | |
| CVE-2026-22920 | 3.7 | 0.05% | 1 | 0 | 2026-01-15T15:31:26 | The device's passwords have not been adequately salted, making them vulnerable t | |
| CVE-2026-22637 | 6.8 | 0.03% | 1 | 0 | 2026-01-15T15:31:25 | The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. A user wi | |
| CVE-2026-22918 | 4.3 | 0.05% | 1 | 0 | 2026-01-15T15:31:19 | An attacker may exploit missing protection against clickjacking by tricking user | |
| CVE-2026-22917 | 4.3 | 0.06% | 1 | 0 | 2026-01-15T15:31:19 | Improper input handling in a system endpoint may allow attackers to overload res | |
| CVE-2026-22914 | 4.3 | 0.03% | 1 | 0 | 2026-01-15T15:31:19 | An attacker with limited permissions may still be able to write files to specifi | |
| CVE-2026-22913 | 4.3 | 0.04% | 1 | 0 | 2026-01-15T15:31:18 | Improper handling of a URL parameter may allow attackers to execute code in a us | |
| CVE-2026-22911 | 5.3 | 0.06% | 1 | 0 | 2026-01-15T15:31:18 | Firmware update files may expose password hashes for system accounts, which coul | |
| CVE-2026-22909 | 7.5 | 0.07% | 1 | 0 | 2026-01-15T15:31:18 | Certain system functions may be accessed without proper authorization, allowing | |
| CVE-2025-14242 | 6.5 | 0.17% | 1 | 0 | 2026-01-15T00:32:39 | A flaw was found in vsftpd. This vulnerability allows a denial of service (DoS) | |
| CVE-2026-23550 | 10.0 | 6.11% | 3 | 2 | template | 2026-01-14T21:15:54.193000 | Incorrect Privilege Assignment vulnerability in Modular DS allows Privilege Esca |
| CVE-2026-20805 | 5.5 | 4.62% | 3 | 2 | 2026-01-13T21:31:44 | Exposure of sensitive information to an unauthorized actor in Desktop Windows Ma | |
| CVE-2026-20965 | 7.6 | 0.03% | 3 | 0 | 2026-01-13T18:31:18 | Improper verification of cryptographic signature in Windows Admin Center allows | |
| CVE-2026-20950 | 7.8 | 0.04% | 1 | 0 | 2026-01-13T18:31:18 | Use after free in Microsoft Office Excel allows an unauthorized attacker to exec | |
| CVE-2025-40805 | 10.0 | 0.20% | 2 | 0 | 2026-01-13T12:31:48 | Affected devices do not properly enforce user authentication on specific API end | |
| CVE-2025-12420 | None | 0.04% | 1 | 1 | 2026-01-13T03:32:08 | A vulnerability has been identified in the ServiceNow AI Platform that could ena | |
| CVE-2022-33318 | 9.8 | 2.11% | 1 | 1 | 2026-01-09T06:16:00.257000 | Deserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 | |
| CVE-2025-14631 | None | 0.02% | 1 | 0 | 2026-01-07T12:31:27 | A NULL Pointer Dereference vulnerability in TP-Link Archer BE400 V1(802.11 modul | |
| CVE-2025-67268 | 9.8 | 0.11% | 1 | 0 | 2026-01-06T18:32:37 | gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerabili | |
| CVE-2025-20393 | 10.0 | 4.64% | 1 | 7 | 2025-12-17T21:30:47 | Cisco is aware of a potential vulnerability. Cisco is currently investigat | |
| CVE-2025-59718 | 9.8 | 2.27% | 13 | 3 | 2025-12-17T13:54:45.390000 | A improper verification of cryptographic signature vulnerability in Fortinet For | |
| CVE-2025-68285 | None | 0.06% | 1 | 0 | 2025-12-16T18:31:42 | In the Linux kernel, the following vulnerability has been resolved: libceph: fi | |
| CVE-2025-59719 | 9.8 | 0.08% | 3 | 1 | 2025-12-09T19:59:29.507000 | An improper verification of cryptographic signature vulnerability in Fortinet Fo | |
| CVE-2025-12817 | 3.1 | 0.07% | 1 | 0 | 2025-11-14T16:42:03.187000 | Missing authorization in PostgreSQL CREATE STATISTICS command allows a table own | |
| CVE-2025-10585 | 9.8 | 0.70% | 1 | 1 | 2025-10-30T15:55:01.903000 | Type confusion in V8 in Google Chrome prior to 140.0.7339.185 allowed a remote a | |
| CVE-2025-21043 | 8.8 | 11.37% | 1 | 0 | 2025-10-30T15:36:12.360000 | Out-of-bounds write in libimagecodec.quram.so prior to SMR Sep-2025 Release 1 al | |
| CVE-2025-39993 | None | 0.07% | 1 | 0 | 2025-10-29T15:31:52 | In the Linux kernel, the following vulnerability has been resolved: media: rc: | |
| CVE-2025-54236 | 9.1 | 57.72% | 1 | 3 | template | 2025-10-27T15:13:10 | Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, |
| CVE-2025-59830 | 7.5 | 0.07% | 1 | 0 | 2025-09-25T16:39:27 | ## Summary `Rack::QueryParser` in version `< 2.2.18` enforces its `params_limit | |
| CVE-2025-54068 | None | 0.12% | 2 | 4 | 2025-08-18T08:03:59 | ### Impact In Livewire v3 (≤ 3.6.3), a vulnerability allows unauthenticated atta | |
| CVE-2025-25256 | 9.8 | 31.60% | 1 | 1 | template | 2025-08-15T18:31:55 | An improper neutralization of special elements used in an OS command ('OS Comman |
| CVE-2017-20149 | 9.8 | 1.72% | 1 | 0 | 2025-05-14T15:32:35 | The Mikrotik RouterOS web server allows memory corruption in releases before Sta | |
| CVE-2025-2104 | 4.3 | 0.10% | 1 | 1 | 2025-03-13T06:30:39 | The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress | |
| CVE-2025-1058 | 8.1 | 0.07% | 1 | 1 | 2025-02-13T06:15:21.480000 | CWE-494: Download of Code Without Integrity Check vulnerability exists that coul | |
| CVE-2020-14343 | 9.8 | 13.70% | 2 | 2 | 2024-11-21T05:03:03.217000 | A vulnerability was discovered in the PyYAML library in versions before 5.4, whe | |
| CVE-2022-3270 | 9.8 | 0.95% | 1 | 0 | 2023-01-31T05:03:00 | In multiple products by Festo a remote unauthenticated attacker could use functi | |
| CVE-2026-24129 | 0 | 0.00% | 2 | 0 | N/A | ||
| CVE-2024-32462 | 0 | 0.19% | 2 | 1 | N/A | ||
| CVE-2026-1220 | 0 | 0.00% | 2 | 0 | N/A | ||
| CVE-2026-24038 | 0 | 0.07% | 2 | 0 | N/A | ||
| CVE-2026-23962 | 0 | 0.04% | 2 | 0 | N/A | ||
| CVE-2026-24010 | 0 | 0.05% | 4 | 0 | N/A | ||
| CVE-2026-22793 | 0 | 0.20% | 1 | 0 | N/A | ||
| CVE-2025-68137 | 0 | 0.02% | 1 | 0 | N/A | ||
| CVE-2025-63261 | 0 | 0.00% | 1 | 0 | N/A | ||
| CVE-2024-50349 | 0 | 0.39% | 1 | 0 | N/A |
updated 2026-01-23T02:15:55.547000
4 posts
🔴 CVE-2026-24304 - Critical (9.9)
Improper access control in Azure Resource Manager allows an authorized attacker to elevate privileges over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24304/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-24304 - Critical (9.9)
Improper access control in Azure Resource Manager allows an authorized attacker to elevate privileges over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24304/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-24304 - Critical (9.9)
Improper access control in Azure Resource Manager allows an authorized attacker to elevate privileges over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24304/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-24304 - Critical (9.9)
Improper access control in Azure Resource Manager allows an authorized attacker to elevate privileges over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24304/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-23T01:15:51.023000
2 posts
🟠 CVE-2026-24138 - High (7.5)
FOG is a free open-source cloning/imaging/rescue suite/inventory management system. Versions 1.5.10.1754 and below contain an unauthenticated SSRF vulnerability in getversion.php which can be triggered by providing a user-controlled url parameter....
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24138/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-24138 - High (7.5)
FOG is a free open-source cloning/imaging/rescue suite/inventory management system. Versions 1.5.10.1754 and below contain an unauthenticated SSRF vulnerability in getversion.php which can be triggered by providing a user-controlled url parameter....
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24138/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-23T00:31:24
4 posts
🔴 CVE-2026-24306 - Critical (9.8)
Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privileges over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24306/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-24306 - Critical (9.8)
Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privileges over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24306/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-24306 - Critical (9.8)
Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privileges over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24306/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-24306 - Critical (9.8)
Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privileges over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24306/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-23T00:31:24
2 posts
🔴 CVE-2026-24305 - Critical (9.3)
Azure Entra ID Elevation of Privilege Vulnerability
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24305/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-24305 - Critical (9.3)
Azure Entra ID Elevation of Privilege Vulnerability
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24305/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-23T00:31:17
2 posts
🔴 CVE-2025-54816 - Critical (9.4)
This vulnerability occurs when a WebSocket endpoint does not enforce
proper authentication mechanisms, allowing unauthorized users to
establish connections. As a result, attackers can exploit this weakness
to gain unauthorized access to sensiti...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-54816/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2025-54816 - Critical (9.4)
This vulnerability occurs when a WebSocket endpoint does not enforce
proper authentication mechanisms, allowing unauthorized users to
establish connections. As a result, attackers can exploit this weakness
to gain unauthorized access to sensiti...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-54816/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T23:15:59.003000
2 posts
🔴 CVE-2026-24307 - Critical (9.3)
Improper validation of specified type of input in M365 Copilot allows an unauthorized attacker to disclose information over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24307/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-24307 - Critical (9.3)
Improper validation of specified type of input in M365 Copilot allows an unauthorized attacker to disclose information over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24307/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T23:15:57.657000
4 posts
🟠 CVE-2026-21520 - High (7.5)
Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21520/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-21520 - High (7.5)
Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21520/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-21520 - High (7.5)
Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21520/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-21520 - High (7.5)
Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through network attack vector
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21520/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T23:15:57.407000
4 posts
🔴 CVE-2026-21264 - Critical (9.3)
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Account allows an unauthorized attacker to perform spoofing over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21264/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-21264 - Critical (9.3)
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Account allows an unauthorized attacker to perform spoofing over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21264/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-21264 - Critical (9.3)
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Account allows an unauthorized attacker to perform spoofing over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21264/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-21264 - Critical (9.3)
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Account allows an unauthorized attacker to perform spoofing over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21264/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T23:15:57.220000
4 posts
🟠 CVE-2026-21227 - High (8.2)
Improper limitation of a pathname to a restricted directory ('path traversal') in Azure Logic Apps allows an unauthorized attacker to elevate privileges over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21227/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-21227 - High (8.2)
Improper limitation of a pathname to a restricted directory ('path traversal') in Azure Logic Apps allows an unauthorized attacker to elevate privileges over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21227/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-21227 - High (8.2)
Improper limitation of a pathname to a restricted directory ('path traversal') in Azure Logic Apps allows an unauthorized attacker to elevate privileges over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21227/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-21227 - High (8.2)
Improper limitation of a pathname to a restricted directory ('path traversal') in Azure Logic Apps allows an unauthorized attacker to elevate privileges over a network.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21227/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T23:15:49.800000
4 posts
🟠 CVE-2025-53968 - High (7.5)
This vulnerability arises because there are no limitations on the number
of authentication attempts a user can make. An attacker can exploit
this weakness by continuously sending authentication requests, leading
to a denial-of-service (DoS) con...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-53968/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-53968 - High (7.5)
This vulnerability arises because there are no limitations on the number
of authentication attempts a user can make. An attacker can exploit
this weakness by continuously sending authentication requests, leading
to a denial-of-service (DoS) con...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-53968/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-53968 - High (7.5)
This vulnerability arises because there are no limitations on the number
of authentication attempts a user can make. An attacker can exploit
this weakness by continuously sending authentication requests, leading
to a denial-of-service (DoS) con...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-53968/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-53968 - High (7.5)
This vulnerability arises because there are no limitations on the number
of authentication attempts a user can make. An attacker can exploit
this weakness by continuously sending authentication requests, leading
to a denial-of-service (DoS) con...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-53968/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T21:47:41
5 posts
7 repos
https://github.com/nkuty/CVE-2025-30208-31125-31486-32395
https://github.com/jackieya/ViteVulScan
https://github.com/MuhammadWaseem29/Vitejs-exploit
https://github.com/harshgupptaa/Path-Transversal-CVE-2025-31125-
https://github.com/0xgh057r3c0n/CVE-2025-31125
🚨 [CISA-2026:0122] CISA Adds 4 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0122)
CISA has added 4 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2025-31125 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-31125)
- Name: Vite Vitejs Improper Access Control Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Vite
- Product: Vitejs
- Notes: This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://github.com/vitejs/vite/commit/59673137c45ac2bcfad1170d954347c1a17ab949 ; https://nvd.nist.gov/vuln/detail/CVE-2025-31125
⚠️ CVE-2025-34026 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-34026)
- Name: Versa Concerto Improper Authentication Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Versa
- Product: Concerto
- Notes: https://security-portal.versa-networks.com/emailbulletins/6830f94328defa375486ff2e ; https://nvd.nist.gov/vuln/detail/CVE-2025-34026
⚠️ CVE-2025-54313 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-54313)
- Name: Prettier eslint-config-prettier Embedded Malicious Code Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Prettier
- Product: eslint-config-prettier
- Notes: This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://www.npmjs.com/package/eslint-config-prettier?activeTab=versions ; https://github.com/prettier/eslint-config-prettier/issues/339#issuecomment-3090304490 ; https://nvd.nist.gov/vuln/detail/CVE-2025-54313
⚠️ CVE-2025-68645 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-68645)
- Name: Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Synacor
- Product: Zimbra Collaboration Suite (ZCS)
- Notes: https://wiki.zimbra.com/wiki/Security_Center ; https://nvd.nist.gov/vuln/detail/CVE-2025-68645
#SecDB #InfoSec #CVE #CISA_KEV #cisa_20260122 #cisa20260122 #cve_2025_31125 #cve_2025_34026 #cve_2025_54313 #cve_2025_68645 #cve202531125 #cve202534026 #cve202554313 #cve202568645
##CVE ID: CVE-2025-31125
Vendor: Vite
Product: Vitejs
Date Added: 2026-01-22
Notes: This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://github.com/vitejs/vite/commit/59673137c45ac2bcfad1170d954347c1a17ab949 ; https://nvd.nist.gov/vuln/detail/CVE-2025-31125
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-31125
More updates from CISA:
- CVE-2025-54313: Prettier eslint-config-prettier Embedded Malicious Code Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-54313
- CVE-2025-31125: Vite Vitejs Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-31125
- CVE-2025-34026: Versa Concerto Improper Authentication Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-34026
- CVE-2025-68645: Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-68645
And several industrial advisories are listed here: https://www.cisa.gov/ #CISA #infoec #vulnerability
##CVE ID: CVE-2025-31125
Vendor: Vite
Product: Vitejs
Date Added: 2026-01-22
Notes: This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://github.com/vitejs/vite/commit/59673137c45ac2bcfad1170d954347c1a17ab949 ; https://nvd.nist.gov/vuln/detail/CVE-2025-31125
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-31125
More updates from CISA:
- CVE-2025-54313: Prettier eslint-config-prettier Embedded Malicious Code Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-54313
- CVE-2025-31125: Vite Vitejs Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-31125
- CVE-2025-34026: Versa Concerto Improper Authentication Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-34026
- CVE-2025-68645: Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-68645
And several industrial advisories are listed here: https://www.cisa.gov/ #CISA #infoec #vulnerability
##updated 2026-01-22T21:34:49
5 posts
🚨 [CISA-2026:0122] CISA Adds 4 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0122)
CISA has added 4 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2025-31125 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-31125)
- Name: Vite Vitejs Improper Access Control Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Vite
- Product: Vitejs
- Notes: This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://github.com/vitejs/vite/commit/59673137c45ac2bcfad1170d954347c1a17ab949 ; https://nvd.nist.gov/vuln/detail/CVE-2025-31125
⚠️ CVE-2025-34026 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-34026)
- Name: Versa Concerto Improper Authentication Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Versa
- Product: Concerto
- Notes: https://security-portal.versa-networks.com/emailbulletins/6830f94328defa375486ff2e ; https://nvd.nist.gov/vuln/detail/CVE-2025-34026
⚠️ CVE-2025-54313 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-54313)
- Name: Prettier eslint-config-prettier Embedded Malicious Code Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Prettier
- Product: eslint-config-prettier
- Notes: This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://www.npmjs.com/package/eslint-config-prettier?activeTab=versions ; https://github.com/prettier/eslint-config-prettier/issues/339#issuecomment-3090304490 ; https://nvd.nist.gov/vuln/detail/CVE-2025-54313
⚠️ CVE-2025-68645 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-68645)
- Name: Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Synacor
- Product: Zimbra Collaboration Suite (ZCS)
- Notes: https://wiki.zimbra.com/wiki/Security_Center ; https://nvd.nist.gov/vuln/detail/CVE-2025-68645
#SecDB #InfoSec #CVE #CISA_KEV #cisa_20260122 #cisa20260122 #cve_2025_31125 #cve_2025_34026 #cve_2025_54313 #cve_2025_68645 #cve202531125 #cve202534026 #cve202554313 #cve202568645
##CVE ID: CVE-2025-34026
Vendor: Versa
Product: Concerto
Date Added: 2026-01-22
Notes: https://security-portal.versa-networks.com/emailbulletins/6830f94328defa375486ff2e ; https://nvd.nist.gov/vuln/detail/CVE-2025-34026
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-34026
More updates from CISA:
- CVE-2025-54313: Prettier eslint-config-prettier Embedded Malicious Code Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-54313
- CVE-2025-31125: Vite Vitejs Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-31125
- CVE-2025-34026: Versa Concerto Improper Authentication Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-34026
- CVE-2025-68645: Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-68645
And several industrial advisories are listed here: https://www.cisa.gov/ #CISA #infoec #vulnerability
##CVE ID: CVE-2025-34026
Vendor: Versa
Product: Concerto
Date Added: 2026-01-22
Notes: https://security-portal.versa-networks.com/emailbulletins/6830f94328defa375486ff2e ; https://nvd.nist.gov/vuln/detail/CVE-2025-34026
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-34026
More updates from CISA:
- CVE-2025-54313: Prettier eslint-config-prettier Embedded Malicious Code Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-54313
- CVE-2025-31125: Vite Vitejs Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-31125
- CVE-2025-34026: Versa Concerto Improper Authentication Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-34026
- CVE-2025-68645: Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-68645
And several industrial advisories are listed here: https://www.cisa.gov/ #CISA #infoec #vulnerability
##updated 2026-01-22T21:15:50.227000
11 posts
11 repos
https://github.com/yanxinwu946/CVE-2026-24061--telnetd
https://github.com/h3athen/CVE-2026-24061
https://github.com/leonjza/inetutils-telnetd-auth-bypass
https://github.com/Chocapikk/CVE-2026-24061
https://github.com/xuemian168/CVE-2026-24061
https://github.com/parameciumzhang/Tell-Me-Root
https://github.com/monstertsl/CVE-2026-24061
https://github.com/duy-31/CVE-2026-24061---telnetd
https://github.com/SafeBreach-Labs/CVE-2026-24061
Trollolol, telnetd lets you log in without a password if you send the USER environment variable as "-f root" (which gets passed unsanitized to login(1)).
