CVE-2026-56414: H.VIEW HV-500S6 IP Camera has a HIGH-severity vuln (CVSS 7.2) allowing authenticated users to upload arbitrary files via certificate upload, risking persistent compromise. Restrict admin access & monitor uploads. https://radar.offseq.com/threat/cve-2026-56414-cwe-434-in-hview-hv-500s6-ip-camera-2fc4d58c6ce82381 #OffSeq #IoTSecurity #CVE #Vulnerability

CVE-2026-56414: H.VIEW HV-500S6 IP Camera has a HIGH-severity vuln (CVSS 7.2) allowing authenticated users to upload arbitrary files via certificate upload, risking persistent compromise. Restrict admin access & monitor uploads. https://radar.offseq.com/threat/cve-2026-56414-cwe-434-in-hview-hv-500s6-ip-camera-2fc4d58c6ce82381 #OffSeq #IoTSecurity #CVE #Vulnerability

H.VIEW HV-500S6 IP Camera has a HIGH severity bug (CVE-2026-55975, CVSS 7.2): Authenticated users may inject commands using unsanitized XML in cert generation. Restrict access, monitor activity, and check for patches. https://radar.offseq.com/threat/cve-2026-55975-cwe-78-in-hview-hv-500s6-ip-camera-32fd47fcf53b8f7c #OffSeq #Vulnerability #IoTSecurity 🔒

H.VIEW HV-500S6 IP Camera has a HIGH severity bug (CVE-2026-55975, CVSS 7.2): Authenticated users may inject commands using unsanitized XML in cert generation. Restrict access, monitor activity, and check for patches. https://radar.offseq.com/threat/cve-2026-55975-cwe-78-in-hview-hv-500s6-ip-camera-32fd47fcf53b8f7c #OffSeq #Vulnerability #IoTSecurity 🔒

Daktronics VFC-DMP-5000 firmware has a CRITICAL vuln (CVE-2026-28701, CVSS 9.8): remote attackers can traverse directories & enumerate file paths — no auth needed. No patch yet. Restrict network access & monitor closely. https://radar.offseq.com/threat/cve-2026-28701-cwe-22-in-daktronics-vfc-dmp-5000-fcca115843b7a100 #OffSeq #CVE #Infosec #IoT

Daktronics VFC-DMP-5000 firmware has a CRITICAL vuln (CVE-2026-28701, CVSS 9.8): remote attackers can traverse directories & enumerate file paths — no auth needed. No patch yet. Restrict network access & monitor closely. https://radar.offseq.com/threat/cve-2026-28701-cwe-22-in-daktronics-vfc-dmp-5000-fcca115843b7a100 #OffSeq #CVE #Infosec #IoT

CVE-2026-52784 - Critical CSRF in OpenProject. Attackers can escalate privileges via /users/:id. CVSS 8.8. Update to 17.3.3 or 17.4.1 immediately. #CVE #OpenProject #infosec

https://www.valtersit.com/cve/CVE-2026-52784/

Node.js WebCrypto in v22.22.3, v24.16.0, v26.3.0 is affected by CVE-2026-48933 (HIGH). Integer overflow in subtle.encrypt() can crash processes with inputs ≥ 2 GiB, causing DoS. Avoid large inputs while awaiting a fix. 🔐 https://radar.offseq.com/threat/cve-2026-48933-cwe-190-integer-overflow-in-nodejs--5c33db78fed81dbe #OffSeq #Nodejs #Vuln

IBM Langflow OSS v1.0.0 – 1.9.3 hit by CRITICAL code injection (CVE-2026-10561, CVSS 10). Auth bypass enables unauth'd RCE & total compromise. No patch yet — track IBM advisories for updates. https://radar.offseq.com/threat/cve-2026-10561-cwe-94-improper-control-of-generati-066ce4d0e72e70d2 #OffSeq #Infosec #CVE202610561

Setracker2 Android app (com.tgelec.setracker) hit by CRITICAL vuln (CVE-2026-9222, CVSS 9.2): uses password hash for authentication. Anyone with the hash can access backend services. Update guidance pending. https://radar.offseq.com/threat/cve-2026-9222-cwe-836-use-of-password-hash-instead-9894d1554efb5333 #OffSeq #AndroidSec #CVE20269222

CVE-2026-44727: CRITICAL XSS in jupyter_server <2.20. Malicious notebooks can lead to cookie theft & remote code execution due to missing CSP sandboxing. Upgrade to 2.20+ to secure your server. Details: https://radar.offseq.com/threat/cve-2026-44727-cwe-79-improper-neutralization-of-i-2f84cbe7cd47cddc #OffSeq #XSS #Jupyter #Security

My latest technical deep-dive is live! 🚨

Deep dive into CVE-2026-43503 (DirtyClone) in the Linux kernel network stack. Learn how a metadata propagation gap drops the SHARED_FRAG flag, bypasses COW guards, and grants instant LPE root access:

https://denizhalil.com/2026/06/26/cve-2026-43503-dirtyclone-linux-kernel-lpe/

#CVE202643503 #DirtyClone #LinuxKernel #LPE #Cybersecurity

Two new Linux LPEs hit page cache from opposite ends of the kernel

https://thecybersecguru.com/news/linux-lpe-pedit-cow-dirtyclone-cve-2026-46331-cve-2026-43503/

Two new Linux LPEs hit page cache from opposite ends of the kernel

https://thecybersecguru.com/news/linux-lpe-pedit-cow-dirtyclone-cve-2026-46331-cve-2026-43503/

GeoVision GV-LPC2011/2211 (≤v1.12) affected by CVE-2026-57879: CRITICAL stack-based buffer overflow in ssvr (CVSS 9.8). Remote, unauthenticated code execution possible via crafted RTSP. Restrict RTSP & monitor. https://radar.offseq.com/threat/cve-2026-57879-cwe-121-stack-based-buffer-overflow-92b9e3b3fdb94e2a #OffSeq #CVE202657879 #infosec #IoT

(Obsidian/Notion alternative), OpenMontage (agentic video production), NeoStreaming (C++ streaming library), Libre Barcode Project.
- **Web development**: CSS `field-sizing`, `text-box-trim`, SVG charts, scroll-driven animations, Deno 2.9 (desktop app support).
- **Security updates**: Expat 2.8.2 (security release), CVE-2026-11702 in p5-Bytes-Random-Secure-Tiny, GitHub OAuth for Cloudflare, `Secs-man` secrets manager.
- **Chess engines**: Stockfish dev-20260625, Avalanche [2/3]

CVE-2026-8380: HIGH severity in Frontend File Manager Plugin (≤23.6) for WordPress. Author+ users can delete any post/page; guest deletion possible if enabled. Disable 'Allow guest uploads' until patched. https://radar.offseq.com/threat/cve-2026-8380-cwe-73-external-control-of-file-name-aa5b0eb592b68479 #OffSeq #WordPress #Vuln #BlueTeam

CISA adds CVE-2026-12569 to the KEV catalog as adversaries actively exploit PTC Windchill & FlexPLM platforms. This is an immediate threat to supply chain integrity and intellectual property. Access our complete executive risk mitigation framework for corporate leadership: https://thecybermind.co/lacm

CISA adds CVE-2026-12569 to the KEV catalog as adversaries actively exploit PTC Windchill & FlexPLM input validation vulnerabilities. Lock down your supply chain assets. Full forensic indicators, lateral movement tracking, and active endpoint hardening protocols are live: https://thecybermind.co/y7tn

🚨 [CISA-2026:0625] CISA Adds 2 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0625)

CISA has added 2 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.

⚠️ CVE-2026-12569 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12569)
- Name: PTC Windchill and FlexPLM Improper Input Validation Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: PTC
- Product: Windchill and FlexPLM
- Notes: https://www.ptc.com/en/support/article/CS473270 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-12569

⚠️ CVE-2026-20230 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-20230)
- Name: Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Cisco
- Product: Unified Communications Manager
- Notes: https://www.cisco.com/c/en/us/support/docs/csa/cisco-sa-cucm-ssrf-cXPnHcW.html ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-20230

#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260625 #cisa20260625 #cve_2026_12569 #cve_2026_20230 #cve202612569 #cve202620230

CVE ID: CVE-2026-12569
Vendor: PTC
Product: Windchill and FlexPLM
Date Added: 2026-06-25
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-12569

CVE-2026-56025 - Info disclosure via unauthenticated broken access control in Paymob for WooCommerce <=4.1.2. CVSS 7.5. No patch available. Restrict access immediately. #CVE #WordPress #infosec

https://www.valtersit.com/cve/CVE-2026-56025/

CISA Mandates Urgent Patching for Exploited Cisco Flaw

Don't wait until it's too late: Cisco has issued a critical patch for a vulnerability (CVE-2026-20230) in its Unified Communications Manager Server, and the US Cybersecurity and Infrastructure Security Agency (CISA) is requiring urgent remediation by June 28. Act now to protect your system from potential remote exploitation.

https://osintsights.com/cisa-mandates-urgent-patching-for-exploited-cisco-flaw?utm_source=mastodon&utm_medium=social

#Cisa #Cisco #Cve202620230 #ServersideRequestForgery #UnifiedCommunicationsManagerServer

🚨 [CISA-2026:0625] CISA Adds 2 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0625)

CISA has added 2 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.

⚠️ CVE-2026-12569 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12569)
- Name: PTC Windchill and FlexPLM Improper Input Validation Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: PTC
- Product: Windchill and FlexPLM
- Notes: https://www.ptc.com/en/support/article/CS473270 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-12569

⚠️ CVE-2026-20230 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-20230)
- Name: Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Cisco
- Product: Unified Communications Manager
- Notes: https://www.cisco.com/c/en/us/support/docs/csa/cisco-sa-cucm-ssrf-cXPnHcW.html ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-20230

#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260625 #cisa20260625 #cve_2026_12569 #cve_2026_20230 #cve202612569 #cve202620230

CVE ID: CVE-2026-20230
Vendor: Cisco
Product: Unified Communications Manager
Date Added: 2026-06-25
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-20230

Cisco unter Beschuss

Es ist alles nicht so schlimm wie es aussieht, es ist alles viel viel schlimmer. Nicht nur werden in schöner (?) Regelmäßigkeit gefährliche Sicherheitslücken in Cisco-Produkten gefunden, sondern sie werden auch sofort für Angriffe ausgenutzt - manche schon vor der Veröffentlichung (Zero-Day). Eine kleine Historie füge ich unten an. Beginnen wir mit CVE-2026-20230 (8,6 von 10), über die ich noch nicht explizit berichtet hatte. Am Anfang Juni hatte Cisco Flicken gegen diese Sicherheitslücke veröffentlicht. Damals vermeldete die Firma, dass ein PoC Exploit vorläge. Anscheinend haben unbekannte Hacker den PoC gleich in einen

https://www.pc-fluesterer.info/wordpress/2026/06/25/cisco-unter-beschuss/

#0day #backdoor #cybercrime #exploits #hersteller #politik #privacy #sicherheit #spionage #UnplugTrump #wissen #zeroday

Critical zero-day alert: Cisco CUCM WebDialer SSRF (CVE-2026-20230) allows unauthenticated remote root file-writes. We map out the Tomcat log baselines, JSP shell indicators, and edge isolation steps in our latest TSUITE Runbook. Protect your voice network: mike@thecybermind.co. #Infosec

Active Exploitation of Cisco Unified Communications Manager Vulnerabilities Grants Root Access

Cisco Unified Communications Manager is facing active exploitation of two vulnerabilities, CVE-2026-20230 and CVE-2026-20045, which allow unauthenticated attackers to gain root access and deploy webshells.

