## Updated at UTC 2026-07-06T05:08:20.904310

Access data as JSON

CVE CVSS EPSS Posts Repos Nuclei Updated Description
CVE-2026-14803 0 0.00% 2 0 2026-07-06T02:16:21.683000 Mojo::JSON versions before 9.47 for Perl allow memory exhaustion via unbounded r
CVE-2026-59510 0 0.00% 2 0 2026-07-05T18:16:57.080000 AIL Framework contains a path traversal vulnerability in its PDF object handling
CVE-2026-59509 None 0.00% 2 0 2026-07-05T15:30:33 An unauthenticated improper input validation vulnerability in the POST /fetch_cv
CVE-2026-12250 7.9 0.00% 2 0 2026-07-05T15:30:33 Invocation of process using visible sensitive information vulnerability in TUBIT
CVE-2026-9085 8.8 0.00% 2 0 2026-07-05T15:16:57.800000 Incorrect Permission Assignment for Critical Resource, Improper Access Control v
CVE-2026-6509 7.8 0.00% 2 1 2026-07-05T15:16:57.687000 Missing Authorization vulnerability in TUBITAK BILGEM Software Technologies Rese
CVE-2026-14751 6.3 0.00% 2 0 2026-07-05T14:16:54.833000 A weakness has been identified in mjperpinosa stumasy up to 327d1b0f2915ba79d7ef
CVE-2026-14738 3.7 0.00% 2 0 2026-07-05T12:30:30 A security flaw has been discovered in exo-explore exo up to 1.0.71. Affected is
CVE-2026-14781 4.8 0.20% 2 0 2026-07-05T09:30:23 A flaw exists in the org.keycloak.broker.oidc package where the OIDC broker inco
CVE-2026-14733 7.3 0.26% 1 0 2026-07-05T09:16:28.443000 A vulnerability was detected in SourceCodester Class and Exam Timetabling System
CVE-2026-14721 8.8 0.45% 4 0 2026-07-05T08:16:26.647000 A vulnerability has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. Th
CVE-2026-14570 None 0.21% 2 0 2026-07-05T06:30:26 Crypt::DSA versions before 1.22 for Perl draw the DSA signing nonce and private
CVE-2026-14703 6.3 0.20% 2 0 2026-07-05T05:16:28.610000 A vulnerability has been found in itsourcecode Hospital Management System 1.0. A
CVE-2026-14691 6.3 0.24% 2 0 2026-07-05T03:32:41 A security vulnerability has been detected in SourceCodester Multi-Vendor Online
CVE-2026-14637 8.2 0.60% 1 0 2026-07-04T18:16:28.357000 A security vulnerability has been detected in kirilkirkov Ecommerce-CodeIgniter-
CVE-2026-14355 5.6 0.28% 2 0 2026-07-04T16:17:14.033000 In PHP versions 8.2.* before 8.2.32, 8.3.* before 8.3.32, 8.4.* before 8.4.23, 8
CVE-2026-14534 8.8 0.33% 1 0 2026-07-04T15:30:24 Trail of Bits fickling versions up to and including 0.1.10 do not include the Py
CVE-2026-14535 8.8 0.30% 1 0 2026-07-04T14:16:29.063000 In Trail of Bits fickling versions up to and including 0.1.11, the UnsafeImports
CVE-2026-46242 7.8 0.12% 7 1 2026-07-04T12:30:28 In the Linux kernel, the following vulnerability has been resolved: eventpoll:
CVE-2026-53360 0 0.27% 2 1 2026-07-04T12:17:01.880000 In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: R
CVE-2026-14622 7.3 0.52% 1 0 2026-07-04T09:31:51 A vulnerability was found in jairiidriss restaurant-website-php-mysql up to 5214
CVE-2025-71369 8.1 0.45% 1 0 2026-07-04T03:31:13 picklescan before 0.0.28 fails to detect malicious pickle files that use torch.u
CVE-2025-71343 8.1 0.30% 1 0 2026-07-04T03:31:09 picklescan before 0.0.30 fails to detect malicious pickle files that exploit lib
CVE-2026-54424 8.4 0.24% 1 1 2026-07-04T03:31:08 An Incorrect Use of Privileged APIs vulnerability in Unity Parsec on Windows hos
CVE-2025-71353 8.1 0.30% 1 0 2026-07-04T03:31:08 picklescan before 0.0.28 fails to detect malicious pickle files that exploit tor
CVE-2025-71342 8.1 0.43% 1 0 2026-07-04T03:31:08 picklescan before 0.0.30 fails to detect malicious pickle files using idlelib.ru
CVE-2025-71366 8.1 0.45% 1 0 2026-07-04T03:31:08 picklescan before 0.0.28 fails to detect malicious torch.utils.bottleneck.__main
CVE-2025-71364 8.1 0.56% 1 0 2026-07-04T03:31:08 picklescan before 0.0.30 fails to detect the asyncio.unix_events._UnixSubprocess
CVE-2025-71362 8.1 0.30% 1 0 2026-07-04T03:31:08 picklescan before 0.0.33 fails to detect unsafe deserialization when numpy.f2py.
CVE-2025-71375 8.1 0.36% 1 0 2026-07-04T03:31:08 picklescan before 0.0.34 fails to detect the _operator.methodcaller built-in fun
CVE-2025-71347 8.1 0.45% 1 0 2026-07-04T03:31:02 picklescan before 0.0.33 fails to detect malicious pickle files using numpy.f2py
CVE-2025-71356 8.1 0.30% 1 0 2026-07-04T03:31:02 picklescan before 0.0.28 fails to detect malicious torch.fx.experimental.symboli
CVE-2026-12252 7.8 0.15% 1 0 2026-07-04T02:16:23.603000 In nltk/nltk versions 3.9.3 and earlier, five Stanford interface classes (Stanfo
CVE-2025-71380 8.8 0.41% 1 0 2026-07-04T02:16:23.477000 The Execute Command node in n8n allows authenticated users to execute arbitrary
CVE-2025-71373 8.1 0.44% 1 0 2026-07-04T02:16:23.220000 picklescan before 0.0.33 fails to detect operator.methodcaller function calls in
CVE-2025-71372 8.1 0.38% 1 0 2026-07-04T02:16:23.097000 Picklescan before 0.0.33 fails to detect the numpy.f2py.crackfortran.getlincoef
CVE-2025-71367 8.1 0.45% 1 0 2026-07-04T02:16:22.833000 picklescan before 0.0.34 fails to detect _operator.attrgetter function calls in
CVE-2025-71360 8.1 0.30% 1 0 2026-07-04T02:16:22.327000 picklescan before 0.0.29 fails to detect malicious pickle files using idlelib.ca
CVE-2025-71359 8.1 0.43% 1 0 2026-07-04T02:16:22.197000 picklescan before 0.0.29 fails to detect malicious pickle payloads that utilize
CVE-2025-71345 8.1 0.43% 1 0 2026-07-04T02:16:21.670000 picklescan before 0.0.30 fails to detect malicious pickle files that invoke torc
CVE-2026-58286 8.1 0.39% 3 0 2026-07-03T21:31:47 Improper access control in Microsoft Edge (Chromium-based) allows an unauthorize
CVE-2026-57985 7.6 0.42% 2 0 2026-07-03T21:31:47 Improper input validation in Microsoft Edge (Chromium-based) allows an unauthori
CVE-2026-58290 7.5 0.26% 2 0 2026-07-03T21:31:47 Access of resource using incompatible type ('type confusion') in Microsoft Edge
CVE-2026-58289 9.0 0.53% 2 0 2026-07-03T21:31:47 Access of resource using incompatible type ('type confusion') in Microsoft Edge
CVE-2026-58288 8.3 0.45% 2 0 2026-07-03T21:31:47 Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacke
CVE-2026-58285 8.3 0.45% 2 0 2026-07-03T21:31:47 Access of resource using incompatible type ('type confusion') in Microsoft Edge
CVE-2026-58284 8.3 0.41% 2 0 2026-07-03T21:31:47 Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized
CVE-2026-58294 7.5 0.35% 2 0 2026-07-03T21:31:47 Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacke
CVE-2026-58293 8.1 0.53% 2 0 2026-07-03T21:31:47 External control of file name or path in Microsoft Edge (Chromium-based) allows
CVE-2026-12481 8.8 0.40% 2 0 2026-07-03T21:31:40 A vulnerability in keras-team/keras version 3.14.0 allows for arbitrary code exe
CVE-2026-57992 7.5 0.44% 2 0 2026-07-03T21:31:40 Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacke
CVE-2026-57984 7.5 0.44% 2 0 2026-07-03T21:31:39 Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacke
CVE-2026-57983 8.7 0.46% 2 0 2026-07-03T21:31:39 Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized
CVE-2026-57981 8.8 0.57% 2 0 2026-07-03T21:31:39 Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacke
CVE-2026-14606 7.8 0.14% 1 0 2026-07-03T21:31:36 A security flaw has been discovered in RT-Thread up to 5.0.2. Affected by this i
CVE-2026-58423 7.7 0.31% 1 0 2026-07-03T21:17:05.550000 LFS authentication bypass via malformed SSH sub-verb allows unauthorized read ac
CVE-2026-58299 7.5 0.28% 2 0 2026-07-03T21:17:04.907000 Time-of-check time-of-use (toctou) race condition in Microsoft Edge for Android
CVE-2026-58295 8.3 0.38% 3 0 2026-07-03T21:17:04.417000 Access of resource using incompatible type ('type confusion') in Microsoft Edge
CVE-2026-58292 7.5 0.29% 1 0 2026-07-03T21:17:04.013000 Improper input validation in Microsoft Edge (Chromium-based) allows an unauthori
CVE-2026-58287 8.3 0.45% 2 0 2026-07-03T21:17:03.413000 Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacke
CVE-2026-58283 8.1 0.41% 2 0 2026-07-03T21:17:02.943000 Access of resource using incompatible type ('type confusion') in Microsoft Edge
CVE-2026-58282 8.1 0.39% 3 0 2026-07-03T21:17:02.820000 Improper access control in Microsoft Edge (Chromium-based) allows an unauthorize
CVE-2026-58276 7.5 0.44% 2 0 2026-07-03T21:17:02.573000 Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacke
CVE-2026-57986 7.5 0.44% 2 0 2026-07-03T21:17:01.780000 Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacke
CVE-2026-57975 7.5 0.44% 2 0 2026-07-03T21:17:01.077000 Access of resource using incompatible type ('type confusion') in Microsoft Edge
CVE-2026-57974 8.8 0.57% 2 0 2026-07-03T21:17:00.957000 Integer overflow or wraparound in Microsoft Edge (Chromium-based) allows an unau
CVE-2026-56645 8.8 0.57% 2 0 2026-07-03T21:17:00.670000 Heap-based buffer overflow in Microsoft Edge (Chromium-based) allows an unauthor
CVE-2026-28744 8.1 0.34% 2 0 2026-07-03T21:17:00.003000 Gitea versions up to and including 1.26.1 allow Git smart HTTP requests authenti
CVE-2026-28737 8.7 0.34% 2 0 2026-07-03T21:16:59.787000 Gitea versions from 1.25.0 before 1.26.0 allow stored cross-site scripting throu
CVE-2026-28699 8.1 0.57% 2 1 2026-07-03T21:16:59.567000 Gitea versions up to and including 1.26.1 allow OAuth2 access token scope enforc
CVE-2026-26231 8.5 0.29% 2 0 2026-07-03T21:16:58.200000 Gitea versions up to and including 1.26.1 allow the Allow edits from maintainers
CVE-2026-22874 9.6 0.46% 2 2 2026-07-03T21:16:57.157000 Gitea versions up to and including 1.26.2 have incomplete SSRF protection in web
CVE-2026-22555 8.1 0.30% 2 0 2026-07-03T21:16:57.023000 Gitea versions before 1.26.0 allow API users to fork a repository into an organi
CVE-2026-14605 7.8 0.14% 1 0 2026-07-03T20:16:52.070000 A vulnerability was identified in RT-Thread up to 5.0.2. Affected by this vulner
CVE-2026-49814 7.2 1.22% 1 0 2026-07-03T15:32:09 Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release ver
CVE-2026-14460 8.8 0.16% 1 1 2026-07-03T15:32:09 Missing Authorization vulnerability in TUBITAK BILGEM Software Technologies Rese
CVE-2026-14459 8.8 0.20% 1 1 2026-07-03T15:16:32.253000 Improper neutralization of argument delimiters in a command ('argument injection
CVE-2026-13341 7.4 0.26% 1 0 2026-07-03T12:31:51 A vulnerability exists in the Kong Konnect Model Context Protocol (MCP) server p
CVE-2026-10055 8.5 0.30% 2 0 2026-07-03T11:16:27.600000 In Eclipse Theia since version 1.26.0, the backend /services/request-service RPC
CVE-2026-4321 9.8 0.27% 2 0 2026-07-03T10:16:32.760000 Improper neutralization of special elements used in an SQL command ('SQL injecti
CVE-2026-14544 9.8 0.51% 3 0 2026-07-03T09:31:35 A flaw was found in HPLIP (HP Linux Imaging and Printing Software). This vulnera
CVE-2026-4967 7.5 0.40% 2 0 2026-07-03T07:16:24.333000 In IMS, there is a possible out of bounds read due to a missing bounds check. Th
CVE-2026-9725 9.1 0.74% 3 0 2026-07-03T06:32:11 The Printcart Web to Print Product Designer for WooCommerce plugin for WordPress
CVE-2026-14352 7.5 0.47% 2 0 2026-07-03T06:16:21.787000 The AR for WooCommerce plugin for WordPress is vulnerable to Directory Traversal
CVE-2026-44941 8.4 0.49% 1 0 2026-07-03T04:17:53.300000 A relative path traversal in the "keyhint" option in repomd.xml parsing of libzy
CVE-2026-14424 9.6 0.21% 1 0 2026-07-03T04:17:50.160000 Use after free in Dawn in Google Chrome on Mac prior to 150.0.7871.46 allowed a
CVE-2026-14417 9.6 0.21% 2 0 2026-07-03T04:17:48.820000 Use after free in Dawn in Google Chrome prior to 150.0.7871.46 allowed a remote
CVE-2026-14416 9.6 0.24% 1 0 2026-07-03T04:17:48.653000 Out of bounds read in Dawn in Google Chrome prior to 150.0.7871.46 allowed a rem
CVE-2026-14327 7.5 0.46% 2 0 2026-07-03T03:34:19 The AR for WordPress plugin for WordPress is vulnerable to Directory Traversal i
CVE-2026-13768 10.0 0.56% 3 1 2026-07-03T00:32:02 Gardyn devices expose a privileged iothubowner key. Access to this key will allo
CVE-2026-41106 9.3 0.54% 2 0 2026-07-03T00:31:53 Url redirection to untrusted site ('open redirect') in M365 Copilot allows an un
CVE-2026-45499 9.9 0.62% 1 0 2026-07-03T00:31:53 Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker
CVE-2026-13368 0 0.59% 4 0 2026-07-03T00:16:50.890000 WatchGuard Fireware OS contains a race condition leading to a use-after-free vul
CVE-2026-57100 9.9 0.64% 1 0 2026-07-02T23:16:51.267000 Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (Sync
CVE-2026-54998 8.8 0.64% 1 1 2026-07-02T23:16:51.137000 Incorrect authorization in Microsoft Exchange Online allows an authorized attack
CVE-2026-57517 9.8 0.59% 1 1 2026-07-02T21:33:17 Control Web Panel before 0.9.8.1225 contains a blind SQL injection vulnerability
CVE-2026-59099 9.1 0.36% 1 0 2026-07-02T21:32:15 Apereo CAS 7.3.0 before 8.0.0-RC6 contains a cryptographic vulnerability that al
CVE-2026-58460 7.7 0.14% 1 0 2026-07-02T21:16:57.080000 react-native-receive-sharing-intent contains a path traversal vulnerability that
CVE-2026-52830 9.4 0.42% 1 0 2026-07-02T20:38:51 ## Summary fast-mcp-telegram validates HTTP Bearer tokens by joining the raw to
CVE-2026-58455 9.8 1.19% 1 0 2026-07-02T18:36:28 Dockwatch through 0.6.567 contains an unauthenticated OS command injection vulne
CVE-2026-14430 8.8 0.29% 1 0 2026-07-02T18:36:25 Integer overflow in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote
CVE-2026-13773 6.0 3.42% 2 0 2026-07-02T18:26:29.023000 IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 Approximately 50 generated C
CVE-2026-11712 9.3 0.22% 2 0 2026-07-02T18:06:52.277000 IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site script
CVE-2026-56004 10.0 0.38% 1 0 2026-07-02T17:45:44.830000 A shellcode injection in the mercurial handler of the obs tar_scm source service
CVE-2026-58457 9.8 1.67% 2 0 2026-07-02T17:42:23.640000 Shenzhen Aitemi M300 Wi-Fi Repeater (hardware model MT02) contains an unauthenti
CVE-2026-10109 9.8 0.86% 1 0 2026-07-02T16:46:53.917000 IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to remote
CVE-2026-57683 9.3 0.25% 1 0 2026-07-02T16:16:34.820000 Unauthenticated SQL Injection in WP Fast Total Search <= 1.80.280 versions.
CVE-2026-55112 7.5 0.19% 1 0 2026-07-02T15:32:20 A malicious actor with access to the network and low privileges and under certai
CVE-2026-56842 7.5 0.19% 1 0 2026-07-02T15:32:20 A malicious actor with access to the network and under certain conditions could
CVE-2026-56841 8.8 0.24% 1 0 2026-07-02T15:32:20 A malicious actor with access to the network and low privileges could exploit an
CVE-2026-54403 8.6 0.48% 1 0 2026-07-02T15:32:20 A malicious actor with access to the network could exploit a Path Traversal vuln
CVE-2026-5524 9.8 0.54% 1 1 2026-07-02T15:17:11.707000 The Divi Form Builder plugin for WordPress is vulnerable to Arbitrary File Uploa
CVE-2026-31694 7.8 0.13% 1 1 2026-07-02T15:16:59.813000 In the Linux kernel, the following vulnerability has been resolved: fuse: rejec
CVE-2026-6688 7.6 0.21% 2 0 2026-07-02T14:38:46.120000 FatFs R0.16 and earlier contains a downstream-caller vulnerability pattern assoc
CVE-2026-43503 8.8 0.14% 1 8 2026-07-02T12:31:55 In the Linux kernel, the following vulnerability has been resolved: net: skbuff
CVE-2026-45659 8.8 3.22% 10 3 2026-07-02T12:16:47.143000 Deserialization of untrusted data in Microsoft Office SharePoint allows an autho
CVE-2026-14432 8.8 0.25% 1 0 2026-07-02T03:32:33 Use after free in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote at
CVE-2026-14431 8.8 0.27% 1 0 2026-07-02T03:32:33 Type Confusion in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote at
CVE-2026-14426 7.5 0.22% 1 0 2026-07-02T03:31:27 Use after free in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote at
CVE-2026-14423 9.6 0.22% 1 0 2026-07-02T00:31:50 Type Confusion in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote
CVE-2026-14425 9.6 0.22% 2 0 2026-07-02T00:31:50 Use after free in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote
CVE-2026-14420 9.6 0.25% 1 0 2026-07-02T00:31:50 Out of bounds read and write in Dawn in Google Chrome prior to 150.0.7871.46 all
CVE-2026-14429 8.3 0.23% 1 0 2026-07-02T00:31:50 Insufficient validation of untrusted input in Skia in Google Chrome prior to 150
CVE-2026-14428 8.3 0.26% 1 0 2026-07-02T00:31:50 Insufficient validation of untrusted input in Dawn in Google Chrome on Android p
CVE-2026-14427 8.3 0.24% 1 0 2026-07-02T00:31:50 Heap buffer overflow in Skia in Google Chrome prior to 150.0.7871.46 allowed a r
CVE-2026-14439 None 0.60% 1 0 2026-07-02T00:31:50 A path traversal vulnerability exists in the Git Service component shared by Alt
CVE-2026-14398 9.6 0.21% 1 0 2026-07-02T00:31:49 Use after free in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote
CVE-2026-14390 9.6 0.24% 1 0 2026-07-02T00:31:49 Use after free in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote
CVE-2026-14419 9.6 0.21% 2 0 2026-07-02T00:31:49 Use after free in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote
CVE-2026-54428 7.5 0.41% 1 0 2026-07-01T21:36:16 Allocation of resources without limits or throttling in the HTTP/2 HPACK decoder
CVE-2026-44935 9.9 0.57% 1 0 2026-07-01T20:45:42 ### Impact A vulnerability in Fleet for Rancher Manager affects multi-tenancy en
CVE-2026-13775 9.8 0.31% 1 0 2026-07-01T20:17:02.440000 Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote a
CVE-2026-13763 9.8 0.47% 1 0 2026-07-01T19:51:47.213000 Inconsistent interpretation of HTTP/2 requests in AWS Application Load Balancer
CVE-2026-58452 8.8 2.42% 2 0 2026-07-01T18:32:05 JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an
CVE-2026-58453 9.8 1.69% 2 0 2026-07-01T18:32:04 JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a h
CVE-2026-20191 7.5 0.76% 1 0 2026-07-01T18:31:59 A vulnerability in Cisco Catalyst Center could allow an unauthenticated, remote
CVE-2026-8451 7.5 0.50% 4 4 2026-07-01T18:31:24 Insufficient input validation inΒ NetScaler ADC and NetScaler GatewayΒ leading to
CVE-2026-7840 9.8 1.20% 1 0 2026-07-01T18:29:00.013000 UltraVNC repeater through 1.8.2.2 contains a global buffer overflow in its embed
CVE-2026-54399 7.5 0.41% 1 0 2026-07-01T18:16:34.317000 Uncontrolled Resource Consumption vulnerability in the HTTP/1.1 message parserΒ i
CVE-2026-6682 7.6 0.21% 3 0 2026-07-01T15:35:27 In FatFS R0.16 and earlier contains a FAT32 integer overflow bug in mount_volume
CVE-2026-13774 8.1 0.30% 1 0 2026-07-01T15:35:00 Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed an
CVE-2025-15666 5.3 0.12% 1 0 2026-07-01T15:16:23.077000 A security vulnerability has been detected in Open Asset Import Library Assimp u
CVE-2026-41991 4.7 0.10% 1 0 2026-07-01T14:02:24.450000 GNU gzip contains a vulnerability in the gzexe utility related to insecure tempo
CVE-2026-14191 7.8 0.29% 2 0 2026-07-01T06:31:32 An out-of-bounds heap write exists in the RAR5 recovery-volume (.rev) parser in
CVE-2026-8037 9.6 29.64% 2 1 template 2026-07-01T05:16:25.290000 OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC
CVE-2026-56415 10.0 3.07% 2 0 2026-07-01T00:34:43 Storage Concentrator (SC & SCVM) contains a command injection vulnerability with
CVE-2026-56700 9.8 1.68% 2 0 2026-07-01T00:34:43 Grav CMS before 2.0.0-beta.2 contains multiple code-execution vulnerabilities. T
CVE-2026-56413 10.0 3.08% 2 0 2026-07-01T00:34:39 Storage Concentrator (SC & SCVM) contains a command injection vulnerability in t
CVE-2026-50003 9.8 0.43% 1 0 2026-07-01T00:34:02 A malicious or compromised server can make a DCMTK client using bit-preserving C
CVE-2026-10134 10.0 0.31% 1 0 2026-06-30T21:31:44 IBM Langflow OSS 1.0.0 through 1.9.3 allows an attacker to read every secret ava
CVE-2026-48282 10.0 1.02% 1 0 2026-06-30T18:31:42 ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limi
CVE-2026-13545 8.8 2.71% 2 0 2026-06-30T17:31:09.510000 A vulnerability has been found in D-Link DCS-935L 1.10.01. This affects the func
CVE-2026-54475 7.5 0.59% 1 0 2026-06-30T15:30:45 Missing Authorization vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ A
CVE-2026-8631 9.8 1.33% 2 0 2026-06-30T03:36:46 A potential security vulnerability has been identified in the HP Linux Imaging a
CVE-2026-13762 9.8 0.44% 1 0 2026-06-29T21:32:12 Inconsistent interpretation of HTTP/2 requests in Amazon CloudFront with AWS WAF
CVE-2026-56782 9.8 3.02% 2 2 2026-06-29T18:32:03 Gorse before 0.5.10 contains an authentication bypass vulnerability in the /api/
CVE-2026-11834 0 0.41% 1 1 2026-06-26T22:16:30.897000 A command injection vulnerability has been identified in the DHCP option process
CVE-2026-50549 9.8 0.64% 1 0 2026-06-26T16:51:39.467000 Cursor is a code editor built for programming with AI. Prior to 3.0, Cursor runs
CVE-2026-50548 9.8 0.64% 2 0 2026-06-26T16:51:25.290000 Cursor is a code editor built for programming with AI. Prior to 3.0, Cursor runs
CVE-2026-20230 8.6 41.69% 1 3 2026-06-25T21:31:23 A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco U
CVE-2026-45051 None 0.00% 1 0 2026-06-24T17:25:29 ## Summary **Description** A deserialization of untrusted data vulnerability (
CVE-2026-35019 8.1 0.43% 1 0 2026-06-23T16:16:59.460000 NetComm NF20MESH routers running firmware R6B031 and earlier contain an authenti
CVE-2026-50242 10.0 0.42% 1 0 2026-06-19T15:33:15 In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.14812
CVE-2026-6637 8.8 0.38% 2 0 2026-06-17T11:01:08.343000 Stack buffer overflow in PostgreSQL module "refint" allows an unprivileged datab
CVE-2026-50751 9.3 70.10% 1 7 2026-06-17T10:57:46.373000 A logic flow weakness in Remote Access and Mobile Access certificate validation
CVE-2026-46817 9.8 0.68% 1 2 2026-06-17T10:53:59.300000 Vulnerability in the Oracle Payments product of Oracle E-Business Suite (compone
CVE-2026-43456 7.8 0.16% 2 0 2026-06-17T10:49:38.170000 In the Linux kernel, the following vulnerability has been resolved: bonding: fi
CVE-2026-35368 7.8 0.14% 1 0 2026-06-17T10:40:28.400000 A vulnerability exists in the chroot utility of uutils coreutils when using the
CVE-2026-26128 7.8 0.45% 2 2 2026-06-17T10:25:46.367000 Improper authentication in Windows SMB Server allows an authorized attacker to e
CVE-2025-5777 7.5 99.90% 1 25 template 2026-06-17T09:48:43.670000 Insufficient input validation leading to memory overread when theΒ NetScaler is c
CVE-2026-35273 9.8 92.33% 1 4 2026-06-12T18:31:50 Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleS
CVE-2026-48611 9.8 0.66% 2 2 2026-06-12T06:33:21 Improper authentication checks in the OAuth implementation allow account hijacki
CVE-2026-48612 8.0 0.12% 1 0 2026-06-12T06:33:21 Improper state verification in the OAuth implementation could allow an attacker
CVE-2026-34182 9.1 0.24% 1 0 2026-06-10T18:32:45 Issue Summary: Cryptographic Message Services (CMS) processing fails to perform
CVE-2025-59382 None 0.29% 1 1 2026-06-10T03:32:10 QTS, QuTS hero, QuTScloud are not affected. We have already fixed the vulnerabi
CVE-2026-45504 8.8 0.46% 1 1 2026-06-09T18:30:58 Server-side request forgery (ssrf) in Microsoft Exchange Server allows an author
CVE-2025-3248 None 99.97% 2 27 2025-11-05T20:12:46 Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v
CVE-2026-12184 0 0.00% 2 0 N/A
CVE-2026-49429 0 0.00% 2 0 N/A
CVE-2026-49422 0 0.00% 2 0 N/A
CVE-2026-49420 0 0.00% 2 0 N/A
CVE-2026-52747 0 0.00% 2 0 N/A
CVE-2026-27771 0 40.74% 4 2 template N/A
CVE-2026-10054 0 0.16% 2 0 N/A
CVE-2026-20896 0 0.78% 3 2 N/A
CVE-2026-58426 0 0.18% 2 0 N/A
CVE-2026-58424 0 0.20% 1 0 N/A
CVE-2026-50027 0 0.00% 1 0 N/A
CVE-2026-54588 0 0.31% 1 0 N/A

