FediSecfeeds

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-59023/

thehackerwire@mastodon.social at 2026-02-09T15:21:44.000Z ##

🟠 CVE-2025-59023 - High (8.2)

Crafted delegations or IP fragments can poison cached delegations in Recursor.

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T15:21:44.000Z ##

🟠 CVE-2025-59023 - High (8.2)

Crafted delegations or IP fragments can poison cached delegations in Recursor.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-59023/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-10465
(8.8 HIGH)

EPSS: 0.00%

updated 2026-02-09T16:08:35.290000

2 posts

Unrestricted Upload of File with Dangerous Type vulnerability in Birtech Information Technologies Industry and Trade Ltd. Co. Sensaway allows Upload a Web Shell to a Web Server.This issue affects Sensaway: through 09022026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

thehackerwire@mastodon.social at 2026-02-09T14:21:21.000Z ##

🟠 CVE-2025-10465 - High (8.8)

Unrestricted Upload of File with Dangerous Type vulnerability in Birtech Information Technologies Industry and Trade Ltd. Co. Sensaway allows Upload a Web Shell to a Web Server.This issue affects Sensaway: through 09022026.

NOTE: The vendor was c...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-10465/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T14:21:21.000Z ##

🟠 CVE-2025-10465 - High (8.8)

Unrestricted Upload of File with Dangerous Type vulnerability in Birtech Information Technologies Industry and Trade Ltd. Co. Sensaway allows Upload a Web Shell to a Web Server.This issue affects Sensaway: through 09022026.

NOTE: The vendor was c...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-10465/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25848
(9.1 CRITICAL)

EPSS: 0.00%

updated 2026-02-09T16:08:35.290000

2 posts

In JetBrains Hub before 2025.3.119807 authentication bypass allowing administrative actions was possible

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25848/

thehackerwire@mastodon.social at 2026-02-09T11:17:21.000Z ##

🔴 CVE-2026-25848 - Critical (9.1)

In JetBrains Hub before 2025.3.119807 authentication bypass allowing administrative actions was possible

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T11:17:21.000Z ##

🔴 CVE-2026-25848 - Critical (9.1)

In JetBrains Hub before 2025.3.119807 authentication bypass allowing administrative actions was possible

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25848/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2236
(7.5 HIGH)

EPSS: 0.05%

updated 2026-02-09T16:08:35.290000

6 posts

C&Cm@il developed by HGiga has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.

thehackerwire@mastodon.social at 2026-02-09T08:26:42.000Z ##

🟠 CVE-2026-2236 - High (7.5)

C&Cm@il developed by HGiga has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2236/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T08:25:41.000Z ##

🟠 CVE-2026-2236 - High (7.5)

C&Cm@il developed by HGiga has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2236/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T08:23:54.000Z ##

🟠 CVE-2026-2236 - High (7.5)

C&Cm@il developed by HGiga has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2236/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T08:26:42.000Z ##

🟠 CVE-2026-2236 - High (7.5)

C&Cm@il developed by HGiga has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2236/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T08:25:41.000Z ##

🟠 CVE-2026-2236 - High (7.5)

C&Cm@il developed by HGiga has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2236/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T08:23:54.000Z ##

🟠 CVE-2026-2236 - High (7.5)

C&Cm@il developed by HGiga has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2236/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-1615
(9.8 CRITICAL)

EPSS: 0.22%

updated 2026-02-09T16:08:35.290000

3 posts

All versions of the package jsonpath are vulnerable to Arbitrary Code Injection via unsafe evaluation of user-supplied JSON Path expressions. The library relies on the static-eval module to process JSON Path input, which is not designed to handle untrusted data safely. An attacker can exploit this vulnerability by supplying a malicious JSON Path expression that, when evaluated, executes arbitrary

offseq at 2026-02-09T06:00:30.773Z ##

🚨 CVE-2026-1615: CRITICAL code injection in all jsonpath versions — RCE in Node.js, XSS in browsers. No patch yet. Audit dependencies, block untrusted JSON Path input, monitor for attacks. Details: https://radar.offseq.com/threat/cve-2026-1615-arbitrary-code-injection-in-jsonpath-a64ac077 #OffSeq #Vulnerability #NodeJS #Security

##

thehackerwire@mastodon.social at 2026-02-09T05:17:55.000Z ##

🔴 CVE-2026-1615 - Critical (9.8)

All versions of the package jsonpath are vulnerable to Arbitrary Code Injection via unsafe evaluation of user-supplied JSON Path expressions. The library relies on the static-eval module to process JSON Path input, which is not designed to handle ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1615/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T05:17:55.000Z ##

🔴 CVE-2026-1615 - Critical (9.8)

All versions of the package jsonpath are vulnerable to Arbitrary Code Injection via unsafe evaluation of user-supplied JSON Path expressions. The library relies on the static-eval module to process JSON Path input, which is not designed to handle ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1615/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2210
(7.2 HIGH)

EPSS: 0.20%

updated 2026-02-09T16:08:35.290000

1 posts

A vulnerability has been found in D-Link DIR-823X 250416. This affects the function sub_4211C8 of the file /goform/set_filtering. Such manipulation leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

1 repos

offseq at 2026-02-09T03:00:37.222Z ##

⚠️ HIGH-severity OS command injection (CVE-2026-2210) in D-Link DIR-823X v250416 — remote, unauthenticated code execution possible. Patch firmware or restrict admin access now. European orgs: prioritize response! https://radar.offseq.com/threat/cve-2026-2210-os-command-injection-in-d-link-dir-8-a510703e #OffSeq #Vuln #DLink

##

CVE-2026-2186
(8.8 HIGH)

EPSS: 0.05%

updated 2026-02-09T16:08:35.290000

2 posts

A vulnerability has been found in Tenda RX3 16.03.13.11. Impacted is the function fromSetIpMacBind of the file /goform/SetIpMacBind. Such manipulation of the argument list leads to stack-based buffer overflow. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2186/

thehackerwire@mastodon.social at 2026-02-08T21:16:19.000Z ##

🟠 CVE-2026-2186 - High (8.8)

A vulnerability has been found in Tenda RX3 16.03.13.11. Impacted is the function fromSetIpMacBind of the file /goform/SetIpMacBind. Such manipulation of the argument list leads to stack-based buffer overflow. The attack may be performed from remo...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-08T21:16:19.000Z ##

🟠 CVE-2026-2186 - High (8.8)

A vulnerability has been found in Tenda RX3 16.03.13.11. Impacted is the function fromSetIpMacBind of the file /goform/SetIpMacBind. Such manipulation of the argument list leads to stack-based buffer overflow. The attack may be performed from remo...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2186/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2181
(8.8 HIGH)

EPSS: 0.05%

updated 2026-02-09T16:08:35.290000

2 posts

A security flaw has been discovered in Tenda RX3 16.03.13.11. Affected by this vulnerability is an unknown functionality of the file /goform/openSchedWifi. Performing a manipulation of the argument schedStartTime/schedEndTime results in stack-based buffer overflow. The attack may be initiated remotely. The exploit has been released to the public and may be used for attacks.

thehackerwire@mastodon.social at 2026-02-08T20:18:27.000Z ##

🟠 CVE-2026-2181 - High (8.8)

A security flaw has been discovered in Tenda RX3 16.03.13.11. Affected by this vulnerability is an unknown functionality of the file /goform/openSchedWifi. Performing a manipulation of the argument schedStartTime/schedEndTime results in stack-base...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2181/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-08T20:18:27.000Z ##

🟠 CVE-2026-2181 - High (8.8)

A security flaw has been discovered in Tenda RX3 16.03.13.11. Affected by this vulnerability is an unknown functionality of the file /goform/openSchedWifi. Performing a manipulation of the argument schedStartTime/schedEndTime results in stack-base...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2181/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2155
(7.2 HIGH)

EPSS: 0.20%

updated 2026-02-09T16:08:35.290000

1 posts

A security flaw has been discovered in D-Link DIR-823X 250416. The affected element is the function sub_4208A0 of the file /goform/set_dmz of the component Configuration Handler. The manipulation of the argument dmz_host/dmz_enable results in os command injection. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks.

1 repos

https://github.com/osmancanvural/CVE-2026-21437

offseq at 2026-02-08T15:00:17.984Z ##

🚨 HIGH severity (CVSS 8.6): CVE-2026-2155 affects D-Link DIR-823X (v250416). Remote OS command injection via /goform/set_dmz — public exploit out! Restrict management access, monitor traffic, patch ASAP. https://radar.offseq.com/threat/cve-2026-2155-os-command-injection-in-d-link-dir-8-3a93a385 #OffSeq #DLink #Vuln #Infosec

##

CVE-2026-2143
(7.2 HIGH)

EPSS: 0.19%

updated 2026-02-09T16:08:35.290000

2 posts

A security vulnerability has been detected in D-Link DIR-823X 250416. This issue affects some unknown processing of the file /goform/set_ddns of the component DDNS Service. The manipulation of the argument ddnsType/ddnsDomainName/ddnsUserName/ddnsPwd leads to os command injection. The attack is possible to be carried out remotely. The exploit has been disclosed publicly and may be used.