(Yes, yes, telnet, but still. :-)
https://www.openwall.com/lists/oss-security/2026/01/20/2
CVE-2026-24061
##There is a critical auth bypass vulnerability in telnetd (https://nvd.nist.gov/vuln/detail/CVE-2026-24061) so I will need to update the surl-server Apple II proxy image. It has telnetd enabled (on localhost only, so is only accessible via the Apple II's serial port and you're probably already root on it)
##We caught a few (desperate) fiends trying to have their way with our vulnerable-to Telnetd -f Auth Bypass vuln (CVE-2026-24061) systems and I took a spelunk in the PCAPs:
Some of the least clever and least capable actors I've seen in a while.
"-f Around and Find Out: 18 Hours of Unsolicited Telnet Houseguests “ takes you on a deep dive into the packets.
cc: @darses
##I shot a 📄 to the team to 👀 later today but we've seen some activity on the recent Inetutils Telnetd -f Auth Bypass vuln (CVE-2026-24061) — https://viz.greynoise.io/tags/inetutils-telnetd--f-auth-bypass-attempt?days=30
We stood up some full vulnerable systems and a cpl IPs only hit those, so the targeting precision was oddly fast.
If they don't do a main GN blog I'll post deets on the Labs blog (I'm OOO today).
Rly glad this was a nothingburger.
Spidey-sense says something yuge (not related to this) is coming soon tho. The internet feels “off”.
##Trollolol, telnetd lets you log in without a password if you send the USER environment variable as "-f root" (which gets passed unsanitized to login(1)).
(Yes, yes, telnet, but still. :-)
https://www.openwall.com/lists/oss-security/2026/01/20/2
CVE-2026-24061
##There is a critical auth bypass vulnerability in telnetd (https://nvd.nist.gov/vuln/detail/CVE-2026-24061) so I will need to update the surl-server Apple II proxy image. It has telnetd enabled (on localhost only, so is only accessible via the Apple II's serial port and you're probably already root on it)
##We caught a few (desperate) fiends trying to have their way with our vulnerable-to Telnetd -f Auth Bypass vuln (CVE-2026-24061) systems and I took a spelunk in the PCAPs:
Some of the least clever and least capable actors I've seen in a while.
"-f Around and Find Out: 18 Hours of Unsolicited Telnet Houseguests “ takes you on a deep dive into the packets.
cc: @darses
##I shot a 📄 to the team to 👀 later today but we've seen some activity on the recent Inetutils Telnetd -f Auth Bypass vuln (CVE-2026-24061) — https://viz.greynoise.io/tags/inetutils-telnetd--f-auth-bypass-attempt?days=30
We stood up some full vulnerable systems and a cpl IPs only hit those, so the targeting precision was oddly fast.
If they don't do a main GN blog I'll post deets on the Labs blog (I'm OOO today).
Rly glad this was a nothingburger.
Spidey-sense says something yuge (not related to this) is coming soon tho. The internet feels “off”.
##La vulnérabilité CVE-2026-24061 permet à un attaquant de se connecter en root en contournant l'authentification d'un service telnetd. Un code d'exploitation est disponible et son exploitation est triviale.
https://www.cert.ssi.gouv.fr/actualite/CERTFR-2026-ACT-003/
🔴 CVE-2026-24061 - Critical (9.8)
telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24061/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T20:26:11
2 posts
🟠 CVE-2026-23954 - High (8.7)
Incus is a system container and virtual machine manager. Versions 6.21.0 and below allow a user with the ability to launch a container with a custom image (e.g a member of the ‘incus’ group) to use directory traversal or symbolic links in the ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23954/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-23954 - High (8.7)
Incus is a system container and virtual machine manager. Versions 6.21.0 and below allow a user with the ability to launch a container with a custom image (e.g a member of the ‘incus’ group) to use directory traversal or symbolic links in the ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23954/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T20:22:11
2 posts
🟠 CVE-2026-23953 - High (8.7)
Incus is a system container and virtual machine manager. In versions 6.20.0 and below, a user with the ability to launch a container with a custom YAML configuration (e.g a member of the ‘incus’ group) can create an environment variable contai...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23953/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-23953 - High (8.7)
Incus is a system container and virtual machine manager. In versions 6.20.0 and below, a user with the ability to launch a container with a custom YAML configuration (e.g a member of the ‘incus’ group) can create an environment variable contai...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23953/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T20:16:12.937000
2 posts
3 repos
https://github.com/Ashwesker/Ashwesker-CVE-2026-21962
Vulnerability in the Oracle HTTP Server, Oracle Weblogic Server Proxy Plug-in product of Oracle Fusion Middleware (component: Weblogic Server Proxy Plug-in for Apache HTTP Server, Weblogic Server Proxy Plug-in for IIS)
https://nvd.nist.gov/vuln/detail/CVE-2026-21962
🔴 CVE-2026-21962 - Critical (10)
Vulnerability in the Oracle HTTP Server, Oracle Weblogic Server Proxy Plug-in product of Oracle Fusion Middleware (component: Weblogic Server Proxy Plug-in for Apache HTTP Server, Weblogic Server Proxy Plug-in for IIS). Supported versions that ar...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21962/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T19:15:56.323000
5 posts
3 repos
https://github.com/Ashwesker/Ashwesker-CVE-2025-68645
🚨 [CISA-2026:0122] CISA Adds 4 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0122)
CISA has added 4 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2025-31125 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-31125)
- Name: Vite Vitejs Improper Access Control Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Vite
- Product: Vitejs
- Notes: This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://github.com/vitejs/vite/commit/59673137c45ac2bcfad1170d954347c1a17ab949 ; https://nvd.nist.gov/vuln/detail/CVE-2025-31125
⚠️ CVE-2025-34026 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-34026)
- Name: Versa Concerto Improper Authentication Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Versa
- Product: Concerto
- Notes: https://security-portal.versa-networks.com/emailbulletins/6830f94328defa375486ff2e ; https://nvd.nist.gov/vuln/detail/CVE-2025-34026
⚠️ CVE-2025-54313 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-54313)
- Name: Prettier eslint-config-prettier Embedded Malicious Code Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Prettier
- Product: eslint-config-prettier
- Notes: This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://www.npmjs.com/package/eslint-config-prettier?activeTab=versions ; https://github.com/prettier/eslint-config-prettier/issues/339#issuecomment-3090304490 ; https://nvd.nist.gov/vuln/detail/CVE-2025-54313
⚠️ CVE-2025-68645 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-68645)
- Name: Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Synacor
- Product: Zimbra Collaboration Suite (ZCS)
- Notes: https://wiki.zimbra.com/wiki/Security_Center ; https://nvd.nist.gov/vuln/detail/CVE-2025-68645
#SecDB #InfoSec #CVE #CISA_KEV #cisa_20260122 #cisa20260122 #cve_2025_31125 #cve_2025_34026 #cve_2025_54313 #cve_2025_68645 #cve202531125 #cve202534026 #cve202554313 #cve202568645
##CVE ID: CVE-2025-68645
Vendor: Synacor
Product: Zimbra Collaboration Suite (ZCS)
Date Added: 2026-01-22
Notes: https://wiki.zimbra.com/wiki/Security_Center ; https://nvd.nist.gov/vuln/detail/CVE-2025-68645
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-68645
More updates from CISA:
- CVE-2025-54313: Prettier eslint-config-prettier Embedded Malicious Code Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-54313
- CVE-2025-31125: Vite Vitejs Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-31125
- CVE-2025-34026: Versa Concerto Improper Authentication Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-34026
- CVE-2025-68645: Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-68645
And several industrial advisories are listed here: https://www.cisa.gov/ #CISA #infoec #vulnerability
##CVE ID: CVE-2025-68645
Vendor: Synacor
Product: Zimbra Collaboration Suite (ZCS)
Date Added: 2026-01-22
Notes: https://wiki.zimbra.com/wiki/Security_Center ; https://nvd.nist.gov/vuln/detail/CVE-2025-68645
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-68645
More updates from CISA:
- CVE-2025-54313: Prettier eslint-config-prettier Embedded Malicious Code Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-54313
- CVE-2025-31125: Vite Vitejs Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-31125
- CVE-2025-34026: Versa Concerto Improper Authentication Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-34026
- CVE-2025-68645: Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-68645
And several industrial advisories are listed here: https://www.cisa.gov/ #CISA #infoec #vulnerability
##updated 2026-01-22T19:15:53.500000
5 posts
3 repos
https://github.com/ShinP451/scavenger_scanner
🚨 [CISA-2026:0122] CISA Adds 4 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0122)
CISA has added 4 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.