CVE-2026-14803
(0 None)

EPSS: 0.00%

updated 2026-07-06T02:16:21.683000

2 posts

Mojo::JSON versions before 9.47 for Perl allow memory exhaustion via unbounded recursion in the pure-Perl decoder. The pure-Perl decode path (`_decode_value` dispatching to `_decode_array` and `_decode_object`) recurses with no depth limit, so a small deeply nested JSON document can consume excessive memory. This path is the default when Cpanel::JSON::XS is not installed or `MOJO_NO_JSON_XS=1` i

offseq at 2026-07-06T03:00:26.831Z ##

CVE-2026-14803: HIGH severity vuln in Mojo::JSON <9.47 β€” pure-Perl decoder allows uncontrolled recursion. Apps may face DoS if Cpanel::JSON::XS isn’t enabled. Install XS module or limit JSON depth. radar.offseq.com/threat/cve-20

##

offseq@infosec.exchange at 2026-07-06T03:00:26.000Z ##

CVE-2026-14803: HIGH severity vuln in Mojo::JSON <9.47 β€” pure-Perl decoder allows uncontrolled recursion. Apps may face DoS if Cpanel::JSON::XS isn’t enabled. Install XS module or limit JSON depth. radar.offseq.com/threat/cve-20 #OffSeq #infosec #Perl #DoS

##

CVE-2026-59510
(0 None)

EPSS: 0.00%

updated 2026-07-05T18:16:57.080000

2 posts

AIL Framework contains a path traversal vulnerability in its PDF object handling. Prior to commit 14c618fce4d1df02358717c48ea903706abecdf2, the PDF.get_filepath() function constructed a file path by joining the configured PDF storage directory with a path derived from a PDF object identifier, without verifying that the resolved path remained within the intended PDF_FOLDER directory. An authentica

offseq at 2026-07-06T04:30:24.849Z ##

CVE-2026-59510: ail-framework ≀6.9.0 has a HIGH path traversal flaw πŸ—‚οΈ. Authenticated attackers can access sensitive files outside the PDF dir. Restrict PDF ops access & monitor activity. Patch when released. radar.offseq.com/threat/cve-20

##

offseq@infosec.exchange at 2026-07-06T04:30:24.000Z ##

CVE-2026-59510: ail-framework ≀6.9.0 has a HIGH path traversal flaw πŸ—‚οΈ. Authenticated attackers can access sensitive files outside the PDF dir. Restrict PDF ops access & monitor activity. Patch when released. radar.offseq.com/threat/cve-20 #OffSeq #vulnerability #pathtraversal

##

CVE-2026-59509(CVSS UNKNOWN)

EPSS: 0.00%

updated 2026-07-05T15:30:33

2 posts

An unauthenticated improper input validation vulnerability in the POST /fetch_cve_data endpoint in cve-search. A remote attacker can manipulate request parameters controlling the MongoDB collection, projected fields, and regular-expression filters to read arbitrary application MongoDB collections. This can expose administrative usernames and password hashes from the mgmt_users collection, enabling

offseq at 2026-07-06T00:00:37.855Z ##

CVE-2026-59509 (CRITICAL): cve-search POST /fetch_cve_data allows unauth'd access to arbitrary MongoDB collections, exposing admin creds for offline cracking. Restrict endpoint, monitor activity, check vendor updates. radar.offseq.com/threat/ghsa-3

##

offseq@infosec.exchange at 2026-07-06T00:00:37.000Z ##

CVE-2026-59509 (CRITICAL): cve-search POST /fetch_cve_data allows unauth'd access to arbitrary MongoDB collections, exposing admin creds for offline cracking. Restrict endpoint, monitor activity, check vendor updates. radar.offseq.com/threat/ghsa-3 #OffSeq #infosec #CVE202659509

##

CVE-2026-12250
(7.9 HIGH)

EPSS: 0.00%

updated 2026-07-05T15:30:33

2 posts

Invocation of process using visible sensitive information vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Domain Joiner allows Excavation. This issue affects Pardus Domain Joiner: from 0.5.2 before 0.5.4.

thehackerwire@mastodon.social at 2026-07-05T16:00:38.000Z ##

🟠 CVE-2026-12250 - High (7.9)

Invocation of process using visible sensitive information vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Domain Joiner allows Excavation.

This issue affects Pardus Domain Joiner: from 0.5.2 before 0.5.4.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T16:00:38.000Z ##

🟠 CVE-2026-12250 - High (7.9)

Invocation of process using visible sensitive information vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Domain Joiner allows Excavation.

This issue affects Pardus Domain Joiner: from 0.5.2 before 0.5.4.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-9085
(8.8 HIGH)

EPSS: 0.00%

updated 2026-07-05T15:16:57.800000

2 posts

Incorrect Permission Assignment for Critical Resource, Improper Access Control vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus-Parental-Control allows DNS Spoofing. This issue affects Pardus-Parental-Control: from <=0.5.1 before 0.7.0.

thehackerwire@mastodon.social at 2026-07-05T16:00:25.000Z ##

🟠 CVE-2026-9085 - High (8.8)

Incorrect Permission Assignment for Critical Resource, Improper Access Control vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus-Parental-Control allows DNS Spoofing.

This issue affects Pardus-Parental-Control: from ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T16:00:25.000Z ##

🟠 CVE-2026-9085 - High (8.8)

Incorrect Permission Assignment for Critical Resource, Improper Access Control vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus-Parental-Control allows DNS Spoofing.

This issue affects Pardus-Parental-Control: from ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-6509
(7.8 HIGH)

EPSS: 0.00%

updated 2026-07-05T15:16:57.687000

2 posts

Missing Authorization vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Update allows Privilege Escalation. This issue affects Pardus Update: from <=0.6.3 before 0.6.6.

1 repos

https://github.com/jackalkarlos/EvilAhenk

thehackerwire@mastodon.social at 2026-07-05T16:00:15.000Z ##

🟠 CVE-2026-6509 - High (7.8)

Missing Authorization vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Update allows Privilege Escalation.

This issue affects Pardus Update: from &lt;=0.6.3 before 0.6.6.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T16:00:15.000Z ##

🟠 CVE-2026-6509 - High (7.8)

Missing Authorization vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Update allows Privilege Escalation.

This issue affects Pardus Update: from &lt;=0.6.3 before 0.6.6.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14751
(6.3 MEDIUM)

EPSS: 0.00%

updated 2026-07-05T14:16:54.833000

2 posts

A weakness has been identified in mjperpinosa stumasy up to 327d1b0f2915ba79d7ef8ebb74553e987609d9be. The impacted element is the function Notes_controller::search_scratch_data of the file application/PHP/objects/notes/search_scratch_data.php. This manipulation of the argument field_name causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to th

offseq at 2026-07-05T14:00:28.050Z ##

SQL injection (MEDIUM, CVE-2026-14751) in mjperpinosa stumasy: All versions at risk via Notes_controller::search_scratch_data. No patch yet, public exploit exists. Sanitize field_name & restrict access. Details: radar.offseq.com/threat/cve-20

##

offseq@infosec.exchange at 2026-07-05T14:00:28.000Z ##

SQL injection (MEDIUM, CVE-2026-14751) in mjperpinosa stumasy: All versions at risk via Notes_controller::search_scratch_data. No patch yet, public exploit exists. Sanitize field_name & restrict access. Details: radar.offseq.com/threat/cve-20 #OffSeq #SQLInjection #Vulnerability #AppSec

##

CVE-2026-14738
(3.7 LOW)

EPSS: 0.00%

updated 2026-07-05T12:30:30

2 posts

A security flaw has been discovered in exo-explore exo up to 1.0.71. Affected is the function _image_cache_key of the file src/exo/worker/engines/mlx/vision.py of the component Vision Feature Cache. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high complexity level is associated with this attack. The exploitability is told to be difficult. The explo

offseq at 2026-07-05T11:00:26.102Z ##

CVE-2026-14738 (MEDIUM, CVSS 6.3) impacts exo-explore exo ≀1.0.71. Weak hash in Vision Feature Cache, remote exploit released, high complexity. Patch pending. Review deployments & monitor for updates. radar.offseq.com/threat/cve-20

##

offseq@infosec.exchange at 2026-07-05T11:00:26.000Z ##

CVE-2026-14738 (MEDIUM, CVSS 6.3) impacts exo-explore exo ≀1.0.71. Weak hash in Vision Feature Cache, remote exploit released, high complexity. Patch pending. Review deployments & monitor for updates. radar.offseq.com/threat/cve-20 #OffSeq #Vulnerability #CVE202614738 #Infosec

##

CVE-2026-14781
(4.8 MEDIUM)

EPSS: 0.20%

updated 2026-07-05T09:30:23

2 posts

A flaw exists in the org.keycloak.broker.oidc package where the OIDC broker incorrectly synchronizes the email_verified claim. When an OIDC identity provider is configured with trustEmail=true and the userinfo endpoint is enabled, Keycloak retrieves the email address from the userinfo response but retrieves the email_verified status exclusively from the id_token. The root cause is a lack of valida

offseq at 2026-07-05T08:00:24.424Z ##

CVE-2026-14781 (MEDIUM): Red Hat Build of Keycloak flaw in OIDC broker email_verified claim sync. If trustEmail=true & userinfo enabled, attacker can mark emails as verified. Review config & monitor fixes. radar.offseq.com/threat/cve-20

##

offseq@infosec.exchange at 2026-07-05T08:00:24.000Z ##

CVE-2026-14781 (MEDIUM): Red Hat Build of Keycloak flaw in OIDC broker email_verified claim sync. If trustEmail=true & userinfo enabled, attacker can mark emails as verified. Review config & monitor fixes. radar.offseq.com/threat/cve-20 #OffSeq #Keycloak #Vuln #IAM

##

CVE-2026-14733
(7.3 HIGH)

EPSS: 0.26%

updated 2026-07-05T09:16:28.443000

1 posts

A vulnerability was detected in SourceCodester Class and Exam Timetabling System 1.0. This issue affects some unknown processing of the file /edit_coursea.php. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit is now public and may be used.

hugovalters@mastodon.social at 2026-07-05T14:05:14.000Z ##

CVE-2026-14733 - SQLi in SourceCodester Class and Exam Timetabling System 1.0. Remote exploit via /edit_coursea.php ID parameter. CVSS 7.3. No patch available. Monitor systems now. #CVE #infosec #SourceCodester

valtersit.com/cve/CVE-2026-147

##

CVE-2026-14721
(8.8 HIGH)

EPSS: 0.45%

updated 2026-07-05T08:16:26.647000

4 posts

A vulnerability has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. This affects an unknown function of the file /goform/ConfigWirelessBase_5g of the component Web Endpoint. The manipulation of the argument ssid leads to stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used.

offseq at 2026-07-05T09:30:25.669Z ##

UTT HiPER 1250GW (v3.2.7-210907-180535) hit by HIGH severity stack buffer overflow (CVE-2026-14721). Remote code execution possible via 'ssid' in /goform/ConfigWirelessBase_5g. No patch β€” restrict access. radar.offseq.com/threat/cve-20

##

thehackerwire@mastodon.social at 2026-07-05T09:00:09.000Z ##

🟠 CVE-2026-14721 - High (8.8)

A vulnerability has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. This affects an unknown function of the file /goform/ConfigWirelessBase_5g of the component Web Endpoint. The manipulation of the argument ssid leads to stack-based buff...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-07-05T09:30:25.000Z ##

UTT HiPER 1250GW (v3.2.7-210907-180535) hit by HIGH severity stack buffer overflow (CVE-2026-14721). Remote code execution possible via 'ssid' in /goform/ConfigWirelessBase_5g. No patch β€” restrict access. radar.offseq.com/threat/cve-20 #OffSeq #CVE #Infosec #NetSec

##

thehackerwire@mastodon.social at 2026-07-05T09:00:09.000Z ##

🟠 CVE-2026-14721 - High (8.8)

A vulnerability has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. This affects an unknown function of the file /goform/ConfigWirelessBase_5g of the component Web Endpoint. The manipulation of the argument ssid leads to stack-based buff...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14570(CVSS UNKNOWN)

EPSS: 0.21%

updated 2026-07-05T06:30:26

2 posts

Crypt::DSA versions before 1.22 for Perl draw the DSA signing nonce and private key from a biased random generator, leading to private-key recovery. "Crypt::DSA::Util::makerandom forces the high bit of every value it returns to obtain an exactly N-bit integer for prime search. The signing nonce and the private key are drawn from makerandom. Because the high bit is always set, the result is not un

offseq at 2026-07-05T03:30:25.846Z ##

CVE-2026-14570: HIGH severity in TIMLEGGE Crypt::DSA (<1.22) β€” insufficiently random values in DSA signing allow attackers to recover private keys using lattice attacks. Replace all affected keys and upgrade to 1.22+. radar.offseq.com/threat/cve-20

##

offseq@infosec.exchange at 2026-07-05T03:30:25.000Z ##

CVE-2026-14570: HIGH severity in TIMLEGGE Crypt::DSA (<1.22) β€” insufficiently random values in DSA signing allow attackers to recover private keys using lattice attacks. Replace all affected keys and upgrade to 1.22+. radar.offseq.com/threat/cve-20 #OffSeq #Vuln #Perl #Crypto

##

CVE-2026-14703
(6.3 MEDIUM)

EPSS: 0.20%

updated 2026-07-05T05:16:28.610000

2 posts

A vulnerability has been found in itsourcecode Hospital Management System 1.0. Affected is an unknown function of the file /patientorder.php. Such manipulation of the argument editid leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.

offseq at 2026-07-05T05:00:24.691Z ##

SQL injection (MEDIUM severity) found in itsourcecode Hospital Management System 1.0 via 'editid' in /patientorder.php (CVE-2026-14703). No patch yet β€” enforce input validation & parameterized queries. radar.offseq.com/threat/cve-20

##

offseq@infosec.exchange at 2026-07-05T05:00:24.000Z ##

SQL injection (MEDIUM severity) found in itsourcecode Hospital Management System 1.0 via 'editid' in /patientorder.php (CVE-2026-14703). No patch yet β€” enforce input validation & parameterized queries. radar.offseq.com/threat/cve-20 #OffSeq #SQLInjection #Vuln #HealthcareIT

##

CVE-2026-14691
(6.3 MEDIUM)

EPSS: 0.24%

updated 2026-07-05T03:32:41

2 posts

A security vulnerability has been detected in SourceCodester Multi-Vendor Online Grocery Management System 1.0. This impacts the function update_settings_info of the file classes/SystemSettings.php of the component Setting Handler. Such manipulation of the argument content[] leads to code injection. The attack can be executed remotely. The exploit has been disclosed publicly and may be used.

offseq at 2026-07-05T02:00:26.200Z ##

CVE-2026-14691 (MEDIUM): SourceCodester Multi-Vendor Online Grocery Management System 1.0 is vulnerable to remote code injection via update_settings_info in SystemSettings.php. Exploit is public. Monitor & restrict access until fix released. radar.offseq.com/threat/cve-20

##

offseq@infosec.exchange at 2026-07-05T02:00:26.000Z ##

CVE-2026-14691 (MEDIUM): SourceCodester Multi-Vendor Online Grocery Management System 1.0 is vulnerable to remote code injection via update_settings_info in SystemSettings.php. Exploit is public. Monitor & restrict access until fix released. radar.offseq.com/threat/cve-20 #OffSeq #Vuln #AppSec

##

CVE-2026-14637
(8.2 HIGH)

EPSS: 0.60%

updated 2026-07-04T18:16:28.357000

1 posts

A security vulnerability has been detected in kirilkirkov Ecommerce-CodeIgniter-Bootstrap up to 13fd582aaf49aeab7438acc0fc3eb973a1f5e6a7. The affected element is the function getCartItems in the library application/libraries/ShoppingCart.php. The manipulation of the argument shopping_cart leads to deserialization. The attack can be initiated remotely. The exploit has been disclosed publicly and ma

thehackerwire@mastodon.social at 2026-07-04T20:59:48.000Z ##

🟠 CVE-2026-14637 - High (8.2)

A security vulnerability has been detected in kirilkirkov Ecommerce-CodeIgniter-Bootstrap up to 13fd582aaf49aeab7438acc0fc3eb973a1f5e6a7. The affected element is the function getCartItems in the library application/libraries/ShoppingCart.php. The ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14355
(5.6 MEDIUM)

EPSS: 0.28%

updated 2026-07-04T16:17:14.033000

2 posts

In PHP versions 8.2.* before 8.2.32, 8.3.* before 8.3.32, 8.4.* before 8.4.23, 8.5.* before 8.5.8, the AES-WRAP-PAD algorithm implementation in OpenSSL extension contains a buffer allocation flaw. The output buffer for the AES key-wrap-with-padding operation is sized from the plaintext length without accounting for RFC 5649 expansion. This may cause OpenSSL to write beyond allocated memory, corrup

DailyCyberSecurity at 2026-07-06T02:42:07.119Z ##

Two PHP flaws are patched. CVE-2026-12184 is a PHP remote DoS that crashes PHP-FPM, and CVE-2026-14355 causes memory corruption. Update PHP now.

securityonline.info/php-remote

##

DailyCyberSecurity@infosec.exchange at 2026-07-06T02:42:07.000Z ##

Two PHP flaws are patched. CVE-2026-12184 is a PHP remote DoS that crashes PHP-FPM, and CVE-2026-14355 causes memory corruption. Update PHP now.

#PHP #RemoteDoS #DoS #PHPFPM #CyberSecurity #Vulnerability #InfoSec

securityonline.info/php-remote

##

CVE-2026-14534
(8.8 HIGH)

EPSS: 0.33%

updated 2026-07-04T15:30:24

1 posts

Trail of Bits fickling versions up to and including 0.1.10 do not include the Python standard library modules _posixsubprocess, site, and atexit in the UNSAFE_IMPORTS denylist (fickle.py). Because these modules are absent from the denylist, fickling's check_safety() function returns LIKELY_SAFE with zero findings for pickle payloads that invoke dangerous functions including _posixsubprocess.fork_e

thehackerwire@mastodon.social at 2026-07-04T15:00:15.000Z ##

🟠 CVE-2026-14534 - High (8.8)

Trail of Bits fickling versions up to and including 0.1.10 do not include the Python standard library modules _posixsubprocess, site, and atexit in the UNSAFE_IMPORTS denylist (fickle.py). Because these modules are absent from the denylist, fickli...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14535
(8.8 HIGH)

EPSS: 0.30%

updated 2026-07-04T14:16:29.063000

1 posts

In Trail of Bits fickling versions up to and including 0.1.11, the UnsafeImportsML analysis pass unconditionally calls AnalysisContext.shorten_code(node) on every import node it inspects, regardless of whether the import is flagged as unsafe. This call registers the shortened code representation in the shared AnalysisContext.reported_shortened_code set. When the MLAllowlist analysis pass subsequen

thehackerwire@mastodon.social at 2026-07-04T15:00:04.000Z ##

🟠 CVE-2026-14535 - High (8.8)

In Trail of Bits fickling versions up to and including 0.1.11, the UnsafeImportsML analysis pass unconditionally calls AnalysisContext.shorten_code(node) on every import node it inspects, regardless of whether the import is flagged as unsafe. This...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-46242
(7.8 HIGH)

EPSS: 0.12%

updated 2026-07-04T12:30:28

7 posts

In the Linux kernel, the following vulnerability has been resolved: eventpoll: fix ep_remove struct eventpoll / struct file UAF ep_remove() (via ep_remove_file()) cleared file->f_ep under file->f_lock but then kept using @file inside the critical section (is_file_epoll(), hlist_del_rcu() through the head, spin_unlock). A concurrent __fput() taking the eventpoll_release() fastpath in that window

1 repos

https://github.com/0xBlackash/CVE-2026-46242

youranonnewsirc@nerdculture.de at 2026-07-05T16:04:41.000Z ##

Here's a summary of the latest geopolitical, technology, and cybersecurity news:

Geopolitics: Russian President Putin and U.S. President Trump held a 90-minute call on July 4th. Russia claims to have captured Kostyantynivka in eastern Donetsk, Ukraine.
Technology: Grok 4.5 has entered private beta at SpaceX/Tesla. Meta plans to rent out its AI computing power. Micron is expanding high-bandwidth memory (HBM) production in Japan. Five Eyes alliance warns AI-fueled cyberattacks are "months away."
Cybersecurity: A critical "Bad Epoll" Linux kernel flaw (CVE-2026-46242) allows root access on Linux/Android. AI-automated JadePuffer ransomware has been detected. Lazarus Group is pushing 108 malicious packages.