2 repos

https://github.com/osmancanvural/CVE-2026-21436

offseq at 2026-02-08T12:00:34.115Z ##

🔥 CVE-2026-2143 (HIGH, CVSS 8.6): D-Link DIR-823X v250416 allows OS command injection via DDNS endpoint (/goform/set_ddns). Remote attackers with privileges can fully compromise affected routers. Mitigate now — restrict remote mgmt, monitor traffic. https://radar.offseq.com/threat/cve-2026-2143-os-command-injection-in-d-link-dir-8-43a9e1df #OffSeq #CVE20262143 #DLink #infosec

##

offseq at 2026-02-08T09:00:28.859Z ##

🛡️ HIGH severity OS command injection (CVE-2026-2143) in D-Link DIR-823X (fw 250416): Exploitable via /goform/set_ddns by privileged users. No patch yet — disable remote management, monitor traffic, and check for updates. https://radar.offseq.com/threat/cve-2026-2143-os-command-injection-in-d-link-dir-8-43a9e1df #OffSeq #DLink #Security

##

CVE-2026-2139
(8.8 HIGH)

EPSS: 0.09%

updated 2026-02-09T16:08:35.290000

2 posts

A vulnerability was determined in Tenda TX9 up to 22.03.02.10_multi. Affected by this vulnerability is the function sub_432580 of the file /goform/fast_setting_wifi_set. This manipulation of the argument ssid causes buffer overflow. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized.

thehackerwire@mastodon.social at 2026-02-08T07:17:12.000Z ##

🟠 CVE-2026-2139 - High (8.8)

A vulnerability was determined in Tenda TX9 up to 22.03.02.10_multi. Affected by this vulnerability is the function sub_432580 of the file /goform/fast_setting_wifi_set. This manipulation of the argument ssid causes buffer overflow. The attack may...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2139/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-08T07:17:12.000Z ##

🟠 CVE-2026-2139 - High (8.8)

A vulnerability was determined in Tenda TX9 up to 22.03.02.10_multi. Affected by this vulnerability is the function sub_432580 of the file /goform/fast_setting_wifi_set. This manipulation of the argument ssid causes buffer overflow. The attack may...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2139/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2138
(8.8 HIGH)

EPSS: 0.09%

updated 2026-02-09T16:08:35.290000

2 posts

A vulnerability was found in Tenda TX9 up to 22.03.02.10_multi. Affected is the function sub_42D03C of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. The attack can be launched remotely. The exploit has been made public and could be used.

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2138/

thehackerwire@mastodon.social at 2026-02-08T06:17:07.000Z ##

🟠 CVE-2026-2138 - High (8.8)

A vulnerability was found in Tenda TX9 up to 22.03.02.10_multi. Affected is the function sub_42D03C of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. The attack can be launched remotely. The e...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

updated 2026-02-09T14:51:42.203000

2 posts

Claude Code is an agentic coding tool. Prior to version 2.0.57, Claude Code failed to properly validate directory changes when combined with write operations to protected folders. By using the cd command to navigate into sensitive directories like .claude, it was possible to bypass write protection and create or modify files without user confirmation. Reliably exploiting this required the ability

thehackerwire@mastodon.social at 2026-02-09T16:07:29.000Z ##

🔴 CVE-2026-25722 - Critical (9.1)

Claude Code is an agentic coding tool. Prior to version 2.0.57, Claude Code failed to properly validate directory changes when combined with write operations to protected folders. By using the cd command to navigate into sensitive directories like...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25722/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T16:07:29.000Z ##

🔴 CVE-2026-25722 - Critical (9.1)

Claude Code is an agentic coding tool. Prior to version 2.0.57, Claude Code failed to properly validate directory changes when combined with write operations to protected folders. By using the cd command to navigate into sensitive directories like...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25722/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25724
(7.5 HIGH)

EPSS: 0.04%

updated 2026-02-09T14:47:41.783000

2 posts

Claude Code is an agentic coding tool. Prior to version 2.1.7, Claude Code failed to strictly enforce deny rules configured in settings.json when accessing files through symbolic links. If a user explicitly denied Claude Code access to a file (such as /etc/passwd) and Claude Code had access to a symbolic link pointing to that file, it was possible for Claude Code to read the restricted file throug

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25724/

thehackerwire@mastodon.social at 2026-02-09T16:07:10.000Z ##

🟠 CVE-2026-25724 - High (7.5)

Claude Code is an agentic coding tool. Prior to version 2.1.7, Claude Code failed to strictly enforce deny rules configured in settings.json when accessing files through symbolic links. If a user explicitly denied Claude Code access to a file (suc...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T16:07:10.000Z ##

🟠 CVE-2026-25724 - High (7.5)

Claude Code is an agentic coding tool. Prior to version 2.1.7, Claude Code failed to strictly enforce deny rules configured in settings.json when accessing files through symbolic links. If a user explicitly denied Claude Code access to a file (suc...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25724/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25725
(10.0 CRITICAL)

EPSS: 0.04%

updated 2026-02-09T14:46:12.660000

2 posts

Claude Code is an agentic coding tool. Prior to version 2.1.2, Claude Code's bubblewrap sandboxing mechanism failed to properly protect the .claude/settings.json configuration file when it did not exist at startup. While the parent directory was mounted as writable and .claude/settings.local.json was explicitly protected with read-only constraints, settings.json was not protected if it was missing

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25725/

thehackerwire@mastodon.social at 2026-02-09T16:07:20.000Z ##

🔴 CVE-2026-25725 - Critical (10)

Claude Code is an agentic coding tool. Prior to version 2.1.2, Claude Code's bubblewrap sandboxing mechanism failed to properly protect the .claude/settings.json configuration file when it did not exist at startup. While the parent directory was m...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T16:07:20.000Z ##

🔴 CVE-2026-25725 - Critical (10)

Claude Code is an agentic coding tool. Prior to version 2.1.2, Claude Code's bubblewrap sandboxing mechanism failed to properly protect the .claude/settings.json configuration file when it did not exist at startup. While the parent directory was m...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25725/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-6830
(9.8 CRITICAL)

EPSS: 0.03%

updated 2026-02-09T12:30:30

2 posts

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Xpoda Türkiye Information Technology Inc. Xpoda Studio allows SQL Injection.This issue affects Xpoda Studio: through 09022026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-6830/

thehackerwire@mastodon.social at 2026-02-09T13:02:19.000Z ##

🔴 CVE-2025-6830 - Critical (9.8)

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Xpoda Türkiye Information Technology Inc. Xpoda Studio allows SQL Injection.This issue affects Xpoda Studio: through 09022026. NOTE: The vendor...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T13:02:19.000Z ##

🔴 CVE-2025-6830 - Critical (9.8)

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Xpoda Türkiye Information Technology Inc. Xpoda Studio allows SQL Injection.This issue affects Xpoda Studio: through 09022026. NOTE: The vendor...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-6830/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25847
(8.2 HIGH)

EPSS: 0.01%

updated 2026-02-09T12:30:30

2 posts

In JetBrains PyCharm before 2025.3.2 a DOM-based XSS on Jupyter viewer page was possible

thehackerwire@mastodon.social at 2026-02-09T11:17:10.000Z ##

🟠 CVE-2026-25847 - High (8.2)

In JetBrains PyCharm before 2025.3.2 a DOM-based XSS on Jupyter viewer page was possible

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25847/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T11:17:10.000Z ##

🟠 CVE-2026-25847 - High (8.2)

In JetBrains PyCharm before 2025.3.2 a DOM-based XSS on Jupyter viewer page was possible

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25847/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-1709
(9.4 CRITICAL)

EPSS: 0.06%

updated 2026-02-09T10:15:57.377000

1 posts

A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transport Layer Security (TLS) authentication. This authentication bypass vulnerability allows unauthenticated clients with network access to perform administrative operations, including listing agents, retrieving public Trusted Platform Module (TPM) data, and deleting agents, by connecting witho

thehackerwire@mastodon.social at 2026-02-06T20:18:17.000Z ##

🔴 CVE-2026-1709 - Critical (9.4)

A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transport Layer Security (TLS) authentication. This authentication bypass vulnerability allows unauthenticated clients with network access to pe...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1709/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-1761
(8.6 HIGH)

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-7799/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2234
(9.1 CRITICAL)

EPSS: 0.05%

updated 2026-02-09T09:30:28

6 posts

C&Cm@il developed by HGiga has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read and modify any user's mail content.

thehackerwire@mastodon.social at 2026-02-09T08:26:32.000Z ##

🔴 CVE-2026-2234 - Critical (9.1)

C&Cm@il developed by HGiga has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read and modify any user's mail content.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2234/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T08:25:30.000Z ##

🔴 CVE-2026-2234 - Critical (9.1)

C&Cm@il developed by HGiga has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read and modify any user's mail content.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2234/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T08:23:45.000Z ##

🔴 CVE-2026-2234 - Critical (9.1)

C&Cm@il developed by HGiga has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read and modify any user's mail content.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2234/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T08:26:32.000Z ##

🔴 CVE-2026-2234 - Critical (9.1)

C&Cm@il developed by HGiga has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read and modify any user's mail content.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2234/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T08:25:30.000Z ##

🔴 CVE-2026-2234 - Critical (9.1)

C&Cm@il developed by HGiga has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read and modify any user's mail content.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2234/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T08:23:45.000Z ##

🔴 CVE-2026-2234 - Critical (9.1)

C&Cm@il developed by HGiga has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read and modify any user's mail content.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2234/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-22903
(9.8 CRITICAL)

EPSS: 0.43%

updated 2026-02-09T09:30:28

3 posts

An unauthenticated remote attacker can send a crafted HTTP request containing an overly long SESSIONID cookie. This can trigger a stack buffer overflow in the modified lighttpd server, causing it to crash and potentially enabling remote code execution due to missing stack protections.

thehackerwire@mastodon.social at 2026-02-09T08:24:22.000Z ##

🔴 CVE-2026-22903 - Critical (9.8)

An unauthenticated remote attacker can send a crafted HTTP request containing an overly long SESSIONID cookie. This can trigger a stack buffer overflow in the modified lighttpd server, causing it to crash and potentially enabling remote code execu...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22903/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

certvde at 2026-02-09T08:18:22.492Z ##

#OT #Advisory VDE-2026-004
WAGO: Vulnerabilities in Managed Switch

Several vulnerabilities have been identified in the WAGO 852‑1328 device's web‑based management interface, which is implemented using a modified lighttpd server and custom CGI binaries. These issues include multiple stack buffer overflows, an authentication bypass, and insecure credential storage.
#CVE CVE-2026-22906, CVE-2026-22904, CVE-2026-22903, CVE-2026-22905

https://certvde.com/en/advisories/vde-2026-004/

#CSAF https://wago.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-004.json

##

thehackerwire@mastodon.social at 2026-02-09T08:24:22.000Z ##

🔴 CVE-2026-22903 - Critical (9.8)