**Apply the latest software updates, including Unified CM 14SU6 and 15SU5, immediately. If patching is not possible, disable the Cisco WebDialer Web Service to sever the attack path, and aggressively audit your /platform-services/ directory for unusual .jsp files or unauthorized webshells.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/active-exploitation-of-cisco-unified-communications-manager-vulnerabilities-grants-root-access-w-x-c-7-n/gD2P6Ple2L

#Cisco #UnifiedCM flaw CVE-2026-20230 now exploited in attacks

https://www.bleepingcomputer.com/news/security/cisco-unified-cm-sme-flaw-cve-2026-20230-now-exploited-in-attacks/

#cybersecurity

Falha crítica em servidores da Cisco está a ser ativamente explorada. A vulnerabilidade CVE-2026-20230 afeta o Unified Communications Manager e a Session Management Edition, exigindo ação imediata dos administradores de sistemas em Portugal. ⚠️

🔗 https://tugatech.com.pt/t86118-falha-critica-em-servidores-da-cisco-ja-esta-a-ser-ativamente-explorada

#falha 

Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks

A high-severity SSRF vulnerability, tracked as CVE-2026-20230, in Cisco Unified Communications Manager Server is now being exploited in attacks.

🔗️ [Bleepingcomputer] https://link.is.it/Y4BXYl

Go fuck some shit up, y'all: https://db.gcve.eu/vuln/cve-2026-56265

GeoVision GV-LPC2011/2211 devices (≤1.12) face CRITICAL CVE-2026-57880: stack-based buffer overflow in RTSP auth enables remote, unauthenticated DoS or code execution. Restrict RTSP access, monitor traffic. Patch status unknown. https://radar.offseq.com/threat/cve-2026-57880-cwe-121-stack-based-buffer-overflow-1d88eee9b47ed7bb #OffSeq #Vuln #IoTSecurity #CVE

GeoVision GV-LPC2011/2211 (<=1.12) hit by CVE-2026-57881: CRITICAL stack-based buffer overflow in vlsvr enables unauthenticated RCE or DoS. No patch yet — restrict access & monitor activity. https://radar.offseq.com/threat/cve-2026-57881-cwe-121-stack-based-buffer-overflow-0de9014b0e3f1945 #OffSeq #Vuln #IoTSecurity #CVE202657881

HIGH severity: CVE-2026-8797 impacts NEC ExpressUpdate Agent for Windows. Exposed IOCTL enables local privilege escalation to SYSTEM. No patch yet — restrict local access, monitor activity. Details: https://radar.offseq.com/threat/cve-2026-8797-cwe-782-exposed-ioctl-with-insuffici-3ae62ec0cc5d59d0 #OffSeq #Vulnerability #Windows #PrivilegeEscalation

CVE-2026-48618: Node.js HIGH severity vuln in TLS hostname handling (Unicode dot normalization flaw). Affects 22.22.3, 24.16.0, 26.3.0. No patch yet — restrict use & monitor vendor advisory. https://radar.offseq.com/threat/cve-2026-48618-cwe-176-improper-handling-of-unicod-6526a729870e7650 #OffSeq #NodeJS #Vulnerability #TLS #Security

CVE-2026-54158: CRITICAL XSS in SiYuan (<3.7.0) allows persistent JS injection; on Electron clients, can escalate to RCE. Upgrade to 3.7.0+ ASAP. No active exploits reported. https://radar.offseq.com/threat/cve-2026-54158-cwe-79-improper-neutralization-of-i-cee0850f8d1e1264 #OffSeq #XSS #CVE202654158 #SiYuan

CVE-2026-23879 - Critical RCE in Py7zr. Arbitrary file write via symbolic link chains allows escape from destination directory. CVSS 8.0. No patch available. Update or avoid extraction of untrusted 7z archives. #CVE #infosec #Python

https://www.valtersit.com/cve/CVE-2026-23879/

HIGH severity: CVE-2026-9702 in InPost PL WordPress plugin (<1.9.1) lets unauthenticated attackers redirect WooCommerce order shipping. No patch yet — restrict access, monitor for changes. Details: https://radar.offseq.com/threat/cve-2026-9702-cwe-284-improper-access-control-in-i-050e346ad7520813 #OffSeq #WordPress #Vulnerability #Ecommerce

CVE-2026-33612 (HIGH, CVSS 7.5) impacts PowerDNS Recursor ≤5.4.3. Crafted zones from malicious servers can trigger cache poisoning via ZoneToCache. Review deployments, monitor for patches: https://radar.offseq.com/threat/cve-2026-33612-acceptance-of-extraneous-untrusted--38801b1c47b57c99 #OffSeq #PowerDNS #vuln #dns

CVE-2026-12851: CRITICAL OS command injection in GeoVision GV-I/O Box 4E v2.09 via DVRSearch/Network.cgi allows remote code execution. Patch status pending — restrict access & monitor endpoints. https://radar.offseq.com/threat/cve-2026-12851-cwe-78-improper-neutralization-of-s-3964552d83f5f479 #OffSeq #Vulnerability #IoTSecurity #CVE #Security

pravel SignUp & SignIn (<=1.0.0) has a CRITICAL flaw (CVE-2026-12417): unauthenticated attackers can reset any WordPress user password, including admins. Remove or disable plugin until patch. https://radar.offseq.com/threat/cve-2026-12417-cwe-640-weak-password-recovery-mech-5dce018195eb2855 #OffSeq #WordPress #Vuln #CVE202612417

CVE-2026-46752: CRITICAL heap-based buffer overflow in Apache Kvrocks (2.0.4 – 2.15.0) via Redis Lua cjson. RCE & DoS possible. Upgrade to 2.16.0 ASAP. https://radar.offseq.com/threat/cve-2026-46752-cwe-122-heap-based-buffer-overflow--87a83247c4a43c17 #OffSeq #Kvrocks #CVE202646752 #infosec

CVE-2026-41566 (CRITICAL, CVSS 9.4) in Apache Kvrocks 2.8.0 allows privilege escalation via improper permission handling. Upgrade to 2.16.0 is required — no other mitigation. Details: https://radar.offseq.com/threat/cve-2026-41566-cwe-280-improper-handling-of-insuff-5835abc74e4991d0 #OffSeq #CVE202641566 #Kvrocks #Security

Just saw there is an exploit example for that libssh2 vuln. Has anyone given it a try yet? I might be too lazy to get my laptop out.

https://github.com/0xBlackash/CVE-2026-55200

"No way to prevent this" say users of only language where this regularly happens https://xeiaso.net/shitposts/no-way-to-prevent-this/memory-safety/CVE-2026-55200/

"No way to prevent this" say u...

"No way to prevent this" say users of only language where this regularly happens

https://xeiaso.net/shitposts/no-way-to-prevent-this/memory-safety/CVE-2026-55200/?utm_campaign=mi_irl&utm_medium=social&utm_source=mastodon

Ah sinon, si vous utilisez du logiciel, vous allez être piraté. Cette fois, c'est SSH (CVE-2026-55200).
https://www.cve.org/CVERecord?id=CVE-2026-55200

For example it seems Debian stable is currently affected: https://security-tracker.debian.org/tracker/CVE-2026-55200

libssh2 Vulnerabilities Enable Remote Code Execution and Denial of Service

libssh2 disclosed two vulnerabilities, including a critical out-of-bounds write (CVE-2026-55200) and a high-severity denial of service (CVE-2026-55199), affecting versions up to 1.11.1. These flaws allow malicious servers to execute code on connecting clients or cause resource exhaustion.

**Plan to update libssh2 to a patched build as soon as a fixed release is available. In the meantime audit your tools (curl/libcurl, PHP ssh2 extension, monitoring utilities, IoT firmware) for the vulnerable library versions up to 1.11.1. Only connect to SSH servers you trust and isolate sensitive management interfaces so they're reachable from trusted networks only, since a malicious server can now attack your client.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/libssh2-vulnerabilities-enable-remote-code-execution-and-denial-of-service-k-v-c-g-d/gD2P6Ple2L

Zoho ManageEngine ADSelfService Plus hit by CRITICAL CVE-2026-11374: predictable SSO tickets enable unauthenticated account takeover. No patch yet — monitor advisories and review exposure. https://radar.offseq.com/threat/cve-2026-11374-cwe-340-generation-of-predictable-n-3400726b0246539c #OffSeq #Zoho #Vuln #SSO #Infosec

CVE-2026-10735 (CRITICAL): smart-post-show-pro 4.0.1 for WordPress shipped with malicious code via compromised update server. Unauth attackers can exfiltrate creds & control sites. Remove/disable affected plugin & monitor for IOCs. https://radar.offseq.com/threat/cve-2026-10735-cwe-912-hidden-functionality-in-sma-322a51684018935f #OffSeq #WordPress #SupplyChain

CISA Issues Alert on Actively Exploited Vulnerability in Ubiquiti UniFi OS #internet #cybersecurity

CISA warns of actively exploited vulnerabilities in Ubiquiti UniFi OS. The alert highlights CVE-2026-34908 (critical access control flaw) and related CVEs 34909 and 34910, with remediation guidance and BOD 26-04 deadlines. Read the full analysis and required mitigations here: https://ift.tt/6eMqVP4

Source: https://ift.tt/6eMqVP4 | Image: https://ift.tt/0lLnI6S

CRITICAL UniFi OS vulnerabilities (CVE-2026-34908/09/10) allow remote, unauthenticated attackers to bypass auth and execute commands (pre-5.0.8). Exploited in the wild. Patch ASAP: https://radar.offseq.com/threat/critical-ubiquiti-vulnerabilities-in-attackers-cro-da638630474e46d7 #OffSeq #infosec #Ubiquiti #vulnerability

CISA Repoers Active Exploitation of Three Critical Ubiquiti UniFi OS Vulnerabilities

CISA added three critical Ubiquiti UniFi OS vulnerabilities (CVE-2026-34908, CVE-2026-34909, and CVE-2026-34910) to its Known Exploited Vulnerabilities Catalog due to active exploitation. These flaws allow unauthenticated attackers to gain full control over network gateways and consoles through command injection and improper access controls.

**Now this advisory is urgent, since the flaws are actively exploited. Make sure all your UniFi devices (UDM, UNVR, UCG gateways, Cloud Keys, etc.) are isolated from the internet and accessible only from trusted networks. Immediately update UniFi OS to the latest patched version for your model (5.1.12+ for most hardware, 5.0.8 for UniFi OS Server, 4.0.14 for Express).**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/cisa-adds-three-critical-ubiquiti-unifi-os-vulnerabilities-to-kev-catalog-w-v-n-9-t/gD2P6Ple2L

CISA has updated the KEV catalogue:

- CVE-2026-34908: Ubiquiti UniFi OS Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34908

- CVE-2026-34909: Ubiquiti UniFi OS Path Traversal Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34909

- CVE-2026-34910: Ubiquiti UniFi OS Improper Input Validation Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34910

- CVE-2025-67038:
Lantronix EDS5000 Code Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-67038 #CISA #infosec #vulnerability

🚨 [CISA-2026:0623] CISA Adds 4 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0623)

CISA has added 4 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.

⚠️ CVE-2025-67038 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-67038)
- Name: Lantronix EDS5000 Code Injection Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Lantronix
- Product: EDS5000
- Notes: https://ltrxdev.atlassian.net/wiki/spaces/LTRXTS/pages/2538438657/Latest+Firmware+for+the+EDS5000+series+EDS5008+EDS5016+EDS5032 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2025-67038

⚠️ CVE-2026-34908 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-34908)
- Name: Ubiquiti UniFi OS Improper Access Control Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Ubiquiti
- Product: UniFi OS
- Notes: https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-34908

⚠️ CVE-2026-34909 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-34909)
- Name: Ubiquiti UniFi OS Path Traversal Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Ubiquiti
- Product: UniFi OS
- Notes: https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-34909

⚠️ CVE-2026-34910 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-34910)
- Name: Ubiquiti UniFi OS Improper Input Validation Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Ubiquiti
- Product: UniFi OS
- Notes: https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-34910

#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260623 #cisa20260623 #cve_2025_67038 #cve_2026_34908 #cve_2026_34909 #cve_2026_34910 #cve202567038 #cve202634908 #cve202634909 #cve202634910

CVE ID: CVE-2026-34908
Vendor: Ubiquiti
Product: UniFi OS
Date Added: 2026-06-23
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-34908

CISA Repoers Active Exploitation of Three Critical Ubiquiti UniFi OS Vulnerabilities

CISA added three critical Ubiquiti UniFi OS vulnerabilities (CVE-2026-34908, CVE-2026-34909, and CVE-2026-34910) to its Known Exploited Vulnerabilities Catalog due to active exploitation. These flaws allow unauthenticated attackers to gain full control over network gateways and consoles through command injection and improper access controls.