#AnonNews_irc #Cybersecurity #News

##

guru@thecybersecguru.com at 2026-07-05T06:20:36.000Z ##

Bad Epoll: Inside CVE-2026-46242, the Race Condition an AI Model Read Right Past

Learn how Bad Epoll (CVE-2026-46242) enables Linux root access through an epoll race condition, why AI missed it, exploit details, impact, and mitigation

thecybersecguru.com/exploits/c

##

youranonnewsirc@nerdculture.de at 2026-07-05T16:04:41.000Z ##

Here's a summary of the latest geopolitical, technology, and cybersecurity news:

Geopolitics: Russian President Putin and U.S. President Trump held a 90-minute call on July 4th. Russia claims to have captured Kostyantynivka in eastern Donetsk, Ukraine.
Technology: Grok 4.5 has entered private beta at SpaceX/Tesla. Meta plans to rent out its AI computing power. Micron is expanding high-bandwidth memory (HBM) production in Japan. Five Eyes alliance warns AI-fueled cyberattacks are "months away."
Cybersecurity: A critical "Bad Epoll" Linux kernel flaw (CVE-2026-46242) allows root access on Linux/Android. AI-automated JadePuffer ransomware has been detected. Lazarus Group is pushing 108 malicious packages.

#AnonNews_irc #Cybersecurity #News

##

guru@thecybersecguru.com at 2026-07-05T06:20:36.000Z ##

Bad Epoll: Inside CVE-2026-46242, the Race Condition an AI Model Read Right Past

Learn how Bad Epoll (CVE-2026-46242) enables Linux root access through an epoll race condition, why AI missed it, exploit details, impact, and mitigation

thecybersecguru.com/exploits/c

##

lobsters@mastodon.social at 2026-07-04T20:15:11.000Z ##

Bad Epoll (CVE-2026-46242) lobste.rs/s/drf6my #linux #security
github.com/J-jaeyoung/bad-epoll

##

secdb@infosec.exchange at 2026-07-04T10:26:48.000Z ##

🚨 Bad Epoll (CVE-2026-46242) has been identified as a notable vulnerability.

In the Linux kernel, the following vulnerability has been resolved:

eventpoll: fix ep_remove struct eventpoll / struct file UAF

ℹ️ Additional information on ZEN SecDB:

- BadEpoll: secdb.nttzen.cloud/updates/791
- CVE details, sightings and advisories: secdb.nttzen.cloud/cve/detail/

#InfoSec #BadEpoll #CVE202646242 #Linux #Kernel
#NTTDATA #Zen #SecDB #VulnerabilityIntelligence #Security

##

us@newsbeep.org at 2026-07-04T04:41:05.000Z ##

New β€œBad Epoll” Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android

A newly disclosed Linux kernel flaw called Bad Epoll (CVE-2026-46242) lets an ordinary user with no special access…
#NewsBeep #News #US #USA #UnitedStates #UnitedStatesOfAmerica #Technology
newsbeep.com/us/742153/

##

CVE-2026-53360
(0 None)

EPSS: 0.27%

updated 2026-07-04T12:17:01.880000

2 posts

In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Require in-GHCB scratch area if GHCB v2+ is in use As per the GHCB spec, when using GHCB v2+ require the software scratch area to reside in the GHCB's shared buffer. Note, things like Page State Change (PSC) requests _rely_ on this behavior, as the guest can't provide a length when making the request, i.e. the size of

1 repos

https://github.com/0xCyberstan/CVE-2026-53360-POC

offseq at 2026-07-05T00:00:34.608Z ##

CVE-2026-53360: Linux kernel KVM SEV-SNP HIGH vuln allows SEV-SNP guests OOB read/write on host heap memory 🐧. Heap corruption & info leaks possible. Patch status unclear β€” avoid untrusted guests & check advisories. radar.offseq.com/threat/ghsa-4

##

offseq@infosec.exchange at 2026-07-05T00:00:34.000Z ##

CVE-2026-53360: Linux kernel KVM SEV-SNP HIGH vuln allows SEV-SNP guests OOB read/write on host heap memory 🐧. Heap corruption & info leaks possible. Patch status unclear β€” avoid untrusted guests & check advisories. radar.offseq.com/threat/ghsa-4 #OffSeq #Linux #Vuln

##

CVE-2026-14622
(7.3 HIGH)

EPSS: 0.52%

updated 2026-07-04T09:31:51

1 posts

A vulnerability was found in jairiidriss restaurant-website-php-mysql up to 521428b5b612449df0cf4a5d15ee40cba67f3d35. This vulnerability affects unknown code of the file /admin/ajax_files of the component AJAX Endpoint. Performing a manipulation results in missing authentication. The attack is possible to be carried out remotely. The exploit has been made public and could be used. This product ado

hugovalters@mastodon.social at 2026-07-04T23:10:46.000Z ##

CVE-2026-14622 – Missing Auth in Jairiidriss restaurant-website-php-mysql. AJAX endpoint /admin/ajax_files allows remote exploitation. CVSS 7.3. No patch available. Apply workarounds immediately. #CVE #infosec #cybersecurity

valtersit.com/cve/CVE-2026-146

##

CVE-2025-71369
(8.1 HIGH)

EPSS: 0.45%

updated 2026-07-04T03:31:13

1 posts

picklescan before 0.0.28 fails to detect malicious pickle files that use torch.utils.data.datapipes.utils.decoder.basichandlers in reduce methods, allowing attackers to bypass safety checks. Remote attackers can embed undetected malicious code in pickle files that executes during deserialization, enabling remote code execution.

thehackerwire@mastodon.social at 2026-07-04T13:00:39.000Z ##

🟠 CVE-2025-71369 - High (8.1)

picklescan before 0.0.28 fails to detect malicious pickle files that use torch.utils.data.datapipes.utils.decoder.basichandlers in reduce methods, allowing attackers to bypass safety checks. Remote attackers can embed undetected malicious code in ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71343
(8.1 HIGH)

EPSS: 0.30%

updated 2026-07-04T03:31:09

1 posts

picklescan before 0.0.30 fails to detect malicious pickle files that exploit lib2to3.pgen2.pgen.ParserGenerator.make_label function in the reduce method. Attackers can craft malicious pickle files with embedded code that evades detection but executes arbitrary commands when pickle.load() is called.

thehackerwire@mastodon.social at 2026-07-04T15:00:44.000Z ##

🟠 CVE-2025-71343 - High (8.1)

picklescan before 0.0.30 fails to detect malicious pickle files that exploit lib2to3.pgen2.pgen.ParserGenerator.make_label function in the reduce method. Attackers can craft malicious pickle files with embedded code that evades detection but execu...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-54424
(8.4 HIGH)

EPSS: 0.24%

updated 2026-07-04T03:31:08

1 posts

An Incorrect Use of Privileged APIs vulnerability in Unity Parsec on Windows hosts leads to a potential Elevation of Privilege. This issue affects Parsec through v2026-05-04.0. The patched version isΒ Parsec for Windows version 150-104a. A user can generate a situation where there is an instance of parsecd.exe running as NT AUTHORITY\SYSTEM with a user-controlled value of the AppData environment va

1 repos

https://github.com/tomadimitrie/CVE-2026-54424

thehackerwire@mastodon.social at 2026-07-04T16:00:26.000Z ##

🟠 CVE-2026-54424 - High (8.4)

An Incorrect Use of Privileged APIs vulnerability in Unity Parsec on Windows hosts leads to a potential Elevation of Privilege. This issue affects Parsec through v2026-05-04.0. The patched version is Parsec for Windows version 150-104a. A user ca...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71353
(8.1 HIGH)

EPSS: 0.30%

updated 2026-07-04T03:31:08

1 posts

picklescan before 0.0.28 fails to detect malicious pickle files that exploit torch._dynamo.guards.GuardBuilder.get function in reduce methods. Attackers can craft pickle files with embedded code that evades picklescan detection and executes arbitrary commands when loaded.

thehackerwire@mastodon.social at 2026-07-04T16:00:15.000Z ##

🟠 CVE-2025-71353 - High (8.1)

picklescan before 0.0.28 fails to detect malicious pickle files that exploit torch._dynamo.guards.GuardBuilder.get function in reduce methods. Attackers can craft pickle files with embedded code that evades picklescan detection and executes arbitr...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71342
(8.1 HIGH)

EPSS: 0.43%

updated 2026-07-04T03:31:08

1 posts

picklescan before 0.0.30 fails to detect malicious pickle files using idlelib.run.Executive.runcode in reduce methods. Attackers can embed undetected code in pickle files that executes during pickle.load, enabling remote code execution in PyTorch models and supply chain attacks.

thehackerwire@mastodon.social at 2026-07-04T13:00:49.000Z ##

🟠 CVE-2025-71342 - High (8.1)

picklescan before 0.0.30 fails to detect malicious pickle files using idlelib.run.Executive.runcode in reduce methods. Attackers can embed undetected code in pickle files that executes during pickle.load, enabling remote code execution in PyTorch ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71366
(8.1 HIGH)

EPSS: 0.45%

updated 2026-07-04T03:31:08

1 posts

picklescan before 0.0.28 fails to detect malicious torch.utils.bottleneck.__main__.run_cprofile function calls in pickle files, allowing attackers to bypass safety checks. Remote attackers can embed undetected code in pickle files to achieve arbitrary code execution when victims load the files.

thehackerwire@mastodon.social at 2026-07-04T12:01:13.000Z ##

🟠 CVE-2025-71366 - High (8.1)

picklescan before 0.0.28 fails to detect malicious torch.utils.bottleneck.__main__.run_cprofile function calls in pickle files, allowing attackers to bypass safety checks. Remote attackers can embed undetected code in pickle files to achieve arbit...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71364
(8.1 HIGH)

EPSS: 0.56%

updated 2026-07-04T03:31:08

1 posts

picklescan before 0.0.30 fails to detect the asyncio.unix_events._UnixSubprocessTransport._start function in pickle reduce methods, allowing remote code execution. Attackers can craft malicious pickle files embedding this built-in function that evade detection but execute arbitrary commands when loaded.

thehackerwire@mastodon.social at 2026-07-04T12:01:03.000Z ##

🟠 CVE-2025-71364 - High (8.1)

picklescan before 0.0.30 fails to detect the asyncio.unix_events._UnixSubprocessTransport._start function in pickle reduce methods, allowing remote code execution. Attackers can craft malicious pickle files embedding this built-in function that ev...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71362
(8.1 HIGH)

EPSS: 0.30%

updated 2026-07-04T03:31:08

1 posts

picklescan before 0.0.33 fails to detect unsafe deserialization when numpy.f2py.crackfortran functions call eval on arbitrary strings. Attackers can embed malicious code in pickle files that executes when loaded from untrusted sources.

thehackerwire@mastodon.social at 2026-07-04T12:00:54.000Z ##

🟠 CVE-2025-71362 - High (8.1)

picklescan before 0.0.33 fails to detect unsafe deserialization when numpy.f2py.crackfortran functions call eval on arbitrary strings. Attackers can embed malicious code in pickle files that executes when loaded from untrusted sources.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71375
(8.1 HIGH)

EPSS: 0.36%

updated 2026-07-04T03:31:08

1 posts

picklescan before 0.0.34 fails to detect the _operator.methodcaller built-in function when scanning pickle files for malicious code. Attackers can craft malicious pickle payloads using _operator.methodcaller that evade detection and execute arbitrary code when loaded by pickle.load().

thehackerwire@mastodon.social at 2026-07-04T06:00:34.000Z ##

🟠 CVE-2025-71375 - High (8.1)

picklescan before 0.0.34 fails to detect the _operator.methodcaller built-in function when scanning pickle files for malicious code. Attackers can craft malicious pickle payloads using _operator.methodcaller that evade detection and execute arbitr...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71347
(8.1 HIGH)

EPSS: 0.45%

updated 2026-07-04T03:31:02

1 posts

picklescan before 0.0.33 fails to detect malicious pickle files using numpy.f2py.crackfortran.param_eval function in reduce methods, allowing attackers to bypass security checks. Remote attackers can embed undetected code in pickle files that executes during deserialization, enabling arbitrary code execution in applications loading untrusted pickle data.

thehackerwire@mastodon.social at 2026-07-04T15:01:05.000Z ##

🟠 CVE-2025-71347 - High (8.1)

picklescan before 0.0.33 fails to detect malicious pickle files using numpy.f2py.crackfortran.param_eval function in reduce methods, allowing attackers to bypass security checks. Remote attackers can embed undetected code in pickle files that exec...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71356
(8.1 HIGH)

EPSS: 0.30%

updated 2026-07-04T03:31:02

1 posts

picklescan before 0.0.28 fails to detect malicious torch.fx.experimental.symbolic_shapes.ShapeEnv.evaluate_guards_expression function calls in pickle files. Attackers can embed undetected code in pickle files that executes remote code when loaded by victims.

thehackerwire@mastodon.social at 2026-07-04T07:00:37.000Z ##

🟠 CVE-2025-71356 - High (8.1)

picklescan before 0.0.28 fails to detect malicious torch.fx.experimental.symbolic_shapes.ShapeEnv.evaluate_guards_expression function calls in pickle files. Attackers can embed undetected code in pickle files that executes remote code when loaded ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-12252
(7.8 HIGH)

EPSS: 0.15%

updated 2026-07-04T02:16:23.603000

1 posts

In nltk/nltk versions 3.9.3 and earlier, five Stanford interface classes (StanfordPOSTagger, StanfordNERTagger, StanfordParser, StanfordDependencyParser, and StanfordNeuralDependencyParser) are vulnerable to untrusted JAR code execution. These classes accept user-controllable JAR paths and execute them via the `java()` function, which invokes `subprocess.Popen()` without integrity verification. Th

thehackerwire@mastodon.social at 2026-07-04T07:00:27.000Z ##

🟠 CVE-2026-12252 - High (7.8)

In nltk/nltk versions 3.9.3 and earlier, five Stanford interface classes (StanfordPOSTagger, StanfordNERTagger, StanfordParser, StanfordDependencyParser, and StanfordNeuralDependencyParser) are vulnerable to untrusted JAR code execution. These cla...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71380
(8.8 HIGH)

EPSS: 0.41%

updated 2026-07-04T02:16:23.477000

1 posts

The Execute Command node in n8n allows authenticated users to execute arbitrary commands on the host system where n8n runs. Attackers with user access or compromised credentials can exploit this node to run malicious commands, potentially leading to data exfiltration, service disruption, or complete system compromise.

thehackerwire@mastodon.social at 2026-07-04T07:00:11.000Z ##

🟠 CVE-2025-71380 - High (8.8)

The Execute Command node in n8n allows authenticated users to execute arbitrary commands on the host system where n8n runs. Attackers with user access or compromised credentials can exploit this node to run malicious commands, potentially leading ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71373
(8.1 HIGH)

EPSS: 0.44%

updated 2026-07-04T02:16:23.220000

1 posts

picklescan before 0.0.33 fails to detect operator.methodcaller function calls in pickle files, allowing attackers to bypass security checks. Remote attackers can craft malicious pickle payloads using operator.methodcaller that execute arbitrary code when loaded, compromising systems relying on picklescan for validation.

thehackerwire@mastodon.social at 2026-07-04T06:00:22.000Z ##

🟠 CVE-2025-71373 - High (8.1)

picklescan before 0.0.33 fails to detect operator.methodcaller function calls in pickle files, allowing attackers to bypass security checks. Remote attackers can craft malicious pickle payloads using operator.methodcaller that execute arbitrary co...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71372
(8.1 HIGH)

EPSS: 0.38%

updated 2026-07-04T02:16:23.097000

1 posts

Picklescan before 0.0.33 fails to detect the numpy.f2py.crackfortran.getlincoef gadget in pickle __reduce__ methods, allowing arbitrary code execution. Attackers can craft malicious pickle files that execute arbitrary Python code when loaded, bypassing Picklescan's safety checks and enabling supply-chain poisoning of shared model files.

thehackerwire@mastodon.social at 2026-07-04T06:00:09.000Z ##

🟠 CVE-2025-71372 - High (8.1)

Picklescan before 0.0.33 fails to detect the numpy.f2py.crackfortran.getlincoef gadget in pickle __reduce__ methods, allowing arbitrary code execution. Attackers can craft malicious pickle files that execute arbitrary Python code when loaded, bypa...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71367
(8.1 HIGH)

EPSS: 0.45%

updated 2026-07-04T02:16:22.833000

1 posts

picklescan before 0.0.34 fails to detect _operator.attrgetter function calls in pickle payloads, allowing attackers to bypass security checks. Remote attackers can craft malicious pickle files using _operator.attrgetter in reduce methods to execute arbitrary code when pickle.load() processes the file.

thehackerwire@mastodon.social at 2026-07-04T13:00:28.000Z ##

🟠 CVE-2025-71367 - High (8.1)

picklescan before 0.0.34 fails to detect _operator.attrgetter function calls in pickle payloads, allowing attackers to bypass security checks. Remote attackers can craft malicious pickle files using _operator.attrgetter in reduce methods to execut...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71360
(8.1 HIGH)

EPSS: 0.30%

updated 2026-07-04T02:16:22.327000

1 posts

picklescan before 0.0.29 fails to detect malicious pickle files using idlelib.calltip.get_entity function in reduce methods. Attackers can embed undetected code in pickle files that executes remote commands when loaded by victims.

thehackerwire@mastodon.social at 2026-07-04T11:59:57.000Z ##

🟠 CVE-2025-71360 - High (8.1)

picklescan before 0.0.29 fails to detect malicious pickle files using idlelib.calltip.get_entity function in reduce methods. Attackers can embed undetected code in pickle files that executes remote commands when loaded by victims.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71359
(8.1 HIGH)

EPSS: 0.43%

updated 2026-07-04T02:16:22.197000

1 posts

picklescan before 0.0.29 fails to detect malicious pickle payloads that utilize lib2to3.pgen2.grammar.Grammar.loads in the reduce method, allowing remote code execution. Attackers can craft pickle files embedding dangerous code that evades picklescan detection and executes during pickle.load() deserialization.

thehackerwire@mastodon.social at 2026-07-04T11:59:47.000Z ##

🟠 CVE-2025-71359 - High (8.1)

picklescan before 0.0.29 fails to detect malicious pickle payloads that utilize lib2to3.pgen2.grammar.Grammar.loads in the reduce method, allowing remote code execution. Attackers can craft pickle files embedding dangerous code that evades pickles...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71345
(8.1 HIGH)

EPSS: 0.43%

updated 2026-07-04T02:16:21.670000

1 posts

picklescan before 0.0.30 fails to detect malicious pickle files that invoke torch.utils.bottleneck.__main__.run_autograd_prof function. Attackers can embed undetected code in pickle files that executes during deserialization, enabling remote code execution.

thehackerwire@mastodon.social at 2026-07-04T15:00:54.000Z ##

🟠 CVE-2025-71345 - High (8.1)

picklescan before 0.0.30 fails to detect malicious pickle files that invoke torch.utils.bottleneck.__main__.run_autograd_prof function. Attackers can embed undetected code in pickle files that executes during deserialization, enabling remote code ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58286
(8.1 HIGH)

EPSS: 0.39%

updated 2026-07-03T21:31:47

3 posts

Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

hugovalters@mastodon.social at 2026-07-05T23:01:57.000Z ##

CVE-2026-58286 - Improper access control in Microsoft Edge enables network spoofing attacks. CVSS 8.1. No patch yet. Restrict browser use until fixed. #CVE #MicrosoftEdge #infosec

valtersit.com/cve/CVE-2026-582

##

thehackerwire@mastodon.social at 2026-07-05T02:59:59.000Z ##

🟠 CVE-2026-58286 - High (8.1)

Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T02:59:59.000Z ##

🟠 CVE-2026-58286 - High (8.1)

Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-57985
(7.6 HIGH)

EPSS: 0.42%

updated 2026-07-03T21:31:47

2 posts

Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-05T16:01:36.000Z ##

🟠 CVE-2026-57985 - High (7.6)

Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T16:01:36.000Z ##

🟠 CVE-2026-57985 - High (7.6)

Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58290
(7.5 HIGH)

EPSS: 0.26%

updated 2026-07-03T21:31:47

2 posts

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-05T09:00:28.000Z ##

🟠 CVE-2026-58290 - High (7.5)

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T09:00:28.000Z ##

🟠 CVE-2026-58290 - High (7.5)

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58289
(9.0 None)

EPSS: 0.53%

updated 2026-07-03T21:31:47

2 posts

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-05T09:00:18.000Z ##

πŸ”΄ CVE-2026-58289 - Critical (9)

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T09:00:18.000Z ##

πŸ”΄ CVE-2026-58289 - Critical (9)

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58288
(8.3 HIGH)

EPSS: 0.45%

updated 2026-07-03T21:31:47

2 posts

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-05T03:00:21.000Z ##

🟠 CVE-2026-58288 - High (8.3)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T03:00:21.000Z ##

🟠 CVE-2026-58288 - High (8.3)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58285
(8.3 HIGH)

EPSS: 0.45%

updated 2026-07-03T21:31:47

2 posts

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-04T23:00:49.000Z ##

🟠 CVE-2026-58285 - High (8.3)

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-04T23:00:49.000Z ##

🟠 CVE-2026-58285 - High (8.3)

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58284
(8.3 HIGH)

EPSS: 0.41%

updated 2026-07-03T21:31:47

2 posts

Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-04T23:00:39.000Z ##

🟠 CVE-2026-58284 - High (8.3)

Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-04T23:00:39.000Z ##

🟠 CVE-2026-58284 - High (8.3)

Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58294
(7.5 HIGH)

EPSS: 0.35%

updated 2026-07-03T21:31:47

2 posts

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-04T22:00:41.000Z ##

🟠 CVE-2026-58294 - High (7.5)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-04T22:00:41.000Z ##

🟠 CVE-2026-58294 - High (7.5)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58293
(8.1 HIGH)

EPSS: 0.53%

updated 2026-07-03T21:31:47

2 posts

External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-04T22:00:29.000Z ##

🟠 CVE-2026-58293 - High (8.1)

External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-04T22:00:29.000Z ##

🟠 CVE-2026-58293 - High (8.1)

External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-12481
(8.8 HIGH)

EPSS: 0.40%

updated 2026-07-03T21:31:40

2 posts

A vulnerability in keras-team/keras version 3.14.0 allows for arbitrary code execution due to improper handling of deserialization in the `Lambda` layer. Specifically, the `_raise_for_lambda_deserialization()` function fails to enforce the safe-mode guard when `safe_mode` is set to `None`, which is the default value when `from_config()` is called outside of a `SafeModeScope` context. This logic er

thehackerwire@mastodon.social at 2026-07-05T21:00:15.000Z ##

🟠 CVE-2026-12481 - High (8.8)

A vulnerability in keras-team/keras version 3.14.0 allows for arbitrary code execution due to improper handling of deserialization in the `Lambda` layer. Specifically, the `_raise_for_lambda_deserialization()` function fails to enforce the safe-mo...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T21:00:15.000Z ##

🟠 CVE-2026-12481 - High (8.8)

A vulnerability in keras-team/keras version 3.14.0 allows for arbitrary code execution due to improper handling of deserialization in the `Lambda` layer. Specifically, the `_raise_for_lambda_deserialization()` function fails to enforce the safe-mo...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-57992
(7.5 HIGH)

EPSS: 0.44%

updated 2026-07-03T21:31:40

2 posts

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-05T13:59:53.000Z ##

🟠 CVE-2026-57992 - High (7.5)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T13:59:53.000Z ##

🟠 CVE-2026-57992 - High (7.5)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-57984
(7.5 HIGH)

EPSS: 0.44%

updated 2026-07-03T21:31:39

2 posts

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-05T16:01:25.000Z ##

🟠 CVE-2026-57984 - High (7.5)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T16:01:25.000Z ##

🟠 CVE-2026-57984 - High (7.5)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-57983
(8.7 HIGH)

EPSS: 0.46%

updated 2026-07-03T21:31:39

2 posts

Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security feature over a network.

thehackerwire@mastodon.social at 2026-07-05T16:01:14.000Z ##

🟠 CVE-2026-57983 - High (8.7)

Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security feature over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T16:01:14.000Z ##

🟠 CVE-2026-57983 - High (8.7)

Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security feature over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-57981
(8.8 HIGH)

EPSS: 0.57%

updated 2026-07-03T21:31:39

2 posts

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-05T15:00:39.000Z ##

🟠 CVE-2026-57981 - High (8.8)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T15:00:39.000Z ##

🟠 CVE-2026-57981 - High (8.8)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14606
(7.8 HIGH)