An unauthenticated remote attacker can send a crafted HTTP request containing an overly long SESSIONID cookie. This can trigger a stack buffer overflow in the modified lighttpd server, causing it to crash and potentially enabling remote code execu...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22903/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-1868
(10.0 CRITICAL)

EPSS: 0.03%

updated 2026-02-09T09:30:28

3 posts

GitLab has remediated a vulnerability in the Duo Workflow Service component of GitLab AI Gateway affecting all versions of the AI Gateway from 18.1.6, 18.2.6, 18.3.1 to 18.6.1, 18.7.0, and 18.8.0 in which AI Gateway was vulnerable to insecure template expansion of user supplied data via crafted Duo Agent Platform Flow definitions. This vulnerability could be used to cause Denial of Service or gain

offseq at 2026-02-09T07:30:37.189Z ##

🚨 CRITICAL: CVE-2026-1868 in GitLab AI Gateway (18.1.6 – 18.8.0) allows remote code execution or DoS via Duo Workflow Service. Patch to 18.6.2, 18.7.1, or 18.8.1. Restrict workflow access & monitor for abuse! https://radar.offseq.com/threat/cve-2026-1868-cwe-1336-improper-neutralization-of--f5bf4abe #OffSeq #GitLab #Vuln #CVE20261868

##

thehackerwire@mastodon.social at 2026-02-09T07:17:40.000Z ##

🔴 CVE-2026-1868 - Critical (9.9)

GitLab has remediated a vulnerability in the Duo Workflow Service component of GitLab AI Gateway affecting all versions of the AI Gateway from 18.1.6, 18.2.6, 18.3.1 to 18.6.1, 18.7.0, and 18.8.0 in which AI Gateway was vulnerable to insecure temp...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1868/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T07:17:40.000Z ##

🔴 CVE-2026-1868 - Critical (9.9)

GitLab has remediated a vulnerability in the Duo Workflow Service component of GitLab AI Gateway affecting all versions of the AI Gateway from 18.1.6, 18.2.6, 18.3.1 to 18.6.1, 18.7.0, and 18.8.0 in which AI Gateway was vulnerable to insecure temp...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1868/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-22906
(9.8 CRITICAL)

EPSS: 0.07%

updated 2026-02-09T09:30:27

4 posts

User credentials are stored using AES‑ECB encryption with a hardcoded key. An unauthenticated remote attacker obtaining the configuration file can decrypt and recover plaintext usernames and passwords, especially when combined with the authentication bypass.

offseq at 2026-02-09T09:00:28.698Z ##

🚨 CVE-2026-22906 (CRITICAL, CVSS 9.8): WAGO 0852-1322 uses a hardcoded AES key, letting unauthenticated attackers decrypt credentials from config files. No patch yet. Restrict access, segment networks, monitor closely! https://radar.offseq.com/threat/cve-2026-22906-cwe-321-use-of-hard-coded-cryptogra-e9045210 #OffSeq #ICS #OTSecurity

##

thehackerwire@mastodon.social at 2026-02-09T08:24:11.000Z ##

🔴 CVE-2026-22906 - Critical (9.8)

User credentials are stored using AES‑ECB encryption with a hardcoded key. An unauthenticated remote attacker obtaining the configuration file can decrypt and recover plaintext usernames and passwords, especially when combined with the authentic...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22906/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

certvde at 2026-02-09T08:18:22.492Z ##

#OT #Advisory VDE-2026-004
WAGO: Vulnerabilities in Managed Switch

Several vulnerabilities have been identified in the WAGO 852‑1328 device's web‑based management interface, which is implemented using a modified lighttpd server and custom CGI binaries. These issues include multiple stack buffer overflows, an authentication bypass, and insecure credential storage.
#CVE CVE-2026-22906, CVE-2026-22904, CVE-2026-22903, CVE-2026-22905

https://certvde.com/en/advisories/vde-2026-004/

#CSAF https://wago.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-004.json

##

thehackerwire@mastodon.social at 2026-02-09T08:24:11.000Z ##

🔴 CVE-2026-22906 - Critical (9.8)

User credentials are stored using AES‑ECB encryption with a hardcoded key. An unauthenticated remote attacker obtaining the configuration file can decrypt and recover plaintext usernames and passwords, especially when combined with the authentic...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22906/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-22905
(7.5 HIGH)

EPSS: 0.10%

updated 2026-02-09T09:30:27

5 posts

An unauthenticated remote attacker can bypass authentication by exploiting insufficient URI validation and using path traversal sequences (e.g., /js/../cgi-bin/post.cgi), gaining unauthorized access to protected CGI endpoints and configuration downloads.

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22905/

thehackerwire@mastodon.social at 2026-02-09T08:25:41.000Z ##

🟠 CVE-2026-22905 - High (7.5)

An unauthenticated remote attacker can bypass authentication by exploiting insufficient URI validation and using path traversal sequences (e.g., /js/../cgi-bin/post.cgi), gaining unauthorized access to protected CGI endpoints and configuration dow...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T08:24:04.000Z ##

🟠 CVE-2026-22905 - High (7.5)

An unauthenticated remote attacker can bypass authentication by exploiting insufficient URI validation and using path traversal sequences (e.g., /js/../cgi-bin/post.cgi), gaining unauthorized access to protected CGI endpoints and configuration dow...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22905/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

certvde at 2026-02-09T08:18:22.492Z ##

#OT #Advisory VDE-2026-004
WAGO: Vulnerabilities in Managed Switch

Several vulnerabilities have been identified in the WAGO 852‑1328 device's web‑based management interface, which is implemented using a modified lighttpd server and custom CGI binaries. These issues include multiple stack buffer overflows, an authentication bypass, and insecure credential storage.
#CVE CVE-2026-22906, CVE-2026-22904, CVE-2026-22903, CVE-2026-22905

https://certvde.com/en/advisories/vde-2026-004/

#CSAF https://wago.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-004.json

##

thehackerwire@mastodon.social at 2026-02-09T08:25:41.000Z ##

🟠 CVE-2026-22905 - High (7.5)

An unauthenticated remote attacker can bypass authentication by exploiting insufficient URI validation and using path traversal sequences (e.g., /js/../cgi-bin/post.cgi), gaining unauthorized access to protected CGI endpoints and configuration dow...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22905/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T08:24:04.000Z ##

🟠 CVE-2026-22905 - High (7.5)

An unauthenticated remote attacker can bypass authentication by exploiting insufficient URI validation and using path traversal sequences (e.g., /js/../cgi-bin/post.cgi), gaining unauthorized access to protected CGI endpoints and configuration dow...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-22905/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-0870
(7.8 HIGH)

EPSS: 0.01%

updated 2026-02-09T09:30:27

2 posts

MacroHub developed by GIGABYTE has a Local Privilege Escalation vulnerability. Due to the MacroHub application launching external applications with improper privileges, allowing authenticated local attackers to execute arbitrary code with SYSTEM privileges.

thehackerwire@mastodon.social at 2026-02-09T07:17:50.000Z ##

🟠 CVE-2026-0870 - High (7.8)

MacroHub developed by GIGABYTE has a Local Privilege Escalation vulnerability. Due to the MacroHub application launching external applications with improper privileges, allowing authenticated local attackers to execute arbitrary code with SYSTEM p...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0870/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T07:17:50.000Z ##

🟠 CVE-2026-0870 - High (7.8)

MacroHub developed by GIGABYTE has a Local Privilege Escalation vulnerability. Due to the MacroHub application launching external applications with improper privileges, allowing authenticated local attackers to execute arbitrary code with SYSTEM p...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-0870/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2203
(8.8 HIGH)

EPSS: 0.09%

updated 2026-02-09T03:31:20

3 posts

A flaw has been found in Tenda AC8 16.03.33.05. Affected by this vulnerability is an unknown functionality of the file /goform/fast_setting_wifi_set of the component Embedded Httpd Service. This manipulation of the argument timeZone causes buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used.

offseq at 2026-02-09T04:30:32.532Z ##

⚠️ CVE-2026-2203 (HIGH, CVSS 8.7): Tenda AC8 (16.03.33.05) buffer overflow in /goform/fast_setting_wifi_set lets remote attackers execute code w/o auth. Public exploit exists — update firmware, segment networks, monitor HTTP! https://radar.offseq.com/threat/cve-2026-2203-buffer-overflow-in-tenda-ac8-23b5fa92 #OffSeq #Vuln #Router

##

thehackerwire@mastodon.social at 2026-02-09T03:17:17.000Z ##

🟠 CVE-2026-2203 - High (8.8)

A flaw has been found in Tenda AC8 16.03.33.05. Affected by this vulnerability is an unknown functionality of the file /goform/fast_setting_wifi_set of the component Embedded Httpd Service. This manipulation of the argument timeZone causes buffer ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2203/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T03:17:17.000Z ##

🟠 CVE-2026-2203 - High (8.8)

A flaw has been found in Tenda AC8 16.03.33.05. Affected by this vulnerability is an unknown functionality of the file /goform/fast_setting_wifi_set of the component Embedded Httpd Service. This manipulation of the argument timeZone causes buffer ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2203/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2191
(7.2 HIGH)

EPSS: 0.04%

updated 2026-02-09T00:30:29

1 posts

A weakness has been identified in Tenda AC9 15.03.06.42_multi. Affected is the function formGetDdosDefenceList. This manipulation of the argument security.ddos.map causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been made available to the public and could be used for attacks.

offseq at 2026-02-09T01:30:28.782Z ##

🔥 HIGH-severity: CVE-2026-2191 in Tenda AC9 (v15.03.06.42_multi) enables remote, unauthenticated code execution via stack overflow. Public exploit out — segment networks & disable remote admin. No patch yet. https://radar.offseq.com/threat/cve-2026-2191-stack-based-buffer-overflow-in-tenda-65760e1b #OffSeq #CVE20262191 #netsec #routers

##

CVE-2026-2192
(7.2 HIGH)