⚠️ CVE-2025-31125 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-31125)
- Name: Vite Vitejs Improper Access Control Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Vite
- Product: Vitejs
- Notes: This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://github.com/vitejs/vite/commit/59673137c45ac2bcfad1170d954347c1a17ab949 ; https://nvd.nist.gov/vuln/detail/CVE-2025-31125
⚠️ CVE-2025-34026 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-34026)
- Name: Versa Concerto Improper Authentication Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Versa
- Product: Concerto
- Notes: https://security-portal.versa-networks.com/emailbulletins/6830f94328defa375486ff2e ; https://nvd.nist.gov/vuln/detail/CVE-2025-34026
⚠️ CVE-2025-54313 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-54313)
- Name: Prettier eslint-config-prettier Embedded Malicious Code Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Prettier
- Product: eslint-config-prettier
- Notes: This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://www.npmjs.com/package/eslint-config-prettier?activeTab=versions ; https://github.com/prettier/eslint-config-prettier/issues/339#issuecomment-3090304490 ; https://nvd.nist.gov/vuln/detail/CVE-2025-54313
⚠️ CVE-2025-68645 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-68645)
- Name: Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability
- Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Synacor
- Product: Zimbra Collaboration Suite (ZCS)
- Notes: https://wiki.zimbra.com/wiki/Security_Center ; https://nvd.nist.gov/vuln/detail/CVE-2025-68645
#SecDB #InfoSec #CVE #CISA_KEV #cisa_20260122 #cisa20260122 #cve_2025_31125 #cve_2025_34026 #cve_2025_54313 #cve_2025_68645 #cve202531125 #cve202534026 #cve202554313 #cve202568645
##CVE ID: CVE-2025-54313
Vendor: Prettier
Product: eslint-config-prettier
Date Added: 2026-01-22
Notes: This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://www.npmjs.com/package/eslint-config-prettier?activeTab=versions ; https://github.com/prettier/eslint-config-prettier/issues/339#issuecomment-3090304490 ; https://nvd.nist.gov/vuln/detail/CVE-2025-54313
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-54313
More updates from CISA:
- CVE-2025-54313: Prettier eslint-config-prettier Embedded Malicious Code Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-54313
- CVE-2025-31125: Vite Vitejs Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-31125
- CVE-2025-34026: Versa Concerto Improper Authentication Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-34026
- CVE-2025-68645: Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-68645
And several industrial advisories are listed here: https://www.cisa.gov/ #CISA #infoec #vulnerability
##CVE ID: CVE-2025-54313
Vendor: Prettier
Product: eslint-config-prettier
Date Added: 2026-01-22
Notes: This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://www.npmjs.com/package/eslint-config-prettier?activeTab=versions ; https://github.com/prettier/eslint-config-prettier/issues/339#issuecomment-3090304490 ; https://nvd.nist.gov/vuln/detail/CVE-2025-54313
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-54313
More updates from CISA:
- CVE-2025-54313: Prettier eslint-config-prettier Embedded Malicious Code Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-54313
- CVE-2025-31125: Vite Vitejs Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-31125
- CVE-2025-34026: Versa Concerto Improper Authentication Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-34026
- CVE-2025-68645: Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-68645
And several industrial advisories are listed here: https://www.cisa.gov/ #CISA #infoec #vulnerability
##updated 2026-01-22T18:43:46
2 posts
🟠 CVE-2026-24009 - High (8.1)
Docling Core (or docling-core) is a library that defines core data types and transformations in the document processing application Docling. A PyYAML-related Remote Code Execution (RCE) vulnerability, namely CVE-2020-14343, is exposed in docling-c...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24009/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-24009 - High (8.1)
Docling Core (or docling-core) is a library that defines core data types and transformations in the document processing application Docling. A PyYAML-related Remote Code Execution (RCE) vulnerability, namely CVE-2020-14343, is exposed in docling-c...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24009/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T18:30:41
2 posts
🔴 CVE-2025-69828 - Critical (10)
File Upload vulnerability in TMS Global Software TMS Management Console v.6.3.7.27386.20250818 allows a remote attacker to execute arbitrary code via the Logo upload in /Customer/AddEdit
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-69828/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2025-69828 - Critical (10)
File Upload vulnerability in TMS Global Software TMS Management Console v.6.3.7.27386.20250818 allows a remote attacker to execute arbitrary code via the Logo upload in /Customer/AddEdit
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-69828/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T18:30:41
2 posts
New. CVE-2025-67968
Patchstack: Critical Arbitrary File Upload Vulnerability in RealHomes CRM Plugin Affecting 30k+ Sites https://patchstack.com/articles/critical-arbitrary-file-upload-vulnerability-in-realhomes-crm-plugin-affecting-30k-sites/
Infosecurity-Magazine: RealHomes CRM Plugin Flaw Affected 30,000 WordPress Sites https://www.c-span.org/event/house-committee/former-special-counsel-jack-smith-testifies-on-trump-investigations/439618 #infosec #WordPress #vulnerability
##New. CVE-2025-67968
Patchstack: Critical Arbitrary File Upload Vulnerability in RealHomes CRM Plugin Affecting 30k+ Sites https://patchstack.com/articles/critical-arbitrary-file-upload-vulnerability-in-realhomes-crm-plugin-affecting-30k-sites/
Infosecurity-Magazine: RealHomes CRM Plugin Flaw Affected 30,000 WordPress Sites https://www.c-span.org/event/house-committee/former-special-counsel-jack-smith-testifies-on-trump-investigations/439618 #infosec #WordPress #vulnerability
##updated 2026-01-22T18:30:37
2 posts
🔴 CVE-2025-69764 - Critical (9.8)
Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv function due to improper handling of the stbpvid stack buffer, which may result in memory corruption and remote code execution.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-69764/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2025-69764 - Critical (9.8)
Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv function due to improper handling of the stbpvid stack buffer, which may result in memory corruption and remote code execution.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-69764/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T18:30:32
2 posts
🟠 CVE-2025-36588 - High (8.8)
Dell Unisphere for PowerMax, version(s) 10.2.0.x, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnera...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-36588/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-36588 - High (8.8)
Dell Unisphere for PowerMax, version(s) 10.2.0.x, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnera...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-36588/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T18:16:45.003000
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-22T18:16:44.930000
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-22T18:02:24
2 posts
🟠 CVE-2026-24006 - High (7.5)
Seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 1.4.0
and below, serialization of objects with extreme depth can exceed the maximum call stack limit. In version 1.4.1, Sero...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24006/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-24006 - High (7.5)
Seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 1.4.0
and below, serialization of objects with extreme depth can exceed the maximum call stack limit. In version 1.4.1, Sero...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24006/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T17:16:36.630000
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-22T17:16:36.570000
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-22T17:16:36.450000
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-22T17:16:31.027000
2 posts
🟠 CVE-2026-22278 - High (8.1)
Dell PowerScale OneFS versions prior to 9.13.0.0 contains an improper restriction of excessive authentication attempts vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Unauthori...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22278/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-22278 - High (8.1)
Dell PowerScale OneFS versions prior to 9.13.0.0 contains an improper restriction of excessive authentication attempts vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Unauthori...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22278/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T17:16:30.900000
2 posts
1 repos
CVE-2026-22200: Ticket to Shell in osTicket https://horizon3.ai/attack-research/attack-blogs/ticket-to-shell-exploiting-php-filters-and-cnext-in-osticket-cve-2026-22200/
##CVE-2026-22200: Ticket to Shell in osTicket https://horizon3.ai/attack-research/attack-blogs/ticket-to-shell-exploiting-php-filters-and-cnext-in-osticket-cve-2026-22200/
##updated 2026-01-22T17:16:01.433000
2 posts
1 repos
🟠 CVE-2025-67221 - High (7.5)
The orjson.dumps function in orjson thru 3.11.4 does not limit recursion for deeply nested JSON documents.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-67221/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-67221 - High (7.5)
The orjson.dumps function in orjson thru 3.11.4 does not limit recursion for deeply nested JSON documents.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-67221/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T15:43:56
2 posts
🟠 CVE-2026-23956 - High (7.5)
seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 1.4.0
and below, overriding RegExp serialization with extremely large patterns can exhaust JavaScript runtime memory during ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23956/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-23956 - High (7.5)
seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 1.4.0
and below, overriding RegExp serialization with extremely large patterns can exhaust JavaScript runtime memory during ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23956/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T15:43:31
2 posts
🟠 CVE-2026-23965 - High (7.5)
sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4. A signature forgery vulnerability exists in the SM2 signature verification logic of sm-crypto prior to version 0.4.0. Under default configurat...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23965/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-23965 - High (7.5)
sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4. A signature forgery vulnerability exists in the SM2 signature verification logic of sm-crypto prior to version 0.4.0. Under default configurat...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23965/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T15:43:16
4 posts
🔴 CVE-2026-23966 - Critical (9.1)
sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4. A private key recovery vulnerability exists in the SM2 decryption logic of sm-crypto prior to version 0.3.14. By interacting with the SM2 decr...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23966/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-23966 - Critical (9.1)
sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4. A private key recovery vulnerability exists in the SM2 decryption logic of sm-crypto prior to version 0.3.14. By interacting with the SM2 decr...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23966/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-23966 - Critical (9.1)
sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4. A private key recovery vulnerability exists in the SM2 decryption logic of sm-crypto prior to version 0.3.14. By interacting with the SM2 decr...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23966/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-23966 - Critical (9.1)
sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4. A private key recovery vulnerability exists in the SM2 decryption logic of sm-crypto prior to version 0.3.14. By interacting with the SM2 decr...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23966/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T15:39:50
2 posts
🟠 CVE-2026-23737 - High (7.5)
seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 1.4.0 and below, improper input handling in the JSON deserialization component can lead to arbitrary JavaScript code executi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23737/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-23737 - High (7.5)
seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 1.4.0 and below, improper input handling in the JSON deserialization component can lead to arbitrary JavaScript code executi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23737/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T15:39:15
1 posts
🔴 CVE-2026-23524 - Critical (9.8)
Laravel Reverb provides a real-time WebSocket communication backend for Laravel applications. In versions 1.6.3 and below, Reverb passes data from the Redis channel directly into PHP’s unserialize() function without restricting which classes can...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23524/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T15:38:35
1 posts
🟠 CVE-2026-22807 - High (8.8)
vLLM is an inference and serving engine for large language models (LLMs). Starting in version 0.10.1 and prior to version 0.14.0, vLLM loads Hugging Face `auto_map` dynamic modules during model resolution without gating on `trust_remote_code`, all...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22807/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T15:31:44
2 posts
🟠 CVE-2026-1328 - High (8.8)
A vulnerability was detected in Totolink NR1800X 9.1.0u.6279_B20210910. Impacted is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Performing a manipulation of the argument ssid results in buffer ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1328/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-1328 - High (8.8)
A vulnerability was detected in Totolink NR1800X 9.1.0u.6279_B20210910. Impacted is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Performing a manipulation of the argument ssid results in buffer ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1328/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T15:31:39
2 posts
🟠 CVE-2025-13928 - High (7.5)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.7 before 18.6.4, 18.7 before 18.7.2, and 18.8 before 18.8.2 that could have allowed an unauthenticated user to cause a denial of service condition by exploiting incorrec...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-13928/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-13928 - High (7.5)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.7 before 18.6.4, 18.7 before 18.7.2, and 18.8 before 18.8.2 that could have allowed an unauthenticated user to cause a denial of service condition by exploiting incorrec...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-13928/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T15:31:39
2 posts
🟠 CVE-2025-10856 - High (8.1)
Unrestricted Upload of File with Dangerous Type vulnerability in Solvera Software Services Trade Inc. Teknoera allows File Content Injection.This issue affects Teknoera: through 01102025.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-10856/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-10856 - High (8.1)
Unrestricted Upload of File with Dangerous Type vulnerability in Solvera Software Services Trade Inc. Teknoera allows File Content Injection.This issue affects Teknoera: through 01102025.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-10856/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T15:31:39
1 posts
Уязвимость в GitLab, позволяющая обойти двухфакторную аутентификацию
Опубликованы корректирующие обновления платформы для организации совместной разработки GitLab - 18.8.2, 18.7.2, 18.6.4, в которых устранена уязвимость (CVE-2026-0723), позволяющая обойти проверку при двухфакторной аутентификации. Для совершения атаки злоумышленник должен знать идентификатор учётных данных жертвы. Уязвимость вызвана отсутствием должной проверки возвращаемого значения в сервисах аутентификации.....
Источник: https://www.opennet.ru/opennews/art.shtml?num=64657
Дата: Thu, 22 Jan 2026 15:24:24 +0300
Enjoy.
##updated 2026-01-22T15:31:38
2 posts
🟠 CVE-2025-13927 - High (7.5)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.9 before 18.6.4, 18.7 before 18.7.2, and 18.8 before 18.8.2 that could have allowed an unauthenticated user to create a denial of service condition by sending crafted re...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-13927/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-13927 - High (7.5)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.9 before 18.6.4, 18.7 before 18.7.2, and 18.8 before 18.8.2 that could have allowed an unauthenticated user to create a denial of service condition by sending crafted re...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-13927/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T15:16:55.120000
2 posts
New.
Huntress: DE&TH to Vulnerabilities: Huntress Catches SmarterMail Account Takeover Leading to RCE (CVE-2026-23760) https://www.huntress.com/blog/smartermail-account-takeover-leading-to-rce @huntress #infosec
##New.
Huntress: DE&TH to Vulnerabilities: Huntress Catches SmarterMail Account Takeover Leading to RCE (CVE-2026-23760) https://www.huntress.com/blog/smartermail-account-takeover-leading-to-rce @huntress #infosec
##updated 2026-01-22T15:16:54.757000
2 posts
🟠 CVE-2026-1329 - High (8.8)
A flaw has been found in Tenda AX1803 1.0.0.1. The affected element is the function fromGetWifiGuestBasic of the file /goform/WifiGuestSet. Executing a manipulation of the argument guestWrlPwd/guestEn/guestSsid/hideSsid/guestSecurity can lead to s...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1329/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-1329 - High (8.8)
A flaw has been found in Tenda AX1803 1.0.0.1. The affected element is the function fromGetWifiGuestBasic of the file /goform/WifiGuestSet. Executing a manipulation of the argument guestWrlPwd/guestEn/guestSsid/hideSsid/guestSecurity can lead to s...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1329/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T15:16:50.420000
2 posts
🟠 CVE-2026-1324 - High (8.8)
A vulnerability was identified in Sangfor Operation and Maintenance Management System up to 3.0.12. Affected by this issue is the function SessionController of the file /isomp-protocol/protocol/session of the component SSH Protocol Handler. The ma...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1324/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-1324 - High (8.8)
A vulnerability was identified in Sangfor Operation and Maintenance Management System up to 3.0.12. Affected by this issue is the function SessionController of the file /isomp-protocol/protocol/session of the component SSH Protocol Handler. The ma...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1324/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T15:16:48.843000
2 posts
🔴 CVE-2025-69766 - Critical (9.8)
Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv function due to improper handling of the citytag stack buffer, which may result in memory corruption and remote code execution.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-69766/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2025-69766 - Critical (9.8)
Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv function due to improper handling of the citytag stack buffer, which may result in memory corruption and remote code execution.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-69766/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T13:16:03.340000
2 posts
🟠 CVE-2025-10855 - High (7.5)
Authorization Bypass Through User-Controlled Key vulnerability in Solvera Software Services Trade Inc. Teknoera allows Exploitation of Trusted Identifiers.This issue affects Teknoera: through 01102025.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-10855/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-10855 - High (7.5)
Authorization Bypass Through User-Controlled Key vulnerability in Solvera Software Services Trade Inc. Teknoera allows Exploitation of Trusted Identifiers.This issue affects Teknoera: through 01102025.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-10855/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T12:15:53.980000
2 posts
🟠 CVE-2025-10024 - High (7.5)
Authorization Bypass Through User-Controlled Key vulnerability in EXERT Computer Technologies Software Ltd. Co. Education Management System allows Parameter Injection.This issue affects Education Management System: through 23.09.2025.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-10024/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-10024 - High (7.5)
Authorization Bypass Through User-Controlled Key vulnerability in EXERT Computer Technologies Software Ltd. Co. Education Management System allows Parameter Injection.This issue affects Education Management System: through 23.09.2025.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-10024/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T10:16:07.520000
2 posts
2 repos
🟠 CVE-2025-4764 - High (8)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Aida Computer Information Technology Inc. Hotel Guest Hotspot allows SQL Injection.This issue affects Hotel Guest Hotspot: through 22012026.
N...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-4764/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-4764 - High (8)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Aida Computer Information Technology Inc. Hotel Guest Hotspot allows SQL Injection.This issue affects Hotel Guest Hotspot: through 22012026.