EPSS: 0.14%

updated 2026-07-03T21:31:36

1 posts

A security flaw has been discovered in RT-Thread up to 5.0.2. Affected by this issue is the function CAN_Receive in the library bsp/synwit/libraries/SWM341_CSL/CMSIS/DeviceSupport/SWM341.h of the component SWM341 CAN Handler. Performing a manipulation results in stack-based buffer overflow. The attack needs to be approached locally. The exploit has been released to the public and may be used for a

thehackerwire@mastodon.social at 2026-07-03T21:00:20.000Z ##

🟠 CVE-2026-14606 - High (7.8)

A security flaw has been discovered in RT-Thread up to 5.0.2. Affected by this issue is the function CAN_Receive in the library bsp/synwit/libraries/SWM341_CSL/CMSIS/DeviceSupport/SWM341.h of the component SWM341 CAN Handler. Performing a manipula...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58423
(7.7 HIGH)

EPSS: 0.31%

updated 2026-07-03T21:17:05.550000

1 posts

LFS authentication bypass via malformed SSH sub-verb allows unauthorized read access to private repositories

thehackerwire@mastodon.social at 2026-07-04T16:00:37.000Z ##

🟠 CVE-2026-58423 - High (7.7)

LFS authentication bypass via malformed SSH sub-verb allows unauthorized read access to private repositories

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58299
(7.5 HIGH)

EPSS: 0.28%

updated 2026-07-03T21:17:04.907000

2 posts

Time-of-check time-of-use (toctou) race condition in Microsoft Edge for Android allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-04T23:00:29.000Z ##

🟠 CVE-2026-58299 - High (7.5)

Time-of-check time-of-use (toctou) race condition in Microsoft Edge for Android allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-04T23:00:29.000Z ##

🟠 CVE-2026-58299 - High (7.5)

Time-of-check time-of-use (toctou) race condition in Microsoft Edge for Android allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58295
(8.3 HIGH)

EPSS: 0.38%

updated 2026-07-03T21:17:04.417000

3 posts

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security feature over a network.

hugovalters@mastodon.social at 2026-07-05T17:05:36.000Z ##

CVE-2026-58295 - Type confusion in Microsoft Edge (Chromium-based). CVSS 8.3. Network-based security feature bypass. Patch status unknown. Monitor for updates. #CVE #MicrosoftEdge #infosec

valtersit.com/cve/CVE-2026-582

##

thehackerwire@mastodon.social at 2026-07-04T22:00:52.000Z ##

🟠 CVE-2026-58295 - High (8.3)

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security feature over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-04T22:00:52.000Z ##

🟠 CVE-2026-58295 - High (8.3)

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security feature over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58292
(7.5 HIGH)

EPSS: 0.29%

updated 2026-07-03T21:17:04.013000

1 posts

Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-04T21:00:45.000Z ##

🟠 CVE-2026-58292 - High (7.5)

Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58287
(8.3 HIGH)

EPSS: 0.45%

updated 2026-07-03T21:17:03.413000

2 posts

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-05T03:00:10.000Z ##

🟠 CVE-2026-58287 - High (8.3)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T03:00:10.000Z ##

🟠 CVE-2026-58287 - High (8.3)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58283
(8.1 HIGH)

EPSS: 0.41%

updated 2026-07-03T21:17:02.943000

2 posts

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

thehackerwire@mastodon.social at 2026-07-05T15:00:19.000Z ##

🟠 CVE-2026-58283 - High (8.1)

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T15:00:19.000Z ##

🟠 CVE-2026-58283 - High (8.1)

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58282
(8.1 HIGH)

EPSS: 0.39%

updated 2026-07-03T21:17:02.820000

3 posts

Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

thehackerwire@mastodon.social at 2026-07-05T14:00:13.000Z ##

🟠 CVE-2026-58282 - High (8.1)

Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

hugovalters@mastodon.social at 2026-07-05T12:01:24.000Z ##

CVE-2026-58282 - High severity spoofing in Microsoft Edge (Chromium-based). Improper access control. CVSS 8.1. Apply mitigations or restrict usage. #CVE #Microsoft #infosec

valtersit.com/cve/CVE-2026-582

##

thehackerwire@mastodon.social at 2026-07-05T14:00:13.000Z ##

🟠 CVE-2026-58282 - High (8.1)

Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58276
(7.5 HIGH)

EPSS: 0.44%

updated 2026-07-03T21:17:02.573000

2 posts

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-05T14:00:03.000Z ##

🟠 CVE-2026-58276 - High (7.5)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T14:00:03.000Z ##

🟠 CVE-2026-58276 - High (7.5)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-57986
(7.5 HIGH)

EPSS: 0.44%

updated 2026-07-03T21:17:01.780000

2 posts

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-05T17:00:21.000Z ##

🟠 CVE-2026-57986 - High (7.5)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T17:00:21.000Z ##

🟠 CVE-2026-57986 - High (7.5)

Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-57975
(7.5 HIGH)

EPSS: 0.44%

updated 2026-07-03T21:17:01.077000

2 posts

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-05T15:00:29.000Z ##

🟠 CVE-2026-57975 - High (7.5)

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T15:00:29.000Z ##

🟠 CVE-2026-57975 - High (7.5)

Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-57974
(8.8 HIGH)

EPSS: 0.57%

updated 2026-07-03T21:17:00.957000

2 posts

Integer overflow or wraparound in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-05T17:59:52.000Z ##

🟠 CVE-2026-57974 - High (8.8)

Integer overflow or wraparound in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T17:59:52.000Z ##

🟠 CVE-2026-57974 - High (8.8)

Integer overflow or wraparound in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-56645
(8.8 HIGH)

EPSS: 0.57%

updated 2026-07-03T21:17:00.670000

2 posts

Heap-based buffer overflow in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

thehackerwire@mastodon.social at 2026-07-05T17:00:44.000Z ##

🟠 CVE-2026-56645 - High (8.8)

Heap-based buffer overflow in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T17:00:44.000Z ##

🟠 CVE-2026-56645 - High (8.8)

Heap-based buffer overflow in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-28744
(8.1 HIGH)

EPSS: 0.34%

updated 2026-07-03T21:17:00.003000

2 posts

Gitea versions up to and including 1.26.1 allow Git smart HTTP requests authenticated with bearer tokens to bypass repository token scope checks.

thehackerwire@mastodon.social at 2026-07-05T17:00:33.000Z ##

🟠 CVE-2026-28744 - High (8.1)

Gitea versions up to and including 1.26.1 allow Git smart HTTP requests authenticated with bearer tokens to bypass repository token scope checks.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T17:00:33.000Z ##

🟠 CVE-2026-28744 - High (8.1)

Gitea versions up to and including 1.26.1 allow Git smart HTTP requests authenticated with bearer tokens to bypass repository token scope checks.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-28737
(8.7 HIGH)

EPSS: 0.34%

updated 2026-07-03T21:16:59.787000

2 posts

Gitea versions from 1.25.0 before 1.26.0 allow stored cross-site scripting through the extensionsRequired field in glTF files rendered by the 3D file viewer.

thehackerwire@mastodon.social at 2026-07-05T20:00:17.000Z ##

🟠 CVE-2026-28737 - High (8.7)

Gitea versions from 1.25.0 before 1.26.0 allow stored cross-site scripting through the extensionsRequired field in glTF files rendered by the 3D file viewer.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T20:00:17.000Z ##

🟠 CVE-2026-28737 - High (8.7)

Gitea versions from 1.25.0 before 1.26.0 allow stored cross-site scripting through the extensionsRequired field in glTF files rendered by the 3D file viewer.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-28699
(8.1 HIGH)

EPSS: 0.57%

updated 2026-07-03T21:16:59.567000

2 posts

Gitea versions up to and including 1.26.1 allow OAuth2 access token scope enforcement to be bypassed through HTTP Basic authentication.

1 repos

https://github.com/Alardiians/gitea-CVE-2026-28699

thehackerwire@mastodon.social at 2026-07-05T18:00:15.000Z ##

🟠 CVE-2026-28699 - High (8.1)

Gitea versions up to and including 1.26.1 allow OAuth2 access token scope enforcement to be bypassed through HTTP Basic authentication.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T18:00:15.000Z ##

🟠 CVE-2026-28699 - High (8.1)

Gitea versions up to and including 1.26.1 allow OAuth2 access token scope enforcement to be bypassed through HTTP Basic authentication.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-26231
(8.5 HIGH)

EPSS: 0.29%

updated 2026-07-03T21:16:58.200000

2 posts

Gitea versions up to and including 1.26.1 allow the Allow edits from maintainers permission path to authorize commits to repositories that the user can read but should not be able to write.

thehackerwire@mastodon.social at 2026-07-05T20:00:28.000Z ##

🟠 CVE-2026-26231 - High (8.5)

Gitea versions up to and including 1.26.1 allow the Allow edits from maintainers permission path to authorize commits to repositories that the user can read but should not be able to write.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T20:00:28.000Z ##

🟠 CVE-2026-26231 - High (8.5)

Gitea versions up to and including 1.26.1 allow the Allow edits from maintainers permission path to authorize commits to repositories that the user can read but should not be able to write.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-22874
(9.6 CRITICAL)

EPSS: 0.46%

updated 2026-07-03T21:16:57.157000

2 posts

Gitea versions up to and including 1.26.2 have incomplete SSRF protection in webhook and migration allow-list filtering.

2 repos

https://github.com/Eliot-code/CVE-2026-22874-PoC

https://github.com/M8seven/cve-2026-22874-gitea-ssrf-allowlist

thehackerwire@mastodon.social at 2026-07-05T20:59:54.000Z ##

πŸ”΄ CVE-2026-22874 - Critical (9.6)

Gitea versions up to and including 1.26.2 have incomplete SSRF protection in webhook and migration allow-list filtering.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T20:59:54.000Z ##

πŸ”΄ CVE-2026-22874 - Critical (9.6)

Gitea versions up to and including 1.26.2 have incomplete SSRF protection in webhook and migration allow-list filtering.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-22555
(8.1 HIGH)

EPSS: 0.30%

updated 2026-07-03T21:16:57.023000

2 posts

Gitea versions before 1.26.0 allow API users to fork a repository into an organization without first passing the CanCreateOrgRepo check, which can expose organization secrets.

thehackerwire@mastodon.social at 2026-07-05T20:00:38.000Z ##

🟠 CVE-2026-22555 - High (8.1)

Gitea versions before 1.26.0 allow API users to fork a repository into an organization without first passing the CanCreateOrgRepo check, which can expose organization secrets.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T20:00:38.000Z ##

🟠 CVE-2026-22555 - High (8.1)

Gitea versions before 1.26.0 allow API users to fork a repository into an organization without first passing the CanCreateOrgRepo check, which can expose organization secrets.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14605
(7.8 HIGH)

EPSS: 0.14%

updated 2026-07-03T20:16:52.070000

1 posts

A vulnerability was identified in RT-Thread up to 5.0.2. Affected by this vulnerability is the function recvmsg in the library bsp/loongson/ls1cdev/libraries/ls1c_can.h of the component ls1c CAN Handler. Such manipulation leads to stack-based buffer overflow. Local access is required to approach this attack. The exploit is publicly available and might be used. The vendor was contacted early about

thehackerwire@mastodon.social at 2026-07-03T21:00:10.000Z ##

🟠 CVE-2026-14605 - High (7.8)

A vulnerability was identified in RT-Thread up to 5.0.2. Affected by this vulnerability is the function recvmsg in the library bsp/loongson/ls1cdev/libraries/ls1c_can.h of the component ls1c CAN Handler. Such manipulation leads to stack-based buff...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-49814
(7.2 HIGH)

EPSS: 1.22%

updated 2026-07-03T15:32:09

1 posts

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A high privileged attacker with remote access could potentially exploi

hugovalters@mastodon.social at 2026-07-05T05:06:13.000Z ##

CVE-2026-49814 - High-severity OS Command Injection in Dell PowerProtect Data Domain. CVSS 7.2. High-privileged remote attacker can execute arbitrary commands. Patch status unknown. Monitor for updates. #CVE #Dell #infosec

valtersit.com/cve/CVE-2026-498

##

CVE-2026-14460
(8.8 HIGH)

EPSS: 0.16%

updated 2026-07-03T15:32:09

1 posts

Missing Authorization vulnerability in TUBITAK BILGEM Software Technologies Research Institute pardus-software allows Argument Injection. This issue affects pardus-software: from <= 1.0.4 before 1.0.5.

1 repos

https://github.com/dasokkk/CVE-2026-14459-14460-pardus-software

thehackerwire@mastodon.social at 2026-07-03T17:00:28.000Z ##

🟠 CVE-2026-14460 - High (8.8)

Missing Authorization vulnerability in TUBITAK BILGEM Software Technologies Research Institute pardus-software allows Argument Injection.

This issue affects pardus-software: from &lt;= 1.0.4 before 1.0.5.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14459
(8.8 HIGH)

EPSS: 0.20%

updated 2026-07-03T15:16:32.253000

1 posts

Improper neutralization of argument delimiters in a command ('argument injection') vulnerability in TUBITAK BILGEM Software Technologies Research Institute pardus-software allows Argument Injection. This issue affects pardus-software: from <= 1.0.4 before 1.0.5.

1 repos

https://github.com/dasokkk/CVE-2026-14459-14460-pardus-software

thehackerwire@mastodon.social at 2026-07-03T17:00:19.000Z ##

🟠 CVE-2026-14459 - High (8.8)

Improper neutralization of argument delimiters in a command ('argument injection') vulnerability in TUBITAK BILGEM Software Technologies Research Institute pardus-software allows Argument Injection.

This issue affects pardus-software: from &lt;= ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-13341
(7.4 HIGH)

EPSS: 0.26%

updated 2026-07-03T12:31:51

1 posts

A vulnerability exists in the Kong Konnect Model Context Protocol (MCP) server prior to version 1.0.0, which could allow a remote attacker to perform an indirect prompt injection attack and execute unintended API requests.

offseq@infosec.exchange at 2026-07-03T13:30:28.000Z ##

KongHQ mcp-konnect (<1.0.0) has a HIGH severity flaw (CVE-2026-13341, CVSS 7.4) allowing remote prompt injection with risk to confidentiality. No patch β€” monitor vendor updates. radar.offseq.com/threat/cve-20 #OffSeq #KongHQ #Infosec #Vulnerability

##

CVE-2026-10055
(8.5 HIGH)

EPSS: 0.30%

updated 2026-07-03T11:16:27.600000

2 posts

In Eclipse Theia since version 1.26.0, the backend /services/request-service RPC accepts an attacker-controlled URL from any client connected to the standard /services messaging endpoint, performs the HTTP request server-side, and returns the full response body to the caller. Because the destination URL is neither validated nor allowlisted, a remote attacker with access to the Theia service co

thehackerwire@mastodon.social at 2026-07-03T21:00:30.000Z ##

🟠 CVE-2026-10055 - High (8.5)

In Eclipse Theia since version 1.26.0, the backend /services/request-service RPC accepts an attacker-controlled URL from any client connected to the standard /services messaging endpoint, performs the HTTP request server-side, and returns the full...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-07-03T12:00:28.000Z ##

Server-Side Request Forgery (SSRF) in Eclipse Theia 1.26.0 (CVE-2026-10055, HIGH, CVSS 8.5). Attackers with access to the service connection can target internal resources. Restrict access now. radar.offseq.com/threat/cve-20 #OffSeq #SSRF #EclipseTheia #Cybersecurity

##

CVE-2026-4321
(9.8 CRITICAL)

EPSS: 0.27%

updated 2026-07-03T10:16:32.760000

2 posts

Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Raera - Ankara Web Design and Digital Advertising Agency Destekz allows SQL Injection. This issue affects Destekz: through 02062026.Β NOTE: The vendor was contacted and it was learned that the product is not supported.

thehackerwire@mastodon.social at 2026-07-05T22:00:34.000Z ##

πŸ”΄ CVE-2026-4321 - Critical (9.8)

Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Raera - Ankara Web Design and Digital Advertising Agency Destekz allows SQL Injection.

This issue affects Destekz: through 02062026. NOTE: The ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T22:00:34.000Z ##

πŸ”΄ CVE-2026-4321 - Critical (9.8)

Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Raera - Ankara Web Design and Digital Advertising Agency Destekz allows SQL Injection.

This issue affects Destekz: through 02062026. NOTE: The ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14544
(9.8 CRITICAL)

EPSS: 0.51%

updated 2026-07-03T09:31:35

3 posts

A flaw was found in HPLIP (HP Linux Imaging and Printing Software). This vulnerability, an incomplete fix for CVE-2026-8631, may allow a remote attacker to escalate privileges or achieve arbitrary code execution. This can occur through an integer overflow in the hpcups processing path when handling specially crafted print data.

thehackerwire@mastodon.social at 2026-07-05T22:00:45.000Z ##

πŸ”΄ CVE-2026-14544 - Critical (9.8)

A flaw was found in HPLIP (HP Linux Imaging and Printing Software). This vulnerability, an incomplete fix for CVE-2026-8631, may allow a remote attacker to escalate privileges or achieve arbitrary code execution. This can occur through an integer ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T22:00:45.000Z ##

πŸ”΄ CVE-2026-14544 - Critical (9.8)

A flaw was found in HPLIP (HP Linux Imaging and Printing Software). This vulnerability, an incomplete fix for CVE-2026-8631, may allow a remote attacker to escalate privileges or achieve arbitrary code execution. This can occur through an integer ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-07-03T10:30:27.000Z ##

CVE-2026-14544: CRITICAL integer overflow in HPLIP (RHEL 10) enables remote code execution or privilege escalation via crafted print data πŸ–¨οΈ. Patch status not confirmed. Stay updated: radar.offseq.com/threat/cve-20 #OffSeq #CVE202614544 #LinuxSecurity

##

CVE-2026-4967
(7.5 HIGH)

EPSS: 0.40%

updated 2026-07-03T07:16:24.333000

2 posts

In IMS, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed.

thehackerwire@mastodon.social at 2026-07-05T22:59:50.000Z ##

🟠 CVE-2026-4967 - High (7.5)

In IMS, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T22:59:50.000Z ##

🟠 CVE-2026-4967 - High (7.5)

In IMS, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-9725
(9.1 CRITICAL)

EPSS: 0.74%

updated 2026-07-03T06:32:11

3 posts

The Printcart Web to Print Product Designer for WooCommerce plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 2.5.2 This is due to insufficient path validation in the store_design_data() function, which constructs a filesystem path from the user-supplied 'nbd_item_key' POST parameter sanitized only with sanitize_text_field() β€” which does not strip path

thehackerwire@mastodon.social at 2026-07-05T23:00:00.000Z ##

πŸ”΄ CVE-2026-9725 - Critical (9.1)

The Printcart Web to Print Product Designer for WooCommerce plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 2.5.2 This is due to insufficient path validation in the store_design_data() function, whic...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T23:00:00.000Z ##

πŸ”΄ CVE-2026-9725 - Critical (9.1)

The Printcart Web to Print Product Designer for WooCommerce plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 2.5.2 This is due to insufficient path validation in the store_design_data() function, whic...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-07-03T06:00:25.000Z ##

CRITICAL: CVE-2026-9725 in Printcart Web to Print Product Designer for WooCommerce ≀2.5.2 enables unauthenticated file deletion via path traversal. No patch yet β€” restrict AJAX endpoints & monitor logs. radar.offseq.com/threat/cve-20 #OffSeq #WordPress #CVE2026_9725 #PathTraversal

##

CVE-2026-14352
(7.5 HIGH)

EPSS: 0.47%

updated 2026-07-03T06:16:21.787000

2 posts

The AR for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 8.40 via the 'file' parameter parameter. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information. The three intended access controls all fail: valid nonces are freely minted by unauthentica

thehackerwire@mastodon.social at 2026-07-05T23:00:09.000Z ##

🟠 CVE-2026-14352 - High (7.5)

The AR for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 8.40 via the 'file' parameter parameter. This makes it possible for unauthenticated attackers to read the contents of arbitrary ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T23:00:09.000Z ##

🟠 CVE-2026-14352 - High (7.5)

The AR for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 8.40 via the 'file' parameter parameter. This makes it possible for unauthenticated attackers to read the contents of arbitrary ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-44941
(8.4 HIGH)

EPSS: 0.49%

updated 2026-07-03T04:17:53.300000

1 posts

A relative path traversal in the "keyhint" option in repomd.xml parsing of libzypp before 17.38.12 can be used by attackers able to supply a malicious repository to inject or overwrite files in the target system as root.

thehackerwire@mastodon.social at 2026-07-02T17:01:01.000Z ##

🟠 CVE-2026-44941 - High (8.4)

A relative path traversal in the "keyhint" option in repomd.xml parsing of libzypp before 17.38.12 can be used by attackers able to supply a malicious repository to inject or overwrite files in the target system as root.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14424
(9.6 CRITICAL)

EPSS: 0.21%

updated 2026-07-03T04:17:50.160000

1 posts

Use after free in Dawn in Google Chrome on Mac prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

offseq@infosec.exchange at 2026-07-02T04:30:25.000Z ##

CVE-2026-14424: HIGH severity use-after-free in Chrome (Mac <150.0.7871.46) enables sandbox escape via crafted HTML. Update to 150.0.7871.46+ now. radar.offseq.com/threat/cve-20 #OffSeq #Chrome #Infosec #Vuln

##

CVE-2026-14417
(9.6 CRITICAL)

EPSS: 0.21%

updated 2026-07-03T04:17:48.820000

2 posts

Use after free in Dawn in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

offseq@infosec.exchange at 2026-07-02T03:00:27.000Z ##

CVE-2026-14417: CRITICAL use-after-free in Chrome’s Dawn (pre-150.0.7871.46). Remote attackers can potentially escape the sandbox β€” patch ASAP. Details: radar.offseq.com/threat/cve-20 #OffSeq #Chrome #CVE202614417 #Infosec

##

thehackerwire@mastodon.social at 2026-07-02T02:00:55.000Z ##

πŸ”΄ CVE-2026-14417 - Critical (9.6)

Use after free in Dawn in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14416
(9.6 CRITICAL)

EPSS: 0.24%

updated 2026-07-03T04:17:48.653000

1 posts

Out of bounds read in Dawn in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)

thehackerwire@mastodon.social at 2026-07-02T02:00:43.000Z ##

πŸ”΄ CVE-2026-14416 - Critical (9.6)

Out of bounds read in Dawn in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14327
(7.5 HIGH)

EPSS: 0.46%

updated 2026-07-03T03:34:19

2 posts

The AR for WordPress plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 8.40 via the 'file' parameter parameter. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information. Exploitation requires an attacker to first obtain a valid nonce and secure nonce via the publ

thehackerwire@mastodon.social at 2026-07-05T23:59:54.000Z ##

🟠 CVE-2026-14327 - High (7.5)

The AR for WordPress plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 8.40 via the 'file' parameter parameter. This makes it possible for unauthenticated attackers to read the contents of arbitrary fi...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T23:59:54.000Z ##

🟠 CVE-2026-14327 - High (7.5)

The AR for WordPress plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 8.40 via the 'file' parameter parameter. This makes it possible for unauthenticated attackers to read the contents of arbitrary fi...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-13768
(10.0 CRITICAL)

EPSS: 0.56%

updated 2026-07-03T00:32:02

3 posts

Gardyn devices expose a privileged iothubowner key. Access to this key will allow a malicious user to invoke an IoTHub Registry Manager function which returns connection information for all Gardyn Home Kit and Studio devices. Access to this key also allows a malicious user to execute arbitrary commands on a specific connected device and may allow the malicious user to pivot to other devices on the

1 repos

https://github.com/MichaelAdamGroberman/CVE-2026-13768

thehackerwire@mastodon.social at 2026-07-06T00:00:05.000Z ##

πŸ”΄ CVE-2026-13768 - Critical (10)

Gardyn devices expose a privileged iothubowner key. Access to this key will allow a malicious user to invoke an IoTHub Registry Manager function which returns connection information for all Gardyn Home Kit and Studio devices. Access to this key al...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-06T00:00:05.000Z ##

πŸ”΄ CVE-2026-13768 - Critical (10)

Gardyn devices expose a privileged iothubowner key. Access to this key will allow a malicious user to invoke an IoTHub Registry Manager function which returns connection information for all Gardyn Home Kit and Studio devices. Access to this key al...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-07-03T00:00:42.000Z ##

CVE-2026-13768: Gardyn Home Firmware (CRITICAL, CVSS 10) exposes a privileged iothubowner key, enabling attackers to control devices & move laterally on networks. No patch yet. Monitor and segment IoT devices. radar.offseq.com/threat/cve-20 #OffSeq #IoTSecurity #CVE202613768

##

CVE-2026-41106
(9.3 CRITICAL)

EPSS: 0.54%

updated 2026-07-03T00:31:53

2 posts

Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.

thehackerwire@mastodon.social at 2026-07-06T00:00:17.000Z ##

πŸ”΄ CVE-2026-41106 - Critical (9.3)

Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-06T00:00:17.000Z ##

πŸ”΄ CVE-2026-41106 - Critical (9.3)

Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-45499
(9.9 CRITICAL)

EPSS: 0.62%

updated 2026-07-03T00:31:53

1 posts

Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a network.

thehackerwire@mastodon.social at 2026-07-03T00:00:06.000Z ##

πŸ”΄ CVE-2026-45499 - Critical (9.9)

Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-13368
(0 None)

EPSS: 0.59%

updated 2026-07-03T00:16:50.890000

4 posts

WatchGuard Fireware OS contains a race condition leading to a use-after-free vulnerability in LDAP authentication for the Mobile User VPN with IKEv2. A remote unauthenticated attacker could exploit this vulnerability to execute arbitrary code in the context of the iked process on Fireboxes that have a Mobile VPN with IKEv2 configured to use an external LDAP authentication server. This vulnerabili

beyondmachines1 at 2026-07-05T08:01:07.375Z ##

WatchGuard Patches Third Critical IKEv2 RCE in Firebox Appliances

WatchGuard patched a critical pre-authentication RCE vulnerability (CVE-2026-13368) in Firebox appliances. The vulnerability allows unauthenticated attackers to gain administrative control. Legacy T15 and T35 models currently do not have a patch.