EPSS: 0.04%

updated 2026-02-09T00:30:28

1 posts

A security vulnerability has been detected in Tenda AC9 15.03.06.42_multi. Affected by this vulnerability is the function formGetRebootTimer. Such manipulation of the argument sys.schedulereboot.start_time/sys.schedulereboot.end_time leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2180/

offseq at 2026-02-09T00:00:48.476Z ##

🚩 CVE-2026-2192 (HIGH): Stack-based buffer overflow in Tenda AC9 (15.03.06.42_multi). Remote, privileged attackers can fully compromise routers. Disable remote mgmt, restrict admin access, and monitor for patches. More: https://radar.offseq.com/threat/cve-2026-2192-stack-based-buffer-overflow-in-tenda-017bd58d #OffSeq #CVE #RouterSecurity

##

CVE-2026-2180
(8.8 HIGH)

EPSS: 0.05%

updated 2026-02-08T21:30:19

2 posts

A vulnerability was identified in Tenda RX3 16.03.13.11. Affected is an unknown function of the file /goform/fast_setting_wifi_set. Such manipulation of the argument ssid_5g leads to stack-based buffer overflow. The attack can be launched remotely. The exploit is publicly available and might be used.

thehackerwire@mastodon.social at 2026-02-08T20:18:17.000Z ##

🟠 CVE-2026-2180 - High (8.8)

A vulnerability was identified in Tenda RX3 16.03.13.11. Affected is an unknown function of the file /goform/fast_setting_wifi_set. Such manipulation of the argument ssid_5g leads to stack-based buffer overflow. The attack can be launched remotely...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

updated 2026-02-08T12:30:36

1 posts

A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by this issue is some unknown functionality of the file /checkin.php. This manipulation of the argument patient_id causes cross site scripting. The attack can be initiated remotely. The exploit has been published and may be used.

7 repos

https://github.com/decalage2/detect_CVE-2026-21509

https://github.com/gavz/CVE-2026-21509-PoC

https://github.com/kimstars/Ashwesker-CVE-2026-21509

https://github.com/kaizensecurity/CVE-2026-21509

https://github.com/SimoesCTT/CTT-MICROSOFT-OFFICE-OLE-MANIFOLD-BYPASS-CVE-2026-21509

https://github.com/ksk-itdk/KSK-ITDK-CVE-2026-21509-Mitigation

https://github.com/PinPin1140/cve-2026-21509

hackmag@infosec.exchange at 2026-02-05T18:00:02.000Z ##

⚪ APT28 group exploits new vulnerability in Microsoft Office

🗨️ Just three days after Microsoft released an out-of-band patch for Office, the APT28 group began exploiting the CVE-2026-21509 vulnerability in attacks against Ukrainian and European organizations.

🔗 https://hackmag.com/news/cve-2026-21509-atp28?utm_source=mastodon&utm_medium=social&utm_campaign=repost_hackmag_to_socials

#news

##

CVE-2026-2140
(8.8 HIGH)

EPSS: 0.09%

updated 2026-02-08T09:30:22

3 posts

A vulnerability was identified in Tenda TX9 up to 22.03.02.10_multi. Affected by this issue is the function sub_4223E0 of the file /goform/setMacFilterCfg. Such manipulation of the argument deviceList leads to buffer overflow. The attack may be launched remotely. The exploit is publicly available and might be used.

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2140/

offseq at 2026-02-08T07:30:30.775Z ##

⚠️ CVE-2026-2140: High-severity buffer overflow in Tenda TX9 (≤22.03.02.10_multi) via /goform/setMacFilterCfg. Public exploit available; risks RCE & DoS. Restrict remote access & monitor traffic. Patch ASAP when available. https://radar.offseq.com/threat/cve-2026-2140-buffer-overflow-in-tenda-tx9-09ab607e #OffSeq #Vulnerability #Tenda #CVE20262140

##

thehackerwire@mastodon.social at 2026-02-08T07:17:02.000Z ##

🟠 CVE-2026-2140 - High (8.8)

A vulnerability was identified in Tenda TX9 up to 22.03.02.10_multi. Affected by this issue is the function sub_4223E0 of the file /goform/setMacFilterCfg. Such manipulation of the argument deviceList leads to buffer overflow. The attack may be la...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-08T07:17:02.000Z ##

🟠 CVE-2026-2140 - High (8.8)

A vulnerability was identified in Tenda TX9 up to 22.03.02.10_multi. Affected by this issue is the function sub_4223E0 of the file /goform/setMacFilterCfg. Such manipulation of the argument deviceList leads to buffer overflow. The attack may be la...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2140/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2137
(8.8 HIGH)

EPSS: 0.09%

updated 2026-02-08T06:31:54

2 posts

A vulnerability has been found in Tenda TX3 up to 16.03.13.11_multi. This impacts an unknown function of the file /goform/SetIpMacBind. The manipulation of the argument list leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2137/

thehackerwire@mastodon.social at 2026-02-08T06:17:17.000Z ##

🟠 CVE-2026-2137 - High (8.8)

A vulnerability has been found in Tenda TX3 up to 16.03.13.11_multi. This impacts an unknown function of the file /goform/SetIpMacBind. The manipulation of the argument list leads to buffer overflow. The attack can be initiated remotely. The explo...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-08T06:17:17.000Z ##

🟠 CVE-2026-2137 - High (8.8)

A vulnerability has been found in Tenda TX3 up to 16.03.13.11_multi. This impacts an unknown function of the file /goform/SetIpMacBind. The manipulation of the argument list leads to buffer overflow. The attack can be initiated remotely. The explo...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2137/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-15027
(9.8 CRITICAL)

EPSS: 0.07%

updated 2026-02-08T03:30:35

2 posts

The JAY Login & Register plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.6.03. This is due to the plugin allowing a user to update arbitrary user meta through the 'jay_login_register_ajax_create_final_user' function. This makes it possible for unauthenticated attackers to elevate their privileges to that of an administrator.

thehackerwire@mastodon.social at 2026-02-08T02:20:36.000Z ##

🔴 CVE-2025-15027 - Critical (9.8)

The JAY Login & Register plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.6.03. This is due to the plugin allowing a user to update arbitrary user meta through the 'jay_login_register_ajax_create_f...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-15027/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-08T02:20:36.000Z ##

🔴 CVE-2025-15027 - Critical (9.8)

The JAY Login & Register plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.6.03. This is due to the plugin allowing a user to update arbitrary user meta through the 'jay_login_register_ajax_create_f...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-15027/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-15100
(8.8 HIGH)

EPSS: 0.04%

updated 2026-02-08T03:30:29

2 posts

The JAY Login & Register plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.6.03. This is due to the plugin allowing a user to update arbitrary user meta through the 'jay_panel_ajax_update_profile' function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to elevate their privileges to that of an administra

thehackerwire@mastodon.social at 2026-02-08T02:20:46.000Z ##

🟠 CVE-2025-15100 - High (8.8)

The JAY Login & Register plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.6.03. This is due to the plugin allowing a user to update arbitrary user meta through the 'jay_panel_ajax_update_profile' f...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-15100/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-08T02:20:46.000Z ##

🟠 CVE-2025-15100 - High (8.8)

The JAY Login & Register plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.6.03. This is due to the plugin allowing a user to update arbitrary user meta through the 'jay_panel_ajax_update_profile' f...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-15100/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25546
(7.8 HIGH)

EPSS: 0.07%

updated 2026-02-08T03:14:10

2 posts

### Impact A Command Injection vulnerability in godot-mcp allows remote code execution. The `executeOperation` function passed user-controlled input (e.g., `projectPath`) directly to `exec()`, which spawns a shell. An attacker could inject shell metacharacters like `$(command)` or `&calc` to execute arbitrary commands with the privileges of the MCP server process. This affects any tool that acc

1 repos

https://github.com/mbanyamer/CVE-2026-25546-godot-mcp-0.1.1-OS-Command-Injection

thehackerwire@mastodon.social at 2026-02-04T22:26:36.000Z ##

🟠 CVE-2026-25546 - High (7.8)

Godot MCP is a Model Context Protocol (MCP) server for interacting with the Godot game engine. Prior to version 0.1.1, a command injection vulnerability in godot-mcp allows remote code execution. The executeOperation function passed user-controlle...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25546/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-04T22:17:32.000Z ##

🟠 CVE-2026-25546 - High (7.8)

Godot MCP is a Model Context Protocol (MCP) server for interacting with the Godot game engine. Prior to version 0.1.1, a command injection vulnerability in godot-mcp allows remote code execution. The executeOperation function passed user-controlle...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25546/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25858(CVSS UNKNOWN)

EPSS: 0.15%

updated 2026-02-08T00:30:59

2 posts

macrozheng mall version 1.0.3 and prior contains an authentication vulnerability in the mall-portal password reset workflow that allows an unauthenticated attacker to reset arbitrary user account passwords using only a victim’s telephone number. The password reset flow exposes the one-time password (OTP) directly in the API response and validates password reset requests solely by comparing the pro

offseq at 2026-02-08T10:30:30.733Z ##

⚠️ CVE-2026-25858 (CRITICAL): macrozheng mall ≤1.0.3 exposes OTP in API, letting attackers reset any user password with just a phone number. Disable reset flow & apply MFA now! https://radar.offseq.com/threat/cve-2026-25858-cwe-640-weak-password-recovery-mech-3ff06a38 #OffSeq #CVE202625858 #vuln

##

offseq at 2026-02-08T00:00:42.688Z ##

⚠️ CRITICAL: CVE-2026-25858 in macrozheng mall ≤1.0.3 lets attackers reset any user’s password by exploiting a weak OTP process tied only to phone numbers. Disable reset, require MFA, and patch ASAP. https://radar.offseq.com/threat/cve-2026-25858-cwe-640-weak-password-recovery-mech-3ff06a38 #OffSeq #macrozhenmall #CVE202625858 #infosec