**Now this advisory is urgent, since the flaws are actively exploited. Make sure all your UniFi devices (UDM, UNVR, UCG gateways, Cloud Keys, etc.) are isolated from the internet and accessible only from trusted networks. Immediately update UniFi OS to the latest patched version for your model (5.1.12+ for most hardware, 5.0.8 for UniFi OS Server, 4.0.14 for Express).**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/cisa-adds-three-critical-ubiquiti-unifi-os-vulnerabilities-to-kev-catalog-w-v-n-9-t/gD2P6Ple2L

CISA has updated the KEV catalogue:

- CVE-2026-34908: Ubiquiti UniFi OS Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34908

- CVE-2026-34909: Ubiquiti UniFi OS Path Traversal Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34909

- CVE-2026-34910: Ubiquiti UniFi OS Improper Input Validation Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34910

- CVE-2025-67038:
Lantronix EDS5000 Code Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-67038 #CISA #infosec #vulnerability

🚨 [CISA-2026:0623] CISA Adds 4 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0623)

CISA has added 4 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.

⚠️ CVE-2025-67038 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-67038)
- Name: Lantronix EDS5000 Code Injection Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Lantronix
- Product: EDS5000
- Notes: https://ltrxdev.atlassian.net/wiki/spaces/LTRXTS/pages/2538438657/Latest+Firmware+for+the+EDS5000+series+EDS5008+EDS5016+EDS5032 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2025-67038

⚠️ CVE-2026-34908 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-34908)
- Name: Ubiquiti UniFi OS Improper Access Control Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Ubiquiti
- Product: UniFi OS
- Notes: https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-34908

⚠️ CVE-2026-34909 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-34909)
- Name: Ubiquiti UniFi OS Path Traversal Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Ubiquiti
- Product: UniFi OS
- Notes: https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-34909

⚠️ CVE-2026-34910 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-34910)
- Name: Ubiquiti UniFi OS Improper Input Validation Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Ubiquiti
- Product: UniFi OS
- Notes: https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-34910

#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260623 #cisa20260623 #cve_2025_67038 #cve_2026_34908 #cve_2026_34909 #cve_2026_34910 #cve202567038 #cve202634908 #cve202634909 #cve202634910

CVE ID: CVE-2026-34910
Vendor: Ubiquiti
Product: UniFi OS
Date Added: 2026-06-23
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-34910

CRITICAL (CVSS 9.8): CVE-2026-12416 impacts pravel Invoice Generator ≤1.0.0. Weak password reset lets unauthenticated attackers reset any user’s password, including admins. Restrict access or disable plugin. https://radar.offseq.com/threat/cve-2026-12416-cwe-640-weak-password-recovery-mech-e09858a3967d35a9 #OffSeq #WordPress #CVE #infosec

CVE-2026-12850: CRITICAL OS command injection in GeoVision GV-I/O Box 4E v2.09 via libNetSetObj.so allows remote code execution. No patch — restrict access to DVRSearch & Network.cgi. Details: https://radar.offseq.com/threat/cve-2026-12850-cwe-78-improper-neutralization-of-s-4e66118ac7829bb3 #OffSeq #ICS #infosec #vulnerability

CVE-2025-52465 geoserver arbitrary file write vulnerability https://www.partywave.site/show/research/cve-2025-52465-geolocate-geoserver

CVE-2026-11807 (CRITICAL, CVSS 9.6) affects Red Hat Ansible Automation Platform 2.5: missing authorization in EDA websocket API lets any authenticated user access plaintext credentials. Patch immediately. https://radar.offseq.com/threat/cve-2026-11807-missing-authorization-in-red-hat-re-1c4967af375a0bf5 #OffSeq #RedHat #Ansible #Vuln

CVE-2026-44914: HIGH severity in Apache NiFi (1.12.0 – 2.9.0). Missing authorization lets users with write access add restricted components. Upgrade to 2.9.0 or enforce specific controls. https://radar.offseq.com/threat/cve-2026-44914-cwe-862-missing-authorization-in-ap-41e3d5d03a56632c #OffSeq #NiFi #Vuln #Infosec

CVE-2026-12957 and CVE-2026-12958 - Issues in Language Servers for AWS and Amazon Q Developer Plugins

Bulletin ID: 2026-047-AWS Scope: AWS Content Type: Important (requires attention) Publication Date: 06/23/2026 09:30 AM PDT
Description:
Language Servers for AWS provide the underlying language-server runtime that powers Amazon ...

https://aws.amazon.com/security/security-bulletins/rss/2026-047-aws/

#aws #security

CISA Repoers Active Exploitation of Three Critical Ubiquiti UniFi OS Vulnerabilities

CISA added three critical Ubiquiti UniFi OS vulnerabilities (CVE-2026-34908, CVE-2026-34909, and CVE-2026-34910) to its Known Exploited Vulnerabilities Catalog due to active exploitation. These flaws allow unauthenticated attackers to gain full control over network gateways and consoles through command injection and improper access controls.

**Now this advisory is urgent, since the flaws are actively exploited. Make sure all your UniFi devices (UDM, UNVR, UCG gateways, Cloud Keys, etc.) are isolated from the internet and accessible only from trusted networks. Immediately update UniFi OS to the latest patched version for your model (5.1.12+ for most hardware, 5.0.8 for UniFi OS Server, 4.0.14 for Express).**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/cisa-adds-three-critical-ubiquiti-unifi-os-vulnerabilities-to-kev-catalog-w-v-n-9-t/gD2P6Ple2L

CISA has updated the KEV catalogue:

- CVE-2026-34908: Ubiquiti UniFi OS Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34908

- CVE-2026-34909: Ubiquiti UniFi OS Path Traversal Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34909

- CVE-2026-34910: Ubiquiti UniFi OS Improper Input Validation Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34910

- CVE-2025-67038:
Lantronix EDS5000 Code Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-67038 #CISA #infosec #vulnerability

🚨 [CISA-2026:0623] CISA Adds 4 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0623)

CISA has added 4 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.

⚠️ CVE-2025-67038 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-67038)
- Name: Lantronix EDS5000 Code Injection Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Lantronix
- Product: EDS5000
- Notes: https://ltrxdev.atlassian.net/wiki/spaces/LTRXTS/pages/2538438657/Latest+Firmware+for+the+EDS5000+series+EDS5008+EDS5016+EDS5032 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2025-67038

⚠️ CVE-2026-34908 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-34908)
- Name: Ubiquiti UniFi OS Improper Access Control Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Ubiquiti
- Product: UniFi OS
- Notes: https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-34908

⚠️ CVE-2026-34909 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-34909)
- Name: Ubiquiti UniFi OS Path Traversal Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Ubiquiti
- Product: UniFi OS
- Notes: https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-34909

⚠️ CVE-2026-34910 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-34910)
- Name: Ubiquiti UniFi OS Improper Input Validation Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Ubiquiti
- Product: UniFi OS
- Notes: https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-34910

#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260623 #cisa20260623 #cve_2025_67038 #cve_2026_34908 #cve_2026_34909 #cve_2026_34910 #cve202567038 #cve202634908 #cve202634909 #cve202634910

CVE ID: CVE-2026-34909
Vendor: Ubiquiti
Product: UniFi OS
Date Added: 2026-06-23
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-34909

If you have any LuCI-based #Lantronix Serial-to-Ethernet device exposed on the internet, then you may want to kickoff your incident response plan.

My suspicion is that the unauthenticated Remote Code Execution vulnerability CVE-2025-67038 affects a lot more device types than just the EDS5000 that is mentioned in the advisory.

The vulnerable code path is in a modified OpenWRT LuCI RPC module that puts a user-controlled variable inside a Lua `os.execute` call. This vulnerable code is contained in a lot of device firmware versions released in or after 2023. Unfortunately, I do not have the devices to actually test exploitability. My analysis is based purely on patch diffing and grepping publicly released firmware versions. The incomplete list of device types that contain the vulnerable code: EDS5000, G520, G526, G526RP, G527, G528, X300, X300-WiFi, X303, X304. I also suspect E210 is on the incomplete list of vulnerable devices.

Back in April this vulnerability was published by Forescout as part of their BRIDGE:BREAK report on Serial-to-Ethernet adapters. Two days ago this vulnerability was added to the CISA KEV Catalog. Yesterday Forescout published a blogpost they first observed exploitation attempts on the 5th of April 2026. Attacks are attributed to a new cluster Chaya_006. It is unclear if Lantronix took the effort to check if any of their other devices are vulnerable given that they contain the same RPC module.

You want to look for POST requests to `/cgi-bin/luci/rpc/auth` in your logs. Forescout has a number 3 octet IP addresses as Indicator of Compromise here: https://www.forescout.com/blog/analyzing-active-exploitation-of-lantronix-and-openwrt-luci/ . The running theory is that these are supposed to be /24 CIDR ranges.

@Secure_ICS_OT
@cisacyber

#vulnerability #cybersecurity #ics #CVE202567038

If you have any LuCI-based #Lantronix Serial-to-Ethernet device exposed on the internet, then you may want to kickoff your incident response plan.

My suspicion is that the unauthenticated Remote Code Execution vulnerability CVE-2025-67038 affects a lot more device types than just the EDS5000 that is mentioned in the advisory.

The vulnerable code path is in a modified OpenWRT LuCI RPC module that puts a user-controlled variable inside a Lua `os.execute` call. This vulnerable code is contained in a lot of device firmware versions released in or after 2023. Unfortunately, I do not have the devices to actually test exploitability. My analysis is based purely on patch diffing and grepping publicly released firmware versions. The incomplete list of device types that contain the vulnerable code: EDS5000, G520, G526, G526RP, G527, G528, X300, X300-WiFi, X303, X304. I also suspect E210 is on the incomplete list of vulnerable devices.

Back in April this vulnerability was published by Forescout as part of their BRIDGE:BREAK report on Serial-to-Ethernet adapters. Two days ago this vulnerability was added to the CISA KEV Catalog. Yesterday Forescout published a blogpost they first observed exploitation attempts on the 5th of April 2026. Attacks are attributed to a new cluster Chaya_006. It is unclear if Lantronix took the effort to check if any of their other devices are vulnerable given that they contain the same RPC module.

You want to look for POST requests to `/cgi-bin/luci/rpc/auth` in your logs. Forescout has a number 3 octet IP addresses as Indicator of Compromise here: https://www.forescout.com/blog/analyzing-active-exploitation-of-lantronix-and-openwrt-luci/ . The running theory is that these are supposed to be /24 CIDR ranges.

@Secure_ICS_OT
@cisacyber

#vulnerability #cybersecurity #ics #CVE202567038

CISA Reports Active Exploitation of Lantronix Flaws

CISA flagged an actively exploited critical flaw (CVE-2025-67038) in Lantronix EDS5000 v2.1.0.0R3 devices: an unauthenticated OS command injection in the HTTP RPC module that lets attackers gain root access and fully compromise the equipment.

**Make sure all Lantronix EDS5000 devices are isolated from the internet and accessible only from trusted networks, since this flaw lets attackers gain full root control without any login. Check your inventory for version 2.1.0.0R3, apply the latest firmware update from Lantronix, and because attackers can survive patches by creating rogue admin accounts, audit for unknown accounts and rotate any stored secrets after patching.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/cisa-adds-critical-ubiquiti-and-lantronix-flaws-to-kev-catalog-following-active-exploitation-o-d-j-f-r/gD2P6Ple2L

For the Boardroom: A critical unauthenticated code injection flaw (CVE-2025-67038) in Lantronix EDS5000 servers is under active exploitation. Read the full C-SUITE threat advisory on mitigating this operational risk. Ping the word 'ok' mike@thecybermind.co to upgrade your intel. https://thecybermind.co/jpul
#CyberSec #RiskManagement

CISA has updated the KEV catalogue:

- CVE-2026-34908: Ubiquiti UniFi OS Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34908

- CVE-2026-34909: Ubiquiti UniFi OS Path Traversal Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34909

- CVE-2026-34910: Ubiquiti UniFi OS Improper Input Validation Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34910

- CVE-2025-67038:
Lantronix EDS5000 Code Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-67038 #CISA #infosec #vulnerability

🚨 [CISA-2026:0623] CISA Adds 4 Known Exploited Vulnerabilities to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0623)

CISA has added 4 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise.