N...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-4764/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T09:31:48
2 posts
🔴 CVE-2026-1331 - Critical (9.8)
MeetingHub developed by HAMASTAR Technology has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1331/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-1331 - Critical (9.8)
MeetingHub developed by HAMASTAR Technology has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1331/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T09:31:48
2 posts
1 repos
https://github.com/Galaxy-sc/CVE-2026-0920-WordPress-LA-Studio-Exploit
🔴 CVE-2026-0920 - Critical (9.8)
The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Administrative User Creation in all versions up to, and including, 1.5.6.3. This is due to the 'ajax_register_handle' function not restricting what user roles a user can...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0920/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-0920 - Critical (9.8)
The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Administrative User Creation in all versions up to, and including, 1.5.6.3. This is due to the 'ajax_register_handle' function not restricting what user roles a user can...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0920/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T09:31:40
2 posts
🟠 CVE-2026-1330 - High (7.5)
MeetingHub developed by HAMASTAR Technology has an Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Absolute Path Traversal to download arbitrary system files.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1330/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-1330 - High (7.5)
MeetingHub developed by HAMASTAR Technology has an Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Absolute Path Traversal to download arbitrary system files.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1330/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T04:16:00.187000
2 posts
🔴 CVE-2026-24042 - Critical (9.4)
Appsmith is a platform to build admin panels, internal tools, and dashboards. In versions 1.94 and below, publicly accessible apps allow unauthenticated users to execute unpublished (edit-mode) actions by sending viewMode=false (or omitting it) to...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24042/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-24042 - Critical (9.4)
Appsmith is a platform to build admin panels, internal tools, and dashboards. In versions 1.94 and below, publicly accessible apps allow unauthenticated users to execute unpublished (edit-mode) actions by sending viewMode=false (or omitting it) to...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24042/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T03:31:34
2 posts
🟠 CVE-2025-27380 - High (7.6)
HTML injection in Project Release in Altium Enterprise Server (AES) 7.0.3 on all platforms allows an authenticated attacker to execute arbitrary JavaScript in the victim’s browser via crafted HTML content.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-27380/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-27380 - High (7.6)
HTML injection in Project Release in Altium Enterprise Server (AES) 7.0.3 on all platforms allows an authenticated attacker to execute arbitrary JavaScript in the victim’s browser via crafted HTML content.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-27380/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T03:15:47.777000
2 posts
🔴 CVE-2026-24002 - Critical (9)
Grist is spreadsheet software using Python as its formula language. Grist offers several methods for running those formulas in a sandbox, for cases where the user may be working with untrusted spreadsheets. One such method runs them in pyodide, bu...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24002/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-24002 - Critical (9)
Grist is spreadsheet software using Python as its formula language. Grist offers several methods for running those formulas in a sandbox, for cases where the user may be working with untrusted spreadsheets. One such method runs them in pyodide, bu...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24002/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T03:15:47.167000
4 posts
🟠 CVE-2026-23967 - High (7.5)
sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4. A signature malleability vulnerability exists in the SM2 signature verification logic of the sm-crypto library prior to version 0.3.14. An att...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23967/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-23967 - High (7.5)
sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4. A signature malleability vulnerability exists in the SM2 signature verification logic of the sm-crypto library prior to version 0.3.14. An att...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23967/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-23967 - High (7.5)
sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4. A signature malleability vulnerability exists in the SM2 signature verification logic of the sm-crypto library prior to version 0.3.14. An att...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23967/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-23967 - High (7.5)
sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4. A signature malleability vulnerability exists in the SM2 signature verification logic of the sm-crypto library prior to version 0.3.14. An att...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23967/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T02:15:52.470000
2 posts
🟠 CVE-2026-23957 - High (7.5)
seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 1.4.0
and below, overriding encoded array lengths by replacing them with an excessively large value causes the deserializati...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23957/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-23957 - High (7.5)
seroval facilitates JS value stringification, including complex structures beyond JSON.stringify capabilities. In versions 1.4.0
and below, overriding encoded array lengths by replacing them with an excessively large value causes the deserializati...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23957/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-22T01:15:51.077000
2 posts
🟠 CVE-2025-27378 - High (8.6)
AES contains a SQL injection vulnerability due to an inactive configuration that prevents the latest SQL parsing logic from being applied. When this configuration is not enabled, crafted input may be improperly handled, allowing attackers to injec...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-27378/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-27378 - High (8.6)
AES contains a SQL injection vulnerability due to an inactive configuration that prevents the latest SQL parsing logic from being applied. When this configuration is not enabled, crafted input may be improperly handled, allowing attackers to injec...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-27378/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T22:56:48
1 posts
🟠 CVE-2026-22022 - High (8.2)
Deployments of Apache Solr 5.3.0 through 9.10.0 that rely on Solr's "Rule Based Authorization Plugin" are vulnerable to allowing unauthorized access to certain Solr APIs, due to insufficiently strict input validation in those components. Only de...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22022/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T21:31:31
15 posts
1 repos
Cisco Under Fire Again: Critical Zero-Day Actively Exploited Across Unified Communications Systems
A Fresh Cyberstorm Hits Cisco’s Core Enterprise Platforms Cisco is once again at the center of a high-stakes cybersecurity emergency after confirming the active exploitation of a critical zero-day vulnerability impacting its unified communications ecosystem. The flaw, now formally tracked as CVE-2026-20045, exposes some of the most widely deployed enterprise communication…
##CISA added Cisco's critical RCE vulnerability to the KEV catalogue late yesterday.
CVE-2026-20045 Cisco Unified Communications Products Code Injection Vulnerability https://www.cisa.gov/news-events/alerts/2026/01/21/cisa-adds-one-known-exploited-vulnerability-catalog
More:
Computerworld: Critical Cisco UC bug actively exploited https://www.computerworld.com/article/4120764/critical-cisco-uc-bug-actively-exploited.html #infosec #Cisco #vulnerability
##CVE-2026-20045: Critical Zero-Day in Cisco Products Is Actively Exploited in the Wild
#CVE_2026_20045
https://socprime.com/blog/cve-2026-20045-vulnerability/
Cisco Patches Actively Exploited Flaw in Unified Communications Products
Cisco patched a critical remote code execution vulnerability (CVE-2026-20045) in its Unified Communications products that attackers are actively trying to exploit to gain root access. The flaw allows unauthenticated attackers to take full control of enterprise telephony and messaging infrastructure via malicious HTTP requests.
**If you are using Cisco communication platforms, read this advisory in detail. Make sure the web management interface are isolated from the internet and accessible from trusted networks only. Then plan a quick update. Because someone will find a way to reach the vulnerable interface even if it's isolated.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/cisco-patches-actively-exploited-flaw-in-unified-communications-products-4-u-1-t-8/gD2P6Ple2L
Cisco Releases Emergency Patch for Actively Exploited CVE-2026-20045 Zero-Day RCE Flaw + Video
Critical Zero-Day Exposure in Cisco Enterprise Communications Stack Cisco has released an urgent security patch addressing a critical zero-day vulnerability actively exploited in real-world attacks. The flaw, tracked as CVE-2026-20045 with a CVSS score of 8.2, allows unauthenticated remote attackers to execute arbitrary commands on affected systems. The exposure sits at the…
##Cisco Confirms Active Exploitation of Critical Unified Communications Zero-Day (CVE-2026-20045)
Introduction: A High-Impact Cisco Flaw Moves From Theory to Reality Cisco has disclosed and patched a critical remote code execution vulnerability affecting its Unified Communications ecosystem, confirming that the flaw has already been exploited in real-world attacks. Tracked as CVE-2026-20045, the vulnerability targets core enterprise communication platforms, including…
##Cisco fixes Unified Communications RCE zero day exploited in attacks
Cisco has fixed a critical Unified Communications and Webex Calling remote code execution vulnerability, tracked as CVE-2026-20045, that has been...
🔗️ [Bleepingcomputer] https://link.is.it/WDsEt3
##CISA added Cisco's critical RCE vulnerability to the KEV catalogue late yesterday.
CVE-2026-20045 Cisco Unified Communications Products Code Injection Vulnerability https://www.cisa.gov/news-events/alerts/2026/01/21/cisa-adds-one-known-exploited-vulnerability-catalog
More:
Computerworld: Critical Cisco UC bug actively exploited https://www.computerworld.com/article/4120764/critical-cisco-uc-bug-actively-exploited.html #infosec #Cisco #vulnerability
##Cisco Patches Actively Exploited Flaw in Unified Communications Products
Cisco patched a critical remote code execution vulnerability (CVE-2026-20045) in its Unified Communications products that attackers are actively trying to exploit to gain root access. The flaw allows unauthenticated attackers to take full control of enterprise telephony and messaging infrastructure via malicious HTTP requests.
**If you are using Cisco communication platforms, read this advisory in detail. Make sure the web management interface are isolated from the internet and accessible from trusted networks only. Then plan a quick update. Because someone will find a way to reach the vulnerable interface even if it's isolated.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/cisco-patches-actively-exploited-flaw-in-unified-communications-products-4-u-1-t-8/gD2P6Ple2L
Cisco fixes Unified Communications RCE zero day exploited in attacks
Cisco has fixed a critical Unified Communications and Webex Calling remote code execution vulnerability, tracked as CVE-2026-20045, that has been...
🔗️ [Bleepingcomputer] https://link.is.it/WDsEt3
##‼️Attackers Actively Probing RCE Vulnerability in Cisco Enterprise Communications Products
CVE-2026-20045: Cisco Unified Communications Products Code Injection Vulnerability
CVSS: 8.2
CISA KEV: Added today; January 21st, 2026
CVE Published: January 21st, 2026
Advisory: https://nvd.nist.gov/vuln/detail/CVE-2026-20045
Description: A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P), Cisco Unity Connection, and Cisco Webex Calling Dedicated Instance could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. This vulnerability is due to improper validation of user-supplied input in HTTP requests. An attacker could exploit this vulnerability by sending a sequence of crafted HTTP requests to the web-based management interface of an affected device. A successful exploit could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. Note: Cisco has assigned this security advisory a Security Impact Rating (SIR) of Critical rather than High as the score indicates. The reason is that exploitation of this vulnerability could result in an attacker elevating privileges to root.
##CVE ID: CVE-2026-20045
Vendor: Cisco
Product: Unified Communications Manager
Date Added: 2026-01-21
Notes: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-voice-rce-mORhqY4b ; https://nvd.nist.gov/vuln/detail/CVE-2026-20045
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-20045
New Cisco zero-day, CVE-2026-20045
##🟠 CVE-2026-20045 - High (8.2)
A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P), Cisco Uni...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-20045/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##Four advisories from Cisco today, one of them critical. Too bad some crows no longer follow these things. 😇
- Critical: CVE-2026-20045: Cisco Unified Communications Products Remote Code Execution Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-voice-rce-mORhqY4b
- Medium severity: CVE-2026-20055 and CVE-2026-20109: Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucce-pcce-xss-2JVyg3uD
- Medium severity: CVE-2026-20092: Cisco Intersight Virtual Appliance Privilege Escalation Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-intersight-privesc-p6tBm6jk
- Medium severity: CVE-2026-20080: Cisco IEC6400 Wireless Backhaul Edge Compute Software SSH Denial of Service Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iec6400-Pem5uQ7v @TalosSecurity #Cisco #infosec #vulnerability
##updated 2026-01-21T21:16:09.957000
1 posts
🔴 CVE-2026-22792 - Critical (9.6)
5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. Prior to version 0.15.3, an unsafe HTML rendering permits untrusted HTML (including on* event attributes) to execute in the renderer context. An ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22792/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T21:16:07.270000
1 posts
🟠 CVE-2025-59465 - High (7.5)
A malformed `HTTP/2 HEADERS` frame with oversized, invalid `HPACK` data can cause Node.js to crash by triggering an unhandled `TLSSocket` error `ECONNRESET`. Instead of safely closing the connection, the process crashes, enabling a remote denial o...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-59465/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T19:16:02.960000
3 posts
🟠 CVE-2025-13878 - High (7.5)
Malformed BRID/HHIT records can cause `named` to terminate unexpectedly.
This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-13878/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T18:31:35
2 posts
TP-Link Patches Authentication Bypass Flaw in VIGI Cameras
TP-Link fixed a high-severity authentication bypass vulnerability (CVE-2026-0629) in its VIGI camera series that allowed local attackers to reset administrative passwords. The flaw enables full device takeover and potential lateral movement within corporate networks.
**Make sure all CCTV devices are isolated from the internet and accessible from trusted networks only. Segment your surveillance cameras into a dedicated VLAN and if possible disable the password recovery feature on the local web interface. Then plan a patch cycle.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/tp-link-patches-authentication-bypass-flaw-in-vigi-cameras-6-s-b-i-e/gD2P6Ple2L
Eine kritische Sicherheitslücke CVE-2026-0629 erlaubt es Angreifern, Admin-Zugriff auf zahlreiche #TPLink Vigi-Überwachungskameras per Fernzugriff zu erlangen. https://www.golem.de/specials/tp-link/
##updated 2026-01-21T18:30:38
1 posts
Four advisories from Cisco today, one of them critical. Too bad some crows no longer follow these things. 😇
- Critical: CVE-2026-20045: Cisco Unified Communications Products Remote Code Execution Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-voice-rce-mORhqY4b
- Medium severity: CVE-2026-20055 and CVE-2026-20109: Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucce-pcce-xss-2JVyg3uD
- Medium severity: CVE-2026-20092: Cisco Intersight Virtual Appliance Privilege Escalation Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-intersight-privesc-p6tBm6jk
- Medium severity: CVE-2026-20080: Cisco IEC6400 Wireless Backhaul Edge Compute Software SSH Denial of Service Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iec6400-Pem5uQ7v @TalosSecurity #Cisco #infosec #vulnerability
##updated 2026-01-21T18:30:38
1 posts
Four advisories from Cisco today, one of them critical. Too bad some crows no longer follow these things. 😇
- Critical: CVE-2026-20045: Cisco Unified Communications Products Remote Code Execution Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-voice-rce-mORhqY4b
- Medium severity: CVE-2026-20055 and CVE-2026-20109: Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucce-pcce-xss-2JVyg3uD
- Medium severity: CVE-2026-20092: Cisco Intersight Virtual Appliance Privilege Escalation Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-intersight-privesc-p6tBm6jk
- Medium severity: CVE-2026-20080: Cisco IEC6400 Wireless Backhaul Edge Compute Software SSH Denial of Service Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iec6400-Pem5uQ7v @TalosSecurity #Cisco #infosec #vulnerability
##updated 2026-01-21T18:30:37
1 posts
🟠 CVE-2025-70650 - High (7.5)
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-70650/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T18:30:32
1 posts
🟠 CVE-2025-70645 - High (7.5)
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the deviceList parameter of the formSetWifiMacFilterCfg function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-70645/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T18:30:29
2 posts
From yesterday, relating to CVE-2026-21945. Oracle has listed this vulnerability in its latest advisory: https://www.oracle.com/security-alerts/cpujan2026.html
Tenable: SSRF Vulnerability in Java TLS Handshakes Creates DoS Risk https://www.tenable.com/blog/tenable-discovers-ssrf-vulnerability-in-java-tls-handshakes-that-creates-dos-risk @tenable #infosec #threatresearch #JavaScript #vulnerability #DDoS #Oracle
##🟠 CVE-2026-21945 - High (7.5)
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.1...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21945/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T18:30:29
1 posts
🟠 CVE-2026-21956 - High (8.2)
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastru...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21956/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T18:30:29
1 posts
🟠 CVE-2026-21955 - High (8.2)
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastru...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21955/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T17:16:08.410000
1 posts
Four advisories from Cisco today, one of them critical. Too bad some crows no longer follow these things. 😇
- Critical: CVE-2026-20045: Cisco Unified Communications Products Remote Code Execution Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-voice-rce-mORhqY4b
- Medium severity: CVE-2026-20055 and CVE-2026-20109: Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucce-pcce-xss-2JVyg3uD
- Medium severity: CVE-2026-20092: Cisco Intersight Virtual Appliance Privilege Escalation Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-intersight-privesc-p6tBm6jk
- Medium severity: CVE-2026-20080: Cisco IEC6400 Wireless Backhaul Edge Compute Software SSH Denial of Service Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iec6400-Pem5uQ7v @TalosSecurity #Cisco #infosec #vulnerability
##updated 2026-01-21T17:16:08.253000
1 posts
Four advisories from Cisco today, one of them critical. Too bad some crows no longer follow these things. 😇
- Critical: CVE-2026-20045: Cisco Unified Communications Products Remote Code Execution Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-voice-rce-mORhqY4b
- Medium severity: CVE-2026-20055 and CVE-2026-20109: Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucce-pcce-xss-2JVyg3uD
- Medium severity: CVE-2026-20092: Cisco Intersight Virtual Appliance Privilege Escalation Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-intersight-privesc-p6tBm6jk
- Medium severity: CVE-2026-20080: Cisco IEC6400 Wireless Backhaul Edge Compute Software SSH Denial of Service Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iec6400-Pem5uQ7v @TalosSecurity #Cisco #infosec #vulnerability
##updated 2026-01-21T17:16:06.450000
1 posts
🟠 CVE-2025-66692 - High (7.5)
A buffer over-read in the PublicKey::verify() method of Binance - Trust Wallet Core before commit 5668c67 allows attackers to cause a Denial of Service (DoS) via a crafted input.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-66692/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T16:56:56
1 posts
1 repos
🔴 CVE-2025-65482 - Critical (9.8)
An XML External Entity (XXE) vulnerability in opensagres XDocReport v0.9.2 to v2.0.3 allows attackers to execute arbitrary code via uploading a crafted .docx file.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-65482/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T16:16:09.647000
1 posts
🟠 CVE-2026-21957 - High (7.5)
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrast...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21957/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T16:16:07.657000
1 posts
🟠 CVE-2025-70651 - High (7.5)
Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow in the ssid parameter of the form_fast_setting_wifi_set function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-70651/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T15:32:23
1 posts
🟠 CVE-2025-57156 - High (7.5)
NULL pointer dereference in the dacp_reply_playqueueedit_clear function in src/httpd_dacp.c in owntone-server through commit 6d604a1 (newer commit after version 28.12) allows remote attackers to cause a Denial of Service (crash).