##

https://blog.blacklanternsecurity.com/p/cve-2026-2103-infor-syteline-erp

#cybersecurity #vulnerability

##

_r_netsec@infosec.exchange at 2026-02-09T14:43:06.000Z ##

CVE-2026-2103 - Infor Syteline ERP - Keys Included: No Assembly Required https://blog.blacklanternsecurity.com/p/cve-2026-2103-infor-syteline-erp

##

CVE-2026-25643
(9.1 CRITICAL)

EPSS: 0.47%

updated 2026-02-06T21:57:22.450000

3 posts

Frigate is a network video recorder (NVR) with realtime local object detection for IP cameras. Prior to 0.16.4, a critical Remote Command Execution (RCE) vulnerability has been identified in the Frigate integration with go2rtc. The application does not sanitize user input in the video stream configuration (config.yaml), allowing direct injection of system commands via the exec: directive. The go2r

1 repos

https://github.com/jduardo2704/CVE-2026-25643-Frigate-RCE

secdb at 2026-02-09T00:01:00.893Z ##

📈 CVE Published in last 7 days (2026-02-02 - 2026-02-09)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs: 1178

Severity:
- Critical: 93
- High: 363
- Medium: 498
- Low: 65
- None: 159

Status:
- : 9
- Analyzed: 94
- Awaiting Analysis: 636
- Modified: 2
- Received: 139
- Rejected: 20
- Undergoing Analysis: 278

Top CNAs:
- GitHub, Inc.: 225
- VulnCheck: 149
- VulDB: 134
- kernel.org: 79
- Wordfence: 71
- MITRE: 64
- wikimedia-foundation: 47
- Patchstack: 45
- Tanium: 26
- TPLink: 25

Top Affected Products:
- UNKNOWN: 1071
- Samsung Exynos 850 Firmware: 10
- Tp-link Archer Be230 Firmware: 10
- Samsung Exynos 980 Firmware: 10
- Samsung Exynos W920 Firmware: 10
- Samsung Exynos W1000 Firmware: 10
- Samsung Exynos 1080 Firmware: 10
- Samsung Exynos W930 Firmware: 10
- Samsung Exynos 1480 Firmware: 9
- Mediatek Nr15: 9

##

thehackerwire@mastodon.social at 2026-02-06T20:18:55.000Z ##

🔴 CVE-2026-25643 - Critical (9.1)

Frigate is a network video recorder (NVR) with realtime local object detection for IP cameras. Prior to 0.16.4, a critical Remote Command Execution (RCE) vulnerability has been identified in the Frigate integration with go2rtc. The application doe...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25643/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-06T20:17:41.000Z ##

🔴 CVE-2026-25643 - Critical (9.1)

Frigate is a network video recorder (NVR) with realtime local object detection for IP cameras. Prior to 0.16.4, a critical Remote Command Execution (RCE) vulnerability has been identified in the Frigate integration with go2rtc. The application doe...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25643/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25635
(8.6 HIGH)

EPSS: 0.05%

updated 2026-02-06T21:57:22.450000

3 posts

calibre is an e-book manager. Prior to 9.2.0, Calibre's CHM reader contains a path traversal vulnerability that allows arbitrary file writes anywhere the user has write permissions. On Windows (haven't tested on other OS's), this can lead to Remote Code Execution by writing a payload to the Startup folder, which executes on next login. This vulnerability is fixed in 9.2.0.

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25635/

thehackerwire@mastodon.social at 2026-02-06T21:57:03.000Z ##

🟠 CVE-2026-25635 - High (8.6)

calibre is an e-book manager. Prior to 9.2.0, Calibre's CHM reader contains a path traversal vulnerability that allows arbitrary file writes anywhere the user has write permissions. On Windows (haven't tested on other OS's), this can lead to Remot...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-06T21:21:06.000Z ##

🟠 CVE-2026-25635 - High (8.6)

calibre is an e-book manager. Prior to 9.2.0, Calibre's CHM reader contains a path traversal vulnerability that allows arbitrary file writes anywhere the user has write permissions. On Windows (haven't tested on other OS's), this can lead to Remot...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25635/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-06T21:18:24.000Z ##

🟠 CVE-2026-25635 - High (8.6)

calibre is an e-book manager. Prior to 9.2.0, Calibre's CHM reader contains a path traversal vulnerability that allows arbitrary file writes anywhere the user has write permissions. On Windows (haven't tested on other OS's), this can lead to Remot...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25635/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25592
(9.9 CRITICAL)

EPSS: 0.10%

updated 2026-02-06T21:57:22.450000

1 posts

Semantic Kernel is an SDK used to build, orchestrate, and deploy AI agents and multi-agent systems. Prior to 1.70.0, an Arbitrary File Write vulnerability has been identified in Microsoft's Semantic Kernel .NET SDK, specifically within the SessionsPythonPlugin. The problem has been fixed in Microsoft.SemanticKernel.Core version 1.70.0. As a mitigation, users can create a Function Invocation Filter

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25592/

thehackerwire@mastodon.social at 2026-02-06T21:21:29.000Z ##

🔴 CVE-2026-25592 - Critical (9.9)

Semantic Kernel is an SDK used to build, orchestrate, and deploy AI agents and multi-agent systems. Prior to 1.70.0, an Arbitrary File Write vulnerability has been identified in Microsoft's Semantic Kernel .NET SDK, specifically within the Ses...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25731
(7.8 HIGH)

EPSS: 0.01%

updated 2026-02-06T21:57:22.450000

2 posts

calibre is an e-book manager. Prior to 9.2.0, a Server-Side Template Injection (SSTI) vulnerability in Calibre's Templite templating engine allows arbitrary code execution when a user converts an ebook using a malicious custom template file via the --template-html or --template-html-index command-line options. This vulnerability is fixed in 9.2.0.

1 repos

https://github.com/dxlerYT/CVE-2026-25731

thehackerwire@mastodon.social at 2026-02-06T21:19:42.000Z ##

🟠 CVE-2026-25731 - High (7.8)

calibre is an e-book manager. Prior to 9.2.0, a Server-Side Template Injection (SSTI) vulnerability in Calibre's Templite templating engine allows arbitrary code execution when a user converts an ebook using a malicious custom template file via th...

updated 2026-02-06T21:44:00

2 posts

### Summary It is possible to append to arbitrary files via /logger endpoint. Minimal privileges are required (read-only access). Tested on Qdrant 1.15.5 ### Details `POST /logger` ([Source code link](https://github.com/qdrant/qdrant/blob/48203e414e4e7f639a6d394fb6e4df695f808e51/src/actix/api/service_api.rs#L195)) endpoint accepts an attacker-controlled `on_disk.log_file` path. There are no auth

thehackerwire@mastodon.social at 2026-02-06T21:19:53.000Z ##

🟠 CVE-2026-25628 - High (8.5)

Qdrant is a vector similarity search engine and vector database. From 1.9.3 to before 1.16.0, it is possible to append to arbitrary files via /logger endpoint using an attacker-controlled on_disk.log_file path. Minimal privileges are required (rea...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25628/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-06T21:17:49.000Z ##

🟠 CVE-2026-25628 - High (8.5)

Qdrant is a vector similarity search engine and vector database. From 1.9.3 to before 1.16.0, it is possible to append to arbitrary files via /logger endpoint using an attacker-controlled on_disk.log_file path. Minimal privileges are required (rea...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25628/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25593
(8.4 HIGH)

EPSS: 0.10%

updated 2026-02-06T21:43:42

1 posts

### Summary An unauthenticated local client could use the Gateway WebSocket API to write config via `config.apply` and set unsafe `cliPath` values that were later used for command discovery, enabling command injection as the gateway user. ### Impact A local process on the same machine could execute arbitrary commands as the gateway process user. ### Details - `config.apply` accepted raw JSON

thehackerwire@mastodon.social at 2026-02-06T21:21:39.000Z ##

🟠 CVE-2026-25593 - High (8.4)

OpenClaw is a personal AI assistant. Prior to 2026.1.20, an unauthenticated local client could use the Gateway WebSocket API to write config via config.apply and set unsafe cliPath values that were later used for command discovery, enabling comman...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25593/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25641
(10.0 CRITICAL)

EPSS: 0.04%

updated 2026-02-06T21:42:58

2 posts

### Summary A sandbox escape vulnerabilities due to a mismatch between the key on which the validation is performed and the key used for accessing properties. ### Details Even though the key used in property accesses (```b``` in the code below) is annotated as ```string```, this is never enforced: https://github.com/nyariv/SandboxJS/blob/6103d7147c4666fe48cfda58a4d5f37005b43754/src/executor.ts#L3

thehackerwire@mastodon.social at 2026-02-06T20:18:44.000Z ##

🔴 CVE-2026-25641 - Critical (10)

SandboxJS is a JavaScript sandboxing library. Prior to 0.8.29, there is a sandbox escape vulnerability due to a mismatch between the key on which the validation is performed and the key used for accessing properties. Even though the key used in pr...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25641/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-06T20:17:31.000Z ##

🔴 CVE-2026-25641 - Critical (10)

SandboxJS is a JavaScript sandboxing library. Prior to 0.8.29, there is a sandbox escape vulnerability due to a mismatch between the key on which the validation is performed and the key used for accessing properties. Even though the key used in pr...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25641/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25580
(8.6 HIGH)

EPSS: 0.01%

updated 2026-02-06T21:42:28

1 posts

## Summary A Server-Side Request Forgery (SSRF) vulnerability exists in Pydantic AI's URL download functionality. When applications accept message history from untrusted sources, attackers can include malicious URLs that cause the server to make HTTP requests to internal network resources, potentially accessing internal services or cloud credentials. **This vulnerability only affects application

thehackerwire@mastodon.social at 2026-02-06T21:21:19.000Z ##

🟠 CVE-2026-25580 - High (8.6)

Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. From 0.0.26 to before 1.56.0, aServer-Side Request Forgery (SSRF) vulnerability exists in Pydantic AI's URL download functionality. When applicatio...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25580/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25520
(10.0 CRITICAL)