⚠️ CVE-2025-67038 (https://secdb.nttzen.cloud/cve/detail/CVE-2025-67038)
- Name: Lantronix EDS5000 Code Injection Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Lantronix
- Product: EDS5000
- Notes: https://ltrxdev.atlassian.net/wiki/spaces/LTRXTS/pages/2538438657/Latest+Firmware+for+the+EDS5000+series+EDS5008+EDS5016+EDS5032 ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2025-67038

⚠️ CVE-2026-34908 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-34908)
- Name: Ubiquiti UniFi OS Improper Access Control Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Ubiquiti
- Product: UniFi OS
- Notes: https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-34908

⚠️ CVE-2026-34909 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-34909)
- Name: Ubiquiti UniFi OS Path Traversal Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Ubiquiti
- Product: UniFi OS
- Notes: https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-34909

⚠️ CVE-2026-34910 (https://secdb.nttzen.cloud/cve/detail/CVE-2026-34910)
- Name: Ubiquiti UniFi OS Improper Input Validation Vulnerability
- Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset&#39;s internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Known To Be Used in Ransomware Campaigns? Unknown
- Vendor: Ubiquiti
- Product: UniFi OS
- Notes: https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b ; BOD 26-04: https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk ; Forensics Triage Requirements: https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk ; https://nvd.nist.gov/vuln/detail/CVE-2026-34910

#ZEN #SecDB #InfoSec #CVE #CISA_KEV #cisa_20260623 #cisa20260623 #cve_2025_67038 #cve_2026_34908 #cve_2026_34909 #cve_2026_34910 #cve202567038 #cve202634908 #cve202634909 #cve202634910

CVE ID: CVE-2025-67038
Vendor: Lantronix
Product: EDS5000
Date Added: 2026-06-23
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-67038

New.

"Today VulnCheck is disclosing CVE-2026-28496, an unauthenticated remote code execution chain in FOSSBilling, the open-source billing and client-management platform."

VulnCheck: CVE-2026-28496 - FOSSBilling Auth Bypass and Twig SSTI to Unauthenticated RCE https://www.vulncheck.com/blog/fossbilling-auth-bypass-ssti-rce @vulncheck #infosec #opensource #vulnerability

I think it’s hilarious that I now have my first CVE because I got annoyed with an unresponsive vendor and just posted the zero day exploit I was trying to report to them on my GitHub 😆

https://nvd.nist.gov/vuln/detail/CVE-2026-49494

CVE-2026-56394: HIGH severity path traversal in Craft CMS 4.0.0-RC1 & 5.0.0-RC1. Authenticated attackers can read local files via assets/icon endpoint. Restrict access & monitor activity. No patch yet. https://radar.offseq.com/threat/cve-2026-56394-improper-limitation-of-a-pathname-t-139f3a46ea00069e #OffSeq #CraftCMS #Vuln #PathTraversal

CVE-2026-10521 (HIGH, CVSS 8.6) in mbCONNECT24: Remote attackers with high privileges can access hidden configs, risking full system compromise. No patch yet — restrict access & monitor vendor updates. https://radar.offseq.com/threat/cve-2026-10521-cwe-425-direct-request-forced-brows-d20bd7167efa941e #OffSeq #Vulnerability #ICS #Security

#OT #Advisory VDE-2026-070
Helmholz: Authenticated unintended access to critical program parameters in myREX24V2/myREX24V2.virtual

There is a vulnerability in myREX24V2/myREX24V2.virtual that allows an authenticated remote attacker to access a hidden configuration method, that should not be accessible by any user, to modify critical program parameters.
#CVE CVE-2026-10521

https://certvde.com/en/advisories/vde-2026-070/

#CSAF https://helmholz.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-070.json

#OT #Advisory VDE-2026-068
MB connect line: Authenticated unintended access to critical program parameters in mbCONNECT24/mymbCONNECT24

There is a vulnerability in mbCONNECT24/mymbCONNECT24 that allows an authenticated remote attacker to access a hidden configuration method, that should not be accessible by any user, to modify critical program parameters.
#CVE CVE-2026-10521

https://certvde.com/en/advisories/vde-2026-068/

#CSAF https://mbconnectline.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-068.json

CVE-2026-12866 | CRITICAL severity in expr-eval (all versions): Arbitrary code execution via toJSFunction() API. No patch yet — avoid untrusted input. Risk: full app compromise. Details: https://radar.offseq.com/threat/cve-2026-12866-code-execution-in-expr-eval-90f740bedba0af48 #OffSeq #infosec #security #CVE202612866

CVE-2026-6645 (HIGH, CVSS 7.3) affects PaperCut Print Deploy for Windows. Insecure search path in pc-printer-updater.exe lets local attackers execute malicious code as SYSTEM. Audit directories & monitor for suspicious files. https://radar.offseq.com/threat/cve-2026-6645-cwe-427-uncontrolled-search-path-ele-06fc150344a496a3 #OffSeq #CVE20266645 #infosec

Yokogawa FAST/TOOLS & CI Server (R9.01 – R10.04, R1.01 – R1.04) affected by HIGH severity CVE-2026-11833 (CVSS 8.2): config data sent in cleartext 🛡️. Limit access, monitor advisories. https://radar.offseq.com/threat/cve-2026-11833-cwe-319-cleartext-transmission-of-s-bc44d4c0b280a67c #OffSeq #ICS #Vuln #Cybersecurity

CVE-2026-12581 (HIGH): Digiwin EasyFlow .NET is exposed to session fixation — attackers can hijack user sessions after login. No patch yet; apply session controls & monitor activity. Details: https://radar.offseq.com/threat/cve-2026-12581-cwe-384-session-fixation-in-digiwin-3cbe5111cc31a62c #OffSeq #vulnerability #infosec #security

Gaudire Assassin game hit by CRITICAL vuln (CVE-2026-7166, CVSS 9.2): API & DB leak emails, phone numbers, and sensitive user info (including minors). No auth needed. Restrict access & monitor for fixes. https://radar.offseq.com/threat/cve-2026-7166-cwe-200-exposure-of-sensitive-inform-03389a53b48f2bff #OffSeq #CVE20267166 #infosec #dataleak

If your WooCommerce store is running below version 7.1.0, I'd update it today. CVE-2022-50972 carries a CVSS score of 9.8 out of 10 — meaning an attacker can gain full admin control, access every customer record, and wipe your database entirely. No patch exists for older versions. Updating is the only viable option right now.

#WordPress #WooCommerce #SecurityHardening #CVE #WordPressSecurity

https://wpguy.uk/blog/critical-vulnerability-in-woocommerce-woocommerce-woocommerce-710-unfixed/

Vitepos WordPress plugin <3.4.2 has a HIGH severity privilege escalation vuln (CVE-2026-8157). Auth users with custom Vitepos roles can become admins via REST API. Restrict API access & monitor for patches. https://radar.offseq.com/threat/cve-2026-8157-cwe-269-improper-privilege-managemen-ad086b248eb210ce #OffSeq #WordPress #CVE20268157 #Infosec

CVE-2026-10789: CRITICAL code injection in Autodesk Fusion MCP ext (v2703.1.11). Visiting a crafted page can lead to arbitrary code execution with user rights. Update guidance pending. https://radar.offseq.com/threat/cve-2026-10789-cwe-94-improper-control-of-generati-267c2476d8e09380 #OffSeq #Vulnerability #Autodesk #CVE2026_10789

CVE-2026-7664 (CRITICAL, CVSS 9.8): IBM Langflow OSS 1.0.0 – 1.8.4 has an improper auth flaw in MCP endpoint, allowing unauthenticated access to protected resources. Patch status unknown — monitor IBM advisories. https://radar.offseq.com/threat/cve-2026-7664-cwe-287-improper-authentication-in-i-c216bd5b6f57089f #OffSeq #CVE #IBM #infosec

⚠️ CRITICAL: Data Exposure Flaws Threaten Dify AI Platform Used by 1 Million Apps

Four critical vulnerabilities in Dify AI platform (CVE-2026-41947, CVE-2026-41948, CVE-2026-41950) enable unauthorized access to private chats, cross-tenant document theft, and lateral API calls across multi-tenant environments. The platform powers 1 million applications, making this a widespread s…

https://threatnoir.com/focus

#infosec #cybersecurity

⚠️ CRITICAL: Data Exposure Flaws Threaten Dify AI Platform Used by 1 Million Apps

Four critical vulnerabilities in Dify AI platform (CVE-2026-41947, CVE-2026-41948, CVE-2026-41950) enable unauthorized access to private chats, cross-tenant document theft, and lateral API calls across multi-tenant environments. The platform powers 1 million applications, making this a widespread s…

https://threatnoir.com/focus

#infosec #cybersecurity

⚠️ CRITICAL: Data Exposure Flaws Threaten Dify AI Platform Used by 1 Million Apps

Four critical vulnerabilities in Dify AI platform (CVE-2026-41947, CVE-2026-41948, CVE-2026-41950) enable unauthorized access to private chats, cross-tenant document theft, and lateral API calls across multi-tenant environments. The platform powers 1 million applications, making this a widespread s…

https://threatnoir.com/focus

#infosec #cybersecurity

CVE-2026-56448 (HIGH, CVSS 8.3) in ail framework v0: Authenticated users can exploit path traversal to access files beyond intended dirs. Restrict permissions & monitor file access until patch is released. https://radar.offseq.com/threat/cve-2026-56448-cwe-22-improper-limitation-of-a-pat-b86f90bac29cd4fa #OffSeq #CyberSecurity #Vuln #PathTraversal

CVE-2026-12806: HIGH severity buffer overflow in Edimax BR-6478AC V2 (fw 1.23). Remote exploitation possible, no patch available. Limit access & watch for updates. https://radar.offseq.com/threat/cve-2026-12806-buffer-overflow-in-edimax-br-6478ac-e0054e5a0ac822a3 #OffSeq #Vulnerability #RouterSecurity #Infosec

CVE-2026-56382: HIGH severity RCE in Craft CMS (5.5.0 – 5.9.13). Authenticated admins can inject code via FieldsController, leaking sensitive env vars. Patch now by upgrading to 5.9.14+. https://radar.offseq.com/threat/cve-2026-56382-improper-control-of-generation-of-c-a60c46eab20e347b #OffSeq #CraftCMS #RCE #Vuln

CVE-2026-54317 - Authentication Bypass in Home Assistant. Konnected integration exposes an unauthenticated HTTP endpoint allowing unauthorized write requests. CVSS 7.6. Update to 2026.6.0 immediately. #CVE #HomeAssistant #infosec

https://www.valtersit.com/cve/CVE-2026-54317/

Two new Linux LPEs hit page cache from opposite ends of the kernel

https://thecybersecguru.com/news/linux-lpe-pedit-cow-dirtyclone-cve-2026-46331-cve-2026-43503/

Two new Linux LPEs hit page cache from opposite ends of the kernel

https://thecybersecguru.com/news/linux-lpe-pedit-cow-dirtyclone-cve-2026-46331-cve-2026-43503/

📈 CVE Published in last days (2026-06-15 - 2026-06-15)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 374
- High: 827
- Medium: 471
- Low: 67
- None: 235

Status:
- : 204
- Analyzed: 394
- Awaiting Analysis: 88
- Deferred: 744
- Modified: 35
- Received: 417
- Rejected: 14
- Undergoing Analysis: 78

CISA KEVs:
- CISA-2026:0615 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0615)
- CISA-2026:0616 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0616)
- CISA-2026:0618 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0618)

Top CNAs:
- Patchstack: 489
- Oracle: 240
- N/A: 204
- VulnCheck: 202
- GitHub, Inc.: 133
- MITRE: 84
- Wordfence: 64
- VulDB: 49
- Mozilla Corporation: 44
- Google Devices: 39