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-57156/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T15:32:22
1 posts
🟠 CVE-2025-63648 - High (7.5)
A NULL pointer dereference in the dacp_reply_playqueueedit_move function (src/httpd_dacp.c) of owntone-server commit b7e385f allows attackers to cause a Denial of Service (DoS) via sending a crafted DACP request to the server.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-63648/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T15:32:22
1 posts
🟠 CVE-2025-63647 - High (7.5)
A NULL pointer dereference in the parse_meta function (src/httpd_daap.c) of owntone-server commit 334beb allows attackers to cause a Denial of Service (DoS) via sending a crafted DAAP request to the server.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-63647/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T15:32:22
1 posts
🟠 CVE-2026-21940 - High (7.5)
Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: User and User Group). The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21940/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T15:32:22
1 posts
🟠 CVE-2026-21982 - High (7.5)
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Difficult to exploit vulnerability allows unauthenticated attacker with access to the physic...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21982/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T15:32:17
1 posts
🟠 CVE-2025-57155 - High (7.5)
NULL pointer dereference in the daap_reply_groups function in src/httpd_daap.c in owntone-server through commit 5e6f19a (newer commit after version 28.2) allows remote attackers to cause a Denial of Service.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-57155/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T15:31:16
1 posts
🟠 CVE-2026-21983 - High (7.5)
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrast...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21983/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T15:16:09.493000
1 posts
🟠 CVE-2026-21984 - High (7.5)
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrast...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21984/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T15:16:07.890000
1 posts
🟠 CVE-2025-66902 - High (7.5)
An input validation issue in in Pithikos websocket-server v.0.6.4 allows a remote attacker to obtain sensitive information or cause unexpected server behavior via the websocket_server/websocket_server.py, WebSocketServer._message_received components.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-66902/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T15:16:07.473000
1 posts
1 repos
🔴 CVE-2025-64087 - Critical (9.8)
A Server-Side Template Injection (SSTI) vulnerability in the FreeMarker component of opensagres XDocReport v1.0.0 to v2.1.0 allows attackers to execute arbitrary code via injecting crafted template expressions.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-64087/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T15:16:06.640000
1 posts
🟠 CVE-2025-56353 - High (7.5)
In tinyMQTT commit 6226ade15bd4f97be2d196352e64dd10937c1962 (2024-02-18), a memory leak occurs due to the broker's failure to validate or reject malformed UTF-8 strings in topic filters. An attacker can exploit this by sending repeated subscriptio...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-56353/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T15:16:06.457000
1 posts
🔴 CVE-2025-55423 - Critical (9.8)
A command injection vulnerability exists in the upnp_relay() function in multiple ipTIME router models because the controlURL value used to pass port-forwarding information to an upper router is passed to system() without proper validation or sani...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-55423/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T15:14:59.607000
1 posts
7 repos
https://github.com/rohmatariow/CVE-2026-22812-exploit
https://github.com/Udyz/CVE-2026-22812-Exp
https://github.com/mad12wader/CVE-2026-22812
https://github.com/barrersoftware/opencode-secure
https://github.com/CayberMods/CVE-2026-22812-POC
‼️CVE-2026-22812: OpenCode's Unauthenticated HTTP Server Allows Arbitrary Command Execution
PoC/Exploit: https://github.com/rohmatariow/CVE-2026-22812-exploit
CVSS: 8.8
CVE Published: January 12th, 2026
Exploit Published: January 16th, 2026
Advisory: https://github.com/anomalyco/opencode/security/advisories/GHSA-vxw4-wv6m-9hhh
OpenCode is an open source AI coding agent. Prior to 1.0.216, OpenCode automatically starts an unauthenticated HTTP server that allows any local process (or any website via permissive CORS) to execute arbitrary shell commands with the user's privileges. This vulnerability is fixed in 1.0.216.
##updated 2026-01-21T14:55:34
2 posts
1 repos
‼️CVE-2026-23885: AlchemyCMS has Authenticated Remote Code Execution (RCE) via eval injection in ResourcesHelper
CVSS: 6.4
CVE Published: January 19th, 2026
Advisory/Exploit/PoC: https://github.com/advisories/GHSA-2762-657x-v979
Description: Alchemy is an open source content management system engine written in Ruby on Rails. Prior to versions 7.4.12 and 8.0.3, the application uses the Ruby `eval()` function to dynamically execute a string provided by the `resource_handler.engine_name` attribute in `Alchemy::ResourcesHelper#resource_url_proxy`. The vulnerability exists in `app/helpers/alchemy/resources_helper.rb` at line 28. The code explicitly bypasses security linting with `# rubocop:disable Security/Eval`, indicating that the use of a dangerous function was known but not properly mitigated. Since `engine_name` is sourced from module definitions that can be influenced by administrative configurations, it allows an authenticated attacker to escape the Ruby sandbox and execute arbitrary system commands on the host OS. Versions 7.4.12 and 8.0.3 fix the issue by replacing `eval()` with `send()`.
##‼️CVE-2026-23885: AlchemyCMS has Authenticated Remote Code Execution (RCE) via eval injection in ResourcesHelper
CVSS: 6.4
CVE Published: January 19th, 2026
Advisory/Exploit/PoC: https://github.com/advisories/GHSA-2762-657x-v979
Description: Alchemy is an open source content management system engine written in Ruby on Rails. Prior to versions 7.4.12 and 8.0.3, the application uses the Ruby `eval()` function to dynamically execute a string provided by the `resource_handler.engine_name` attribute in `Alchemy::ResourcesHelper#resource_url_proxy`. The vulnerability exists in `app/helpers/alchemy/resources_helper.rb` at line 28. The code explicitly bypasses security linting with `# rubocop:disable Security/Eval`, indicating that the use of a dangerous function was known but not properly mitigated. Since `engine_name` is sourced from module definitions that can be influenced by administrative configurations, it allows an authenticated attacker to escape the Ruby sandbox and execute arbitrary system commands on the host OS. Versions 7.4.12 and 8.0.3 fix the issue by replacing `eval()` with `send()`.
##updated 2026-01-21T13:46:39.423000
1 posts
3 repos
https://github.com/Mkway/CVE-2025-60021
https://github.com/Ashwesker/Ashwesker-CVE-2025-60021
https://github.com/ninjazan420/CVE-2025-60021-PoC-Apache-bRPC-Heap-Profiler-Command-Injection
Apache bRPC Critical Remote Command Injection Vulnerability
Apache bRPC versions prior to 1.15.0 contain a critical remote command injection vulnerability (CVE-2025-60021) in the heap profiler service. Attackers can exploit unvalidated input in the extra_options parameter to execute arbitrary commands and gain full system control.
**If you are using Apache bRPC, make sure all bRPC instances are isolated from the internet and accessible from trusted networks only. Disable the heap profiler service to prevent attackers from running remote commands on your servers and plan a quick upgrade to version 1.15.0.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/apache-brpc-critical-remote-command-injection-vulnerability-d-8-0-d-6/gD2P6Ple2L
updated 2026-01-21T09:31:40
1 posts
🟠 CVE-2026-24016 - High (7.8)
The installer of ServerView Agents for Windows provided by Fsas Technologies Inc. may insecurely load Dynamic Link Libraries. Arbitrary code may be executed with the administrator privilege when the installer is executed.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24016/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T02:15:48.363000
1 posts
🔴 CVE-2025-15521 - Critical (9.8)
The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.5.0. This is due to the plugin not properly validating...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-15521/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T01:07:03
3 posts
Critical Chainlit AI Vulnerabilities Put Servers and Sensitive Data at Risk
In a troubling development for the AI and cybersecurity communities, two critical vulnerabilities—CVE-2026-22218 and CVE-2026-22219—have been discovered in the Chainlit AI framework. These flaws allow attackers to access sensitive environment variables and perform server-side request forgery (SSRF) attacks, which could potentially lead to full system takeovers. As AI frameworks become…
##Vulnerabilities in Chainlit AI Framework Expose Data and Cloud Environments
Chainlit patched two vulnerabilities, CVE-2026-22218 and CVE-2026-22219, which allow attackers to steal sensitive files, leak private user conversations, and gain unauthorized access to cloud environments.
**Ensure all AI application frameworks are isolated from the internet and accessible only through trusted networks. If you are using Chainlit, plan an update to version 2.9.4 or later. In the meantime, isolate and control PUT requests to the /project/element endpoint.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/vulnerabilities-in-chainlit-ai-framework-expose-data-and-cloud-environments-j-0-n-7-y/gD2P6Ple2L
New. Tracked as CVE-2026-22218 and CVE-2026-22219.
Zafran Research: ChainLeak: Critical AI framework vulnerabilities expose data, enable cloud takeover https://www.zafran.io/resources/chainleak-critical-ai-framework-vulnerabilities-expose-data-enable-cloud-takeover
More:
Infosecurity-Magazine: Chainlit Security Flaws Highlight Infrastructure Risks in AI Apps https://www.infosecurity-magazine.com/news/chainlit-security-flaws-ai-apps/ #infosec #opensource #Python #vulnerability
##updated 2026-01-21T00:31:51
1 posts
🟠 CVE-2026-21973 - High (8.1)
Vulnerability in the Oracle FLEXCUBE Investor Servicing product of Oracle Financial Services Applications (component: Security Management System). Supported versions that are affected are 14.5.0.15.0, 14.7.0.8.0 and 14.8.0.1.0. Easily exploitabl...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21973/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T00:31:51
2 posts
🟠 CVE-2026-21989 - High (8.1)
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastru...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21989/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-21989 - High (8.1)
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastru...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21989/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T00:31:51
2 posts
🟠 CVE-2026-21988 - High (8.2)
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastru...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21988/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-21988 - High (8.2)
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastru...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21988/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T00:31:50
1 posts
🔴 CVE-2026-21969 - Critical (9.8)
Vulnerability in the Oracle Agile Product Lifecycle Management for Process product of Oracle Supply Chain (component: Supplier Portal). The supported version that is affected is 6.2.4. Easily exploitable vulnerability allows unauthenticated atta...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21969/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-21T00:31:49
1 posts
🟠 CVE-2026-21926 - High (7.5)
Vulnerability in the Siebel CRM Deployment product of Oracle Siebel CRM (component: Server Infrastructure). Supported versions that are affected are 17.0-25.2. Easily exploitable vulnerability allows unauthenticated attacker with network access v...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21926/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-20T22:16:02.590000
1 posts
🟠 CVE-2026-21990 - High (8.2)
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastru...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21990/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-20T22:16:02.237000
2 posts
🟠 CVE-2026-21987 - High (8.2)
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastru...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21987/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-21987 - High (8.2)
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastru...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21987/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-20T22:15:59.733000
1 posts
🟠 CVE-2026-21967 - High (8.6)
Vulnerability in the Oracle Hospitality OPERA 5 product of Oracle Hospitality Applications (component: Opera Servlet). Supported versions that are affected are 5.6.19.23, 5.6.25.17, 5.6.26.10 and 5.6.27.4. Easily exploitable vulnerability allows...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-21967/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-20T22:15:52.923000
1 posts
🔴 CVE-2026-0905 - Critical (9.8)
Insufficient policy enforcement in Network in Google Chrome prior to 144.0.7559.59 allowed an attack who obtained a network log file to potentially obtain potentially sensitive information via a network log file. (Chromium security severity: Medium)
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0905/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-20T21:31:41
1 posts
🔴 CVE-2025-56005 - Critical (9.8)
An undocumented and unsafe feature in the PLY (Python Lex-Yacc) library 3.11 allows Remote Code Execution (RCE) via the `picklefile` parameter in the `yacc()` function. This parameter accepts a `.pkl` file that is deserialized with `pickle.load()`...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-56005/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-20T19:15:50.700000
3 posts
Critical Chainlit AI Vulnerabilities Put Servers and Sensitive Data at Risk
In a troubling development for the AI and cybersecurity communities, two critical vulnerabilities—CVE-2026-22218 and CVE-2026-22219—have been discovered in the Chainlit AI framework. These flaws allow attackers to access sensitive environment variables and perform server-side request forgery (SSRF) attacks, which could potentially lead to full system takeovers. As AI frameworks become…
##Vulnerabilities in Chainlit AI Framework Expose Data and Cloud Environments
Chainlit patched two vulnerabilities, CVE-2026-22218 and CVE-2026-22219, which allow attackers to steal sensitive files, leak private user conversations, and gain unauthorized access to cloud environments.
**Ensure all AI application frameworks are isolated from the internet and accessible only through trusted networks. If you are using Chainlit, plan an update to version 2.9.4 or later. In the meantime, isolate and control PUT requests to the /project/element endpoint.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/vulnerabilities-in-chainlit-ai-framework-expose-data-and-cloud-environments-j-0-n-7-y/gD2P6Ple2L
New. Tracked as CVE-2026-22218 and CVE-2026-22219.
Zafran Research: ChainLeak: Critical AI framework vulnerabilities expose data, enable cloud takeover https://www.zafran.io/resources/chainleak-critical-ai-framework-vulnerabilities-expose-data-enable-cloud-takeover
More:
Infosecurity-Magazine: Chainlit Security Flaws Highlight Infrastructure Risks in AI Apps https://www.infosecurity-magazine.com/news/chainlit-security-flaws-ai-apps/ #infosec #opensource #Python #vulnerability
##updated 2026-01-20T18:33:03
1 posts
🟠 CVE-2025-71020 - High (7.5)
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the security parameter of the sub_4C408 function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-71020/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-20T18:33:03
1 posts
🔴 CVE-2026-0610 - Critical (9.8)
SQL Injection vulnerability in remote-sessions in Devolutions Server.This issue affects Devolutions Server 2025.3.1 through 2025.3.12
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0610/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-20T18:32:08
1 posts
Nvidia has posted two high-severity advisories:
Update: NVIDIA CUDA Toolkit - January 2026, relating to CVE-2025-33228, CVE-2025-33229, CVE-2025-33230, and CVE-2025-33231 https://nvidia.custhelp.com/app/answers/detail/a_id/5755
Update: NVIDIA Merlin - January 2026, relating to CVE-2025-33233 https://nvidia.custhelp.com/app/answers/detail/a_id/5761 #infosec #Nvidia #vulnerability
##updated 2026-01-20T18:32:08
1 posts
Nvidia has posted two high-severity advisories:
Update: NVIDIA CUDA Toolkit - January 2026, relating to CVE-2025-33228, CVE-2025-33229, CVE-2025-33230, and CVE-2025-33231 https://nvidia.custhelp.com/app/answers/detail/a_id/5755
Update: NVIDIA Merlin - January 2026, relating to CVE-2025-33233 https://nvidia.custhelp.com/app/answers/detail/a_id/5761 #infosec #Nvidia #vulnerability
##updated 2026-01-20T18:32:08
1 posts
Nvidia has posted two high-severity advisories:
Update: NVIDIA CUDA Toolkit - January 2026, relating to CVE-2025-33228, CVE-2025-33229, CVE-2025-33230, and CVE-2025-33231 https://nvidia.custhelp.com/app/answers/detail/a_id/5755
Update: NVIDIA Merlin - January 2026, relating to CVE-2025-33233 https://nvidia.custhelp.com/app/answers/detail/a_id/5761 #infosec #Nvidia #vulnerability
##updated 2026-01-20T18:31:56
1 posts
🟠 CVE-2026-0943 - High (7.5)
HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability.
Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hb_src.tar.gz in the source tarball, which is affected ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0943/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-20T18:31:56
2 posts
GLIBC-SA-2026-0002: getnetbyaddr and getnetbyaddr_r leak stack contents to DNS resovler (CVE-2026-0915)
https://sourceware.org/pipermail/libc-announce/2026/000050.html
##updated 2026-01-20T18:31:55
3 posts
4 repos
https://github.com/Ashwesker/Ashwesker-CVE-2025-64155
https://github.com/purehate/CVE-2025-64155-hunter
https://github.com/cyberdudebivash/CYBERDUDEBIVASH-FortiSIEM-CVE-2025-64155-Scanner
Attacks Target Freshly Patched Critical Fortinet Flaws
The Fortinet command injection flaw in FortiSIEM (CVE-2025-64155) is reported to be actively exploited to gain root access.