**If you use WatchGuard Firebox firewalls, read the advisory in detail. Plan a very quick update to Fireware OS 2026.2.1 or 12.12.1. If you run legacy T15/T35 models, disable external LDAP authentication for IKEv2 as a temporary fix, and if you're on version 11.x, migrate to supported hardware since no patch is coming.**

beyondmachines.net/event_detai

##

beyondmachines1@infosec.exchange at 2026-07-05T08:01:07.000Z ##

WatchGuard Patches Third Critical IKEv2 RCE in Firebox Appliances

WatchGuard patched a critical pre-authentication RCE vulnerability (CVE-2026-13368) in Firebox appliances. The vulnerability allows unauthenticated attackers to gain administrative control. Legacy T15 and T35 models currently do not have a patch.

**If you use WatchGuard Firebox firewalls, read the advisory in detail. Plan a very quick update to Fireware OS 2026.2.1 or 12.12.1. If you run legacy T15/T35 models, disable external LDAP authentication for IKEv2 as a temporary fix, and if you're on version 11.x, migrate to supported hardware since no patch is coming.**
#cybersecurity #infosec #advisory #vulnerability
beyondmachines.net/event_detai

##

DailyCyberSecurity@infosec.exchange at 2026-07-03T02:07:11.000Z ##

WatchGuard Firebox vulnerabilities include a critical unauthenticated RCE (CVE-2026-13368, CVSS 9.2) plus six more Fireware OS flaws. Patch now.

#WatchGuard #Firebox #CVE202613368 #FirewareOS #CyberSecurity

securityonline.info/watchguard

##

offseq@infosec.exchange at 2026-07-03T01:30:27.000Z ##

CVE-2026-13368 (CRITICAL, CVSS 9.2): WatchGuard Fireware OS LDAP auth flaw in Mobile VPN with IKEv2 allows remote code execution (iked process). Disable affected configs or restrict access until patch. radar.offseq.com/threat/cve-20 #OffSeq #WatchGuard #CVE202613368 #Infosec

##

CVE-2026-57100
(9.9 CRITICAL)

EPSS: 0.64%

updated 2026-07-02T23:16:51.267000

1 posts

Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized attacker to elevate privileges over a network.

thehackerwire@mastodon.social at 2026-07-03T00:00:28.000Z ##

πŸ”΄ CVE-2026-57100 - Critical (9.9)

Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized attacker to elevate privileges over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-54998
(8.8 HIGH)

EPSS: 0.64%

updated 2026-07-02T23:16:51.137000

1 posts

Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network.

1 repos

https://github.com/sentinel-aidefense/CVE-2026-54998-exp

thehackerwire@mastodon.social at 2026-07-03T00:00:17.000Z ##

🟠 CVE-2026-54998 - High (8.8)

Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-57517
(9.8 CRITICAL)

EPSS: 0.59%

updated 2026-07-02T21:33:17

1 posts

Control Web Panel before 0.9.8.1225 contains a blind SQL injection vulnerability that allows unauthenticated remote attackers to execute arbitrary SQL queries by submitting unsanitized input through the userRes POST parameter at the user endpoint. Attackers can exploit MySQL root privileges obtained via the injection to write arbitrary files using INTO DUMPFILE, enabling deployment of a PHP webshe

1 repos

https://github.com/shinthink/CVE-2026-57517

CVE-2026-59099
(9.1 CRITICAL)

EPSS: 0.36%

updated 2026-07-02T21:32:15

1 posts

Apereo CAS 7.3.0 before 8.0.0-RC6 contains a cryptographic vulnerability that allows remote unauthenticated attackers to recover plaintext conversation state by exploiting AES-GCM initialization vector reuse across the server lifetime. Attackers can collect multiple client-side webflow execution tokens from the unauthenticated login page and perform known-plaintext analysis to decrypt the webflow

thehackerwire@mastodon.social at 2026-07-02T22:00:33.000Z ##

πŸ”΄ CVE-2026-59099 - Critical (9.1)

Apereo CAS 7.3.0 before 8.0.0-RC6 contains a cryptographic vulnerability that allows remote unauthenticated attackers to recover plaintext conversation state by exploiting AES-GCM initialization vector reuse across the server lifetime. Attackers c...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58460
(7.7 HIGH)

EPSS: 0.14%

updated 2026-07-02T21:16:57.080000

1 posts

react-native-receive-sharing-intent contains a path traversal vulnerability that allows a co-resident malicious application to write files outside the intended cache directory by supplying a crafted _display_name value containing dot-dot path components through a malicious ContentProvider. Attackers can fire an explicit ACTION_SEND intent at the consuming app's exported share-receiver activity to

thehackerwire@mastodon.social at 2026-07-02T22:00:14.000Z ##

🟠 CVE-2026-58460 - High (7.7)

react-native-receive-sharing-intent contains a path traversal vulnerability that allows a co-resident malicious application to write files outside the intended cache directory by supplying a crafted _display_name value containing dot-dot path comp...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-52830
(9.4 CRITICAL)

EPSS: 0.42%

updated 2026-07-02T20:38:51

1 posts

## Summary fast-mcp-telegram validates HTTP Bearer tokens by joining the raw token string into a session-file path. The verifier rejects the exact reserved token `telegram`, but it does not reject path separators or normalize the path before checking whether the session file exists. A remote HTTP client can therefore authenticate as the default legacy session with a token such as `../fast-mcp-tel

thehackerwire@mastodon.social at 2026-07-02T22:00:24.000Z ##

πŸ”΄ CVE-2026-52830 - Critical (9.4)

fast-mcp-telegram is a Telegram MCP Server. Prior to 0.19.1, fast-mcp-telegram validates HTTP Bearer tokens by joining the raw token string into a session-file path. The verifier rejects the exact reserved token telegram, but it does not reject pa...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58455
(9.8 CRITICAL)

EPSS: 1.19%

updated 2026-07-02T18:36:28

1 posts

Dockwatch through 0.6.567 contains an unauthenticated OS command injection vulnerability that allows remote attackers to execute arbitrary shell commands by exploiting a missing exit() after an authentication redirect in loader.php combined with unsanitized input passed to shell_exec() in ajax/compose.php. Attackers can seed the required session flag through the incomplete auth check, then inject

thehackerwire@mastodon.social at 2026-07-02T17:00:52.000Z ##

πŸ”΄ CVE-2026-58455 - Critical (9.8)

Dockwatch through 0.6.567 contains an unauthenticated OS command injection vulnerability that allows remote attackers to execute arbitrary shell commands by exploiting a missing exit() after an authentication redirect in loader.php combined with u...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14430
(8.8 HIGH)

EPSS: 0.29%

updated 2026-07-02T18:36:25

1 posts

Integer overflow in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-07-02T03:00:19.000Z ##

🟠 CVE-2026-14430 - High (8.8)

Integer overflow in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-13773
(6.0 MEDIUM)

EPSS: 3.42%

updated 2026-07-02T18:26:29.023000

2 posts

IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 Approximately 50 generated CORBA stub classes in WebSphere eXtreme Scale's ogclient.jar call ORB.string_to_object() on an attacker-controlled IOR string during Java deserialization, turning any unfiltered ObjectInputStream sink in WAS into outbound IIOP SSRF to an attacker-chosen host; when chained with the IBM ORB's getUserException class-instan

secdb at 2026-07-06T00:25:23.369Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

##

secdb@infosec.exchange at 2026-07-06T00:25:23.000Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

#ZEN #SecDB #InfoSec

##

CVE-2026-11712
(9.3 CRITICAL)

EPSS: 0.22%

updated 2026-07-02T18:06:52.277000

2 posts

IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the administrative console help system.

DailyCyberSecurity at 2026-07-06T02:05:34.292Z ##

IBM WebSphere vulnerabilities like CVE-2026-11712 expose servers to severe XSS and path traversal attacks. Patch systems immediately.

securityonline.info/ibm-websph

##

DailyCyberSecurity@infosec.exchange at 2026-07-06T02:05:34.000Z ##

IBM WebSphere vulnerabilities like CVE-2026-11712 expose servers to severe XSS and path traversal attacks. Patch systems immediately.

#IBM #WebSphere #CyberSecurity #CVE202611712

securityonline.info/ibm-websph

##

CVE-2026-56004
(10.0 CRITICAL)

EPSS: 0.38%

updated 2026-07-02T17:45:44.830000

1 posts

A shellcode injection in the mercurial handler of the obs tar_scm source service before version 0.12.4 could be used by attackers able to provide a _service file to execute code as the source service or the local user checking out the malicious services

thehackerwire@mastodon.social at 2026-07-02T17:01:59.000Z ##

πŸ”΄ CVE-2026-56004 - Critical (10)

A shellcode injection in the mercurial handler of the obs tar_scm source service before version 0.12.4 could be used by attackers able to provide a _service file to execute code as the source service or the local user checking out the malicious se...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58457
(9.8 CRITICAL)

EPSS: 1.67%

updated 2026-07-02T17:42:23.640000

2 posts

Shenzhen Aitemi M300 Wi-Fi Repeater (hardware model MT02) contains an unauthenticated OS command injection vulnerability that allows network-adjacent attackers to execute arbitrary shell commands by injecting unsanitized input through the smacfilter_conf handler in the commuos web backend. Attackers can append semicolon-delimited payloads to the name, enable, or mac GET parameters, which are passe

secdb at 2026-07-06T00:25:23.369Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

##

secdb@infosec.exchange at 2026-07-06T00:25:23.000Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

#ZEN #SecDB #InfoSec

##

CVE-2026-10109
(9.8 CRITICAL)

EPSS: 0.86%

updated 2026-07-02T16:46:53.917000

1 posts

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to remote code execution due to improper pre-auth DRDA handshake handling.

DailyCyberSecurity@infosec.exchange at 2026-07-02T02:40:40.000Z ##

A critical IBM Db2 RCE flaw (CVE-2026-10109) allows pre-auth code execution. IBM patched it plus two other Db2 bugs. Update 11.5 and 12.1 now.

securityonline.info/ibm-db2-rc

##

CVE-2026-57683
(9.3 CRITICAL)

EPSS: 0.25%

updated 2026-07-02T16:16:34.820000

1 posts

Unauthenticated SQL Injection in WP Fast Total Search <= 1.80.280 versions.

offseq@infosec.exchange at 2026-07-02T12:00:30.000Z ##

CVE-2026-57683: CRITICAL SQL injection (CVSS 9.3) in Epsiloncool WP Fast Total Search ≀1.80.280 enables unauthenticated exploitation. Patch pending β€” monitor for fixes and restrict access. radar.offseq.com/threat/cve-20 #OffSeq #WordPress #Infosec #Vuln

##

CVE-2026-55112
(7.5 HIGH)

EPSS: 0.19%

updated 2026-07-02T15:32:20

1 posts

A malicious actor with access to the network and low privileges and under certain conditions could exploit an Improper Access Control vulnerability found in UniFi OS with UniFi Protect Application to escalate privileges on the host device.

thehackerwire@mastodon.social at 2026-07-02T17:02:09.000Z ##

🟠 CVE-2026-55112 - High (7.5)

A malicious actor with access to the network and low privileges and under certain conditions could exploit an Improper Access Control vulnerability found in UniFi OS with UniFi Protect Application to escalate privileges on the host device.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-56842
(7.5 HIGH)

EPSS: 0.19%

updated 2026-07-02T15:32:20

1 posts

A malicious actor with access to the network and under certain conditions could exploit an Incorrect Authorization vulnerability found in UniFi Network Application to persist privileges within UniFi Network Application after such access had been removed.

thehackerwire@mastodon.social at 2026-07-02T17:01:50.000Z ##

🟠 CVE-2026-56842 - High (7.5)

A malicious actor with access to the network and under certain conditions could exploit an Incorrect Authorization vulnerability found in UniFi Network Application to persist privileges within UniFi Network Application after such access had been r...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-56841
(8.8 HIGH)

EPSS: 0.24%

updated 2026-07-02T15:32:20

1 posts

A malicious actor with access to the network and low privileges could exploit an authenticated SQL Injection vulnerability found in UniFi Protect Application to escalate privileges on the host device.

thehackerwire@mastodon.social at 2026-07-02T17:01:11.000Z ##

🟠 CVE-2026-56841 - High (8.8)

A malicious actor with access to the network and low privileges could exploit an authenticated SQL Injection vulnerability found in UniFi Protect Application to escalate privileges on the host device.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-54403
(8.6 HIGH)

EPSS: 0.48%

updated 2026-07-02T15:32:20

1 posts

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in certain devices running UniFi OS to bypass authentication of such UniFi OS devices or instances.

phillip@social.lol at 2026-07-02T16:26:30.000Z ##

@cR0w ../ spotted!

Summary 7 of 25

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in certain devices running UniFi OS to bypass authentication of such UniFi OS devices or instances.

CVE-2026-54403

##

CVE-2026-5524
(9.8 CRITICAL)

EPSS: 0.54%

updated 2026-07-02T15:17:11.707000

1 posts

The Divi Form Builder plugin for WordPress is vulnerable to Arbitrary File Upload leading to Remote Code Execution in all versions up to and including 5.1.8. This is due to insufficient file extension validation in the do_image_upload() function where user-supplied input from the acceptFileTypes POST parameter is directly interpolated into a regular expression used to validate uploaded files. Atta

1 repos

https://github.com/caterscam/CVE-2026-5524-PoC

offseq@infosec.exchange at 2026-07-02T13:30:31.000Z ##

CVE-2026-5524: Divi Form Builder <=5.1.8 has a CRITICAL file upload vuln (CVSS 9.8). Unauth RCE possible via PHP extensions not blocked by .htaccess, esp. on Nginx. Restrict uploads, monitor for patch. radar.offseq.com/threat/cve-20 #OffSeq #WordPress #Infosec #CVE2026_5524

##

CVE-2026-31694
(7.8 HIGH)

EPSS: 0.13%

updated 2026-07-02T15:16:59.813000

1 posts

In the Linux kernel, the following vulnerability has been resolved: fuse: reject oversized dirents in page cache fuse_add_dirent_to_cache() computes a serialized dirent size from the server-controlled namelen field and copies the dirent into a single page-cache page. The existing logic only checks whether the dirent fits in the remaining space of the current page and advances to a fresh page if

1 repos

https://github.com/0xCyberstan/CVE-2026-31694-POC

lobsters@mastodon.social at 2026-07-02T01:00:14.000Z ##

Unprivileged root via an out-of-bounds write in the FUSE readdir cache (CVE-2026-31694) lobste.rs/s/0kc445 #linux #security
cyberstan.co.uk/fuse-readdir-o

##

CVE-2026-6688
(7.6 HIGH)

EPSS: 0.21%

updated 2026-07-02T14:38:46.120000

2 posts

FatFs R0.16 and earlier contains a downstream-caller vulnerability pattern associated with FatFs long filename handling. With LFN enabled, fno.fname can be up to 255 characters; many callers copy it into short fixed buffers without bounds checks, causing overflow. This maps to CWE-120 (Buffer Copy without Checking Size of Input). Estimated CVSS v3.1 vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H

nemo@mas.to at 2026-07-05T02:54:08.000Z ##

πŸ€– Researchers at runZero say AI-assisted testing found 7 security flaws in the FatFs FAT/exFAT filesystem library (CVE-2026-6682 to CVE-2026-6688), potentially exposing millions of embedded devices via malicious USB drives/SD cardsβ€”and sometimes OTA update paths. πŸ”“πŸ“‰ cyberinsider.com/ai-helps-find #cybersecurity #IoT #vulnerabilities #embedded

##

nemo@mas.to at 2026-07-05T02:54:08.000Z ##

πŸ€– Researchers at runZero say AI-assisted testing found 7 security flaws in the FatFs FAT/exFAT filesystem library (CVE-2026-6682 to CVE-2026-6688), potentially exposing millions of embedded devices via malicious USB drives/SD cardsβ€”and sometimes OTA update paths. πŸ”“πŸ“‰ cyberinsider.com/ai-helps-find #cybersecurity #IoT #vulnerabilities #embedded

##

CVE-2026-43503
(8.8 HIGH)

EPSS: 0.14%

updated 2026-07-02T12:31:55

1 posts

In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker through frag-transfer helpers Two frag-transfer helpers (__pskb_copy_fclone() and skb_shift()) fail to propagate the SKBFL_SHARED_FRAG bit in skb_shinfo()->flags when moving frags from source to destination. __pskb_copy_fclone() defers the rest of the shinfo metadata to skb_copy_header(

8 repos

https://github.com/mooder1/dirtyclone-CVE-2026-43503

https://github.com/douglasmun/pagecache-lpe-containment-kit

https://github.com/SecureWithUmer/CVE-2026-43503

https://github.com/sec0x/CVE-2026-43503

https://github.com/aexdyhaxor/CVE-2026-43503-DirtyClone

https://github.com/gl1tch0x1/DirtyClone

https://github.com/entra1337/DirtyClone

https://github.com/0xBlackash/CVE-2026-43503

CVE-2026-45659
(8.8 HIGH)

EPSS: 3.22%

updated 2026-07-02T12:16:47.143000

10 posts

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

3 repos

https://github.com/HORKimhab/CVE-2026-45659

https://github.com/jenniferreire26/CVE-2026-45659

https://github.com/mistbarbarianspot/CVE-2026-45659-SharePoint-RCE

youranonnewsirc@nerdculture.de at 2026-07-05T10:04:44.000Z ##

Here's a brief on recent geopolitical, technology, and cybersecurity developments:

Geopolitically, Russia claims control of Kostyantynivka in Ukraine, and Presidents Putin and Trump discussed Ukraine ahead of the upcoming NATO summit. In technology, Amazon launched its satellite internet service to compete with Starlink, and Alibaba banned Anthropic AI usage amidst a data dispute. Cybersecurity noted a US government entity paid $1 million in a data-theft extortion, while a critical SharePoint RCE (CVE-2026-45659) is actively exploited. AI-powered phishing and scams are also targeting the World Cup 2026.

#AnonNews_irc #Cybersecurity #News

##

youranonnewsirc@nerdculture.de at 2026-07-05T04:04:45.000Z ##

Geopolitical: US-Iran talks paused for funeral (July 4-5, 2026). Ukraine's Zelenskiy and Trump discussed the Russia-Ukraine war.

Technology: SK Telecom plans a 15GW AI data center in Asia (July 5, 2026). OpenAI reportedly eyes US government equity.

Cybersecurity: CISA urged patching an actively exploited SharePoint RCE (CVE-2026-45659) by July 4, 2026. Ransomware attacks typically spike during US holidays. A Homeland Security network (HSIN) breach was reported.

#AnonNews_irc #Cybersecurity #News

##

youranonnewsirc@nerdculture.de at 2026-07-05T10:04:44.000Z ##

Here's a brief on recent geopolitical, technology, and cybersecurity developments:

Geopolitically, Russia claims control of Kostyantynivka in Ukraine, and Presidents Putin and Trump discussed Ukraine ahead of the upcoming NATO summit. In technology, Amazon launched its satellite internet service to compete with Starlink, and Alibaba banned Anthropic AI usage amidst a data dispute. Cybersecurity noted a US government entity paid $1 million in a data-theft extortion, while a critical SharePoint RCE (CVE-2026-45659) is actively exploited. AI-powered phishing and scams are also targeting the World Cup 2026.

#AnonNews_irc #Cybersecurity #News

##

youranonnewsirc@nerdculture.de at 2026-07-05T04:04:45.000Z ##

Geopolitical: US-Iran talks paused for funeral (July 4-5, 2026). Ukraine's Zelenskiy and Trump discussed the Russia-Ukraine war.

Technology: SK Telecom plans a 15GW AI data center in Asia (July 5, 2026). OpenAI reportedly eyes US government equity.

Cybersecurity: CISA urged patching an actively exploited SharePoint RCE (CVE-2026-45659) by July 4, 2026. Ransomware attacks typically spike during US holidays. A Homeland Security network (HSIN) breach was reported.

#AnonNews_irc #Cybersecurity #News

##

youranonnewsirc@nerdculture.de at 2026-07-03T16:04:38.000Z ##

OpenAI voluntarily limited new AI models at government request on July 2. Cybersecurity threats remain high with critical Citrix Bleed 2 (CVE-2025-5777) and Microsoft SharePoint RCE (CVE-2026-45659) vulnerabilities being actively exploited, as reported on July 2-3. Google, in collaboration with the FBI, disrupted NetNut, a major residential proxy network spanning 2 million devices. Geopolitically, Iran issued warnings to ships regarding unapproved routes in the Strait of Hormuz on July 3.

#AnonNews_irc #Cybersecurity #News

##

beyondmachines1@infosec.exchange at 2026-07-03T12:01:41.000Z ##

CISA Reports Active Exploitation of SharePoint RCE Flaw

CISA warned that attackers are exploiting a high-severity SharePoint vulnerability (CVE-2026-45659) that allows authenticated users to run arbitrary code.

**If you run on-premises Microsoft SharePoint Server (Subscription Edition, 2019, or 2016), this is urgent. Your Sharepoint is under attack. Apply Microsoft's security update for CVE-2026-45659 immediately. Prioritize any internet-facing SharePoint instances first, and confirm every server is updated to the latest secure version. If possible, isolate SharePoint from the Internet.**
#cybersecurity #infosec #attack #activeexploit
beyondmachines.net/event_detai

##

guru@thecybersecguru.com at 2026-07-03T09:21:47.000Z ##

DHS Confirms HSIN Breach: Inside the Hack That Hit America’s Homeland Security Coordination Platform Weeks Before the World Cup Final

DHS confirms a breach of HSIN, its SharePoint-linked intelligence network. Technical analysis of CVE-2026-45659, World Cup exposure, and the 2023 precedent

thecybersecguru.com/news/hsin-

##

thecybermind@infosec.exchange at 2026-07-02T12:34:21.000Z ##

C-Suite Alert: CVE-2026-45659 is actively exploited. CISA BOD 26-04 mandates immediate action. Is your organization compliant? My executive briefing provides the risk assessment and strategic roadmap to secure your SharePoint assets and mitigate enterprise liability. thecybermind.co/x3h5
#Governance #InfoSec #SharePoint

##

DailyCyberSecurity@infosec.exchange at 2026-07-02T02:29:31.000Z ##

CISA flags an actively exploited SharePoint vulnerability (CVE-2026-45659) enabling remote code execution. Patch SharePoint Server 2016 now.

#SharePoint #Microsoft #CVE202645659 #CISAKEV #RCE #ExploitedInTheWild #Vulnerability

securityonline.info/sharepoint

##

secdb@infosec.exchange at 2026-07-01T21:02:16.000Z ##

🚨 [CISA-2026:0701] CISA Adds One Known Exploited Vulnerability to Catalog (secdb.nttzen.cloud/security-ad)

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.