Top Affected Products:
- UNKNOWN: 1471
- Google Android: 55
- Mozilla Thunderbird: 42
- Mozilla Firefox: 42
- Google Chrome: 33
- Oracle Webcenter Content: 32
- Openclaw: 27
- Oracle Jd Edwards Enterpriseone Tools: 14
- Oracle Enterprise Manager Base Platform: 14
- Oracle Weblogic Server: 13

Top EPSS Score:
- CVE-2026-11409 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11409)
- CVE-2026-11410 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11410)
- CVE-2026-12197 - 2.38 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12197)
- CVE-2026-53876 - 1.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-53876)
- CVE-2026-50871 - 1.57 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50871)
- CVE-2026-12223 - 1.53 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12223)
- CVE-2026-12219 - 1.52 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12219)
- CVE-2026-38065 - 1.35 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-38065)
- CVE-2026-20262 - 1.15 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-20262)
- CVE-2026-50874 - 1.12 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50874)

#ZEN #SecDB #InfoSec

📈 CVE Published in last days (2026-06-15 - 2026-06-15)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 374
- High: 827
- Medium: 471
- Low: 67
- None: 235

Status:
- : 204
- Analyzed: 394
- Awaiting Analysis: 88
- Deferred: 744
- Modified: 35
- Received: 417
- Rejected: 14
- Undergoing Analysis: 78

CISA KEVs:
- CISA-2026:0615 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0615)
- CISA-2026:0616 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0616)
- CISA-2026:0618 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0618)

Top CNAs:
- Patchstack: 489
- Oracle: 240
- N/A: 204
- VulnCheck: 202
- GitHub, Inc.: 133
- MITRE: 84
- Wordfence: 64
- VulDB: 49
- Mozilla Corporation: 44
- Google Devices: 39

Top Affected Products:
- UNKNOWN: 1471
- Google Android: 55
- Mozilla Thunderbird: 42
- Mozilla Firefox: 42
- Google Chrome: 33
- Oracle Webcenter Content: 32
- Openclaw: 27
- Oracle Jd Edwards Enterpriseone Tools: 14
- Oracle Enterprise Manager Base Platform: 14
- Oracle Weblogic Server: 13

Top EPSS Score:
- CVE-2026-11409 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11409)
- CVE-2026-11410 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11410)
- CVE-2026-12197 - 2.38 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12197)
- CVE-2026-53876 - 1.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-53876)
- CVE-2026-50871 - 1.57 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50871)
- CVE-2026-12223 - 1.53 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12223)
- CVE-2026-12219 - 1.52 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12219)
- CVE-2026-38065 - 1.35 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-38065)
- CVE-2026-20262 - 1.15 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-20262)
- CVE-2026-50874 - 1.12 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50874)

#ZEN #SecDB #InfoSec

Webmin 2.641 Patches Root Takeover and 2FA Bypass Vulnerabilities

Webmin version 2.641 addresses multiple critical vulnerabilities, including a root-level stored XSS (CVE-2026-22678), a path traversal file overwrite (CVE-2026-49103), and a 2FA bypass (CVE-2026-56022). These flaws allow low-privileged users to compromise root accounts and bypass multi-factor authentication in multi-tenant hosting environments.

**Update your Webmin instances to version 2.641 immediately to prevent low-privileged users from taking over your root account. If you cannot patch today, restrict access to the mail and notification modules to only your most trusted administrators.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/webmin-2-641-patches-root-takeover-and-2fa-bypass-vulnerabilities-m-y-r-7-t/gD2P6Ple2L

#Mastodon v4.6.2 へ #update した。

CVE-2026-8461へのセキュリティ対応。

git fetch && git checkout v4.6.2
だけで完了。

#prattohome #更新

"No way to prevent this" say users of only language where this regularly happens

https://xeiaso.net/shitposts/no-way-to-prevent-this/memory-safety/CVE-2026-8461/

"No way to prevent this" say u...

"No way to prevent this" say users of only language where this regularly happens

https://xeiaso.net/shitposts/no-way-to-prevent-this/memory-safety/CVE-2026-8461/?utm_campaign=mi_irl&utm_medium=social&utm_source=mastodon

I built FFmpeg 7.1.5 from source since Ubuntu is moving slowly on CVE-2026-8461, and leaving a Mastodon server that processes untrusted media all day long unpatched seems like a bad idea. So anyway, testing with a #Goose post.

Looks like #ffmpeg leaks (CVE-2026-8461), #mastodon Docker images have all been updated with a fixed version.

#infosec #vulnerability

#Sysadmin #Infosec #MastoAdmin am I reading correctly that Ubuntu is still triaging the lastest FFMPEG vulnerability and hasn't released a fix?

Running 24.04 LTS and I don't wanna get pwned

https://ubuntu.com/security/CVE-2026-8461

#ffmpeg

RE: https://social.coop/@cwebber/116810673204863384

Every once in a while, we observe flaws in media players that allow exploits to be delivered by video files. These files often get free passes in security gateways.

Fortunately, it doesn't work by default. BleepingComputer wrote:

the RCE exploit requires ASLR (Address Space Layout Randomization) to be disabled, and that CVE-2026-8461 alone does not bypass this memory protection.

In theory, a separate information-disclosure bug in FFmpeg's FlashSV decoder could be chained with PixelSmash to bypass ASLR.

@cwebber Ubuntu doesn't either: https://ubuntu.com/security/CVE-2026-8461#status

Does the ubuntu security team need to be briefed on how concerning this issue is?

v4.6.2

This release is made solely to update FFmpeg in our docker container images to fix CVE-2026-8461 (critical severity). It is critical to update if you use our docker container images. If you are not using our docker container images, please make...

https://github.com/glitch-soc/mastodon/releases/tag/v4.6.2

#glitchsoc #glitch #mastodon #mastoadmin

v4.5.13

This release is made solely to update FFmpeg in our docker container images to fix CVE-2026-8461 (critical severity). It is critical to update if you use our docker container images. If you are not using our docker container images, please make...

https://github.com/glitch-soc/mastodon/releases/tag/v4.5.13

#glitchsoc #glitch #mastodon #mastoadmin

v4.5.13

This release is made solely to update FFmpeg in our docker container images to fix CVE-2026-8461 (critical severity). It is critical to update if you use our docker container images. If you are not using our docker container images, please make...

https://github.com/mastodon/mastodon/releases/tag/v4.5.13

#mastodon #mastoadmin

v4.6.2

This release is made solely to update FFmpeg in our docker container images to fix CVE-2026-8461 (critical severity). It is critical to update if you use our docker container images. If you are not using our docker container images, please make...

https://github.com/mastodon/mastodon/releases/tag/v4.6.2

#mastodon #mastoadmin

🌿 站点更新完成：Mastodon 4.6.2

服务器花园完成了一轮快速修整！Somincola Social 已从 Mastodon 4.6.0 更新至 4.6.2，目前运行正常。🐘

本次更新包括：
• 修复 Emoji、下拉菜单、高级界面、个人资料字段及 LDAP 登录等问题
• 更新 Docker 镜像中的 FFmpeg，修复严重安全漏洞 CVE-2026-8461
• 本站的 5000 字符上限继续保留
大家无需进行额外操作。Tangerine UI 目前宣布停更，暂时移出了服务器花园。希望它在花园外能继续茁壮成长

感谢大家的等待！辛勤的园艺师傅已经扫完落叶，联邦小路继续开放啦。🌿

#SomincolaSocial #Mastodon #站点更新

@mastodon_releases
Mastodon v4.6.2 has been released, fixing critical FFmpeg vulnerability CVE-2026-8461.

Attackers can upload malicious videos to crash the service or execute arbitrary code. High risk.

Please update Mastodon/FFmpeg ASAP. Ensure your FFmpeg version is:
• 8.1.2
• 7.1.5
• 6.1.6
• 5.1.10

https://nvd.nist.gov/vuln/detail/CVE-2026-8461

Mastodon 4.6.2
(manchmal kommen sie schnell hintereinander, diesmal wegen CVE-2026-8461)

#Mastoadmin

PixelSmash Vulnerability in FFmpeg Enables Remote Code Execution

FFmpeg version 8.1.2 patches a high-severity heap overflow (CVE-2026-8461) in the MagicYUV decoder that allows attackers to execute arbitrary code via malicious video files. The flaw impacts a wide range of media applications, including Jellyfin and Nextcloud.

**Update FFmpeg to version 8.1.2 or later immediately to close the PixelSmash flaw (CVE-2026-8461), and update any apps that bundle it like Jellyfin, Nextcloud, Kodi, or OBS. If you can't update right away, restrict file uploads to trusted users only and isolate any servers that automatically scan or process media files.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/pixelsmash-vulnerability-in-ffmpeg-enables-remote-code-execution-p-9-m-z-b/gD2P6Ple2L

Foi descoberta uma vulnerabilidade crítica na biblioteca FFmpeg, denominada PixelSmash, que pode permitir a execução remota de código em servidores Jellyfin e causar a negação de serviço em plataformas como Kodi. A falha, identificada como CVE-2026-8461, recebeu uma pontuação de gravidade significativa. 💻

🔗 https://tugatech.com.pt/t86024-ffmpeg-sofre-vulnerabilidade-pixelsmash-com-impacto-no-jellyfin-e-kodi

#kodi #vulnerabilidade 

FFmpeg MagicYUV decoder CRITICAL heap out-of-bounds bug (CVE-2026-8461): AVI/MKV/MOV files can trigger DoS or RCE in apps like Jellyfin, Nextcloud. Patch to 8.1.2 ASAP. https://radar.offseq.com/threat/ffmpeg-fixes-pixelsmash-flaw-in-widely-used-video--5ccb783d6ccf419b #OffSeq #FFmpeg #CVE20268461 #infosec

Three critical Tinyproxy request smuggling vulnerabilities, including CVE-2026-54388, expose networks to severe attacks. Update your proxy servers immediately.

#Tinyproxy #RequestSmuggling #CVE202654388 #CVE202655202 #CVE202654387
https://securityonline.info/tinyproxy-request-smuggling-cve/

libssh2 Vulnerabilities Enable Remote Code Execution and Denial of Service

libssh2 disclosed two vulnerabilities, including a critical out-of-bounds write (CVE-2026-55200) and a high-severity denial of service (CVE-2026-55199), affecting versions up to 1.11.1. These flaws allow malicious servers to execute code on connecting clients or cause resource exhaustion.