**This became urgent. FortiSIEM is actively attacked. Patch your FortiSIEM appliances to the latest version immediately and block port 7900 from any public access.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/attacks-target-freshly-patched-critical-fortinet-flaws-l-g-c-h-i/gD2P6Ple2L
Attacks Target Freshly Patched Critical Fortinet Flaws
The Fortinet command injection flaw in FortiSIEM (CVE-2025-64155) is reported to be actively exploited to gain root access.
**This became urgent. FortiSIEM is actively attacked. Patch your FortiSIEM appliances to the latest version immediately and block port 7900 from any public access.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/attacks-target-freshly-patched-critical-fortinet-flaws-l-g-c-h-i/gD2P6Ple2L
CVE-2025-64155: Three Years of Remotely Rooting the #Fortinet #FortiSIEM
##updated 2026-01-20T18:16:02.950000
2 posts
🟠 CVE-2025-33233 - High (7.8)
NVIDIA Merlin Transformers4Rec for all platforms contains a vulnerability where an attacker could cause code injection. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and ...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-33233/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##Nvidia has posted two high-severity advisories:
Update: NVIDIA CUDA Toolkit - January 2026, relating to CVE-2025-33228, CVE-2025-33229, CVE-2025-33230, and CVE-2025-33231 https://nvidia.custhelp.com/app/answers/detail/a_id/5755
Update: NVIDIA Merlin - January 2026, relating to CVE-2025-33233 https://nvidia.custhelp.com/app/answers/detail/a_id/5761 #infosec #Nvidia #vulnerability
##updated 2026-01-20T18:16:02.500000
1 posts
Nvidia has posted two high-severity advisories:
Update: NVIDIA CUDA Toolkit - January 2026, relating to CVE-2025-33228, CVE-2025-33229, CVE-2025-33230, and CVE-2025-33231 https://nvidia.custhelp.com/app/answers/detail/a_id/5755
Update: NVIDIA Merlin - January 2026, relating to CVE-2025-33233 https://nvidia.custhelp.com/app/answers/detail/a_id/5761 #infosec #Nvidia #vulnerability
##updated 2026-01-20T16:58:23.900000
1 posts
Tenable has updated its threat research advisories, adding one new entry (including mitigation):
Critical: CVE-2025-62581 and CVE-2025-62582: Delta Electronics DIAView Multiple Vulnerabilities https://www.tenable.com/security/research/tra-2026-02 #infosec #vulnerability
##updated 2026-01-20T15:33:12
1 posts
🟠 CVE-2026-0899 - High (8.8)
Out of bounds memory access in V8 in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0899/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-20T14:16:21.980000
2 posts
1 repos
Zoom Patches Critical Command Injection Flaw in Node Multimedia Routers
Zoom patched a critical command injection vulnerability (CVE-2026-22844) in its Node Multimedia Routers that allowed meeting participants to execute remote code. The flaw affects hybrid and connector deployments.
**Make sure all Zoom Node devices are isolated from the internet and accessible from trusted networks only. Update your MMR modules to version 5.2.1716.0 ASAP, because even if isolated there will be a way in through compromised endpoints of users.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/zoom-patches-critical-command-injection-flaw-in-node-multimedia-routers-q-d-d-f-1/gD2P6Ple2L
Zoom Patches Critical Command Injection Flaw in Node Multimedia Routers
Zoom patched a critical command injection vulnerability (CVE-2026-22844) in its Node Multimedia Routers that allowed meeting participants to execute remote code. The flaw affects hybrid and connector deployments.
**Make sure all Zoom Node devices are isolated from the internet and accessible from trusted networks only. Update your MMR modules to version 5.2.1716.0 ASAP, because even if isolated there will be a way in through compromised endpoints of users.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/zoom-patches-critical-command-injection-flaw-in-node-multimedia-routers-q-d-d-f-1/gD2P6Ple2L
updated 2026-01-20T10:16:05.583000
2 posts
‼️CVE-2025-14533: The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 0.9.2.1, exposing 100,000 sites.
CVSS: 9.8
CVE Published: January 20th, 2026
Bounty: $975.00
Advisory: https://github.com/advisories/GHSA-jm76-5g2j-p4hp
Description: The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 0.9.2.1. This is due to the 'insert_user' function not restricting the roles with which a user can register. This makes it possible for unauthenticated attackers to supply the 'administrator' role during registration and gain administrator access to the site. Note: The vulnerability can only be exploited if 'role' is mapped to the custom field.
##🔴 CVE-2025-14533 - Critical (9.8)
The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 0.9.2.1. This is due to the 'insert_user' function not restricting the roles with which a user can register. This...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-14533/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2026-01-19T19:16:03.937000
1 posts
Security Advisory: SQLite database externally accessible with the default settings of Tandoor Recipes module (CVE-2026-23838)
##updated 2026-01-17T00:30:30
1 posts
If you missed this, Microsoft posted three advisories to its security guide yesterday.
- Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability, CVE-2026-21223 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21223
- Microsoft Power Apps Remote Code Execution Vulnerability, CVE-2026-20960 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20960
- Microsoft Excel Remote Code Execution Vulnerability, CVE-2026-20950 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20950 #infosec #Microsoft #Office #Chromium #Edge #vulnerability
##updated 2026-01-16T22:16:25.983000
1 posts
If you missed this, Microsoft posted three advisories to its security guide yesterday.
- Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability, CVE-2026-21223 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21223
- Microsoft Power Apps Remote Code Execution Vulnerability, CVE-2026-20960 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20960
- Microsoft Excel Remote Code Execution Vulnerability, CVE-2026-20950 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20950 #infosec #Microsoft #Office #Chromium #Edge #vulnerability
##updated 2026-01-16T21:57:11
2 posts
1 repos
‼️CVE-2026-23744: Versions 1.4.2 and earlier of MCPJam inspector are vulnerable to remote code execution (RCE)
CVSS: 9.8
CVE Published: January 16th, 2026
PoC/Exploit Published: January 20th, 2026
GitHub PoC: https://github.com/boroeurnprach/CVE-2026-23744-PoC/
Advisory: https://github.com/advisories/GHSA-232v-j27c-5pp6
MCPJam inspector is the local-first development platform for MCP servers. Versions 1.4.2 and earlier are vulnerable to remote code execution (RCE) vulnerability, which allows an attacker to send a crafted HTTP request that triggers the installation of an MCP server, leading to RCE. Since MCPJam inspector by default listens on 0.0.0.0 instead of 127.0.0.1, an attacker can trigger the RCE remotely via a simple HTTP request. Version 1.4.3 contains a patch.
##‼️CVE-2026-23744: Versions 1.4.2 and earlier of MCPJam inspector are vulnerable to remote code execution (RCE)
CVSS: 9.8
CVE Published: January 16th, 2026
PoC/Exploit Published: January 20th, 2026
GitHub PoC: https://github.com/boroeurnprach/CVE-2026-23744-PoC/
Advisory: https://github.com/advisories/GHSA-232v-j27c-5pp6
MCPJam inspector is the local-first development platform for MCP servers. Versions 1.4.2 and earlier are vulnerable to remote code execution (RCE) vulnerability, which allows an attacker to send a crafted HTTP request that triggers the installation of an MCP server, leading to RCE. Since MCPJam inspector by default listens on 0.0.0.0 instead of 127.0.0.1, an attacker can trigger the RCE remotely via a simple HTTP request. Version 1.4.3 contains a patch.
##updated 2026-01-16T21:56:00
1 posts
updated 2026-01-16T21:16:24
1 posts
1 repos
Node.js – CVE-2026-23745 : cette faille de sécurité dans la bibliothèque node-tar est à prendre au sérieux https://www.it-connect.fr/node-js-cve-2026-23745-node-tar-vulnerabilite/ #ActuCybersécurité #Cybersécurité #Vulnérabilité
##updated 2026-01-16T21:15:52.037000
1 posts
Critical Privilege Escalation in Modular DS WordPress Plugin Actively Exploited
Attackers are actively exploiting a critical privilege escalation vulnerability (CVE-2026-23800) in the Modular DS WordPress plugin to gain full administrative control.
**If you are using Modular DS plugin for Wordpress, this is urgent. Your sites are being attacked. Immediately update Modular DS to version 2.6.0 and scan your user list for unauthorized accounts like 'PoC Admin'.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/critical-privilege-escalation-in-modular-ds-wordpress-plugin-actively-exploited-a-v-g-r-3/gD2P6Ple2L
updated 2026-01-16T15:55:33.063000
1 posts
Read about CVE-2025-13154, a privilege escalation vulnerability in a Lenovo Vantage addin called SmartPerformance
##updated 2026-01-16T15:55:33.063000
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-16T15:55:33.063000
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-16T15:55:33.063000
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-16T15:55:33.063000
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-16T15:55:33.063000
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-16T15:55:33.063000
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-16T03:30:27
1 posts
Tenable has updated its threat research advisories, adding one new entry (including mitigation):
Critical: CVE-2025-62581 and CVE-2025-62582: Delta Electronics DIAView Multiple Vulnerabilities https://www.tenable.com/security/research/tra-2026-02 #infosec #vulnerability
##updated 2026-01-15T21:31:54
4 posts
2 repos
Here's a summary of the most important global, technology, and cybersecurity news from the last 24 hours:
Cyber incidents remain the top global business risk for the fifth consecutive year, with AI surging to second place, according to the Allianz Risk Barometer 2026. New EvilAI malware is masquerading as AI tools to infiltrate organizations. Microsoft has disrupted the RedVDS cybercrime infrastructure. Palo Alto Networks patched a critical denial-of-service bug (CVE-2026-0227) affecting firewalls. In technology, the US imposed AI chip tariffs on Nvidia, causing global supply chain friction. OpenAI will begin testing advertisements in ChatGPT. California is investigating xAI over sexualized deepfakes. Globally, geopolitical tensions continue, with Trump threatening tariffs amidst disputes over Greenland.
##Anyone hear of a PoC for CVE-2026-0227 yet?
##PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway and Portal
Palo Alto Networks – CVE-2026-0227 : cette nouvelle faille permet de désactiver le firewall à distance https://www.it-connect.fr/palo-alto-networks-cve-2026-0227-firewalls/ #ActuCybersécurité #Cybersécurité #Vulnérabilité #PaloAlto
##Tracked as CVE-2026-0227, this security flaw affects next-generation firewalls (running PAN-OS 10.1 or later) and Palo Alto Networks' Prisma Access configurations when the GlobalProtect gateway or portal is enabled. https://www.bleepingcomputer.com/news/security/palo-alto-networks-warns-of-dos-bug-letting-hackers-disable-firewalls/
##updated 2026-01-15T21:31:47
3 posts
6 repos
https://github.com/PivotChip/FrostedFastPair
https://github.com/ap425q/whisper-pair
https://github.com/Cedric-Martz/CVE-2025-36911_scan
https://github.com/SteamPunk424/CVE-2025-36911-Wisper_Pair_Target_Finder-
‼️WPair is a defensive security research tool that demonstrates the CVE-2025-36911 (eg WhisperPair) vulnerability in Google's Fast Pair protocol.
https://github.com/zalexdev/wpair-app
Features:
▪️BLE Scanner - Discovers Fast Pair devices broadcasting the 0xFE2C service UUID
▪️Vulnerability Tester - Non-invasive check if device is patched against CVE-2025-36911
▪️Exploit Demonstration - Full proof-of-concept for authorized security testing
▪️HFP Audio Access - Demonstrates microphone access post-exploitation
▪️Live Listening - Real-time audio streaming to phone speaker
▪️Recording - Save captured audio as M4A files
##Google „Fast Pair“ ist Sicherheitsrisiko
Hier kann man wieder sehen, dass "Komfort" (oder was auch immer die Amerikaner dafür halten) ein natürlicher Feind der Sicherheit ist. Google hatte ein Verfahren namens Fast Pair ersonnen, das die Kopplung von Bluetooth (BT) Zubehörgeräten mit Android vereinfachen soll. Gut gedacht, schlecht gemacht. Forschende der Uni Leuven (Belgien) haben schon im vorigen Jahr eine Schwachstelle in dem System gefunden und vertraulich an Google gemeldet. Wann genau das war, ist nirgends dokumentiert. Die zugeordnete Fehlernummer CVE-2025-36911 muss (aus der Zahl zu schließen) ungefähr um die Jahresmitte vergeben worden sein.
Die Schwachstelle
https://www.pc-fluesterer.info/wordpress/2026/01/20/google-fast-pair-ist-sicherheitsrisiko/
#Empfehlung #Mobilfunk #Warnung #android #bluetooth #google #hersteller #sicherheit #vorbeugen
##The vulnerability for this was updated yesterday: https://www.cve.org/CVERecord?id=CVE-2025-36911
Malwarebytes: WhisperPair exposes Bluetooth earbuds and headphones to tracking and eavesdropping https://www.malwarebytes.com/blog/news/2026/01/whisperpair-exposes-bluetooth-earbuds-and-headphones-to-tracking-and-eavesdropping
More about Bluetooth hijacking: https://whisperpair.eu/ #infosec #bluetooth #vulnerability
##updated 2026-01-15T18:31:42
1 posts
updated 2026-01-15T15:31:35
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:30
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:30
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:27
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:27
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:27
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:26
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:26
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:25
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:19
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:19
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:19
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:18
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:18
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T15:31:18
1 posts
SICK vulns, bro.
https://www.cve.org/CVERecord?id=CVE-2026-0712
https://www.cve.org/CVERecord?id=CVE-2026-0713
https://www.cve.org/CVERecord?id=CVE-2026-22637
https://www.cve.org/CVERecord?id=CVE-2026-22638
https://www.cve.org/CVERecord?id=CVE-2026-22639
https://www.cve.org/CVERecord?id=CVE-2026-22640
https://www.cve.org/CVERecord?id=CVE-2026-22641
https://www.cve.org/CVERecord?id=CVE-2026-22642
https://www.cve.org/CVERecord?id=CVE-2026-22643
https://www.cve.org/CVERecord?id=CVE-2026-22644
https://www.cve.org/CVERecord?id=CVE-2026-22645
https://www.cve.org/CVERecord?id=CVE-2026-22646
https://www.cve.org/CVERecord?id=CVE-2026-22907
https://www.cve.org/CVERecord?id=CVE-2026-22908
https://www.cve.org/CVERecord?id=CVE-2026-22909
https://www.cve.org/CVERecord?id=CVE-2026-22910
https://www.cve.org/CVERecord?id=CVE-2026-22911
https://www.cve.org/CVERecord?id=CVE-2026-22912
https://www.cve.org/CVERecord?id=CVE-2026-22913
https://www.cve.org/CVERecord?id=CVE-2026-22914
https://www.cve.org/CVERecord?id=CVE-2026-22915
https://www.cve.org/CVERecord?id=CVE-2026-22916
https://www.cve.org/CVERecord?id=CVE-2026-22917
https://www.cve.org/CVERecord?id=CVE-2026-22918
##updated 2026-01-15T00:32:39
1 posts
I noticed a vulnerability was fixed in vsftpd a few days ago (CVE-2025-14242). It’s a very interesting project, and Chris Evans' work has taught me several important lessons.
I searched for more details about the issue but couldn't find much initially. Today, I saw that the issue seems to have been introduced by a Red Hat patch. That makes sense!