EPSS: 0.08%

updated 2026-02-06T21:42:24

2 posts

### Summary The return values of functions aren't wrapped. `Object.values`/`Object.entries` can be used to get an Array containing the host's `Function` constructor, by using `Array.prototype.at` you can obtain the hosts `Function` constructor, which can be used to execute arbitrary code outside of the sandbox. ### Details The return values of functions aren't wrapped, chaining function calls a

thehackerwire@mastodon.social at 2026-02-06T20:19:05.000Z ##

🔴 CVE-2026-25520 - Critical (10)

SandboxJS is a JavaScript sandboxing library. Prior to 0.8.29, The return values of functions aren't wrapped. Object.values/Object.entries can be used to get an Array containing the host's Function constructor, by using Array.prototype.at you can ...

updated 2026-02-06T19:43:47.703000

5 posts

The Metro Development Server, which is opened by the React Native Community CLI, binds to external interfaces by default. The server exposes an endpoint that is vulnerable to OS command injection. This allows unauthenticated network attackers to send a POST request to the server and run arbitrary executables. On Windows, the attackers can also execute arbitrary shell commands with fully controlled

1 repos

https://secdb.nttzen.cloud/cve/detail/CVE-2025-11953

secdb at 2026-02-09T17:05:24.716Z ##

🚨 CVE-2025-11953 (Metro4Shell)
React Native Community CLI OS Command Injection Vulnerability

The Metro Development Server, which is opened by the React Native Community CLI, binds to external interfaces by default. The server exposes an endpoint that is vulnerable to OS command injection. This allows unauthenticated network attackers to send a POST request to the server and run arbitrary executables. On Windows, the attackers can also execute arbitrary shell commands with fully controlled arguments.

#ZEN #SecDB #InfoSec #React #Metro4Shell #CVE202511953

##

hackmag@infosec.exchange at 2026-02-07T15:51:05.000Z ##

⚪ Critical Metro4Shell Vulnerability Exploited to Breach Development Systems

🗨️ Attackers are actively exploiting the critical CVE-2025-11953 vulnerability in the React Native Metro server to infect developers’ systems with malware for Windows and Linux.

🔗 https://hackmag.com/news/metro4shell?utm_source=mastodon&utm_medium=social&utm_campaign=repost_hackmag_to_socials

#news

##

cisakevtracker@mastodon.social at 2026-02-05T21:00:55.000Z ##

CVE ID: CVE-2025-11953
Vendor: React Native Community
Product: CLI
Date Added: 2026-02-05
Notes: This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: ; https://github.com/react-native-community/cli/commit/15089907d1f1301b22c72d7f68846a2ef20df547;https://github.com/react-native-community/cli/pull/2735 ; https://nvd.nist.gov/vuln/detail/CVE-2025-11953
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-11953

##

AAKL@infosec.exchange at 2026-02-05T20:31:53.000Z ##

New:

CISA Orders Federal Agencies to Strengthen Edge Device Security Amid Rising Cyber Threats https://www.cisa.gov/news-events/news/cisa-orders-federal-agencies-strengthen-edge-device-security-amid-rising-cyber-threats

CISA has also updated the KEV catalogue.

- CVE-2026-24423: SmarterTools SmarterMail Missing Authentication for Critical Function Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-24423

- CVE-2025-11953: React Native Community CLI OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-11953

Five industrial vulnerabilities have also been added: https://www.cisa.gov/ #CISA #infosec #vulnerabilities

updated 2026-02-06T18:30:29

8 posts

SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code execution vulnerability in the ConnectToHub API method. The attacker could point the SmarterMail to the malicious HTTP server, which serves the malicious OS command. This command will be executed by the vulnerable application.

1 repos

https://github.com/aavamin/CVE-2026-24423

youranonnewsirc@nerdculture.de at 2026-02-09T13:45:52.000Z ##

Global news highlights include the kickoff of the 2026 Winter Olympics in Italy (Feb 7). In technology, OpenAI launched its Frontier enterprise AI agent platform. Apple acquired AI startup Q.AI for $2B, while Google reported significant AI-driven profit gains. Intel and AMD warned of server CPU shortages impacting China due to AI demand. The EU is also scrutinizing TikTok's "addictive design".

Cybersecurity saw CISA warn of a critical SmarterMail vulnerability (CVE-2026-24423) actively exploited in ransomware campaigns (Feb 7). Italian authorities thwarted Russian cyberattacks targeting government and Olympic-related websites. A rise in AI-driven phishing attacks was also reported.

##

youranonnewsirc@nerdculture.de at 2026-02-09T13:45:52.000Z ##

Global news highlights include the kickoff of the 2026 Winter Olympics in Italy (Feb 7). In technology, OpenAI launched its Frontier enterprise AI agent platform. Apple acquired AI startup Q.AI for $2B, while Google reported significant AI-driven profit gains. Intel and AMD warned of server CPU shortages impacting China due to AI demand. The EU is also scrutinizing TikTok's "addictive design".

Cybersecurity saw CISA warn of a critical SmarterMail vulnerability (CVE-2026-24423) actively exploited in ransomware campaigns (Feb 7). Italian authorities thwarted Russian cyberattacks targeting government and Olympic-related websites. A rise in AI-driven phishing attacks was also reported.

https://www.bleepingcomputer.com/news/security/cisa-warns-of-smartermail-rce-flaw-used-in-ransomware-attacks/

##

gtronix@infosec.exchange at 2026-02-06T18:00:39.000Z ##

"CISA warns of SmarterMail RCE flaw used in ransomware attacks"

"[...] has issued a warning about CVE-2026-24423, an unauthenticated remote code execution (RCE) flaw in SmarterMail that is used in ransomware attacks. The Cybersecurity & Infrastructure Security Agency (CISA) in the U.S."

#Cybersecurity

##

oversecurity@mastodon.social at 2026-02-06T17:40:06.000Z ##

CISA warns of SmarterMail RCE flaw used in ransomware attacks

The Cybersecurity & Infrastructure Security Agency (CISA) in the U.S. has issued a warning about CVE-2026-24423, an unauthenticated remote code...

🔗️ [Bleepingcomputer] https://link.is.it/Kkych1

##

kev_Stalker@infosec.exchange at 2026-02-05T23:18:19.000Z ##

CVE-2026-24423 - Changed to Known Ransomware Status

SmarterTools SmarterMail Missing Authentication for Critical Function VulnerabilityVendor: SmarterToolsProduct: SmarterMailSmarterTools SmarterMail contains a missing authentication for critical function vulnerability in the ConnectToHub API method. This could allow the attacker to point the SmarterMail instance to a malicious HTTP server which serves the malicious OS command and could lead https://nvd.nist.gov/vuln/detail/CVE-2026-24423

##

cisakevtracker@mastodon.social at 2026-02-05T21:01:10.000Z ##

CVE ID: CVE-2026-24423
Vendor: SmarterTools
Product: SmarterMail
Date Added: 2026-02-05
Notes: https://www.smartertools.com/smartermail/release-notes/current ; https://www.cve.org/CVERecord?id=CVE-2026-24423 ; https://nvd.nist.gov/vuln/detail/CVE-2026-24423
CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2026-24423

##

AAKL@infosec.exchange at 2026-02-05T20:31:53.000Z ##

New:

CISA Orders Federal Agencies to Strengthen Edge Device Security Amid Rising Cyber Threats https://www.cisa.gov/news-events/news/cisa-orders-federal-agencies-strengthen-edge-device-security-amid-rising-cyber-threats

CISA has also updated the KEV catalogue.

- CVE-2026-24423: SmarterTools SmarterMail Missing Authentication for Critical Function Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-24423

- CVE-2025-11953: React Native Community CLI OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-11953

Five industrial vulnerabilities have also been added: https://www.cisa.gov/ #CISA #infosec #vulnerabilities

##

DarkWebInformer@infosec.exchange at 2026-02-05T20:27:07.000Z ##

‼️ CISA has added two vulnerabilities to the KEV Catalog

https://darkwebinformer.com/cisa-kev-catalog/

CVE-2026-24423: SmarterTools SmarterMail Missing Authentication for Critical Function Vulnerability:

SmarterTools SmarterMail contains a missing authentication for critical function vulnerability in the ConnectToHub API method. This could allow the attacker to point the SmarterMail instance to a malicious HTTP server which serves the malicious OS command and could lead to command execution.

CVE-2025-11953: React Native Community CLI OS Command Injection Vulnerability:

React Native Community CLI contains an OS command injection vulnerability which could allow unauthenticated network attackers to send POST requests to the Metro Development Server and run arbitrary executables via a vulnerable endpoint exposed by the server. On Windows, attackers can also execute arbitrary shell commands with fully controlled arguments.

##

CVE-2025-69906
(8.8 HIGH)

EPSS: 0.21%

updated 2026-02-06T16:16:14.713000

1 posts

Monstra CMS v3.0.4 contains an arbitrary file upload vulnerability in the Files Manager plugin. The application relies on blacklist-based file extension validation and stores uploaded files directly in a web-accessible directory. Under typical server configurations, this can allow an attacker to upload files that are interpreted as executable code, resulting in remote code execution.