**Plan to update libssh2 to a patched build as soon as a fixed release is available. In the meantime audit your tools (curl/libcurl, PHP ssh2 extension, monitoring utilities, IoT firmware) for the vulnerable library versions up to 1.11.1. Only connect to SSH servers you trust and isolate sensitive management interfaces so they're reachable from trusted networks only, since a malicious server can now attack your client.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/libssh2-vulnerabilities-enable-remote-code-execution-and-denial-of-service-k-v-c-g-d/gD2P6Ple2L

⚪️ NGINX Patches Two Critical RCE Vulnerabilities

🗨️ F5 developers have released out-of-band patches for two critical issues in NGINX that, under certain conditions, allowed remote execution of arbitrary code. The vulnerabilities have been assigned identifiers CVE-2026-42530 and CVE-2026-42055, and each received a CVSS score of 9.2. They…

🔗 https://hackmag.com/news/two-nginx-rce?utm_source=mastodon&utm_medium=social&utm_campaign=repost_hackmag_to_socials

#news

⚪️ NGINX Patches Two Critical RCE Vulnerabilities

🗨️ F5 developers have released out-of-band patches for two critical issues in NGINX that, under certain conditions, allowed remote execution of arbitrary code. The vulnerabilities have been assigned identifiers CVE-2026-42530 and CVE-2026-42055, and each received a CVSS score of 9.2. They…

🔗 https://hackmag.com/news/two-nginx-rce?utm_source=mastodon&utm_medium=social&utm_campaign=repost_hackmag_to_socials

#news

📈 CVE Published in last days (2026-06-15 - 2026-06-15)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 374
- High: 827
- Medium: 471
- Low: 67
- None: 235

Status:
- : 204
- Analyzed: 394
- Awaiting Analysis: 88
- Deferred: 744
- Modified: 35
- Received: 417
- Rejected: 14
- Undergoing Analysis: 78

CISA KEVs:
- CISA-2026:0615 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0615)
- CISA-2026:0616 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0616)
- CISA-2026:0618 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0618)

Top CNAs:
- Patchstack: 489
- Oracle: 240
- N/A: 204
- VulnCheck: 202
- GitHub, Inc.: 133
- MITRE: 84
- Wordfence: 64
- VulDB: 49
- Mozilla Corporation: 44
- Google Devices: 39

Top Affected Products:
- UNKNOWN: 1471
- Google Android: 55
- Mozilla Thunderbird: 42
- Mozilla Firefox: 42
- Google Chrome: 33
- Oracle Webcenter Content: 32
- Openclaw: 27
- Oracle Jd Edwards Enterpriseone Tools: 14
- Oracle Enterprise Manager Base Platform: 14
- Oracle Weblogic Server: 13

Top EPSS Score:
- CVE-2026-11409 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11409)
- CVE-2026-11410 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11410)
- CVE-2026-12197 - 2.38 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12197)
- CVE-2026-53876 - 1.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-53876)
- CVE-2026-50871 - 1.57 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50871)
- CVE-2026-12223 - 1.53 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12223)
- CVE-2026-12219 - 1.52 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12219)
- CVE-2026-38065 - 1.35 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-38065)
- CVE-2026-20262 - 1.15 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-20262)
- CVE-2026-50874 - 1.12 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50874)

#ZEN #SecDB #InfoSec

📈 CVE Published in last days (2026-06-15 - 2026-06-15)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 374
- High: 827
- Medium: 471
- Low: 67
- None: 235

Status:
- : 204
- Analyzed: 394
- Awaiting Analysis: 88
- Deferred: 744
- Modified: 35
- Received: 417
- Rejected: 14
- Undergoing Analysis: 78

CISA KEVs:
- CISA-2026:0615 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0615)
- CISA-2026:0616 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0616)
- CISA-2026:0618 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0618)

Top CNAs:
- Patchstack: 489
- Oracle: 240
- N/A: 204
- VulnCheck: 202
- GitHub, Inc.: 133
- MITRE: 84
- Wordfence: 64
- VulDB: 49
- Mozilla Corporation: 44
- Google Devices: 39

Top Affected Products:
- UNKNOWN: 1471
- Google Android: 55
- Mozilla Thunderbird: 42
- Mozilla Firefox: 42
- Google Chrome: 33
- Oracle Webcenter Content: 32
- Openclaw: 27
- Oracle Jd Edwards Enterpriseone Tools: 14
- Oracle Enterprise Manager Base Platform: 14
- Oracle Weblogic Server: 13

Top EPSS Score:
- CVE-2026-11409 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11409)
- CVE-2026-11410 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11410)
- CVE-2026-12197 - 2.38 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12197)
- CVE-2026-53876 - 1.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-53876)
- CVE-2026-50871 - 1.57 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50871)
- CVE-2026-12223 - 1.53 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12223)
- CVE-2026-12219 - 1.52 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12219)
- CVE-2026-38065 - 1.35 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-38065)
- CVE-2026-20262 - 1.15 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-20262)
- CVE-2026-50874 - 1.12 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50874)

#ZEN #SecDB #InfoSec

CVE-2026-45504 Microsoft Exchange SSRF via File Read https://hawktrace.com/blog/CVE-2026-45504/

CISA confirms active zero-day exploitation of Trend Micro Apex One (CVE-2026-34926), introducing critical directory traversal and code injection risks across the endpoint control plane. Access our full executive advisory on asset mitigation and strategic governance alignment: https://thecybermind.co/22mw

CISA confirms active zero-day exploitation of Trend Micro Apex One (CVE-2026-34926), introducing critical directory traversal and code injection risks across the endpoint control plane. Access our full executive advisory on asset mitigation and strategic governance alignment: https://thecybermind.co/22mw

Langflow Cryptominer Malware Exploits CVE-2026-33017

At least 39 rival malware families appear on a kill list used by a new Langflow cryptominer malware campaign. Threat actors now target exposed artificial intelligence application endpoints to breach enterprise networks. They exploit CVE-2026-33017, which is a critical remote code execution vulnerability. Consequently, attackers hijack servers to mine cryptocurrency. At a glance Malware Family: Modified KORKERDS/MALXMR variant Threat Actor:

https://securityonline.info/langflow-cryptominer-malware/?utm_source=mastodon&utm_medium=jetpack_social

Langflow Cryptominer Malware Exploits CVE-2026-33017

At least 39 rival malware families appear on a kill list used by a new Langflow cryptominer malware campaign. Threat actors now target exposed artificial intelligence application endpoints to breach enterprise networks. They exploit CVE-2026-33017, which is a critical remote code execution vulnerability. Consequently, attackers hijack servers to mine cryptocurrency. At a glance Malware Family: Modified KORKERDS/MALXMR variant Threat Actor:

https://securityonline.info/langflow-cryptominer-malware/?utm_source=mastodon&utm_medium=jetpack_social

Webmin 2.641 Patches Root Takeover and 2FA Bypass Vulnerabilities

Webmin version 2.641 addresses multiple critical vulnerabilities, including a root-level stored XSS (CVE-2026-22678), a path traversal file overwrite (CVE-2026-49103), and a 2FA bypass (CVE-2026-56022). These flaws allow low-privileged users to compromise root accounts and bypass multi-factor authentication in multi-tenant hosting environments.

**Update your Webmin instances to version 2.641 immediately to prevent low-privileged users from taking over your root account. If you cannot patch today, restrict access to the mail and notification modules to only your most trusted administrators.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/webmin-2-641-patches-root-takeover-and-2fa-bypass-vulnerabilities-m-y-r-7-t/gD2P6Ple2L

Active Exploitation of Cisco Unified Communications Manager Vulnerabilities Grants Root Access

Cisco Unified Communications Manager is facing active exploitation of two vulnerabilities, CVE-2026-20230 and CVE-2026-20045, which allow unauthenticated attackers to gain root access and deploy webshells.

**Apply the latest software updates, including Unified CM 14SU6 and 15SU5, immediately. If patching is not possible, disable the Cisco WebDialer Web Service to sever the attack path, and aggressively audit your /platform-services/ directory for unusual .jsp files or unauthorized webshells.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/active-exploitation-of-cisco-unified-communications-manager-vulnerabilities-grants-root-access-w-x-c-7-n/gD2P6Ple2L

CVE-2024-40766: The Patch Fixed the Bug. Nobody Fixed the Configuration. https://isc.sans.edu/diary/33094

#OT #Advisory VDE-2026-071
JUMO: Allegro RomPager webserver vulnerability in JUMO mTRONT, DICON touch, AQUIS touch devices

Multiple products from JUMO are affected by webserver vulnerability "CVE-2013-6786, CVE-2014-9222, CVE-2014-9223. This vulnerability leads to DOS of the device by using a misfortune cookie and reflected XSS attacks.
#CVE CVE-2014-9222, CVE-2013-6786, CVE-2014-9223

https://certvde.com/en/advisories/vde-2026-071/

#CSAF https://jumo.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-071.json

📈 CVE Published in last days (2026-06-15 - 2026-06-15)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 374
- High: 827
- Medium: 471
- Low: 67
- None: 235

Status:
- : 204
- Analyzed: 394
- Awaiting Analysis: 88
- Deferred: 744
- Modified: 35
- Received: 417
- Rejected: 14
- Undergoing Analysis: 78

CISA KEVs:
- CISA-2026:0615 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0615)
- CISA-2026:0616 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0616)
- CISA-2026:0618 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0618)

Top CNAs:
- Patchstack: 489
- Oracle: 240
- N/A: 204
- VulnCheck: 202
- GitHub, Inc.: 133
- MITRE: 84
- Wordfence: 64
- VulDB: 49
- Mozilla Corporation: 44
- Google Devices: 39

Top Affected Products:
- UNKNOWN: 1471
- Google Android: 55
- Mozilla Thunderbird: 42
- Mozilla Firefox: 42
- Google Chrome: 33
- Oracle Webcenter Content: 32
- Openclaw: 27
- Oracle Jd Edwards Enterpriseone Tools: 14
- Oracle Enterprise Manager Base Platform: 14
- Oracle Weblogic Server: 13

Top EPSS Score:
- CVE-2026-11409 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11409)
- CVE-2026-11410 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11410)
- CVE-2026-12197 - 2.38 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12197)
- CVE-2026-53876 - 1.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-53876)
- CVE-2026-50871 - 1.57 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50871)
- CVE-2026-12223 - 1.53 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12223)
- CVE-2026-12219 - 1.52 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12219)
- CVE-2026-38065 - 1.35 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-38065)
- CVE-2026-20262 - 1.15 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-20262)
- CVE-2026-50874 - 1.12 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50874)

#ZEN #SecDB #InfoSec

📈 CVE Published in last days (2026-06-15 - 2026-06-15)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 374
- High: 827
- Medium: 471
- Low: 67
- None: 235

Status:
- : 204
- Analyzed: 394
- Awaiting Analysis: 88
- Deferred: 744
- Modified: 35
- Received: 417
- Rejected: 14
- Undergoing Analysis: 78

CISA KEVs:
- CISA-2026:0615 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0615)
- CISA-2026:0616 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0616)
- CISA-2026:0618 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0618)

Top CNAs:
- Patchstack: 489
- Oracle: 240
- N/A: 204
- VulnCheck: 202
- GitHub, Inc.: 133
- MITRE: 84
- Wordfence: 64
- VulDB: 49
- Mozilla Corporation: 44
- Google Devices: 39

Top Affected Products:
- UNKNOWN: 1471
- Google Android: 55
- Mozilla Thunderbird: 42
- Mozilla Firefox: 42
- Google Chrome: 33
- Oracle Webcenter Content: 32
- Openclaw: 27
- Oracle Jd Edwards Enterpriseone Tools: 14
- Oracle Enterprise Manager Base Platform: 14
- Oracle Weblogic Server: 13

Top EPSS Score:
- CVE-2026-11409 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11409)
- CVE-2026-11410 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11410)
- CVE-2026-12197 - 2.38 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12197)
- CVE-2026-53876 - 1.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-53876)
- CVE-2026-50871 - 1.57 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50871)
- CVE-2026-12223 - 1.53 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12223)
- CVE-2026-12219 - 1.52 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12219)
- CVE-2026-38065 - 1.35 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-38065)
- CVE-2026-20262 - 1.15 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-20262)
- CVE-2026-50874 - 1.12 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50874)

#ZEN #SecDB #InfoSec

Geopolitical tensions escalate as US-Iran talks stall amidst renewed Israel-Hezbollah strikes and Trump's Strait of Hormuz threats; Iran reportedly closed the waterway. In technology, Anthropic's Fable 5 AI models remain offline due to a US export ban. Cybersecurity alerts include active exploitation of Microsoft Defender zero-day (CVE-2026-50656), Cisco SD-WAN, and Splunk flaws.