Bug 2419826 (CVE-2025-14242) - CVE-2025-14242 vsftpd: vsftpd: Denial of service via integer overflow in ls command parameter parsing[NEEDINFO]
https://bugzilla.redhat.com/show_bug.cgi?id=2419826
2ed5ba6 Resolve CVE-2025-14242
https://src.fedoraproject.org/rpms/vsftpd/c/2ed5ba6e77f1c3e365fb4b0028945f762c456131
updated 2026-01-14T21:15:54.193000
3 posts
2 repos
https://github.com/cyberdudebivash/CYBERDUDEBIVASH-Modular-DS-CVE-2026-23550-Detector
origin-mo: il trucco pigro che ha aperto 40.000 siti WordPress agli hacker
I ricercatori hanno scoperto una vulnerabilità critica nel plugin Modular DS per WordPress che ha permesso a hacker di compromettere oltre 40.000 siti con un metodo sorprendentemente semplice. La vulnerabilità CVE-2026-23550 Il plugin Modular DS, installato su decine di migliaia di siti WordPress, presentava una falla di privilege escalation classificata con un punteggio CVSS di 10.0, il massimo livello di severità. Questa debolezza, identificata come CVE-2026-23550 e catalogata nel […] ##‼️ 40,000 WordPress Sites Exposed to Risk Due to Modular DS Admin Bypass Vulnerability
CVE-2026-23550: Critical WordPress Modular DS Plugin Flaw Actively Exploited to Gain Admin Access
CVSS: 10
CVE Published: January 14th, 2026
Attacking IP Addresses:
45[.]11[.]89[.]19
185[.]196[.]0[.]11
Reference: https://help.modulards.com/en/article/modular-ds-security-release-modular-connector-252-dm3mv0/
##Critical Privilege Escalation in Modular DS WordPress Plugin Actively Exploited
Attackers are exploiting a CVSS 10.0 vulnerability in the Modular DS WordPress plugin to gain unauthenticated administrative access and full site control. The flaw, tracked as CVE-2026-23550, allows hackers to bypass authentication by manipulating URL parameters.
**If you are using Modular DS plugin, this is urgent! Updat to version 2.5.2 immediately, because your site is being hacked. If you can't update, disable the plugin. After patching, check your WordPress user list for any unauthorized administrator accounts created recently.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/critical-privilege-escalation-in-modular-ds-wordpress-plugin-actively-exploited-k-y-l-e-j/gD2P6Ple2L
updated 2026-01-13T21:31:44
3 posts
2 repos
Here's a summary of the latest important news in technology and cybersecurity from the last 24 hours:
**Cybersecurity:** Microsoft issued an emergency patch for a critical Windows zero-day vulnerability (CVE-2026-20805) actively being exploited as of January 19, 2026. The World Economic Forum's 2026 Outlook highlights accelerating cyber risks due to AI advancements and geopolitical fragmentation.
**Technology:** NASA is preparing its Artemis II mission with a wet dress rehearsal for its Orion spacecraft (January 19, 2026). Nvidia solidified its AI hardware dominance by acquiring Groq's AI inference IP for $20 billion (early January 2026).
**Global:** A strong G3/G4 geomagnetic storm is expected, potentially making the Northern Lights visible across 24 US states on January 19-20, 2026.
##Here's a digest of the latest in technology and cybersecurity:
**Cybersecurity:** Microsoft issued an emergency patch on January 19, 2026, for a critical Windows zero-day vulnerability (CVE-2026-20805) that is currently being actively exploited by attackers.
**Technology:** Elon Musk is seeking up to $134 billion in damages from OpenAI and Microsoft in an escalating AI courtroom dispute, as of January 19, 2026. NASA also began rolling out its Artemis 2 space launch system and Orion spacecraft on January 19, 2026. Additionally, NVIDIA's $20 billion acquisition of Groq's AI inference intellectual property is consolidating power in AI hardware.
##CERT-In issues high-severity alert for Windows 10, Windows 11 and Microsoft Office over CVE-2026-20805 vulnerability. Microsoft confirms exploit in the wild, urges urgent updates. https://english.mathrubhumi.com/technology/is-your-windows-pc-at-risk-indian-govt-issues-urgent-security-alert-vkdh7w9u?utm_source=dlvr.it&utm_medium=mastodon #WindowsSecurity #MicrosoftAlert #CERTIn #CyberSecurity
##updated 2026-01-13T18:31:18
3 posts
‼️CVE-2026-20965: Windows Admin Center Azure SSO Flaw Risks Tenant-Wide Compromise
Details: Improper verification of cryptographic signature in Windows Admin Center allows an authorized attacker to elevate privileges locally.
CVSS: 7.5
CVE Published: January 13th, 2026
Advisory: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20965
Writeup: https://cymulate.com/blog/cve-2026-20965-azure-windows-admin-center-tenant-wide-rce/
##Stupid cloud anyway.
https://cymulate.com/blog/cve-2026-20965-azure-windows-admin-center-tenant-wide-rce/
##CVE-2026-20965: Cymulate Research Labs Discovers Token Validation Flaw that Leads to Tenant-Wide RCE in Azure Windows Admin Center https://cymulate.com/blog/cve-2026-20965-azure-windows-admin-center-tenant-wide-rce/
##updated 2026-01-13T18:31:18
1 posts
If you missed this, Microsoft posted three advisories to its security guide yesterday.
- Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability, CVE-2026-21223 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21223
- Microsoft Power Apps Remote Code Execution Vulnerability, CVE-2026-20960 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20960
- Microsoft Excel Remote Code Execution Vulnerability, CVE-2026-20950 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20950 #infosec #Microsoft #Office #Chromium #Edge #vulnerability
##updated 2026-01-13T12:31:48
2 posts
Siemens Patches Critical Authentication Bypass in Industrial Edge Device Kit
Siemens reports a maximum severity critical authentication bypass vulnerability (CVE-2025-40805) in its Industrial Edge Device Kit that allows remote attackers to impersonate users and gain unauthorized access to industrial systems.
**If you are using Siemens Industrial Edge Device Kit, this is urgent and important. Make sure all Industrial Edge Device Kit systems are isolated from the internet and accessible from trusted networks only. Then plan a very quick update, this is a perfect 10 score vulnerability. Even with all the isolation, there may be a way in, so better patch.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/siemens-patches-critical-authentication-bypass-in-industrial-edge-device-kit-7-3-0-2-c/gD2P6Ple2L
Siemens Issues Fix for Maximum Severit flaw in Industrial Edge Devices
Siemens disclosed a max severity (10) critical vulnerability (CVE-2025-40805) in its Industrial Edge Devices that allows unauthenticated remote attackers to bypass authentication and impersonate users.
**This is maximum severity, so don't ignore it. Review the advisory to check if you use any of these product lines. Ofcourse, make sure all industrial devices are isolated from the internet and accessible from trusted networks only. Then plan a quick update cycle.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/siemens-issues-fix-for-maximum-severit-flaw-in-industrial-edge-devices-z-5-e-m-b/gD2P6Ple2L
updated 2026-01-13T03:32:08
1 posts
1 repos
https://github.com/cyberdudebivash/CYBERDUDEBIVASH-ServiceNow-AI-Agent-Audit-Script
Fascinating 🛡️ BodySnatcher (CVE-2025-12420): A Broken Authentication and Agentic Hijacking Vulnerability in ServiceNow 🛡️
Key Takeaways
AI agents significantly amplify the impact of traditional security flaws.
A Virtual Agent integration flaw (CVE-2025-12420) allowed unauthenticated attackers to impersonate any ServiceNow user using only an email address, bypassing MFA and SSO.
Virtual Agent APIs can become unintended execution paths for privileged AI workflows.
Internal topics such as AIA-Agent Invoker AutoChat enable AI agents to be executed outside expected deployment constraints.
Point-in-time fixes do not eliminate systemic risk from insecure provider and agent configurations.
Preventing abuse of agentic AI in conversational channels requires:
Strong provider configuration controls, including enforced MFA for account linking
Establishing an agent approval-process
Implementing lifecycle management policies to de-provision unused or stagnant agents.
https://appomni.com/ao-labs/bodysnatcher-agentic-ai-security-vulnerability-in-servicenow/ #InfoSec
updated 2026-01-09T06:16:00.257000
1 posts
1 repos
Mitsubishi Electric and ICONICS Patch Critical Industrial Software Flaws
Mitsubishi Electric and ICONICS patched multiple vulnerabilities in industrial software, including a critical remote code execution flaw (CVE-2022-33318). These bugs allow attackers to take over systems, steal data, or disrupt manufacturing operations across several product lines.
**Review the advisory to check if you are using the affected product lines. As usual, make sure all industrial devices are isolated from the internet and accessible from trusted networks only. Then plan a patch cycle. For older products like MC Works64 and GENESIS32 plan a replacement path, they won't be getting a patch.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/mitsubishi-electric-and-iconics-patch-critical-industrial-software-flaws-4-h-b-q-o/gD2P6Ple2L
updated 2026-01-07T12:31:27
1 posts
CyRC Discovers Critical WLAN Vulnerabilities in ASUS and TP-Link Routers (CVE-2025-14631) | Black Duck Blog #devopsish https://www.blackduck.com/blog/cyrc-discovers-asus-tplink-wlan-vulnerabilities.html
##updated 2026-01-06T18:32:37
1 posts
updated 2025-12-17T21:30:47
1 posts
7 repos
https://github.com/MRH701/mrh701.github.io
https://github.com/StasonJatham/cisco-sa-sma-attack-N9bf4
https://github.com/MRH701/cisco-sa-sma-attack-N9bf4
https://github.com/cyberdudebivash/CYBERDUDEBIVASH-Cisco-AsyncOS-CVE-2025-20393-Scanner
https://github.com/cyberleelawat/CVE-2025-20393
Here's a brief on the latest global, tech, and cybersecurity news from the last 24 hours:
Global: Uganda's Yoweri Museveni was declared winner of the presidential election. Over 100 people have died in torrential rains and floods across Southern Africa.
Tech: OpenAI is reportedly considering introducing ads to ChatGPT. Google filed to appeal a decision in its search monopoly case, and new generative AI features are rolling out for Gmail.
Cybersecurity: Cisco patched a zero-day vulnerability (CVE-2025-20393) exploited by a China-linked APT (Jan 16). A new PayPal phishing scam uses verified invoices with fake support numbers, and the GhostPoster browser malware, active for five years, was exposed.
##updated 2025-12-17T13:54:45.390000
13 posts
3 repos
https://github.com/exfil0/CVE-2025-59718-PoC
FortiGate Under Siege: Hackers Exploit Critical SSO Vulnerabilities to Hijack Firewalls
Introduction: FortiGate Devices in the Crosshairs FortiGate, one of the leading providers of enterprise firewall solutions, has come under intense cyberattack in January 2026. Security researchers have identified active exploitation of two critical vulnerabilities—CVE-2025-59718 and CVE-2025-59719—allowing attackers to bypass FortiCloud Single Sign-On (SSO). This breach has alarmed…
##CVE-2025-59718, a critical authentication bypass flaw that attackers exploited in December 2025 to compromise FortiGate appliances, appears to persist in newer, purportedly fixed releases of the underlying FortiOS.
https://www.helpnetsecurity.com/2026/01/21/patched-fortigate-compromised-via-cve-2025-59718/
##Fortinet FortiGate admins are observing exploitation patterns consistent with CVE-2025-59718 even on patched systems, suggesting incomplete mitigation in earlier updates.
Reports include SSO-based admin creation and activity aligned with previously documented attacks. Additional FortiOS releases are expected.
The situation reinforces the need for defense-in-depth around identity, logging, and privileged access.
Follow @technadu for neutral, operationally focused security reporting.
#Infosec #Fortinet #FirewallSecurity #IAM #VulnerabilityManagement #TechNadu
##FortiGate Firewalls Compromised Despite Recent Patches for CVE-2025-59718
Fortinet FortiGate firewalls are reported to still be vulnerable to authentication bypass attacks via CVE-2025-59718 even after applying initial patches. Attackers use malicious SAML responses to create unauthorized admin accounts and steal configuration data.
**If you are using Fortinet FortiGate, this is important and urgent. Your device may still be vulnerable. Disable the FortiCloud SSO login feature immediately on all FortiGate appliances to prevent unauthorized administrative access.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/fortigate-firewalls-compromised-despite-recent-patches-for-cve-2025-59718-l-2-0-x-k/gD2P6Ple2L
CVE-2025-59718 – Des firewalls FortiGate piratés malgré l’installation des derniers patchs https://www.it-connect.fr/cve-2025-59718-des-firewalls-fortigate-pirates-malgre-linstallation-des-derniers-patchs/ #ActuCybersécurité #Cybersécurité #Vulnérabilité #Fortinet
##Fortinet customers are reporting that attackers are exploiting a previously fixed vulnerability (CVE-2025-59718) to hack patched firewalls.
https://www.bleepingcomputer.com/news/security/fortinet-admins-report-patched-fortigate-firewalls-getting-hacked/
Si vous administrez des FortiGate/FortiOS : des admins signalent un contournement du patch de la vulnérabilité critique CVE-2025-59718 (FortiCloud SSO https://fortiguard.fortinet.com/psirt/FG-IR-25-647 ) → compromission possible même sur des firewalls « patchés » (ex. 7.4.9/7.4.10).
( https://www.reddit.com/r/fortinet/comments/1qibdcb/possible_new_sso_exploit_cve202559718_on_749/ )
Préreq : “Allow administrative login using FortiCloud SSO” activé (souvent après enregistrement FortiCare).
Mitigation : désactiver admin-forticloud-sso-login + restreindre l’accès admin + vérifier logs/nouveaux comptes.
Chaîne d'exploitation: CVE-2025-59718 (+ CVE-2025-59719 côté FortiWeb) ➡️ envoi de messages SAML forgés ➡️ bypass de vérification de signature ➡️ accès admin non autorisé.
[Références]
"Fortinet admins report patched FortiGate firewalls getting hacked"
👇
https://www.bleepingcomputer.com/news/security/fortinet-admins-report-patched-fortigate-firewalls-getting-hacked/
📢 FortiGate : contournement de correctif sur l’authentification FortiCloud SSO (CVE-2025-59718) activement exploité
📝 BleepingComputer rappor...
📖 cyberveille : https://cyberveille.ch/posts/2026-01-21-fortigate-contournement-de-correctif-sur-lauthentification-forticloud-sso-cve-2025-59718-activement-exploite/
🌐 source : https://www.bleepingcomputer.com/news/security/fortinet-admins-report-patched-fortigate-firewalls-getting-hacked/
#CVE_2025_59718 #FortiCloud_SSO #Cyberveille
CVE-2025-59718, a critical authentication bypass flaw that attackers exploited in December 2025 to compromise FortiGate appliances, appears to persist in newer, purportedly fixed releases of the underlying FortiOS.
https://www.helpnetsecurity.com/2026/01/21/patched-fortigate-compromised-via-cve-2025-59718/
##Fortinet FortiGate admins are observing exploitation patterns consistent with CVE-2025-59718 even on patched systems, suggesting incomplete mitigation in earlier updates.
Reports include SSO-based admin creation and activity aligned with previously documented attacks. Additional FortiOS releases are expected.
The situation reinforces the need for defense-in-depth around identity, logging, and privileged access.
Follow @technadu for neutral, operationally focused security reporting.
#Infosec #Fortinet #FirewallSecurity #IAM #VulnerabilityManagement #TechNadu
##FortiGate Firewalls Compromised Despite Recent Patches for CVE-2025-59718
Fortinet FortiGate firewalls are reported to still be vulnerable to authentication bypass attacks via CVE-2025-59718 even after applying initial patches. Attackers use malicious SAML responses to create unauthorized admin accounts and steal configuration data.