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-69906/

thehackerwire@mastodon.social at 2026-02-06T16:20:02.000Z ##

🟠 CVE-2025-69906 - High (8.8)

Monstra CMS v3.0.4 contains an arbitrary file upload vulnerability in the Files Manager plugin. The application relies on blacklist-based file extension validation and stores uploaded files directly in a web-accessible directory. Under typical ser...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-1499
(9.8 CRITICAL)

EPSS: 1.23%

updated 2026-02-06T15:14:47.703000

2 posts

The WP Duplicate plugin for WordPress is vulnerable to Missing Authorization leading to Arbitrary File Upload in all versions up to and including 1.1.8. This is due to a missing capability check on the `process_add_site()` AJAX action combined with path traversal in the file upload functionality. This makes it possible for authenticated (subscriber-level) attackers to set the internal `prod_key_ra

secdb at 2026-02-09T00:01:00.893Z ##

📈 CVE Published in last 7 days (2026-02-02 - 2026-02-09)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs: 1178

Severity:
- Critical: 93
- High: 363
- Medium: 498
- Low: 65
- None: 159

Status:
- : 9
- Analyzed: 94
- Awaiting Analysis: 636
- Modified: 2
- Received: 139
- Rejected: 20
- Undergoing Analysis: 278

Top CNAs:
- GitHub, Inc.: 225
- VulnCheck: 149
- VulDB: 134
- kernel.org: 79
- Wordfence: 71
- MITRE: 64
- wikimedia-foundation: 47
- Patchstack: 45
- Tanium: 26
- TPLink: 25

Top Affected Products:
- UNKNOWN: 1071
- Samsung Exynos 850 Firmware: 10
- Tp-link Archer Be230 Firmware: 10
- Samsung Exynos 980 Firmware: 10
- Samsung Exynos W920 Firmware: 10
- Samsung Exynos W1000 Firmware: 10
- Samsung Exynos 1080 Firmware: 10
- Samsung Exynos W930 Firmware: 10
- Samsung Exynos 1480 Firmware: 9
- Mediatek Nr15: 9

##

thehackerwire@mastodon.social at 2026-02-06T10:00:40.000Z ##

🔴 CVE-2026-1499 - Critical (9.8)

The WP Duplicate plugin for WordPress is vulnerable to Missing Authorization leading to Arbitrary File Upload in all versions up to and including 1.1.8. This is due to a missing capability check on the `process_add_site()` AJAX action combined wit...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-1499/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-21643
(9.8 CRITICAL)

EPSS: 0.13%

updated 2026-02-06T15:14:47.703000

2 posts

An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiClientEMS 7.4.4 may allow an unauthenticated attacker to execute unauthorized code or commands via specifically crafted HTTP requests.

1 repos

https://github.com/DarkSploits/CVE-2026-21643-Exploit

decio@infosec.exchange at 2026-02-06T15:33:50.000Z ##

ahhh… la bonne vuln critique du vendredi qui sent le café ☕️

🕵️‍♂️ CVE-2026-21643

D’après la fiche : SQL Injection (improper neutralization of special elements used in an SQL command) dans Fortinet FortiClientEMS 7.4.4

➡️ pourrait permettre à un attaquant non authentifié d’exécuter du code/commandes via des requêtes HTTP spécialement forgées.

RCE “unauth” sur un produit exposé, quelle surprise… 🙃

EPSS: 0.03%

updated 2026-02-06T06:30:28

2 posts

A security issue was discovered in ingress-nginx where the `nginx.ingress.kubernetes.io/auth-proxy-set-headers` Ingress annotation can be used to inject configuration into nginx. This can lead to arbitrary code execution in the context of the ingress-nginx controller, and disclosure of Secrets accessible to the controller. (Note that in the default installation, the controller can access all Secre

ChrisShort@hachyderm.io at 2026-02-06T14:08:56.000Z ##

CVE-2025-15566 #devopsish #kubernetes #cve https://github.com/kubernetes/kubernetes/issues/136789

##

thehackerwire@mastodon.social at 2026-02-06T04:58:01.000Z ##

🟠 CVE-2025-15566 - High (8.8)

A security issue was discovered in ingress-nginx where the `nginx.ingress.kubernetes.io/auth-proxy-set-headers` Ingress annotation can be used to inject configuration into nginx. This can lead to arbitrary code execution in the context of the ing...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-15566/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

##

CVE-2026-20983
(7.8 HIGH)

EPSS: 0.01%

updated 2026-02-05T21:21:13.780000

1 posts

Improper export of android application components in Samsung Dialer prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Samsung Dialer privilege.

thehackerwire@mastodon.social at 2026-02-05T22:51:27.000Z ##

🟠 CVE-2026-20983 - High (7.8)

Improper export of android application components in Samsung Dialer prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Samsung Dialer privilege.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-20983/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-68721
(9.1 CRITICAL)

EPSS: 0.01%

updated 2026-02-05T21:15:51.963000

2 posts

Axigen Mail Server before 10.5.57 contains an improper access control vulnerability in the WebAdmin interface. A delegated admin account with zero permissions can bypass access control checks and gain unauthorized access to the SSL Certificates management endpoint (page=sslcerts). This allows the attacker to view, download, upload, and delete SSL certificate files, despite lacking the necessary pr

1 repos

https://github.com/osmancanvural/CVE-2025-68721

thehackerwire@mastodon.social at 2026-02-05T22:00:45.000Z ##

🔴 CVE-2025-68721 - Critical (9.1)

Axigen Mail Server before 10.5.57 contains an improper access control vulnerability in the WebAdmin interface. A delegated admin account with zero permissions can bypass access control checks and gain unauthorized access to the SSL Certificates ma...

updated 2026-02-05T20:15:52.003000

1 posts

A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete a handshake, a GSource is leaked. This can lead to the callback firing later on and triggering a use-after-free in the use of the channel. This can be abused by a malicious client with network access to the VNC WebSocket port to cause a denial of service during the WebSocket handshake prior to the VN

linux@activitypub.awakari.com at 2026-02-04T16:11:58.000Z ## Oracle Linux 10 ELSA-2026-1831 qemu-kvm Moderate DoS CVE-2025-11234 The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

#Oracle #Linux #Distribution #- #Security #Advisories

Origin | Interest | Match ##

CVE-2026-25539
(9.1 CRITICAL)

EPSS: 0.27%

updated 2026-02-05T19:15:56.253000

updated 2026-02-05T17:55:10.430000

1 posts

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, an unauthenticated SQL injection in the /get/<package>/<version> endpoint allows remote attackers to execute arbitrary SQL via a crafted package version. This issue has been patched in version 1.33.0.

thehackerwire@mastodon.social at 2026-02-05T23:18:53.000Z ##

🔴 CVE-2026-25241 - Critical (9.8)

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, an unauthenticated SQL injection in the /get// endpoint allows remote attackers to execute arbitrary SQL via a crafted package version. This issue ha...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25241/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-46651
(4.3 MEDIUM)

EPSS: 0.03%

updated 2026-02-05T16:15:50.200000

1 posts

Tiny File Manager through 2.6 contains a server-side request forgery (SSRF) vulnerability in the URL upload feature. Due to insufficient validation of user-supplied URLs, an attacker can send crafted requests to localhost by using http://www.127.0.0.1.example.com/ or a similarly constructed domain name. This may lead to unauthorized port scanning or access to internal-only services.

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-46651/

thehackerwire@mastodon.social at 2026-02-05T00:31:43.000Z ##

🔴 CVE-2025-46651 - Critical (9.1)

Tiny File Manager through 2.6 contains a server-side request forgery (SSRF) vulnerability in the URL upload feature. Due to insufficient validation of user-supplied URLs, an attacker can send crafted requests to localhost by using http://www.127.0...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-71031
(7.5 HIGH)

EPSS: 0.04%

updated 2026-02-05T15:32:15

1 posts

updated 2026-02-05T15:16:06.870000

2 posts

A discrepancy between how Go and C/C++ comments were parsed allowed for code smuggling into the resulting cgo binary.

thehackerwire@mastodon.social at 2026-02-05T15:27:34.000Z ##

🟠 CVE-2025-61732 - High (8.6)

A discrepancy between how Go and C/C++ comments were parsed allowed for code smuggling into the resulting cgo binary.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-61732/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-05T15:17:04.000Z ##

🟠 CVE-2025-61732 - High (8.6)

A discrepancy between how Go and C/C++ comments were parsed allowed for code smuggling into the resulting cgo binary.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2025-61732/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-20098
(8.8 HIGH)

EPSS: 0.90%

updated 2026-02-05T14:57:34.297000

1 posts

updated 2026-02-05T14:57:20.563000

2 posts

melange allows users to build apk packages using declarative pipelines. From version 0.10.0 to before 0.40.3, an attacker who can influence inputs to the patch pipeline could execute arbitrary shell commands on the build host. The patch pipeline in pkg/build/pipelines/patch.yaml embeds input-derived values (series paths, patch filenames, and numeric parameters) into shell scripts without proper qu

thehackerwire@mastodon.social at 2026-02-04T20:28:24.000Z ##

🟠 CVE-2026-25143 - High (7.8)

melange allows users to build apk packages using declarative pipelines. From version 0.10.0 to before 0.40.3, an attacker who can influence inputs to the patch pipeline could execute arbitrary shell commands on the build host. The patch pipeline i...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25143/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-04T20:21:35.000Z ##

🟠 CVE-2026-25143 - High (7.8)

melange allows users to build apk packages using declarative pipelines. From version 0.10.0 to before 0.40.3, an attacker who can influence inputs to the patch pipeline could execute arbitrary shell commands on the build host. The patch pipeline i...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25143/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25161
(8.8 HIGH)

EPSS: 0.05%

updated 2026-02-05T14:57:20.563000

EPSS: 0.02%

updated 2026-02-04T21:56:26

2 posts

Two related vulnerabilities existed in the macOS application's SSH remote connection handling (`CommandResolver.swift`): ## Details The `sshNodeCommand` function constructed a shell script without properly escaping the user-supplied project path in an error message. When the `cd` command failed, the unescaped path was interpolated directly into an `echo` statement, allowing arbitrary command exe

thehackerwire@mastodon.social at 2026-02-04T20:28:34.000Z ##

🟠 CVE-2026-25157 - High (7.7)

OpenClaw is a personal AI assistant. Prior to version 2026.1.29, there is an OS command injection vulnerability via the Project Root Path in sshNodeCommand. The sshNodeCommand function constructed a shell script without properly escaping the user-...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25157/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-04T20:21:46.000Z ##

🟠 CVE-2026-25157 - High (7.7)

OpenClaw is a personal AI assistant. Prior to version 2026.1.29, there is an OS command injection vulnerability via the Project Root Path in sshNodeCommand. The sshNodeCommand function constructed a shell script without properly escaping the user-...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25157/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-24884
(8.4 HIGH)

EPSS: 0.02%

updated 2026-02-04T21:55:36

1 posts

updated 2026-02-04T21:30:30

1 posts

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeMove Unicamp unicamp allows PHP Local File Inclusion.This issue affects Unicamp: from n/a through <= 2.7.1.