#AnonNews_irc #Cybersecurity #News

CVE-2026-53753: CRITICAL code injection in unclecode crawl4ai (<0.8.7). Unauthenticated RCE via /crawl POST request due to insufficient AST validation. Patch to 0.8.7 ASAP. https://radar.offseq.com/threat/cve-2026-53753-cwe-94-improper-control-of-generati-9d9fc678b9a0404e #OffSeq #CVE202653753 #infosec #vuln

⚪️ Cisco Patches Zero‑Day Vulnerability in SD‑WAN

🗨️ Cisco specialists have released patches for vulnerability CVE-2026-20262 in Catalyst SD-WAN Manager (formerly SD-WAN vManage). According to the company, the issue has already been exploited in real-world attacks and allowed attackers to escalate privileges to the root level. Since the…

🔗 https://hackmag.com/news/sd-wan-patch?utm_source=mastodon&utm_medium=social&utm_campaign=repost_hackmag_to_socials

#news

📈 CVE Published in last days (2026-06-15 - 2026-06-15)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 374
- High: 827
- Medium: 471
- Low: 67
- None: 235

Status:
- : 204
- Analyzed: 394
- Awaiting Analysis: 88
- Deferred: 744
- Modified: 35
- Received: 417
- Rejected: 14
- Undergoing Analysis: 78

CISA KEVs:
- CISA-2026:0615 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0615)
- CISA-2026:0616 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0616)
- CISA-2026:0618 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0618)

Top CNAs:
- Patchstack: 489
- Oracle: 240
- N/A: 204
- VulnCheck: 202
- GitHub, Inc.: 133
- MITRE: 84
- Wordfence: 64
- VulDB: 49
- Mozilla Corporation: 44
- Google Devices: 39

Top Affected Products:
- UNKNOWN: 1471
- Google Android: 55
- Mozilla Thunderbird: 42
- Mozilla Firefox: 42
- Google Chrome: 33
- Oracle Webcenter Content: 32
- Openclaw: 27
- Oracle Jd Edwards Enterpriseone Tools: 14
- Oracle Enterprise Manager Base Platform: 14
- Oracle Weblogic Server: 13

Top EPSS Score:
- CVE-2026-11409 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11409)
- CVE-2026-11410 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11410)
- CVE-2026-12197 - 2.38 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12197)
- CVE-2026-53876 - 1.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-53876)
- CVE-2026-50871 - 1.57 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50871)
- CVE-2026-12223 - 1.53 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12223)
- CVE-2026-12219 - 1.52 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12219)
- CVE-2026-38065 - 1.35 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-38065)
- CVE-2026-20262 - 1.15 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-20262)
- CVE-2026-50874 - 1.12 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50874)

#ZEN #SecDB #InfoSec

Really Simple Security below 9.5.10.1 has a high-severity vulnerability (CVE-2026-48970, disclosed 15 June 2026) that requires no admin credentials to exploit. I find it particularly concerning given this plugin exists specifically to harden WordPress security. If your site is running an older version, update it now.

#WordPress #SecurityHardening #WordPressSecurity #CVE #SSL

https://wpguy.uk/blog/high-vulnerability-in-really-simple-security-8211-simple-and-performant-security-formerly-really-simple-ssl-really-simple-security-simple-and-performant-security-formerly-really-simple-ssl/

📈 CVE Published in last days (2026-06-15 - 2026-06-15)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 374
- High: 827
- Medium: 471
- Low: 67
- None: 235

Status:
- : 204
- Analyzed: 394
- Awaiting Analysis: 88
- Deferred: 744
- Modified: 35
- Received: 417
- Rejected: 14
- Undergoing Analysis: 78

CISA KEVs:
- CISA-2026:0615 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0615)
- CISA-2026:0616 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0616)
- CISA-2026:0618 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0618)

Top CNAs:
- Patchstack: 489
- Oracle: 240
- N/A: 204
- VulnCheck: 202
- GitHub, Inc.: 133
- MITRE: 84
- Wordfence: 64
- VulDB: 49
- Mozilla Corporation: 44
- Google Devices: 39

Top Affected Products:
- UNKNOWN: 1471
- Google Android: 55
- Mozilla Thunderbird: 42
- Mozilla Firefox: 42
- Google Chrome: 33
- Oracle Webcenter Content: 32
- Openclaw: 27
- Oracle Jd Edwards Enterpriseone Tools: 14
- Oracle Enterprise Manager Base Platform: 14
- Oracle Weblogic Server: 13

Top EPSS Score:
- CVE-2026-11409 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11409)
- CVE-2026-11410 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11410)
- CVE-2026-12197 - 2.38 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12197)
- CVE-2026-53876 - 1.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-53876)
- CVE-2026-50871 - 1.57 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50871)
- CVE-2026-12223 - 1.53 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12223)
- CVE-2026-12219 - 1.52 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12219)
- CVE-2026-38065 - 1.35 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-38065)
- CVE-2026-20262 - 1.15 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-20262)
- CVE-2026-50874 - 1.12 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50874)

#ZEN #SecDB #InfoSec

📈 CVE Published in last days (2026-06-15 - 2026-06-15)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 374
- High: 827
- Medium: 471
- Low: 67
- None: 235

Status:
- : 204
- Analyzed: 394
- Awaiting Analysis: 88
- Deferred: 744
- Modified: 35
- Received: 417
- Rejected: 14
- Undergoing Analysis: 78

CISA KEVs:
- CISA-2026:0615 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0615)
- CISA-2026:0616 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0616)
- CISA-2026:0618 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0618)

Top CNAs:
- Patchstack: 489
- Oracle: 240
- N/A: 204
- VulnCheck: 202
- GitHub, Inc.: 133
- MITRE: 84
- Wordfence: 64
- VulDB: 49
- Mozilla Corporation: 44
- Google Devices: 39

Top Affected Products:
- UNKNOWN: 1471
- Google Android: 55
- Mozilla Thunderbird: 42
- Mozilla Firefox: 42
- Google Chrome: 33
- Oracle Webcenter Content: 32
- Openclaw: 27
- Oracle Jd Edwards Enterpriseone Tools: 14
- Oracle Enterprise Manager Base Platform: 14
- Oracle Weblogic Server: 13

Top EPSS Score:
- CVE-2026-11409 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11409)
- CVE-2026-11410 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11410)
- CVE-2026-12197 - 2.38 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12197)
- CVE-2026-53876 - 1.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-53876)
- CVE-2026-50871 - 1.57 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50871)
- CVE-2026-12223 - 1.53 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12223)
- CVE-2026-12219 - 1.52 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12219)
- CVE-2026-38065 - 1.35 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-38065)
- CVE-2026-20262 - 1.15 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-20262)
- CVE-2026-50874 - 1.12 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50874)

#ZEN #SecDB #InfoSec

📈 CVE Published in last days (2026-06-15 - 2026-06-15)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs:

Severity:
- Critical: 374
- High: 827
- Medium: 471
- Low: 67
- None: 235

Status:
- : 204
- Analyzed: 394
- Awaiting Analysis: 88
- Deferred: 744
- Modified: 35
- Received: 417
- Rejected: 14
- Undergoing Analysis: 78

CISA KEVs:
- CISA-2026:0615 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0615)
- CISA-2026:0616 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0616)
- CISA-2026:0618 (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0618)

Top CNAs:
- Patchstack: 489
- Oracle: 240
- N/A: 204
- VulnCheck: 202
- GitHub, Inc.: 133
- MITRE: 84
- Wordfence: 64
- VulDB: 49
- Mozilla Corporation: 44
- Google Devices: 39

Top Affected Products:
- UNKNOWN: 1471
- Google Android: 55
- Mozilla Thunderbird: 42
- Mozilla Firefox: 42
- Google Chrome: 33
- Oracle Webcenter Content: 32
- Openclaw: 27
- Oracle Jd Edwards Enterpriseone Tools: 14
- Oracle Enterprise Manager Base Platform: 14
- Oracle Weblogic Server: 13

Top EPSS Score:
- CVE-2026-11409 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11409)
- CVE-2026-11410 - 2.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-11410)
- CVE-2026-12197 - 2.38 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12197)
- CVE-2026-53876 - 1.79 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-53876)
- CVE-2026-50871 - 1.57 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50871)
- CVE-2026-12223 - 1.53 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12223)
- CVE-2026-12219 - 1.52 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-12219)
- CVE-2026-38065 - 1.35 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-38065)
- CVE-2026-20262 - 1.15 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-20262)
- CVE-2026-50874 - 1.12 % (https://secdb.nttzen.cloud/cve/detail/CVE-2026-50874)

#ZEN #SecDB #InfoSec

https://nvd.nist.gov/vuln/detail/CVE-2026-9271
Thanks, WPScan.

this-is-fine dog of the week (from oss-sec):

https://blog.calif.io/p/how-to-format-a-ciphertext discusses how the issue that OpenSSL disclosed on June 9 as CVE-2026-34182 similarly affected the PKCS#7 / CMS parsing implementations from WolfSSL, Bouncy Castle, & GnuPG.

The common failure is accepting the sender provided length for the authentication tag, and not enforcing the minimum length specified in the RFC - allowing an attacker to specify a one-byte tag length and then use brute force to determine which of the 256 possible values matches the first byte of the actual tag.

CVE-2026-25860 turn XSS to RCE https://www.partywave.site/show/research/cve-2026-25860-openclinic-ga-xss-to-rce

Cisco SD-WAN zero-day CVE-2026-20245 exploited for two months before disclosure. Mandiant found the traces. Attacker had netadmin access, escalated to root, cleaned up config files. Inside for months.

https://thehackernews.com/2026/06/cisco-catalyst-sd-wan-zero-day-cve-2026.html

Cisco SD-WAN Zero-Day Exploited in Attacks

At a glance Actor: Unknown threat actor Activity Type: Privilege escalation and zero-day exploitation Targets: Service provider infrastructure Scale: Unknown victim count Jurisdiction: Active investigation; no arrests reported Source: Mandiant TL;DR Attackers breached a service provider using a Cisco SD-WAN zero-day flaw. They exploited CVE-2026-20245 to gain root-level control over network systems. Therefore, administrators must upgrade their software immediately to block further intrusions.

https://securityonline.info/cisco-sd-wan-zero-day/?utm_source=mastodon&utm_medium=jetpack_social

CVE-2026-20245 Zero-Day Exploited in Cisco Catalyst SD-WAN Manager to Gain Root Access

A newly disclosed zero-day vulnerability, CVE-2026-20245, has been exploited by a threat actor targeting Cisco Catalyst SD-WAN Manager. By exploiting

🔗️ [Thecyberexpress] https://link.is.it/YtDctR

Mandiant reveals how Cisco SD-WAN zero-day attacks gained root access

New details have been revealed on how hackers exploited a Cisco Catalyst SD-WAN vulnerability tracked as CVE-2026-20245 in zero-day attacks to...

🔗️ [Bleepingcomputer] https://link.is.it/gbIA4V

New.

Mandiant: Zero-Day Exploitation of Vulnerability (CVE-2026-20245) in Cisco Catalyst SD-WAN Manager https://cloud.google.com/blog/topics/threat-intelligence/zero-day-exploitation-cisco-catalyst-sd-wan-manager #Google

Microsoft:

StealC and Amadey: Breaking down infostealers and the cybercrime services that deliver them https://www.microsoft.com/en-us/security/blog/2026/06/24/stealc-and-amadey-breaking-down-infostealers-and-the-cybercrime-services-that-deliver-them/

Kaspersky:

StrikeShark: investigating a new campaign delivering Cobalt Strike through SharkLoader https://securelist.com/strikeshark-campaign/120326/ @Kaspersky

Symantec: Backdoor.Mistic: New Backdoor May be Linked to Ransomware Access Broker https://www.security.com/threat-intelligence/new-mistic-backdoor-modelorat

Picus:

The ShinyHunters Domino Effect: One Breach, Hundreds of Victims https://www.picussecurity.com/resource/blog/the-shinyhunters-domino-effect-one-breach-hundreds-of-victims

Proofpoint:

StealC You Later: Proofpoint and IBM X-Force Support Operation Endgame Disruptions https://www.proofpoint.com/us/blog/threat-insight/stealc-you-later-proofpoint-and-ibm-x-force-support-operation-endgame #threatresearch #cybercrime #Microsoft #infosec #threatintelligence #Cisco #vulnerability #zeroday #ransomware

🚨 New CSUITE Brief: Arista EOS vulnerability CVE-2026-7473 requires immediate executive oversight. Understand the organizational risk and the strategic governance required to protect your infrastructure. Read the full risk assessment here: https://thecybermind.co/tugq

#CyberSecurity #ExecutiveRisk #AristaEOS

Ghost Stories: investigating an undocumented ClickFix C2 in Ghost CMS

Read-only research into an active campaign that exploits CVE-2026-26980 in Ghost CMS. Every result below comes from public GET requests. We did not...