**If you are using Fortinet FortiGate, this is important and urgent. Your device may still be vulnerable. Disable the FortiCloud SSO login feature immediately on all FortiGate appliances to prevent unauthorized administrative access.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/fortigate-firewalls-compromised-despite-recent-patches-for-cve-2025-59718-l-2-0-x-k/gD2P6Ple2L
CVE-2025-59718 – Des firewalls FortiGate piratés malgré l’installation des derniers patchs https://www.it-connect.fr/cve-2025-59718-des-firewalls-fortigate-pirates-malgre-linstallation-des-derniers-patchs/ #ActuCybersécurité #Cybersécurité #Vulnérabilité #Fortinet
##Si vous administrez des FortiGate/FortiOS : des admins signalent un contournement du patch de la vulnérabilité critique CVE-2025-59718 (FortiCloud SSO https://fortiguard.fortinet.com/psirt/FG-IR-25-647 ) → compromission possible même sur des firewalls « patchés » (ex. 7.4.9/7.4.10).
( https://www.reddit.com/r/fortinet/comments/1qibdcb/possible_new_sso_exploit_cve202559718_on_749/ )
Préreq : “Allow administrative login using FortiCloud SSO” activé (souvent après enregistrement FortiCare).
Mitigation : désactiver admin-forticloud-sso-login + restreindre l’accès admin + vérifier logs/nouveaux comptes.
Chaîne d'exploitation: CVE-2025-59718 (+ CVE-2025-59719 côté FortiWeb) ➡️ envoi de messages SAML forgés ➡️ bypass de vérification de signature ➡️ accès admin non autorisé.
[Références]
"Fortinet admins report patched FortiGate firewalls getting hacked"
👇
https://www.bleepingcomputer.com/news/security/fortinet-admins-report-patched-fortigate-firewalls-getting-hacked/
updated 2025-12-16T18:31:42
1 posts
Heads up for my fellow Red Hat Enterprise Linux (RHEL) 10 users:
Important: kernel security update
kernel: libceph: fix potential use-after-free in have_mon_and_osd_map() (CVE-2025-68285)
So do your `dnf update` ASAP :)
More details: https://access.redhat.com/errata/RHSA-2026:0786
##updated 2025-12-09T19:59:29.507000
3 posts
1 repos
FortiGate Under Siege: Hackers Exploit Critical SSO Vulnerabilities to Hijack Firewalls
Introduction: FortiGate Devices in the Crosshairs FortiGate, one of the leading providers of enterprise firewall solutions, has come under intense cyberattack in January 2026. Security researchers have identified active exploitation of two critical vulnerabilities—CVE-2025-59718 and CVE-2025-59719—allowing attackers to bypass FortiCloud Single Sign-On (SSO). This breach has alarmed…
##Si vous administrez des FortiGate/FortiOS : des admins signalent un contournement du patch de la vulnérabilité critique CVE-2025-59718 (FortiCloud SSO https://fortiguard.fortinet.com/psirt/FG-IR-25-647 ) → compromission possible même sur des firewalls « patchés » (ex. 7.4.9/7.4.10).
( https://www.reddit.com/r/fortinet/comments/1qibdcb/possible_new_sso_exploit_cve202559718_on_749/ )
Préreq : “Allow administrative login using FortiCloud SSO” activé (souvent après enregistrement FortiCare).
Mitigation : désactiver admin-forticloud-sso-login + restreindre l’accès admin + vérifier logs/nouveaux comptes.
Chaîne d'exploitation: CVE-2025-59718 (+ CVE-2025-59719 côté FortiWeb) ➡️ envoi de messages SAML forgés ➡️ bypass de vérification de signature ➡️ accès admin non autorisé.
[Références]
"Fortinet admins report patched FortiGate firewalls getting hacked"
👇
https://www.bleepingcomputer.com/news/security/fortinet-admins-report-patched-fortigate-firewalls-getting-hacked/
Si vous administrez des FortiGate/FortiOS : des admins signalent un contournement du patch de la vulnérabilité critique CVE-2025-59718 (FortiCloud SSO https://fortiguard.fortinet.com/psirt/FG-IR-25-647 ) → compromission possible même sur des firewalls « patchés » (ex. 7.4.9/7.4.10).
( https://www.reddit.com/r/fortinet/comments/1qibdcb/possible_new_sso_exploit_cve202559718_on_749/ )
Préreq : “Allow administrative login using FortiCloud SSO” activé (souvent après enregistrement FortiCare).
Mitigation : désactiver admin-forticloud-sso-login + restreindre l’accès admin + vérifier logs/nouveaux comptes.
Chaîne d'exploitation: CVE-2025-59718 (+ CVE-2025-59719 côté FortiWeb) ➡️ envoi de messages SAML forgés ➡️ bypass de vérification de signature ➡️ accès admin non autorisé.
[Références]
"Fortinet admins report patched FortiGate firewalls getting hacked"
👇
https://www.bleepingcomputer.com/news/security/fortinet-admins-report-patched-fortigate-firewalls-getting-hacked/
updated 2025-11-14T16:42:03.187000
1 posts
updated 2025-10-30T15:55:01.903000
1 posts
1 repos
https://github.com/AdityaBhatt3010/CVE-2025-10585-The-Chrome-V8-Zero-Day
⚪ Google patches a Chrome zero-day; the vulnerability is already being exploited in attacks
🗨️ Google has released updates for Chrome to address four vulnerabilities. According to the company, one of them (CVE-2025-10585) has already been exploited by attackers.
##updated 2025-10-30T15:36:12.360000
1 posts
⚪ Samsung patches a 0‑day exploited in attacks against Android users
🗨️ Samsung has patched a zero-day RCE vulnerability that was already being exploited in attacks against devices running Android.
##updated 2025-10-29T15:31:52
1 posts
updated 2025-10-27T15:13:10
1 posts
3 repos
https://github.com/amalpvatayam67/day01-sessionreaper-lab
⚪ Adobe Commerce and Magento Vulnerability Enables Account Takeover
🗨️ Adobe has disclosed a critical bug (CVE-2025-54236) that affects the Commerce and Magento platforms. Researchers have dubbed this vulnerability SessionReaper and describe it as one of the most serious in…
##updated 2025-09-25T16:39:27
1 posts
updated 2025-08-18T08:03:59
2 posts
4 repos
https://github.com/synacktiv/Livepyre
https://github.com/z0d131482700x/Livewire2025CVE
‼️Livepyre: A tool designed to exploit CVE-2025-54068 and Remote Command Execution if the APP_KEY of the Livewire project is known.
GitHub: https://github.com/synacktiv/Livepyre
Writeup: https://www.synacktiv.com/en/publications/livewire-remote-command-execution-through-unmarshaling
CVSS: 9.2
Description: Livewire is a full-stack framework for Laravel. In Livewire v3 up to and including v3.6.3, a vulnerability allows unauthenticated attackers to achieve remote command execution in specific scenarios. The issue stems from how certain component property updates are hydrated. This vulnerability is unique to Livewire v3 and does not affect prior major versions. Exploitation requires a component to be mounted and configured in a particular way, but does not require authentication or user interaction. This issue has been patched in Livewire v3.6.4. All users are strongly encouraged to upgrade to this version or later as soon as possible. No known workarounds are available.
##‼️Livepyre: A tool designed to exploit CVE-2025-54068 and Remote Command Execution if the APP_KEY of the Livewire project is known.
GitHub: https://github.com/synacktiv/Livepyre
Writeup: https://www.synacktiv.com/en/publications/livewire-remote-command-execution-through-unmarshaling
CVSS: 9.2
Description: Livewire is a full-stack framework for Laravel. In Livewire v3 up to and including v3.6.3, a vulnerability allows unauthenticated attackers to achieve remote command execution in specific scenarios. The issue stems from how certain component property updates are hydrated. This vulnerability is unique to Livewire v3 and does not affect prior major versions. Exploitation requires a component to be mounted and configured in a particular way, but does not require authentication or user interaction. This issue has been patched in Livewire v3.6.4. All users are strongly encouraged to upgrade to this version or later as soon as possible. No known workarounds are available.
##updated 2025-08-15T18:31:55
1 posts
1 repos
https://github.com/watchtowrlabs/watchTowr-vs-FortiSIEM-CVE-2025-25256
The vulnerability is tracked as CVE-2025-25256, and is a combination of two issues that permit arbitrary write with admin permissions and privilege escalation to root access. https://www.bleepingcomputer.com/news/security/exploit-code-public-for-critical-fortisiem-command-injection-flaw/
##updated 2025-05-14T15:32:35
1 posts
This looks to be Hajime only going after Mikrotik routers in some scanner's inventory. Highly targeted (only hitting our Mikrotiks), low and slow over time.
Definitely coming from a wide array of other compromised edge devices.
https://viz.greynoise.io/tags/mikrotik-routeros-rce-cve-2017-20149-attempt?days=90
##updated 2025-03-13T06:30:39
1 posts
1 repos
⚪ Samsung patches a 0‑day exploited in attacks against Android users
🗨️ Samsung has patched a zero-day RCE vulnerability that was already being exploited in attacks against devices running Android.
##updated 2025-02-13T06:15:21.480000
1 posts
1 repos
https://github.com/AdityaBhatt3010/CVE-2025-10585-The-Chrome-V8-Zero-Day
⚪ Google patches a Chrome zero-day; the vulnerability is already being exploited in attacks
🗨️ Google has released updates for Chrome to address four vulnerabilities. According to the company, one of them (CVE-2025-10585) has already been exploited by attackers.
##updated 2024-11-21T05:03:03.217000
2 posts
2 repos
🟠 CVE-2026-24009 - High (8.1)
Docling Core (or docling-core) is a library that defines core data types and transformations in the document processing application Docling. A PyYAML-related Remote Code Execution (RCE) vulnerability, namely CVE-2020-14343, is exposed in docling-c...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24009/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-24009 - High (8.1)
Docling Core (or docling-core) is a library that defines core data types and transformations in the document processing application Docling. A PyYAML-related Remote Code Execution (RCE) vulnerability, namely CVE-2020-14343, is exposed in docling-c...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24009/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##updated 2023-01-31T05:03:00
1 posts
Critical Unsecured Protocol Vulnerability Reported in Festo Industrial Firmware
Festo reports a critical exposure (CVE-2022-3270) in numerous industrial controllers and bus modules caused by undocumented and unsecured protocols that allow unauthenticated remote takeover.
**This is a weird report - there will be no patch, the unsecured ports will remain unsecured. Your only option is to isolate the systems from the internet and make them accessible from trusted networks only.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-unsecured-protocol-vulnerability-reported-in-festo-industrial-firmware-r-a-c-h-v/gD2P6Ple2L
🟠 CVE-2026-24129 - High (8)
Runtipi is a Docker-based, personal homeserver orchestrator that facilitates multiple services on a single server. Versions 3.7.0 and above allow an authenticated user to execute arbitrary system commands on the host server by injecting shell meta...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24129/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-24129 - High (8)
Runtipi is a Docker-based, personal homeserver orchestrator that facilitates multiple services on a single server. Versions 3.7.0 and above allow an authenticated user to execute arbitrary system commands on the host server by injecting shell meta...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24129/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##Sometimes devil is in the details. #POSIX requires option parsing to terminate when the initial non-option argument is encountered. This is different than the #GNU style which continues parsing arguments until an explicit "--" is encountered. The latter has been susceptible to command line injection attacks. One recent example is in #bubblewrap & #flatpak combo with CVE-2024-32462. Otoh, #sydbox and all its utilities use posixly correct option parsing: https://nvd.nist.gov/vuln/detail/cve-2024-32462 #linux #security
##Sometimes devil is in the details. #POSIX requires option parsing to terminate when the initial non-option argument is encountered. This is different than the #GNU style which continues parsing arguments until an explicit "--" is encountered. The latter has been susceptible to command line injection attacks. One recent example is in #bubblewrap & #flatpak combo with CVE-2024-32462. Otoh, #sydbox and all its utilities use posixly correct option parsing: https://nvd.nist.gov/vuln/detail/cve-2024-32462 #linux #security
##Google Patches High-Severity V8 Race Condition in Chrome 144
Google released Chrome 144 to patch a high-severity race condition in the V8 engine (CVE-2026-1220) that could allow arbitrary code execution.
**If you are using Google Chrome or other Chromium-based browsers (Edge, Brave, Vivaldi, Opera...) patch your browser ASAP. Even if the flaw is not critical, you shouldn't wait for the flaw to become actively exploited. Update now, it's trivial and all your tabs reopen after the update.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/google-patches-high-severity-v8-race-condition-in-chrome-144-b-f-y-a-y/gD2P6Ple2L
Google Patches High-Severity V8 Race Condition in Chrome 144
Google released Chrome 144 to patch a high-severity race condition in the V8 engine (CVE-2026-1220) that could allow arbitrary code execution.
**If you are using Google Chrome or other Chromium-based browsers (Edge, Brave, Vivaldi, Opera...) patch your browser ASAP. Even if the flaw is not critical, you shouldn't wait for the flaw to become actively exploited. Update now, it's trivial and all your tabs reopen after the update.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/google-patches-high-severity-v8-race-condition-in-chrome-144-b-f-y-a-y/gD2P6Ple2L
🟠 CVE-2026-24038 - High (8.1)
Horilla is a free and open source Human Resource Management System (HRMS). In version 1.4.0, the OTP handling logic has a flawed equality check that can be bypassed. When an OTP expires, the server returns None, and if an attacker omits the otp fi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24038/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-24038 - High (8.1)
Horilla is a free and open source Human Resource Management System (HRMS). In version 1.4.0, the OTP handling logic has a flawed equality check that can be bypassed. When an OTP expires, the server returns None, and if an attacker omits the otp fi...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24038/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-23962 - High (7.5)
Mastodon is a free, open-source social network server based on ActivityPub. Mastodon versions before v4.3.18, v4.4.12, and v4.5.5 do not have a limit on the maximum number of poll options for remote posts, allowing attackers to create polls with a...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23962/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-23962 - High (7.5)
Mastodon is a free, open-source social network server based on ActivityPub. Mastodon versions before v4.3.18, v4.4.12, and v4.5.5 do not have a limit on the maximum number of poll options for remote posts, allowing attackers to create polls with a...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-23962/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-24010 - High (8.8)
Horilla is a free and open source Human Resource Management System (HRMS). A critical File Upload vulnerability in versions prior to 1.5.0, with Social Engineering, allows authenticated users to deploy phishing attacks. By uploading a malicious HT...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24010/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-24010 - High (8.8)
Horilla is a free and open source Human Resource Management System (HRMS). A critical File Upload vulnerability in versions prior to 1.5.0, with Social Engineering, allows authenticated users to deploy phishing attacks. By uploading a malicious HT...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24010/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-24010 - High (8.8)
Horilla is a free and open source Human Resource Management System (HRMS). A critical File Upload vulnerability in versions prior to 1.5.0, with Social Engineering, allows authenticated users to deploy phishing attacks. By uploading a malicious HT...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24010/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2026-24010 - High (8.8)
Horilla is a free and open source Human Resource Management System (HRMS). A critical File Upload vulnerability in versions prior to 1.5.0, with Social Engineering, allows authenticated users to deploy phishing attacks. By uploading a malicious HT...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24010/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🔴 CVE-2026-22793 - Critical (9.6)
5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. Prior to version 0.15.3, an unsafe option parsing vulnerability in the ECharts Markdown plugin allows any user able to submit ECharts code blocks...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22793/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##🟠 CVE-2025-68137 - High (8.3)
EVerest is an EV charging software stack. Prior to version 2025.10.0, an integer overflow occurring in `SdpPacket::parse_header()` allows the current buffer length to be set to 7 after a complete header of size 8 has been read. The remaining lengt...
🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-68137/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
##Ever named your own CVE? We sure did. 😏
Meet PTT-2025-021 (aka CVE-2025-63261).
A vulnerability in AWStats hiding inside cPanel.
One misplaced "|" flips log analysis into command execution.
No magic. Just unsafe open() and legacy code trusting input.
On our blog, we walk through how we traced it, proved it, and why this vulnerability class still bites.
Special thanks to Matei Badanoiu for the research. 👏
See the full attack path in Part 1: https://pentest-tools.com/blog/cpanel-cve-ptt-2025-021-part-1
##