⚠️ CVE-2026-45659 (secdb.nttzen.cloud/cve/detail/)
- Name: Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s β€œForensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Microsoft
- Product: SharePoint Server
- Notes: msrc.microsoft.com/update-guid ; BOD 26-04: cisa.gov/news-events/directive ; Forensics Triage Requirements: cisa.gov/news-events/directive ; nvd.nist.gov/vuln/detail/CVE-2

#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260701 #cisa20260701 #cve_2026_45659 #cve202645659

##

CVE-2026-14432
(8.8 HIGH)

EPSS: 0.25%

updated 2026-07-02T03:32:33

1 posts

Use after free in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)

thehackerwire@mastodon.social at 2026-07-02T04:02:28.000Z ##

🟠 CVE-2026-14432 - High (8.8)

Use after free in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14431
(8.8 HIGH)

EPSS: 0.27%

updated 2026-07-02T03:32:33

1 posts

Type Confusion in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-07-02T04:02:18.000Z ##

🟠 CVE-2026-14431 - High (8.8)

Type Confusion in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14426
(7.5 HIGH)

EPSS: 0.22%

updated 2026-07-02T03:31:27

1 posts

Use after free in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-07-02T03:00:08.000Z ##

🟠 CVE-2026-14426 - High (7.5)

Use after free in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14423
(9.6 CRITICAL)

EPSS: 0.22%

updated 2026-07-02T00:31:50

1 posts

Type Confusion in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

offseq@infosec.exchange at 2026-07-02T10:30:26.000Z ##

CVE-2026-14423: Type confusion in Chrome (pre-150.0.7871.46) enables sandbox escape via crafted HTML. HIGH severity β€” update Chrome ASAP to patch. Details: radar.offseq.com/threat/cve-20 #OffSeq #Chrome #Vuln #BrowserSecurity

##

CVE-2026-14425
(9.6 CRITICAL)

EPSS: 0.22%

updated 2026-07-02T00:31:50

2 posts

Use after free in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

offseq@infosec.exchange at 2026-07-02T06:00:24.000Z ##

Use-after-free in Chrome’s ANGLE (CVE-2026-14425, HIGH) allows remote sandbox escape via crafted HTML in versions before 150.0.7871.46. Patch status unclear β€” update Chrome past this version. More: radar.offseq.com/threat/cve-20 #OffSeq #Chrome #Vuln #Infosec

##

thehackerwire@mastodon.social at 2026-07-02T01:00:58.000Z ##

πŸ”΄ CVE-2026-14425 - Critical (9.6)

Use after free in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14420
(9.6 CRITICAL)

EPSS: 0.25%

updated 2026-07-02T00:31:50

1 posts

Out of bounds read and write in Dawn in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

thehackerwire@mastodon.social at 2026-07-02T04:02:39.000Z ##

πŸ”΄ CVE-2026-14420 - Critical (9.6)

Out of bounds read and write in Dawn in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14429
(8.3 HIGH)

EPSS: 0.23%

updated 2026-07-02T00:31:50

1 posts

Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-07-02T02:00:15.000Z ##

🟠 CVE-2026-14429 - High (8.3)

Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security sever...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14428
(8.3 HIGH)

EPSS: 0.26%

updated 2026-07-02T00:31:50

1 posts

Insufficient validation of untrusted input in Dawn in Google Chrome on Android prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

thehackerwire@mastodon.social at 2026-07-02T01:01:37.000Z ##

🟠 CVE-2026-14428 - High (8.3)

Insufficient validation of untrusted input in Dawn in Google Chrome on Android prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium sec...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14427
(8.3 HIGH)

EPSS: 0.24%

updated 2026-07-02T00:31:50

1 posts

Heap buffer overflow in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

thehackerwire@mastodon.social at 2026-07-02T01:01:14.000Z ##

🟠 CVE-2026-14427 - High (8.3)

Heap buffer overflow in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-14439(CVSS UNKNOWN)

EPSS: 0.60%

updated 2026-07-02T00:31:50

1 posts

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to

offseq@infosec.exchange at 2026-07-02T00:00:36.000Z ##

CVE-2026-14439: CRITICAL path traversal in Altium Enterprise Server & Altium 365 Git Service. Authenticated users can achieve RCE & cross-tenant data access. Upgrade Altium Server to v8.1.1; cloud already remediated. radar.offseq.com/threat/cve-20 #OffSeq #CVE202614439 #infosec #remediation

##

CVE-2026-14398
(9.6 CRITICAL)

EPSS: 0.21%

updated 2026-07-02T00:31:49

1 posts

Use after free in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

offseq@infosec.exchange at 2026-07-02T09:00:27.000Z ##

CRITICAL use-after-free in Chrome ANGLE (CVE-2026-14398) enables remote sandbox escape via crafted HTML. Affected: versions before 150.0.7871.46. Patch ASAP! Details: radar.offseq.com/threat/cve-20 #OffSeq #Chrome #Vuln #CVE202614398

##

CVE-2026-14390
(9.6 CRITICAL)

EPSS: 0.24%

updated 2026-07-02T00:31:49

1 posts

Use after free in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

offseq@infosec.exchange at 2026-07-02T07:30:28.000Z ##

CVE-2026-14390: Use-after-free in Chrome ANGLE (High severity, ≀150.0.7871.45) can enable sandbox escape via crafted HTML. Update to 150.0.7871.46+ to mitigate. No active exploits reported. radar.offseq.com/threat/cve-20 #OffSeq #GoogleChrome #Infosec #Vulnerability

##

CVE-2026-14419
(9.6 CRITICAL)

EPSS: 0.21%

updated 2026-07-02T00:31:49

2 posts

Use after free in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

thehackerwire@mastodon.social at 2026-07-02T02:01:12.000Z ##

πŸ”΄ CVE-2026-14419 - Critical (9.6)

Use after free in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-07-02T01:30:24.000Z ##

CVE-2026-14419: CRITICAL use-after-free in Chrome <150.0.7871.46 (Skia) enables remote sandbox escape via crafted HTML. Patch immediately to prevent code execution outside the browser. radar.offseq.com/threat/cve-20 #OffSeq #Chrome #CVE202614419 #Infosec

##

CVE-2026-54428
(7.5 HIGH)

EPSS: 0.41%

updated 2026-07-01T21:36:16

1 posts

Allocation of resources without limits or throttling in the HTTP/2 HPACK decoder in Apache HttpComponents Core (5.4.2 and earlier, 5.5-beta1 and earlier) allows an remote attacker to cause a denial of service through memory exhaustion by sending oversized compressed header blocks before the HTTP/2 SETTINGS acknowledgement causes the configured header list size limit to be applied.

DailyCyberSecurity@infosec.exchange at 2026-07-02T16:12:17.000Z ##

Apache HttpComponents Core vulnerabilities CVE-2026-54399 and CVE-2026-54428 allow remote denial of service through memory exhaustion. Upgrade now.

#Apache #HttpComponents #DoS #CVE202654399 #CyberSecurity

securityonline.info/apache-htt

##

CVE-2026-44935
(9.9 CRITICAL)

EPSS: 0.57%

updated 2026-07-01T20:45:42

1 posts

### Impact A vulnerability in Fleet for Rancher Manager affects multi-tenancy environments where different tenants share the same downstream clusters (e.g., different privileged or untrusted teams inside the same organization). On unpatched versions, tenants could bypass restrictions to access any config map or secret across all namespaces on the downstream cluster. They can create cluster-wide

thehackerwire@mastodon.social at 2026-07-02T18:00:13.000Z ##

πŸ”΄ CVE-2026-44935 - Critical (9.9)

Missing validation of "valuesFrom" references in Helm Deployer of SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.15 could be used by owners of one tenant to access fleet credentials of other ten...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-13775
(9.8 CRITICAL)

EPSS: 0.31%

updated 2026-07-01T20:17:02.440000

1 posts

Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

hrbrmstr@rud.is at 2026-07-02T16:56:15.000Z ##

Unjamming the Chrome Releases Blog

For the second time in a row, a post by cr0w on Mastodon regarding the Chrome release blog appearing to not render anything resulted in me firing up lynx to show a sub-second load and render, then finally doing something a bit more tangible about the situation.

The 81-Second Wall

The Google Blogger pages load an ancient copy of jQuery (1.11.3, from 2015) synchronously in the <head>, alongside a 53KB widgets.js Blogger framework. Then, posts like this one β€” https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0175352312.html β€” stuff 433 CVE entries into the DOM β€” 670KB of HTML, 5,045 nodes. The Blogger WidgetManager processes all of that against the DOM using jQuery’s notoriously slow selector engine, and the main thread stays locked for 81 seconds. Nothing else runs. Not even the HTTP request for the DoubleClick tracking pixel queued behind it (because ofc there’s a DoubleClick tracking pixel).

The Safari Navigation Timing API numbers make it embarrassingly concrete:

  • responseEnd: 143ms
  • domInteractive: 231ms
  • domContentLoaded: 81,280ms

That’s 81 seconds between β€œDOM is ready” and β€œpage is loaded.” All burning prescious CPU cycles with zero network activity during that window.

Why This Matters (Again)

This is the second time I’ve felt compelled to dig into this particular mess. The Chrome Releases page is a real/tangible operational resource β€” security teams, vulnerability managers, and researchers (somewhat, at least) depend on it for CVE data. When it’s broken, it creates a bottleneck for people who have real jobs to do.

The 433 CVE entries choking the page are exactly what people came to read. But they’re baked into the HTML as rendered text, not exposed as structured data anywhere. So even when the page eventually loads, you’re still scraping HTML to get at anything useful.

unjam

unjam solves that problem. It’s a small CLI that connects to a Blogger page and extracts structured data β€” both the widget configuration from the _WidgetManager._SetDataContext inline script and the CVE entries from Chrome Release posts β€” without touching a browser at all.

It’s a single Deno binary for macOS, Linux, and Windows. No dependencies, no configuration overhead, just download and run:

unjam --cve https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0175352312.html
[
  {
    "issueId": "506558270",
    "issueUrl": "https://issues.chromium.org/issues/506558270",
    "severity": "Critical",
    "cveId": "CVE-2026-13774",
    "description": "Use after free in Extensions.",
    "reporter": "Google",
    "reportedOn": "2026-04-26"
  },
  {
    "issueId": "511766407",
    "issueUrl": "https://issues.chromium.org/issues/511766407",
    "severity": "Critical",
    "cveId": "CVE-2026-13775",
    "description": "Use after free in GPU.",
    "reporter": "Google",
    "reportedOn": "2026-05-10"
  },
  …
]

Getting CVE data from one of these posts used to mean waiting 81 seconds for a browser tab to finish wrestling with jQuery, then hand-scraping HTML. Now it takes about a second and returns clean JSON. The --cve flag parses each entry into structured fields β€” CVE ID, severity, description, issue tracker URL, reporter, and date reported β€” ready to pipe into jq, load into a database, or feed into whatever vulnerability management pipeline you’re running.

The tool also handles the general case: any Blogger page carrying the _WidgetManager._SetDataContext inline script can be unwedged with the default mode, which converts the JavaScript object literal into proper JSON. That turned out to be useful enough to bake in as default functionality.

The project’s at https://git.sr.ht/~hrbrmstr/unjam and has pre-built binaries for popular platforms.

I don’t expect this page to stay broken forever…I mean, someone at Google will eventually update the template (right, Anakin? right? Anakin?), and may even quietly drop the DoubleClick pixel (LOL) β€” but until then, unjam fills the gap cleanly.

##

CVE-2026-13763
(9.8 CRITICAL)

EPSS: 0.47%

updated 2026-07-01T19:51:47.213000

1 posts

Inconsistent interpretation of HTTP/2 requests in AWS Application Load Balancer with AWS WAF enabled might allow remote actors to bypass AWS WAF managed rule body inspection via crafted HTTP/2 requests that fragment the request body across frames so that only a partial body is inspected. This issue only impacts HTTP/2 ALB target groups. To remediate this issue, customers should enable the "Insp

ChrisShort@hachyderm.io at 2026-07-03T18:25:11.000Z ##

CVE-2026-13762 and CVE-2026-13763 - Issue with HTTP/2 multi-frame request body inspection in AWS WAF #devopsish aws.amazon.com/security/securi

##

CVE-2026-58452
(8.8 HIGH)

EPSS: 2.42%

updated 2026-07-01T18:32:05

2 posts

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerability that allows authenticated attackers to achieve remote code execution by supplying a malicious Wireless parameter to the HTTP PUT NetSDK/Factory SetMAC endpoint. Attackers can craft a string beginning with a valid MAC-like prefix followed by a semicolon and a shell payload, which bypas

secdb at 2026-07-06T00:25:23.369Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

##

secdb@infosec.exchange at 2026-07-06T00:25:23.000Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

#ZEN #SecDB #InfoSec

##

CVE-2026-58453
(9.8 CRITICAL)

EPSS: 1.69%

updated 2026-07-01T18:32:04

2 posts

JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerability that allows network-adjacent attackers to gain unauthorized access by using the default admin username with an empty password accepted by the anyka_ipc HTTP service on port 80. Attackers can authenticate with these hardcoded credentials to access camera snapshots, video streams, netw

secdb at 2026-07-06T00:25:23.369Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

##

secdb@infosec.exchange at 2026-07-06T00:25:23.000Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

#ZEN #SecDB #InfoSec

##

CVE-2026-20191
(7.5 HIGH)

EPSS: 0.76%

updated 2026-07-01T18:31:59

1 posts

A vulnerability in Cisco Catalyst Center could allow an unauthenticated, remote attacker to read arbitrary files from a restricted container.&nbsp; This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to read arbitrary files fr

DailyCyberSecurity@infosec.exchange at 2026-07-02T02:03:03.000Z ##

Cisco fixes a Cisco Catalyst Center vulnerability (CVE-2026-20191, CVSS 7.5) and seven ClamAV vulnerabilities causing DoS in Secure Endpoint Connectors.

#Cisco #CatalystCenter #ClamAV #CVE202620191 #CyberSecurity

securityonline.info/cisco-cata

##

CVE-2026-8451
(7.5 HIGH)

EPSS: 0.50%

updated 2026-07-01T18:31:24

4 posts

Insufficient input validation inΒ NetScaler ADC and NetScaler GatewayΒ leading to memory overread ifΒ NetScaler ADC or NetScaler Gateway is configured as a SAML IDP

4 repos

https://github.com/0xBlackash/CVE-2026-8451

https://github.com/watchtowrlabs/watchTowr-vs-Netscaler-CVE-2026-8451

https://github.com/derekpreston81/CVE_ADC_IOC_2026

https://github.com/attarwahyup/Netscaler-CVE-2026-8451

DailyCyberSecurity@infosec.exchange at 2026-07-02T17:12:43.000Z ##

Citrix NetScaler vulnerability CVE-2026-8451 is exploited in the wild after a public PoC exposed a pre-auth memory overread. Patch now.

#Citrix #NetScaler #CVE20268451 #CitrixBleed #CyberSecurity

securityonline.info/citrix-net

##

centaury@infosec.exchange at 2026-07-02T12:14:14.000Z ##

CitrixBleed To Infinity And Beyond (Citrix NetScaler Pre-Auth Memory Overread CVE-2026-8451) labs.watchtowr.com/citrixbleed #bot #cybersecurity #infosec

##

campuscodi@mastodon.social at 2026-07-02T11:26:01.000Z ##

Citrix has patched a series of bugs this week, including another CitrixBleed-like vulnerability that can allow remote attackers to leak a device's memory and find goodies inside, such as auth or config data.

This impacts NetScaler ADC devices.

labs.watchtowr.com/citrixbleed

support.citrix.com/support-hom

##

DarkWebInformer@infosec.exchange at 2026-07-02T00:22:35.000Z ##

‼️ CVE-2026-8451: Citrix Netscaler overread Detection Artifact Generator Tool

GitHub: github.com/watchtowrlabs/watch

Full writeup: labs.watchtowr.com/citrixbleed

CVE-2026-8451 is a NetScaler ADC and NetScaler Gateway memory overread flaw caused by insufficient input validation, affecting appliances configured as a SAML Identity Provider.

The risk is sensitive memory disclosure, with researchers showing NetScaler can be tricked into returning process memory that should never leave the appliance.

##

CVE-2026-7840
(9.8 CRITICAL)

EPSS: 1.20%

updated 2026-07-01T18:29:00.013000

1 posts

UltraVNC repeater through 1.8.2.2 contains a global buffer overflow in its embedded HTTP administration server. The functions wi_senderr() and wi_replyhdr() in repeater/webgui/webutils.c write the caller-supplied HTTP request URI into a fixed 1000-byte global buffer (hdrbuf) via unchecked sprintf calls. The HTTP receive buffer accepts URIs up to approximately 150 KB (WI_RXBUFSIZE = 153600), so an

CVE-2026-54399
(7.5 HIGH)

EPSS: 0.41%

updated 2026-07-01T18:16:34.317000

1 posts

Uncontrolled Resource Consumption vulnerability in the HTTP/1.1 message parserΒ in Apache HttpComponents Core (5.4.2 and earlier, 5.5-beta1 and earlier) allowsΒ an remote attacker to cause a denial of service through memory exhaustion by sending messages with excessive number of headers / excessive header length

DailyCyberSecurity@infosec.exchange at 2026-07-02T16:12:17.000Z ##

Apache HttpComponents Core vulnerabilities CVE-2026-54399 and CVE-2026-54428 allow remote denial of service through memory exhaustion. Upgrade now.

#Apache #HttpComponents #DoS #CVE202654399 #CyberSecurity

securityonline.info/apache-htt

##

CVE-2026-6682
(7.6 HIGH)

EPSS: 0.21%

updated 2026-07-01T15:35:27

3 posts

In FatFS R0.16 and earlier contains a FAT32 integer overflow bug in mount_volume() where fasize *= fs->n_fats can wrap, leading to attacker-controlled file-size metadata and unsafe read lengths in downstream callers. This maps to CWE-190 (Integer Overflow or Wraparound). Estimated CVSS v3.1 vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H (7.6, High). Remote delivery is also possible in OTA/up

nemo@mas.to at 2026-07-05T02:54:08.000Z ##

πŸ€– Researchers at runZero say AI-assisted testing found 7 security flaws in the FatFs FAT/exFAT filesystem library (CVE-2026-6682 to CVE-2026-6688), potentially exposing millions of embedded devices via malicious USB drives/SD cardsβ€”and sometimes OTA update paths. πŸ”“πŸ“‰ cyberinsider.com/ai-helps-find #cybersecurity #IoT #vulnerabilities #embedded

##

nemo@mas.to at 2026-07-05T02:54:08.000Z ##

πŸ€– Researchers at runZero say AI-assisted testing found 7 security flaws in the FatFs FAT/exFAT filesystem library (CVE-2026-6682 to CVE-2026-6688), potentially exposing millions of embedded devices via malicious USB drives/SD cardsβ€”and sometimes OTA update paths. πŸ”“πŸ“‰ cyberinsider.com/ai-helps-find #cybersecurity #IoT #vulnerabilities #embedded

##

nemo@mas.to at 2026-07-04T05:23:11.000Z ##

🧩 Runzero warnt: Eine KI-gestΓΌtzte Suche fand eine gefΓ€hrliche LΓΌcke im FatFs-Treiber. Schon das Anschließen eines USB-Sticks soll genΓΌgen, um ΓΌber CVE-2026-6682 (CVSS 7,6) Schadcode einzuschleusen. Patch derzeit unklar. Angriff auch via manipulierte OTA-Updates mΓΆglich. πŸ”₯
golem.de/news/angriff-per-usb-
#Security #IoT #Embedded #USB #CVE #Vulnerability

##

CVE-2026-13774
(8.1 HIGH)

EPSS: 0.30%

updated 2026-07-01T15:35:00

1 posts

Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. (Chromium security severity: Critical)

hrbrmstr@rud.is at 2026-07-02T16:56:15.000Z ##

Unjamming the Chrome Releases Blog

For the second time in a row, a post by cr0w on Mastodon regarding the Chrome release blog appearing to not render anything resulted in me firing up lynx to show a sub-second load and render, then finally doing something a bit more tangible about the situation.

The 81-Second Wall

The Google Blogger pages load an ancient copy of jQuery (1.11.3, from 2015) synchronously in the <head>, alongside a 53KB widgets.js Blogger framework. Then, posts like this one β€” https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0175352312.html β€” stuff 433 CVE entries into the DOM β€” 670KB of HTML, 5,045 nodes. The Blogger WidgetManager processes all of that against the DOM using jQuery’s notoriously slow selector engine, and the main thread stays locked for 81 seconds. Nothing else runs. Not even the HTTP request for the DoubleClick tracking pixel queued behind it (because ofc there’s a DoubleClick tracking pixel).

The Safari Navigation Timing API numbers make it embarrassingly concrete:

  • responseEnd: 143ms
  • domInteractive: 231ms
  • domContentLoaded: 81,280ms

That’s 81 seconds between β€œDOM is ready” and β€œpage is loaded.” All burning prescious CPU cycles with zero network activity during that window.

Why This Matters (Again)

This is the second time I’ve felt compelled to dig into this particular mess. The Chrome Releases page is a real/tangible operational resource β€” security teams, vulnerability managers, and researchers (somewhat, at least) depend on it for CVE data. When it’s broken, it creates a bottleneck for people who have real jobs to do.

The 433 CVE entries choking the page are exactly what people came to read. But they’re baked into the HTML as rendered text, not exposed as structured data anywhere. So even when the page eventually loads, you’re still scraping HTML to get at anything useful.

unjam

unjam solves that problem. It’s a small CLI that connects to a Blogger page and extracts structured data β€” both the widget configuration from the _WidgetManager._SetDataContext inline script and the CVE entries from Chrome Release posts β€” without touching a browser at all.

It’s a single Deno binary for macOS, Linux, and Windows. No dependencies, no configuration overhead, just download and run:

unjam --cve https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0175352312.html
[
  {
    "issueId": "506558270",
    "issueUrl": "https://issues.chromium.org/issues/506558270",
    "severity": "Critical",
    "cveId": "CVE-2026-13774",
    "description": "Use after free in Extensions.",
    "reporter": "Google",
    "reportedOn": "2026-04-26"
  },
  {
    "issueId": "511766407",
    "issueUrl": "https://issues.chromium.org/issues/511766407",
    "severity": "Critical",
    "cveId": "CVE-2026-13775",
    "description": "Use after free in GPU.",
    "reporter": "Google",
    "reportedOn": "2026-05-10"
  },
  …
]

Getting CVE data from one of these posts used to mean waiting 81 seconds for a browser tab to finish wrestling with jQuery, then hand-scraping HTML. Now it takes about a second and returns clean JSON. The --cve flag parses each entry into structured fields β€” CVE ID, severity, description, issue tracker URL, reporter, and date reported β€” ready to pipe into jq, load into a database, or feed into whatever vulnerability management pipeline you’re running.

The tool also handles the general case: any Blogger page carrying the _WidgetManager._SetDataContext inline script can be unwedged with the default mode, which converts the JavaScript object literal into proper JSON. That turned out to be useful enough to bake in as default functionality.

The project’s at https://git.sr.ht/~hrbrmstr/unjam and has pre-built binaries for popular platforms.

I don’t expect this page to stay broken forever…I mean, someone at Google will eventually update the template (right, Anakin? right? Anakin?), and may even quietly drop the DoubleClick pixel (LOL) β€” but until then, unjam fills the gap cleanly.

##

CVE-2025-15666
(5.3 MEDIUM)

EPSS: 0.12%

updated 2026-07-01T15:16:23.077000

1 posts

A security vulnerability has been detected in Open Asset Import Library Assimp up to 5.4.3. Affected by this vulnerability is the function Assimp::SceneCombiner::Copy of the file code/Common/SceneCombiner.cpp of the component Model File Handler. Such manipulation of the argument width/height leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed

CVE-2026-41991
(4.7 MEDIUM)

EPSS: 0.10%

updated 2026-07-01T14:02:24.450000

1 posts

GNU gzip contains a vulnerability in the gzexe utility related to insecure temporary file handling. When the mktemp utility is not available in the user’s PATH, gzexe falls back to constructing a temporary file path based solely on the process ID (PID). This predictable filename is created without exclusive access or existence checks. A local attacker can pre‑create the predicted temporary file pa

DailyCyberSecurity@infosec.exchange at 2026-07-02T08:20:24.000Z ##

A GNU gzip vulnerability (CVE-2026-41991) lets a local attacker overwrite files through a gzexe symlink attack. Update to the patched gzip release now.