🔗️ [Sicuranext] https://link.is.it/r78ZkS

CVE-2026-45034: CRITICAL deserialization of untrusted data in PHPOffice PhpSpreadsheet allows RCE via phar stream wrappers. Patch to 1.30.5 to mitigate. PHP 7.x at highest risk. https://radar.offseq.com/threat/cve-2026-45034-cwe-502-deserialization-of-untruste-7ddc5d39407c5a37 #OffSeq #CVE202645034 #PHP #infosec

New advisory.

CVE-2026-20175, medium severity: Cisco Finesse Remote File Inclusion Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-finesse-rfi-gwpkdc89

From yesterday:

Cisco Advance Notification for Publication of July 1, 2026, Security Advisories https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-notice-vwL7b0S7 @TalosSecurity #Cisco #infosec #vulnerability

Webmin 2.641 Patches Root Takeover and 2FA Bypass Vulnerabilities

Webmin version 2.641 addresses multiple critical vulnerabilities, including a root-level stored XSS (CVE-2026-22678), a path traversal file overwrite (CVE-2026-49103), and a 2FA bypass (CVE-2026-56022). These flaws allow low-privileged users to compromise root accounts and bypass multi-factor authentication in multi-tenant hosting environments.

**Update your Webmin instances to version 2.641 immediately to prevent low-privileged users from taking over your root account. If you cannot patch today, restrict access to the mail and notification modules to only your most trusted administrators.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/webmin-2-641-patches-root-takeover-and-2fa-bypass-vulnerabilities-m-y-r-7-t/gD2P6Ple2L

CRITICAL kernel vulnerabilities in RHEL 7 ELS (e.g., CVE-2026-23243) risk DoS, memory corruption, and network/filesystem instability. Update & reboot required per RHSA-2026:27729. https://radar.offseq.com/threat/red-hat-security-advisory-kernel-security-bug-fix--c9a5a31cd7574f36 #OffSeq #Linux #RedHat #Infosec

Blip blop, I'm a #mastobot.
Here is a summary (in beta) of the latest posts in #programmingAtKukei https://masto.kukei.eu/browse/programming category:
- **PostgreSQL updates**: Critical CVEs in 2026-05-14 release (CVE-2026-6637), pg_qualstats 2.1.4, pg_stat_kcache 2.3.2, PGDay.UK 2026 schedule.
- **AI and coding agents**: Claude Code workflows, multi-agent systems (MCP), DeepSeek bugs, Ornith-1.0 (Gemma 4/Qwen 3.5-based), GLM-5.2, AI-native applications.
- **Open-source tools**: OpenKnowledge [1/3]

projects.
- **PostgreSQL updates and vulnerabilities**: Security patches (CVE-2026-6637), new releases, and community discussions on database management. [3/3]

@0 Oh, I stopped dragging and dropping things in the Terminal since we published this:

https://mysk.blog/2026/05/19/cve-2026-28910/

Attackers Mass-Exploit Gravity SMTP Plugin to Steal WordPress API Keys

Attackers are mass-exploiting a sensitive information exposure vulnerability (CVE-2026-4020) in the Gravity SMTP WordPress plugin to steal API keys and system configuration data. Over 17 million exploit attempts have been blocked as threat actors target approximately 100,000 active installations.

**If you run the Gravity SMTP plugin for WordPress, update it to version 2.1.5 or later right away, since attackers are actively stealing API keys and credentials through older versions. After updating, rotate all your third-party email API keys and secrets (like Amazon SES, Google, Mailjet, Resend, and Zoho), and check your web server logs for any suspicious requests to the "mock-data" endpoint.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/attackers-mass-exploit-gravity-smtp-plugin-to-steal-wordpress-api-keys-n-j-k-i-b/gD2P6Ple2L

CVE-2026-20971: Samsung Android kernel UAF affecting Galaxy S9-S25 https://lucidbitlabs.com/blog/when-defenses-become-attack-surface/

La vulnerabilità UAF del kernel KNOX di Samsung espone milioni di dispositivi Galaxy.

La vulnerabilità KNOX di Samsung (CVE-2026-20971) è una UAF del kernel in PROCA/FIVE che può consentire la corruzione [della memoria] tramite una race condition; Samsung l'ha corretta nel gennaio 2026.

https://securityaffairs.com/194090/security/samsung-knox-kernel-uaf-exposes-millions-of-galaxy-devices.html

@informatica

https://infosec.exchange/@securityaffairs/116801915008086780

Russian APTs Still Exploiting Patched WinRAR Flaw CVE-2025-8088 https://securityaffairs.com/193476/apt/russian-apts-still-exploiting-patched-winrar-flaw-cve-2025-8088.html

#OT #Advisory VDE-2026-071
JUMO: Allegro RomPager webserver vulnerability in JUMO mTRONT, DICON touch, AQUIS touch devices

Multiple products from JUMO are affected by webserver vulnerability "CVE-2013-6786, CVE-2014-9222, CVE-2014-9223. This vulnerability leads to DOS of the device by using a misfortune cookie and reflected XSS attacks.
#CVE CVE-2014-9222, CVE-2013-6786, CVE-2014-9223

https://certvde.com/en/advisories/vde-2026-071/

#CSAF https://jumo.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-071.json

#OT #Advisory VDE-2026-071
JUMO: Allegro RomPager webserver vulnerability in JUMO mTRONT, DICON touch, AQUIS touch devices

Multiple products from JUMO are affected by webserver vulnerability "CVE-2013-6786, CVE-2014-9222, CVE-2014-9223. This vulnerability leads to DOS of the device by using a misfortune cookie and reflected XSS attacks.
#CVE CVE-2014-9222, CVE-2013-6786, CVE-2014-9223

https://certvde.com/en/advisories/vde-2026-071/

#CSAF https://jumo.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-071.json

New and part promo.

Kaspersky:Beware of the license manager: how a Schneider Electric software vulnerability puts industrial facilities at risk https://securelist.com/tr/schneider-electric-cve-2024-2658-vulnerability/120436/ @Kaspersky #infosec #vulnerability

Ok, so. Originally CVE IDs where 4 digits. At some point in the mid '10s it went "4+ digits". There is a chance we'll require 6 digits this or next year.

Meanwhile, in 2019: Fuck it, we ball: https://nvd.nist.gov/vuln/detail/CVE-2019-1003037

Arista Patches Critical Telemetry and Authentication Flaws in EOS Network Operating System

Arista Networks has patched six vulnerabilities in its EOS operating system, including a critical flaw (CVE-2026-11705) in the telemetry agent that allows attackers to modify system data. The updates also fix policy-based authentication bypass and internal credential exposure risks in data center and cloud environments.

**First, make sure all Arista EOS management interfaces and streaming telemetry is isolated from the internet and reachable only from trusted management networks. Then update affected devices (EOS 4.31 through 4.36) to version 4.36.1F or apply Arista's telemetry agent hotfixes; As a mitigation, ensure the telemetry agent isn't running from the /usr/bin/TerminAttrRW path and remove the -cveapimode=queued flag.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/arista-patches-critical-telemetry-and-authentication-flaws-in-eos-network-operating-system-i-r-w-6-b/gD2P6Ple2L

Three Vulnerabilities, One Platform: Why Your Self-Hosted Gitea/Gogs Instance Is Probably Already Owned

https://thecybersecguru.com/news/cve-2026-20896-gitea-authentication-bypass-dom-xss-ssrf/

curl Patches 25-Year-Old Vulnerability and 17 Other Flaws

curl version 8.21.0 addresses 18 vulnerabilities, including a 25-year-old authentication bypass (CVE-2026-8932) and multiple memory safety issues. The flaws primarily affect libcurl, the library used by billions of devices for data transfer.

**Plan to update your curl and libcurl installations to version 8.21.0. Since libcurl is hidden inside many apps and devices, you should check your entire software stack for outdated versions.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/curl-patches-25-year-old-vulnerability-and-17-other-flaws-o-p-3-q-6/gD2P6Ple2L

CVE-2026-8932 is the oldest #curl vulnerability reported so far. 25.25 years old. Shipped in releases since curl version 7.7, released on March 22 2001

Still rather benign and it probably hurt about three users, at most.

https://curl.se/docs/CVE-2026-8932.html

ljharb shell-quote <=1.8.4 is impacted by CVE-2026-13311 (HIGH). Inefficient parsing can let attackers trigger DoS by blocking the Node.js event loop. Patch to 1.8.5+ now! 🛡️ https://radar.offseq.com/threat/cve-2026-13311-cwe-407-inefficient-algorithmic-com-ed9f913ba365deea #OffSeq #InfoSec #NodeJS #CVE202613311

CVE-2026-50551: SiYuan (<3.7.0) suffers CRITICAL stored XSS in Attribute View, enabling RCE via Electron client. Upgrade to v3.7.0+ to mitigate. No workaround available. Details: https://radar.offseq.com/threat/cve-2026-50551-cwe-79-improper-neutralization-of-i-e91ef5b4d83fcdb8 #OffSeq #XSS #SiYuan #Cybersecurity

CVE-2026-55570: CRITICAL XSS in SiYuan (<3.7.0) enables arbitrary HTML injection. On the desktop client, attackers can escalate to OS command execution due to nodeIntegration. Upgrade to 3.7.0+ now! https://radar.offseq.com/threat/cve-2026-55570-cwe-79-improper-neutralization-of-i-34ddb800ffc94efb #OffSeq #XSS #Vuln #SiYuan

CVE-2026-55454: CRITICAL (CVSS 9.9) vuln in appsmithorg Appsmith <2.1. Unauth Caddy admin API inside container can be exploited via SSRF by low-priv users to control reverse proxy. Upgrade to 2.1+ ASAP. https://radar.offseq.com/threat/cve-2026-55454-cwe-749-exposed-dangerous-method-or-64dab1aa9059ef90 #OffSeq #infosec #CVE202655454 #appsmith

RE: https://social.freedom.press/@securedrop/116805553545070289

The low priority issue we disclosed today managed to get assigned CVE-2026-50000.

Didn't include this in the writeup, but just for the purpose of keeping score, this would likely not have happened if it was written in #Rust because mutability is part of the type system, so you don't end up accidentally mutating what should be an immutable object!

https://github.com/freedomofpress/securedrop/security/advisories/GHSA-78xq-8jf3-gpfx

immich-app suffers CRITICAL reflected XSS (CVE-2026-53662) in /auth/login (commits 4ffa26c9 – 4eb1003). Exploitation = persistent account takeover via API key minting. Update to commit 4eb1003 or later. https://radar.offseq.com/threat/cve-2026-53662-cwe-79-improper-neutralization-of-i-088d09407e2bf58b #OffSeq #CVE202653662 #XSS #infosec

CVE-2026-50160: Four Independent Weaknesses Combine Into a CVSS 10.0 Full Compromise in Hoppscotch https://www.offgridsec.com/blog-hoppscotch-cve-2026-50160.html

CVE-2026-12957 and CVE-2026-12958 - Issues in Language Servers for AWS and Amazon Q Developer Plugins

Bulletin ID: 2026-047-AWS Scope: AWS Content Type: Important (requires attention) Publication Date: 06/23/2026 09:30 AM PDT
Description:
Language Servers for AWS provide the underlying language-server runtime that powers Amazon ...

https://aws.amazon.com/security/security-bulletins/rss/2026-047-aws/

#aws #security

Squidbleed : une faille vieille de 29 ans fait fuiter les identifiants des utilisateurs du proxy Squid https://www.it-connect.fr/squidbleed-faille-proxy-squid-cve-2026-47729/ #ActuCybersécurité #Cybersécurité #Vulnérabilité

Zephyr <=4.4.0 Bluetooth Host ISO path has CVE-2026-10658 (HIGH). Missing SDU header length checks can cause denial of service (kernel assert) or OOB reads if CONFIG_BT_ISO_RX is enabled. Evaluate mitigations now. https://radar.offseq.com/threat/cve-2026-10658-vulnerability-in-zephyrproject-rtos-9bbc3a2423f55b2a #OffSeq #Zephyr #CVE #Bluetooth