#GNUgzip #gzip #CVE202641991 #CVE202641992 #gzexe #LinuxSecurity #Vulnerability

securityonline.info/gnu-gzip-v

##

CVE-2026-14191
(7.8 HIGH)

EPSS: 0.29%

updated 2026-07-01T06:31:32

2 posts

An out-of-bounds heap write exists in the RAR5 recovery-volume (.rev) parser in WinRAR and UnRAR (RecVolumes5::ReadHeader in recvol5.cpp). The RecItems vector is sized only when the first .rev file in a set is processed; subsequent .rev files supply an independent RecNum value that is validated against that file's own TotalCount field but never against the actual size of RecItems. A crafted set of

linux@activitypub.awakari.com at 2026-07-02T12:38:12.000Z ## WinRAR flaw could allow attackers to take control of your computer A new WinRAR update fixes a serious security flaw, but without automatic updates many users could miss the patch. Rarlab has relea...

#Bugs #News #cve-2026-14191 #unrar #winRAR

Origin | Interest | Match ##

DailyCyberSecurity@infosec.exchange at 2026-07-02T01:05:31.000Z ##

A WinRAR vulnerability (CVE-2026-14191) causes a heap overflow via crafted .rev recovery files. Update WinRAR and UnRAR to version 7.23 now.

#WinRAR #UnRAR #CVE202614191 #HeapOverflow #RAR5 #RARLAB #Vulnerability

securityonline.info/winrar-vul

##

CVE-2026-8037
(9.6 CRITICAL)

EPSS: 29.64%

updated 2026-07-01T05:16:25.290000

2 posts

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in multiple command endpoints

Nuclei template

1 repos

https://github.com/HORKimhab/CVE-2026-8037

threatnoir@infosec.exchange at 2026-07-02T23:05:15.000Z ##

⚠️ CRITICAL: Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation Attempts

A critical pre-auth RCE vulnerability (CVE-2026-8037, CVSS 9.6) in Progress Kemp LoadMaster is actively being exploited. The flaw allows unauthenticated attackers to execute arbitrary OS commands via the /accessv2 API endpoint. Any organization running Kemp LoadMaster is at immediate risk.

threatnoir.com/focus

#infosec #cybersecurity

##

beyondmachines1@infosec.exchange at 2026-07-02T09:01:09.000Z ##

Progress Kemp LoadMaster Vulnerability Actively Exploited

Progress Software's Kemp LoadMaster is reportedly actively attacked following the release of a proof-of-concept for a remote code execution flaw (CVE-2026-8037).

**This is now urgent. Make sure all your Kemp LoadMaster appliances are updated to the latest versions immediately, because you are being hacked. If you do not require the management API for daily operations, disable it or isolate it behind a secure VPN so it is reachable only from trusted internal networks.**
#cybersecurity #infosec #attack #activeexploit
beyondmachines.net/event_detai

##

CVE-2026-56415
(10.0 CRITICAL)

EPSS: 3.07%

updated 2026-07-01T00:34:43

2 posts

Storage Concentrator (SC & SCVM) contains a command injection vulnerability within the debug.pl script that is reachable without authentication. A remote attacker can submit a specially crafted HTTP request containing a malicious payload that is processed without adequate input sanitization, resulting in arbitrary command execution with root-level privileges on the underlying system.

secdb at 2026-07-06T00:25:23.369Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

##

secdb@infosec.exchange at 2026-07-06T00:25:23.000Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

#ZEN #SecDB #InfoSec

##

CVE-2026-56700
(9.8 CRITICAL)

EPSS: 1.68%

updated 2026-07-01T00:34:43

2 posts

Grav CMS before 2.0.0-beta.2 contains multiple code-execution vulnerabilities. Three unsafe unserialize() calls - in Scheduler\JobQueue, Framework\Cache\Adapter\FileCache, and Session - deserialize untrusted data without restricting allowed classes, enabling PHP object injection and, via a gadget chain, arbitrary code execution where an attacker controls the serialized input. Additionally, Install

secdb at 2026-07-06T00:25:23.369Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

##

secdb@infosec.exchange at 2026-07-06T00:25:23.000Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

#ZEN #SecDB #InfoSec

##

CVE-2026-56413
(10.0 CRITICAL)

EPSS: 3.08%

updated 2026-07-01T00:34:39

2 posts

Storage Concentrator (SC & SCVM) contains a command injection vulnerability in the ms_service.pl service, which listens on TCP port 9000 by default and accepts custom network packets to perform device actions. An unauthenticated remote attacker can send a specially crafted packet containing a malicious payload that is processed without adequate sanitization, resulting in arbitrary command executio

secdb at 2026-07-06T00:25:23.369Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

##

secdb@infosec.exchange at 2026-07-06T00:25:23.000Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

#ZEN #SecDB #InfoSec

##

CVE-2026-50003
(9.8 CRITICAL)

EPSS: 0.43%

updated 2026-07-01T00:34:02

1 posts

A malicious or compromised server can make a DCMTK client using bit-preserving C-GET storage mode write files outside the chosen output directory, using both relative (../) paths and absolute paths.

CVE-2026-10134
(10.0 CRITICAL)

EPSS: 0.31%

updated 2026-06-30T21:31:44

1 posts

IBM Langflow OSS 1.0.0 through 1.9.3 allows an attacker to read every secret available to the Langflow process, read and modify every flow, conversation, message, file upload, and saved component in the Langflow database, can connect to internal services, abuse cloud metadata endpoints, laterally move to other tenants on the same Langflow instance, and Establish persistence by modifying the public

CVE-2026-48282
(10.0 CRITICAL)

EPSS: 1.02%

updated 2026-06-30T18:31:42

1 posts

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed.

DailyCyberSecurity@infosec.exchange at 2026-07-03T04:10:03.000Z ##

A critical CVSS 10 ColdFusion arbitrary code execution flaw (CVE-2026-48282) is actively exploited in the wild. Update immediately to prevent attacks.

#ColdFusion #CVE202648282 #CyberSecurity #Vulnerability #Infosec

securityonline.info/coldfusion

##

CVE-2026-13545
(8.8 HIGH)

EPSS: 2.71%

updated 2026-06-30T17:31:09.510000

2 posts

A vulnerability has been found in D-Link DCS-935L 1.10.01. This affects the function sub_400E40 of the file setconf.cgi of the component POST Parameter Handler. Such manipulation of the argument UID leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

secdb at 2026-07-06T00:25:23.369Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

##

secdb@infosec.exchange at 2026-07-06T00:25:23.000Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

#ZEN #SecDB #InfoSec

##

CVE-2026-54475
(7.5 HIGH)

EPSS: 0.59%

updated 2026-06-30T15:30:45

1 posts

Missing Authorization vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. Apache ActiveMQ Classic temporary destinations are expected to be isolated to the connection that created them. The isolation can be broken as this is only checked in the client, allowing aΒ different connection to consume from another connection's temporary destination. This issue affects Apache A

CVE-2026-8631
(9.8 CRITICAL)

EPSS: 1.33%

updated 2026-06-30T03:36:46

2 posts

A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software. This potential vulnerability may allow escalation of privileges and/or arbitrary code execution via an integer overflow in the hpcups processing path when handling crafted print data.

thehackerwire@mastodon.social at 2026-07-05T22:00:45.000Z ##

πŸ”΄ CVE-2026-14544 - Critical (9.8)

A flaw was found in HPLIP (HP Linux Imaging and Printing Software). This vulnerability, an incomplete fix for CVE-2026-8631, may allow a remote attacker to escalate privileges or achieve arbitrary code execution. This can occur through an integer ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T22:00:45.000Z ##

πŸ”΄ CVE-2026-14544 - Critical (9.8)

A flaw was found in HPLIP (HP Linux Imaging and Printing Software). This vulnerability, an incomplete fix for CVE-2026-8631, may allow a remote attacker to escalate privileges or achieve arbitrary code execution. This can occur through an integer ...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-13762
(9.8 CRITICAL)

EPSS: 0.44%

updated 2026-06-29T21:32:12

1 posts

Inconsistent interpretation of HTTP/2 requests in Amazon CloudFront with AWS WAF enabled might allow remote actors to bypass AWS WAF managed rule body inspection via crafted HTTP/2 requests that fragment the request body across frames so that only a partial body is inspected. This issue was remediated server-side. No customer action is required.

ChrisShort@hachyderm.io at 2026-07-03T18:25:11.000Z ##

CVE-2026-13762 and CVE-2026-13763 - Issue with HTTP/2 multi-frame request body inspection in AWS WAF #devopsish aws.amazon.com/security/securi

##

CVE-2026-56782
(9.8 CRITICAL)

EPSS: 3.02%

updated 2026-06-29T18:32:03

2 posts

Gorse before 0.5.10 contains an authentication bypass vulnerability in the /api/dump and /api/restore endpoints that allows unauthenticated attackers to access protected functionality when admin_api_key is empty, which is the default configuration. Remote attackers can exfiltrate the entire database including user records, items, and feedback data containing personally identifiable information, or

2 repos

https://github.com/BiiTts/CVE-2026-56782-Gorse-Auth-Bypass

https://github.com/thecodeb0ss/CVE-2026-56782

secdb at 2026-07-06T00:25:23.369Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

##

secdb@infosec.exchange at 2026-07-06T00:25:23.000Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

#ZEN #SecDB #InfoSec

##

CVE-2026-11834
(0 None)

EPSS: 0.41%

updated 2026-06-26T22:16:30.897000

1 posts

A command injection vulnerability has been identified in the DHCP option processing logic in multiple TP-Link router models, due to insufficient validation of externally supplied DHCP option data.Β An adjacent attacker may exploit this vulnerability by supplying crafted DHCP responses, potentially resulting in unauthorized command execution during device initialization or provisioning workflows. Th

1 repos

https://github.com/mattgsys/CVE-2026-11834

sambowne@infosec.exchange at 2026-07-01T23:33:12.000Z ##

TP-Link DHCP Option 66 Unauthenticated RCE (CVE-2026-11834) | mattg.systems mattg.systems/posts/cve-2026-1

##

CVE-2026-50549
(9.8 CRITICAL)

EPSS: 0.64%

updated 2026-06-26T16:51:39.467000

1 posts

Cursor is a code editor built for programming with AI. Prior to 3.0, Cursor runs agent terminal commands in a sandbox by default. Before a Write, the agent canonicalizes the target path to confirm it stays inside the workspace, but when canonicalization fails it falls back to the original path and writes without approval. A malicious agent can create an in-workspace symlink that points outside the

beyondmachines1@infosec.exchange at 2026-07-02T11:01:09.000Z ##

DuneSlide: Zero-Click RCE Vulnerabilities Discovered in Cursor IDE

Cato AI Labs identified two critical vulnerabilities (CVE-2026-50548 and CVE-2026-50549) in Cursor IDE that allow attackers to achieve remote code execution via zero-click prompt injection. The flaws enable sandbox escapes by overwriting system binaries through manipulated working directories and symlink resolution errors.

**If you use Cursor IDE, update ASAP to version 3.0 or later, because these flaws will be attacked very soon. Be cautious about letting the AI agent pull in content from untrusted external sources (like websites or files), since a malicious prompt hidden there is enough to trigger the attack with no other action from you.**
#cybersecurity #infosec #advisory #vulnerability
beyondmachines.net/event_detai

##

CVE-2026-50548
(9.8 CRITICAL)

EPSS: 0.64%

updated 2026-06-26T16:51:25.290000

2 posts

Cursor is a code editor built for programming with AI. Prior to 3.0, Cursor runs agent terminal commands in a sandbox by default, and the sandbox grants write access to the command's working directory. A flaw was identified in how the agent could modify the working_directory parameter, which could cause the sandbox to include writable paths outside the intended workspace. A malicious agent could s

offseq@infosec.exchange at 2026-07-03T09:00:29.000Z ##

DuneSlide (CVE-2026-50548/50549): CRITICAL zero-click RCE in Cursor AI editor <3.0. Flaws in sandbox & symlink handling enable attackers to escape IDE, compromise OS. Upgrade to v3.0+ now. radar.offseq.com/threat/critic #OffSeq #Infosec #Vuln #RCE

##

beyondmachines1@infosec.exchange at 2026-07-02T11:01:09.000Z ##

DuneSlide: Zero-Click RCE Vulnerabilities Discovered in Cursor IDE

Cato AI Labs identified two critical vulnerabilities (CVE-2026-50548 and CVE-2026-50549) in Cursor IDE that allow attackers to achieve remote code execution via zero-click prompt injection. The flaws enable sandbox escapes by overwriting system binaries through manipulated working directories and symlink resolution errors.

**If you use Cursor IDE, update ASAP to version 3.0 or later, because these flaws will be attacked very soon. Be cautious about letting the AI agent pull in content from untrusted external sources (like websites or files), since a malicious prompt hidden there is enough to trigger the attack with no other action from you.**
#cybersecurity #infosec #advisory #vulnerability
beyondmachines.net/event_detai

##

CVE-2026-20230
(8.6 HIGH)

EPSS: 41.69%

updated 2026-06-25T21:31:23

1 posts

A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attacker to conduct server-side request forgery (SSRF) attacks through an affected device. This vulnerability is due to improper input validation for specific HTTP requests. An attacker could exploit this

3 repos

https://github.com/HalilDeniz/CVE-2026-20230-Scanner

https://github.com/HORKimhab/CVE-2026-20230

https://github.com/W5M1n9/Cisco-Unified-Communications-Manager-Server-Side-Forgery-Request-Vulnerability-CVE-2026-20230

tugatech@masto.pt at 2026-07-02T13:01:11.000Z ##

Cisco confirma exploração ativa de vulnerabilidade nos sistemas Unified CM. A empresa confirmou que agentes maliciosos estão a explorar a vulnerabilidade CVE-2026-20230, que permite ataques de falsificação de pedidos do lado do servidor. 🚨

πŸ”— tugatech.com.pt/t86670-cisco-c

#nos #vulnerabilidade 

##

CVE-2026-45051(CVSS UNKNOWN)

EPSS: 0.00%

updated 2026-06-24T17:25:29

1 posts

## Summary **Description** A deserialization of untrusted data vulnerability (CWE-502) exists in OpenAM's WebAuthn authentication module. Under certain conditions, this may allow an attacker to achieve arbitrary code execution in the context of the application server. This affects OpenAM Community Edition through version 16.0.6 and was patched in version 16.1.1. This is not the default configur

DailyCyberSecurity@infosec.exchange at 2026-07-02T01:40:30.000Z ##

A critical OpenAM WebAuthn RCE flaw (CVE-2026-45051) allows code execution via Java deserialization. Update OpenAM to 16.1.1 to stay protected.

#OpenAM #WebAuthn #RCE #CVE202645051 #CyberSecurity #InfoSec

securityonline.info/openam-web

##

CVE-2026-35019
(8.1 HIGH)

EPSS: 0.43%

updated 2026-06-23T16:16:59.460000

1 posts

NetComm NF20MESH routers running firmware R6B031 and earlier contain an authentication bypass vulnerability that allows unauthenticated attackers to gain administrative access by exploiting a hardcoded AES-256 key used to encrypt session cookies for the web management interface. Attackers can forge a valid encrypted session cookie using the shared hardcoded key and bypass authentication checks to

DailyCyberSecurity@infosec.exchange at 2026-07-02T01:05:36.000Z ##

A NetComm authentication bypass (CVE-2026-35019, CVSS 9.2) uses a hardcoded AES key to forge admin session cookies. Update to firmware R6B032 now.

#NetComm #RouterSecurity #CyberSecurity #CVE #PatchNow

securityonline.info/netcomm-au

##

CVE-2026-50242
(10.0 CRITICAL)

EPSS: 0.42%

updated 2026-06-19T15:33:15

1 posts

In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 authentication bypass via direct database access leading to administrative access was possible

DailyCyberSecurity@infosec.exchange at 2026-07-02T00:40:35.000Z ##

JetBrains patched a CVSS 10 authentication bypass and two more flaws (CVE-2026-50242). Its tools reach 15M developers. Update JetBrains Hub now.

#JetBrains #AuthenticationBypass #CVE202650242 #JetBrainsHub #GoLand

securityonline.info/jetbrains-

##

CVE-2026-6637
(8.8 HIGH)

EPSS: 0.38%

updated 2026-06-17T11:01:08.343000

2 posts

Stack buffer overflow in PostgreSQL module "refint" allows an unprivileged database user to execute arbitrary code as the operating system user running the database. A distinct attack is possible if the application declares a user-controlled column as a "refint" cascade primary key and facilitates user-controlled updates to that column. In that case, a SQL injection allows a primary key update v

mastokukei@social.josko.org at 2026-07-05T18:01:55.000Z ##

Blip blop, I'm a #mastobot.
Here is a summary (in beta) of the latest posts in #programmingAtKukei masto.kukei.eu/browse/programm category:
- **AI coding tools & frameworks**: Claude Code, GitHub Copilot, LangGraph, CrewAI, OpenAI Agents SDK, AI-generated code bans (Godot Engine, Alibaba).
- **PostgreSQL updates**: PostgreSQL 19 beta (`WAIT FOR LSN`), TimescaleDB 2.28.1, pg_lake extension, CVE-2026-6637, durable execution (pgdurable).
- **NetBSD updates**: Kernel fixes (PCI, AHCI, USB [1/3]

##

mastokukei@social.josko.org at 2026-07-05T09:02:01.000Z ##

maintainability concerns.
- **Arduino/ESP32 libraries**: DeterministicESPAsyncWebServer, AMY Synthesizer, Ultrasonic Sensor Library, XC_GUI, ServoTimer2Plus, RisalDash, SuperDMZ, ArduboyI2C, HomeAssistantMQTT.
- **PostgreSQL & databases**: PostgreSQL 19 beta (`WAIT FOR LSN`), TimescaleDB 2.28.1, pg_lake extension, CVE-2026-6637, durable execution in Postgres (pgdurable).
- **LLM-driven development**: Fable for macOS/iOS ports, pxpipe for token efficiency, AI agent frameworks [2/3]

##

CVE-2026-50751
(9.3 CRITICAL)

EPSS: 70.10%

updated 2026-06-17T10:57:46.373000

1 posts

A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.

7 repos

https://github.com/fernstedt/CVE-2026-50751

https://github.com/WadesWeaponShed/CheckPoint-CVE-Webscanner

https://github.com/WadesWeaponShed/CVE-2026-50751-Mitigation-Scripts

https://github.com/0xBlackash/CVE-2026-50751

https://github.com/hlkysipv/CVE-2026-50751-Check-Point-IKEv1-Authentication-Bypass

https://github.com/fevar54/CVE-2026-50751---Check-Point-IKEv1-Authentication-Bypass-Exploit

https://github.com/watchtowrlabs/watchTowr-vs-Check-Point-CVE-2026-50751

CVE-2026-46817
(9.8 CRITICAL)

EPSS: 0.68%

updated 2026-06-17T10:53:59.300000

1 posts

Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File Transmission). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Payments. Successful attacks of this vulnerability can result in takeover of Oracle Payments. CVSS 3.1 Base Score 9.8 (Con

2 repos

https://github.com/HORKimhab/CVE-2026-46817

https://github.com/0xBlackash/CVE-2026-46817

1ban_news@mastodon.social at 2026-07-03T07:59:31.000Z ##

Oracle E-Business Suite under attack via critical flaw before exploit code emerged

1ban.news/oracle-ebs-attack-cv
#1ban #oracle #ebs #attack #cve #tech

##

CVE-2026-43456
(7.8 HIGH)

EPSS: 0.16%

updated 2026-06-17T10:49:38.170000

2 posts

In the Linux kernel, the following vulnerability has been resolved: bonding: fix type confusion in bond_setup_by_slave() kernel BUG at net/core/skbuff.c:2306! Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI RIP: 0010:pskb_expand_head+0xa08/0xfe0 net/core/skbuff.c:2306 RSP: 0018:ffffc90004aff760 EFLAGS: 00010293 RAX: 0000000000000000 RBX: ffff88807e3c8780 RCX: ffffffff89593e0e RDX: ffff88807b7c49

guru@thecybersecguru.com at 2026-07-05T05:45:29.000Z ##

Unearthing a 19-Year-Old Linux Kernel Zero-Day: The Deep Dive into CVE-2026-43456

Learn how CVE-2026-43456, a 19-year-old Linux kernel zero-day, enables privilege escalation through a bonding driver type confusion vulnerability

thecybersecguru.com/exploits/c

##

guru@thecybersecguru.com at 2026-07-05T05:45:29.000Z ##

Unearthing a 19-Year-Old Linux Kernel Zero-Day: The Deep Dive into CVE-2026-43456

Learn how CVE-2026-43456, a 19-year-old Linux kernel zero-day, enables privilege escalation through a bonding driver type confusion vulnerability

thecybersecguru.com/exploits/c

##

CVE-2026-35368
(7.8 HIGH)

EPSS: 0.14%

updated 2026-06-17T10:40:28.400000

1 posts

A vulnerability exists in the chroot utility of uutils coreutils when using the --userspec option. The utility resolves the user specification via getpwnam() after entering the chroot but before dropping root privileges. On glibc-based systems, this can trigger the Name Service Switch (NSS) to load shared libraries (e.g., libnss_*.so.2) from the new root directory. If the NEWROOT is writable by an

beyondmachines1@infosec.exchange at 2026-07-04T08:01:46.000Z ##

Root Privilege Escalation and Container Escape Flaw Discovered in Coreutils

A high-severity vulnerability (CVE-2026-35368) in the uutils coreutils chroot utility allows attackers to execute arbitrary code as root and escape containers. The flaw occurs when the utility loads untrusted libraries from a new root directory before dropping system privileges.

**Update your Rust-based coreutils to version 0.8.0 immediately to prevent attackers from gaining root access through the chroot command. If you can't patch right away, stop using the --userspec flag on any directory that an untrusted user can edit.**
#cybersecurity #infosec #advisory #vulnerability
beyondmachines.net/event_detai

##

CVE-2026-26128
(7.8 HIGH)

EPSS: 0.45%

updated 2026-06-17T10:25:46.367000

2 posts

Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.

2 repos

https://github.com/jonaslejon/ad-autopwn

https://github.com/jarnovandenbrink/CVE-2026-26128

DailyCyberSecurity at 2026-07-06T01:05:37.418Z ##

Synacktiv publicly disclosed a Kerberos reflection bypass, CVE-2026-26128, with PoC exploit code. It yields SYSTEM on most Windows builds. Patch now.

securityonline.info/kerberos-r

##

DailyCyberSecurity@infosec.exchange at 2026-07-06T01:05:37.000Z ##

Synacktiv publicly disclosed a Kerberos reflection bypass, CVE-2026-26128, with PoC exploit code. It yields SYSTEM on most Windows builds. Patch now.

securityonline.info/kerberos-r

##

CVE-2025-5777
(7.5 HIGH)

EPSS: 99.90%

updated 2026-06-17T09:48:43.670000

1 posts

Insufficient input validation leading to memory overread when theΒ NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server

Nuclei template

25 repos

https://github.com/bughuntar/CVE-2025-5777

https://github.com/win3zz/CVE-2025-5777

https://github.com/soltanali0/CVE-2025-5777-Exploit

https://github.com/ndr-repo/CVE-2025-5777

https://github.com/mingshenhk/CitrixBleed-2-CVE-2025-5777-PoC-

https://github.com/fox-it/citrix-netscaler-triage

https://github.com/sentinel-aidefense/CVE-2025-5777

https://github.com/cyberleelawat/ExploitVeer

https://github.com/Chocapikk/CVE-2025-5777

https://github.com/0xgh057r3c0n/CVE-2025-5777

https://github.com/rashedhasan090/CVE-2025-5777

https://github.com/orange0Mint/CitrixBleed-2-CVE-2025-5777

https://github.com/RickGeex/CVE-2025-5777-CitrixBleed

https://github.com/FrenzisRed/CVE-2025-5777

https://github.com/rob0tstxt/POC-CVE-2025-5777

https://github.com/RaR1991/citrix_bleed_2

https://github.com/below0day/Honeypot-Logs-CVE-2025-5777

https://github.com/SleepNotF0und/CVE-2025-5777

https://github.com/idobarel/CVE-2025-5777

https://github.com/rootxsushant/Citrix-NetScaler-Memory-Leak-CVE-2025-5777

https://github.com/Shivshantp/CVE-2025-5777-TrendMicro-ApexCentral-RCE

https://github.com/mr-r3b00t/CVE-2025-5777

https://github.com/nocerainfosec/cve-2025-5777

https://github.com/Anshika2709/Citrixbleed2-CVE-2025-5777

https://github.com/0xBlackash/CVE-2025-5777

youranonnewsirc@nerdculture.de at 2026-07-03T16:04:38.000Z ##

OpenAI voluntarily limited new AI models at government request on July 2. Cybersecurity threats remain high with critical Citrix Bleed 2 (CVE-2025-5777) and Microsoft SharePoint RCE (CVE-2026-45659) vulnerabilities being actively exploited, as reported on July 2-3. Google, in collaboration with the FBI, disrupted NetNut, a major residential proxy network spanning 2 million devices. Geopolitically, Iran issued warnings to ships regarding unapproved routes in the Strait of Hormuz on July 3.

#AnonNews_irc #Cybersecurity #News

##

CVE-2026-35273
(9.8 CRITICAL)

EPSS: 92.33%

updated 2026-06-12T18:31:50

1 posts

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Updates Environment Management). Supported versions that are affected are 8.61 and 8.62. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks of this vulnerability can result in takeover of Peopl

4 repos

https://github.com/0xBlackash/CVE-2026-35273

https://github.com/HORKimhab/CVE-2026-35273

https://github.com/12hrformat/CVE-2026-35273-POC

https://github.com/ekomsSavior/POC_cve_2026_35273

blog@insicurezzadigitale.com at 2026-07-02T12:55:36.000Z ##

ShinyHunters e lo zero-day PeopleSoft: il regolatore assicurativo USA tra le 100+ vittime di UNC6240

Sfruttando CVE-2026-35273, una RCE non autenticata in Oracle PeopleSoft, il collettivo ShinyHunters/UNC6240 ha colpito oltre 100 organizzazioni prima ancora del rilascio della patch. Tra le vittime la NAIC, il regolatore assicurativo USA: 3,1 TB di dati esfiltrati e agenzie di rating in stallo.

insicurezzadigitale.com/shinyh

##

CVE-2026-48611
(9.8 CRITICAL)

EPSS: 0.66%

updated 2026-06-12T06:33:21

2 posts

Improper authentication checks in the OAuth implementation allow account hijacking even when OAuth is not configured or enabled leading to unauthorized access in default installations.

2 repos

https://github.com/citruscitruscitruscitruscitrusci/CVE-2026-48611-poc

https://github.com/Diznev/CVE-2026-48611-EXPLOIT

pentesttools@infosec.exchange at 2026-07-04T09:26:46.000Z ##

Remember the phpBB authentication bypass our research team found? We said the proof was coming. πŸ’₯ It's here.

Two working PoCs, one for each vulnerability, are now live in the research:

πŸ‘‰ PTT-2026-004 (CVE-2026-48611, 9.4): the PoC shows the full path from a single crafted request to a valid admin session. No credentials that work, no prior access, no user interaction. Just the request and the session cookie that _shouldn't_ exist.

πŸ‘‰ PTT-2026-005 (CVE-2026-48612, 8.3): the PoC walks through the silent OAuth account takeover, including the case where the victim only has to load a forum post for the chain to fire.

Talk is cheap in this line of work, so check out both PoCs, plus the mitigation steps: pentest-tools.com/research/php

phpBB 3.3.17 fixes both. If you haven't patched, the PoCs are a good reason to move today.

#offensivesecurity #vulnerabilityresearch #infosec

##

beyondmachines1@infosec.exchange at 2026-07-03T11:01:41.000Z ##

Critical phpBB Authentication Bypass Allows Instant Account Takeover

phpBB version 3.3.17 patches a critical authentication bypass (CVE-2026-48611) that allows unauthenticated attackers to take over any account, including administrators, by manipulating the auth_provider parameter.

**If you run a phpBB forum (versions 3.1.0 through 3.3.16, or 4.0.0-a2), this is important and urgent. Update to version 3.3.17 immediately. If you can't patch right away, delete the apache.php and ldap.php files from the phpbb/auth/provider/ directory, and check your server logs for suspicious auth_provider=apache and mode=login_link requests. If found, reset all user sessions and assume those accounts are compromised.**
#cybersecurity #infosec #advisory #vulnerability
beyondmachines.net/event_detai

##

CVE-2026-48612
(8.0 HIGH)

EPSS: 0.12%

updated 2026-06-12T06:33:21

1 posts

Improper state verification in the OAuth implementation could allow an attacker to manipulate the authentication flow and cause a victim’s account to be linked to an attacker-controlled account. This can result in unauthorized account linking and potential account takeover.

pentesttools@infosec.exchange at 2026-07-04T09:26:46.000Z ##

Remember the phpBB authentication bypass our research team found? We said the proof was coming. πŸ’₯ It's here.

Two working PoCs, one for each vulnerability, are now live in the research:

πŸ‘‰ PTT-2026-004 (CVE-2026-48611, 9.4): the PoC shows the full path from a single crafted request to a valid admin session. No credentials that work, no prior access, no user interaction. Just the request and the session cookie that _shouldn't_ exist.

πŸ‘‰ PTT-2026-005 (CVE-2026-48612, 8.3): the PoC walks through the silent OAuth account takeover, including the case where the victim only has to load a forum post for the chain to fire.

Talk is cheap in this line of work, so check out both PoCs, plus the mitigation steps: pentest-tools.com/research/php

phpBB 3.3.17 fixes both. If you haven't patched, the PoCs are a good reason to move today.

#offensivesecurity #vulnerabilityresearch #infosec

##

CVE-2026-34182
(9.1 CRITICAL)

EPSS: 0.24%

updated 2026-06-10T18:32:45

1 posts

Issue Summary: Cryptographic Message Services (CMS) processing fails to perform sufficient input validation on the cipher and tag length fields of AuthEnvelopedData containers, leading to various potential compromises. Impact Summary: Attackers making use of these vulnerabilities may achieve key-equivalent functionality for a given CMS recipient and/or bypass integrity validation for a given mess

freepg@infosec.exchange at 2026-07-03T11:50:28.000Z ##

#GnuPG 2.5.21-freepg has been released.

It contains all the latest bug fixes from upstream GnuPG, plus the usual FreePG patches.

Note that the FreePG project considers the 2.5.x branch to be experimental, and does not enable non-standard OpenPGP algorithms unless β€œ--compliance=gnupg” is explicitly set.

Release notes
=============

Noteworthy changes in version 2.5.21-freepg (2026-07-03)
--------------------------------------------------------

* No FreePG-specific changes.

gitlab.com/freepg/gnupg/-/rele

Upstream's release notes follow.

----

Noteworthy changes in version 2.5.21 (2026-07-02)
-------------------------------------------------

* New and extended features:

- gpg, gpgsm: Use partial file on decryption, remove on failure.
Disable with "--compatibility-flags=no-partial-file-guard".
[T7873]

- gpg: Use the INT_RCP_FPR subpacket in revocation signatures.
[T8252]

- Create a pkgversioninfo.txt file when building using the speedo
build system.

* Bug fixes:

- gpg: Fix potential use-after-free in batch key generation when
handling the keyserver URL option. [T8277]

- gpgsm: Fix regression in gpgsm_verify with expired certificates.
[T8188]

- gpgsm: Require a minimum tag length for GCM decryption.
[rG4c7e68cf3d, CVE-2026-34182]

- scd: Limit the size of returned APDU objects from faulty cards.
[T8281]

- scd: Fix condition to retrieve ATR. [rGca25a7a61b]

- scd:openpgp: Fix regression in CHV1 retry counter byte index.
[rG245330ebea]

- agent: Make batch import of Kyber keys work. [T8029]

- dirmngr: Add a validation check in get_dns_cert_standard.
[T8303]

- gpgconf: Raise an error on certain parse errors. [T8261]

- Fix use of usleep in file remove function on Windows. Regression
since 2.5.13. [rGab9ce5f5e7]

Release-info: dev.gnupg.org/T8262

##

CVE-2025-59382(CVSS UNKNOWN)

EPSS: 0.29%

updated 2026-06-10T03:32:10

1 posts

QTS, QuTS hero, QuTScloud are not affected. We have already fixed the vulnerability in the following version:

1 repos

https://github.com/Rat5ak/CVE-2025-59382-QNAP-Password-Reset-Account-Takeover

CVE-2026-45504
(8.8 HIGH)

EPSS: 0.46%

updated 2026-06-09T18:30:58

1 posts

Server-side request forgery (ssrf) in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network.

1 repos

https://github.com/hawktrace/CVE-2026-45504

DailyCyberSecurity@infosec.exchange at 2026-07-03T00:10:34.000Z ##

HawkTrace publicly disclosed Microsoft Exchange vulnerability CVE-2026-45504 with PoC exploit code. The SSRF flaw reads arbitrary files. Patch now.
#MicrosoftExchange #CVE202645504 #SSRF #Cybersecurity #PoC #Infosec

securityonline.info/microsoft-

##

CVE-2025-3248(CVSS UNKNOWN)

EPSS: 99.97%

updated 2025-11-05T20:12:46

2 posts

Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/validate/code endpoint. A remote and unauthenticated attacker can send crafted HTTP requests to execute arbitrary code.

27 repos

https://github.com/PuddinCat/CVE-2025-3248-POC

https://github.com/zapstiko/CVE-2025-3248

https://github.com/tiemio/RCE-CVE-2025-3248

https://github.com/0xgh057r3c0n/CVE-2025-3248

https://github.com/dennisec/CVE-2025-3248

https://github.com/0-d3y/langflow-rce-exploit

https://github.com/nebari-playground/langflow-cve-2025-3248

https://github.com/dennisec/Mass-CVE-2025-3248

https://github.com/xuemian168/CVE-2025-3248

https://github.com/Kiraly07/Demo_CVE-2025-3248

https://github.com/EQSTLab/CVE-2025-3248

https://github.com/vigilante-1337/CVE-2025-3248

https://github.com/min8282/CVE-2025-3248

https://github.com/peiqiF4ck/WebFrameworkTools-5.5-enhance

https://github.com/r0otk3r/CVE-2025-3248

https://github.com/get-xor/coreweave-demo-2026-05

https://github.com/b0ySie7e/CVE-2025-3248-POC

https://github.com/imbas007/CVE-2025-3248

https://github.com/bambooqj/cve-2025-3248

https://github.com/Vip3rLi0n/CVE-2025-3248

https://github.com/ynsmroztas/CVE-2025-3248-Langflow-RCE

https://github.com/wand3rlust/CVE-2025-3248

https://github.com/ill-deed/Langflow-CVE-2025-3248-Multi-target

https://github.com/drackyjr/cve-2025-3248-exploit

https://github.com/12-test-12/CVE-2025-3248

https://github.com/Praison001/CVE-2025-3248

https://github.com/verylazytech/CVE-2025-3248

hasamba at 2026-07-05T14:43:12.971Z ##

----------------

🎯 AI
===================

Sysdig Threat Research Team documented what they assess as the first case of agentic ransomware, an operation dubbed JADEPUFFER. The entire extortion campaign, from initial access to destructive database encryption, was driven by a large language model rather than a human operator.

Initial Access and Vulnerability

JADEPUFFER gained entry through CVE-2025-3248, a missing-authentication flaw in Langflow's code validation endpoint that allows unauthenticated Python execution. Langflow, an open-source framework for building LLM-driven applications, is frequently exposed on the internet with weak network controls and often holds API keys and cloud credentials.

Attack Chain Analysis

The operation unfolded across two distinct targets: the internet-facing Langflow instance and a separate production database server, the true objective.

Phase 1 on the Langflow instance:
1. Reconnaissance: The LLM enumerated the host (id, uname -a, hostname, network interfaces, running processes) and swept for secrets in parallel: LLM provider API keys (OpenAI, Anthropic, DeepSeek, Gemini), cloud credentials (AWS, GCP, Azure, and Chinese providers: ALIBABA_, ALIYUN_, TENCENT_, HUAWEI_), cryptocurrency wallets and seed phrases, and database credentials.
2. Local data looting: Dumped Langflow's backing Postgres database, harvested stored credentials and API keys, staged output locally, reviewed it, then deleted staging files.
3. Internal lateral discovery: Scanned the internal address space for databases, object storage, secret stores, and service-discovery endpoints, probing with default credentials.
4. MinIO enumeration: Probed minio.internal:9000 and 127.0.0.1:9000 for the S3-compatible object store.

What Makes This Different

Two characteristics distinguish JADEPUFFER from conventional ransomware:

1. Self-narrating payloads: The LLM-generated code contained natural language reasoning, target prioritization, and detailed annotations. Human operators rarely embed this kind of commentary. The payloads documented their own decision-making process.
2. Real-time adaptation: When a step failed, the LLM refined its approach and retried within seconds. In one observed sequence, it went from a failed authentication attempt to a corrected working login in 31 seconds.

Detection Considerations
β€’ Patch Langflow instances against CVE-2025-3248 immediately
β€’ Do not expose Langflow to the internet without authentication and network controls
β€’ Monitor for credential-sweeping patterns targeting LLM API keys and cloud credentials in parallel
β€’ Treat self-annotating scripts as a potential indicator of LLM-generated payloads
β€’ The "first documented case" assessment comes from Sysdig TRT alone; independent verification is recommended

πŸ”Ή JADEPUFFER

πŸ”— Source: sysdig.com/blog/jadepuffer-age

##

hasamba@infosec.exchange at 2026-07-05T14:43:12.000Z ##

----------------

🎯 AI
===================

Sysdig Threat Research Team documented what they assess as the first case of agentic ransomware, an operation dubbed JADEPUFFER. The entire extortion campaign, from initial access to destructive database encryption, was driven by a large language model rather than a human operator.

Initial Access and Vulnerability

JADEPUFFER gained entry through CVE-2025-3248, a missing-authentication flaw in Langflow's code validation endpoint that allows unauthenticated Python execution. Langflow, an open-source framework for building LLM-driven applications, is frequently exposed on the internet with weak network controls and often holds API keys and cloud credentials.

Attack Chain Analysis

The operation unfolded across two distinct targets: the internet-facing Langflow instance and a separate production database server, the true objective.

Phase 1 on the Langflow instance:
1. Reconnaissance: The LLM enumerated the host (id, uname -a, hostname, network interfaces, running processes) and swept for secrets in parallel: LLM provider API keys (OpenAI, Anthropic, DeepSeek, Gemini), cloud credentials (AWS, GCP, Azure, and Chinese providers: ALIBABA_, ALIYUN_, TENCENT_, HUAWEI_), cryptocurrency wallets and seed phrases, and database credentials.
2. Local data looting: Dumped Langflow's backing Postgres database, harvested stored credentials and API keys, staged output locally, reviewed it, then deleted staging files.
3. Internal lateral discovery: Scanned the internal address space for databases, object storage, secret stores, and service-discovery endpoints, probing with default credentials.
4. MinIO enumeration: Probed minio.internal:9000 and 127.0.0.1:9000 for the S3-compatible object store.

What Makes This Different

Two characteristics distinguish JADEPUFFER from conventional ransomware:

1. Self-narrating payloads: The LLM-generated code contained natural language reasoning, target prioritization, and detailed annotations. Human operators rarely embed this kind of commentary. The payloads documented their own decision-making process.
2. Real-time adaptation: When a step failed, the LLM refined its approach and retried within seconds. In one observed sequence, it went from a failed authentication attempt to a corrected working login in 31 seconds.

Detection Considerations
β€’ Patch Langflow instances against CVE-2025-3248 immediately
β€’ Do not expose Langflow to the internet without authentication and network controls
β€’ Monitor for credential-sweeping patterns targeting LLM API keys and cloud credentials in parallel
β€’ Treat self-annotating scripts as a potential indicator of LLM-generated payloads
β€’ The "first documented case" assessment comes from Sysdig TRT alone; independent verification is recommended

πŸ”Ή JADEPUFFER #Ransomware #AI #LLM #CVE_2025_3248

πŸ”— Source: sysdig.com/blog/jadepuffer-age

##

CVE-2026-12184
(0 None)

EPSS: 0.00%

2 posts

N/A

DailyCyberSecurity at 2026-07-06T02:42:07.119Z ##

Two PHP flaws are patched. CVE-2026-12184 is a PHP remote DoS that crashes PHP-FPM, and CVE-2026-14355 causes memory corruption. Update PHP now.

securityonline.info/php-remote

##

DailyCyberSecurity@infosec.exchange at 2026-07-06T02:42:07.000Z ##

Two PHP flaws are patched. CVE-2026-12184 is a PHP remote DoS that crashes PHP-FPM, and CVE-2026-14355 causes memory corruption. Update PHP now.

#PHP #RemoteDoS #DoS #PHPFPM #CyberSecurity #Vulnerability #InfoSec

securityonline.info/php-remote

##

CVE-2026-49429
(0 None)

EPSS: 0.00%

2 posts

N/A

DailyCyberSecurity at 2026-07-06T01:35:33.739Z ##

Recent FreeBSD security advisories detail severe flaws like CVE-2026-49420, CVE-2026-49429, and CVE-2026-49422. Patch immediately to stop attacks.

securityonline.info/freebsd-se

##

DailyCyberSecurity@infosec.exchange at 2026-07-06T01:35:33.000Z ##

Recent FreeBSD security advisories detail severe flaws like CVE-2026-49420, CVE-2026-49429, and CVE-2026-49422. Patch immediately to stop attacks.

#FreeBSD #Vulnerability #CyberSecurity #CVE202649420

securityonline.info/freebsd-se

##

CVE-2026-49422
(0 None)

EPSS: 0.00%

2 posts

N/A

DailyCyberSecurity at 2026-07-06T01:35:33.739Z ##

Recent FreeBSD security advisories detail severe flaws like CVE-2026-49420, CVE-2026-49429, and CVE-2026-49422. Patch immediately to stop attacks.

securityonline.info/freebsd-se

##

DailyCyberSecurity@infosec.exchange at 2026-07-06T01:35:33.000Z ##

Recent FreeBSD security advisories detail severe flaws like CVE-2026-49420, CVE-2026-49429, and CVE-2026-49422. Patch immediately to stop attacks.

#FreeBSD #Vulnerability #CyberSecurity #CVE202649420

securityonline.info/freebsd-se

##

CVE-2026-49420
(0 None)

EPSS: 0.00%

2 posts

N/A

DailyCyberSecurity at 2026-07-06T01:35:33.739Z ##

Recent FreeBSD security advisories detail severe flaws like CVE-2026-49420, CVE-2026-49429, and CVE-2026-49422. Patch immediately to stop attacks.

securityonline.info/freebsd-se

##

DailyCyberSecurity@infosec.exchange at 2026-07-06T01:35:33.000Z ##

Recent FreeBSD security advisories detail severe flaws like CVE-2026-49420, CVE-2026-49429, and CVE-2026-49422. Patch immediately to stop attacks.

#FreeBSD #Vulnerability #CyberSecurity #CVE202649420

securityonline.info/freebsd-se

##

CVE-2026-52747
(0 None)

EPSS: 0.00%

2 posts

N/A

secdb at 2026-07-06T00:25:23.369Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

##

thehackerwire@mastodon.social at 2026-07-05T18:00:03.000Z ##

🟠 CVE-2026-27771 - High (8.2)

Gitea versions up to and including 1.26.1 have insufficient permission checks for Composer package source links, which can expose private or internal package source information.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

secdb@infosec.exchange at 2026-07-06T00:25:23.000Z ##

πŸ“ˆ CVE Published in last days (2026-06-29 - 2026-06-29)
See more at secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 195
- High: 612
- Medium: 729
- Low: 114
- None: 230

Status:
- : 68
- Analyzed: 534
- Awaiting Analysis: 109
- Deferred: 568
- Modified: 39
- Received: 443
- Rejected: 6
- Undergoing Analysis: 113

CISA KEVs:
- CISA-2026:0629 (secdb.nttzen.cloud/security-ad)
- CISA-2026:0701 (secdb.nttzen.cloud/security-ad)

Top CNAs:
- Chrome: 434
- VulnCheck: 177
- VulDB: 162
- Patchstack: 125
- Wordfence: 96
- GitHub, Inc.: 81
- N/A: 68
- Microsoft Corporation: 49
- IBM Corporation: 43
- Gitea Limited: 40

Top Affected Products:
- UNKNOWN: 1234
- Google Chrome: 401
- Geovision Inc. Geowebplayer: 16
- Imagemagick: 13
- Langflow: 11
- Nvidia Nemo Megatron Bridge: 11
- Adobe Coldfusion: 10
- Uvnc Ultravnc: 9
- Apache Activemq: 9
- Ibm Websphere Application Server: 8

Top EPSS Score:
- CVE-2026-27771 - 40.74 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13773 - 3.41 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56413 - 3.08 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56415 - 3.07 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56782 - 3.02 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-13545 - 2.71 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58452 - 2.42 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58453 - 1.69 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-56700 - 1.68 % (secdb.nttzen.cloud/cve/detail/)
- CVE-2026-58457 - 1.67 % (secdb.nttzen.cloud/cve/detail/)

#ZEN #SecDB #InfoSec

##

thehackerwire@mastodon.social at 2026-07-05T18:00:03.000Z ##

🟠 CVE-2026-27771 - High (8.2)

Gitea versions up to and including 1.26.1 have insufficient permission checks for Composer package source links, which can expose private or internal package source information.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-10054
(0 None)

EPSS: 0.16%

2 posts

N/A

thehackerwire@mastodon.social at 2026-07-05T22:00:24.000Z ##

🟠 CVE-2026-10054 - High (8.8)

In affected versions of Eclipse Theia (1.8.1 and later), the browser backend exposes privileged terminal RPC over WebSocket (/services/shell-terminal, /services/terminals/:id) without service-level authentication.

WebSocket origin validation i...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T22:00:24.000Z ##

🟠 CVE-2026-10054 - High (8.8)

In affected versions of Eclipse Theia (1.8.1 and later), the browser backend exposes privileged terminal RPC over WebSocket (/services/shell-terminal, /services/terminals/:id) without service-level authentication.

WebSocket origin validation i...

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-07-05T21:00:05.000Z ##

πŸ”΄ CVE-2026-20896 - Critical (9.8)

Gitea Docker image versions up to and including 1.26.2 use REVERSE_PROXY_TRUSTED_PROXIES=* by default, allowing any source IP to impersonate a user when reverse-proxy authentication headers such as X-WEBAUTH-USER are enabled.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

hugovalters@mastodon.social at 2026-07-05T09:06:34.000Z ##

CVE-2026-20896 - Critical auth bypass in Gitea Docker images ≀1.26.2. Default REVERSE_PROXY_TRUSTED_PROXIES=* allows IP spoofing via X-WEBAUTH-USER headers. CVSS 9.8. No patch available. Update config now. #CVE #Gitea #infosec

valtersit.com/cve/CVE-2026-208

##

thehackerwire@mastodon.social at 2026-07-05T21:00:05.000Z ##

πŸ”΄ CVE-2026-20896 - Critical (9.8)

Gitea Docker image versions up to and including 1.26.2 use REVERSE_PROXY_TRUSTED_PROXIES=* by default, allowing any source IP to impersonate a user when reverse-proxy authentication headers such as X-WEBAUTH-USER are enabled.

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-58426
(0 None)

EPSS: 0.18%

2 posts

N/A

thehackerwire@mastodon.social at 2026-07-04T21:00:34.000Z ##

πŸ”΄ CVE-2026-58426 - Critical (9.6)

Gitea Actions Artifacts V4 signed URL HMAC ambiguity allows cross-repository artifact read and cross-task upload-state write

πŸ”— thehackerwire.com/vulnerabilit

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq@infosec.exchange at 2026-07-04T00:00:37.000Z ##

CVE-2026-58426 | CRITICAL in Gitea 1.22.0: Ambiguous HMAC signing enables cross-repo artifact reads & cross-task upload tampering. No patch available β€” restrict access, monitor activity. Details: radar.offseq.com/threat/cve-20 #OffSeq #CVE202658426 #Gitea #infosec

##

CVE-2026-58424
(0 None)

EPSS: 0.20%

1 posts

N/A

CVE-2026-50027
(0 None)

EPSS: 0.00%

1 posts

N/A

offseq@infosec.exchange at 2026-07-03T03:00:26.000Z ##

CVE-2026-50027: mcp-memory-service (<10.67.1) has a CRITICAL auth bypass in /api/documents/* 🚨. Unauthenticated attackers can read, write, delete memory data. Restrict access or disable endpoints until fixed. radar.offseq.com/threat/ghsa-8 #OffSeq #CVE202650027 #APIsecurity

##

CVE-2026-54588
(0 None)

EPSS: 0.31%

1 posts

N/A

Visit counter For Websites