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25027/

thehackerwire@mastodon.social at 2026-02-05T00:31:53.000Z ##

🟠 CVE-2026-25027 - High (7.5)

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeMove Unicamp unicamp allows PHP Local File Inclusion.This issue affects Unicamp: from n/a through <= 2.7.1.

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25049(CVSS UNKNOWN)

EPSS: 0.02%

updated 2026-02-04T21:09:38

8 posts

### Impact Additional exploits in the expression evaluation of n8n have been identified and patched following [CVE-2025-68613](https://github.com/n8n-io/n8n/security/advisories/GHSA-v98v-ff95-f3cp). An authenticated user with permission to create or modify workflows could abuse crafted expressions in workflow parameters to trigger unintended system command execution on the host running n8n. ###

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25049/

thehackerwire@mastodon.social at 2026-02-05T22:51:17.000Z ##

🔴 CVE-2026-25049 - Critical (9.9)

n8n is an open source workflow automation platform. Prior to versions 1.123.17 and 2.5.2, an authenticated user with permission to create or modify workflows could abuse crafted expressions in workflow parameters to trigger unintended system comma...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

jbhall56@infosec.exchange at 2026-02-05T14:32:30.000Z ##

Collectively tracked as CVE-2026-25049, the issues can be exploited by any authenticated user who can create or edit workflows on the platform to perform unrestricted remote code execution on the n8n server. https://www.bleepingcomputer.com/news/security/critical-n8n-flaws-disclosed-along-with-public-exploits/

##

technadu@infosec.exchange at 2026-02-05T11:35:21.000Z ##

CVE-2026-25049 highlights weaknesses in sandboxing user-defined JavaScript expressions within n8n workflows.

Multiple research teams demonstrated authenticated sandbox escape leading to unrestricted RCE, credential exposure, filesystem access, cloud pivoting, and AI workflow manipulation. The issue stems from incomplete AST-based sandboxing and runtime enforcement gaps.

Fixes have been released, and mitigation guidance includes updating, rotating secrets, and restricting workflow permissions.

Source: https://www.bleepingcomputer.com/news/security/critical-n8n-flaws-disclosed-along-with-public-exploits/

💬 What lessons does this case offer for securing automation platforms?

➕ Follow TechNadu for accurate, vendor-neutral infosec reporting.

#Infosec #CVE #n8n #SandboxEscape #RCE #CloudSecurity #DevSecOps

##

benzogaga33@mamot.fr at 2026-02-05T10:40:03.000Z ##

n8n : la faille critique CVE-2026-25049 réactive une précédente vulnérabilité https://www.it-connect.fr/n8n-cve-2026-25049-execution-code-a-distance/ #ActuCybersécurité #Cybersécurité #Vulnérabilité

##

christopherkunz@chaos.social at 2026-02-05T10:24:09.000Z ##

It seems that the recent #n8n CVE-2026-25049 is (EDIT: or was? My e-mail got answered with a generic response by an AI assistant) not only exploitable on self-hosted instances, but also in the n8n cloud. At least this is what the URL briefly visible in this video indicates. https://www.youtube.com/watch?v=QLrm7jx8kew (skip to 0:15 for a clear shot).

##

beyondmachines1@infosec.exchange at 2026-02-05T08:01:02.000Z ##

Critical Sandbox Escapes in n8n AI Platform Enable Full Server Takeover

n8n patched another critical sandbox escape vulnerabilities (CVE-2026-25049) that allow authenticated users to execute arbitrary code and steal sensitive AI and cloud credentials.

**This is another important and urgent flaw in n8n. Update your n8n instances to the latest version ASAP and rotate all stored API keys and encryption secrets. Since these flaws allow full server takeover, you must assume any credentials stored in an unpatched instance are already compromised.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-sandbox-escapes-in-n8n-ai-platform-enable-full-server-takeover-h-k-y-o-v/gD2P6Ple2L

##

_r_netsec@infosec.exchange at 2026-02-04T22:13:06.000Z ##

2026: New N8N RCE Deep Dive into CVE-2026-25049 https://blog.securelayer7.net/cve-2026-25049/

##

DarkWebInformer@infosec.exchange at 2026-02-04T21:23:57.000Z ##

‼️CVE-2026-25049: N8n AI Workflow Remote Code Execution

"This vulnerability allows an attacker to execute arbitrary system commands through misconfigured or insecure AI workflow execution paths. When chained correctly, it can lead to full server compromise depending on deployment configuration."

Video Credit: youtube.com/@SecureLayer7

##

CVE-2026-25052(CVSS UNKNOWN)

EPSS: 0.01%

updated 2026-02-04T19:53:39

1 posts

updated 2026-02-04T16:34:21.763000

3 posts

A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.

1 repos

https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-CVE-2026-1281-CVE-2026-1340?language=en_US

avuko@infosec.exchange at 2026-02-06T20:57:56.000Z ##

If you have Ivanti EPMM, please follow these instructions.

“Technical Analysis updated with reliable Indicators of Compromise (IoC’s). Both in partnership with NCSC-NL.”

The Dutchies are at it again!🤘🇳🇱

#EPMM #CVE20261281 #CVE20261340 #Ivanti #Cybersecurity #infosec #ioc

##

harrysintonen@infosec.exchange at 2026-02-05T14:45:24.000Z ##

This Ivanti Endpoint Manager Mobile (IPMM) security advisory seems to fit the timeline of the incident: https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-CVE-2026-1281-CVE-2026-1340?language=en_US

##

sambowne@infosec.exchange at 2026-02-04T20:47:51.000Z ##

Someone Knows Bash Far Too Well, And We Love It (Ivanti EPMM Pre-Auth RCEs CVE-2026-1281 and CVE-2026-1340) https://labs.watchtowr.com/someone-knows-bash-far-too-well-and-we-love-it-ivanti-epmm-pre-auth-rces-cve-2026-1281-cve-2026-1340/

##

CVE-2020-37088
(7.5 HIGH)

EPSS: 1.18%

updated 2026-02-04T16:33:44.537000

1 posts

School ERP Pro 1.0 contains a file disclosure vulnerability that allows unauthenticated attackers to read arbitrary files by manipulating the 'document' parameter in download.php. Attackers can access sensitive configuration files by supplying directory traversal paths to retrieve system credentials and configuration information.

secdb at 2026-02-09T00:01:00.893Z ##

📈 CVE Published in last 7 days (2026-02-02 - 2026-02-09)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs: 1178

Severity:
- Critical: 93
- High: 363
- Medium: 498
- Low: 65
- None: 159

Status:
- : 9
- Analyzed: 94
- Awaiting Analysis: 636
- Modified: 2
- Received: 139
- Rejected: 20
- Undergoing Analysis: 278

Top CNAs:
- GitHub, Inc.: 225
- VulnCheck: 149
- VulDB: 134
- kernel.org: 79
- Wordfence: 71
- MITRE: 64
- wikimedia-foundation: 47
- Patchstack: 45
- Tanium: 26
- TPLink: 25

Top Affected Products:
- UNKNOWN: 1071
- Samsung Exynos 850 Firmware: 10
- Tp-link Archer Be230 Firmware: 10
- Samsung Exynos 980 Firmware: 10
- Samsung Exynos W920 Firmware: 10
- Samsung Exynos W1000 Firmware: 10
- Samsung Exynos 1080 Firmware: 10
- Samsung Exynos W930 Firmware: 10
- Samsung Exynos 1480 Firmware: 9
- Mediatek Nr15: 9

##

CVE-2026-1802
(7.3 HIGH)

EPSS: 2.14%

updated 2026-02-04T16:33:44.537000

1 posts

A security flaw has been discovered in Ziroom ZHOME A0101 1.0.1.0. This issue affects the function macAddrClone of the file luci\controller\api\zrMacClone.lua. The manipulation of the argument macType results in command injection. The attack may be launched remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but di

1 repos

secdb at 2026-02-09T00:01:00.893Z ##

📈 CVE Published in last 7 days (2026-02-02 - 2026-02-09)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs: 1178

Severity:
- Critical: 93
- High: 363
- Medium: 498
- Low: 65
- None: 159

Status:
- : 9
- Analyzed: 94
- Awaiting Analysis: 636
- Modified: 2
- Received: 139
- Rejected: 20
- Undergoing Analysis: 278

Top CNAs:
- GitHub, Inc.: 225
- VulnCheck: 149
- VulDB: 134
- kernel.org: 79
- Wordfence: 71
- MITRE: 64
- wikimedia-foundation: 47
- Patchstack: 45
- Tanium: 26
- TPLink: 25

Top Affected Products:
- UNKNOWN: 1071
- Samsung Exynos 850 Firmware: 10
- Tp-link Archer Be230 Firmware: 10
- Samsung Exynos 980 Firmware: 10
- Samsung Exynos W920 Firmware: 10
- Samsung Exynos W1000 Firmware: 10
- Samsung Exynos 1080 Firmware: 10
- Samsung Exynos W930 Firmware: 10
- Samsung Exynos 1480 Firmware: 9
- Mediatek Nr15: 9

##

CVE-2025-40551
(9.8 CRITICAL)

EPSS: 54.99%

updated 2026-02-04T02:00:02.030000

2 posts

SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerability that could lead to remote code execution, which would allow an attacker to run commands on the host machine. This could be exploited without authentication.

youranonnewsirc@nerdculture.de at 2026-02-05T13:45:44.000Z ##

Here's a summary of the latest important global, technology, and cybersecurity news from the last 24 hours:

**Global:** The US and Russia's New START treaty expired February 5, raising nuclear stability concerns. Israeli airstrikes killed at least 21 Palestinians in Gaza on February 4.

**Technology:** Intel launched new AI chips to challenge Nvidia, and Microsoft/Apple expanded AI tools. SpaceX acquired xAI to advance orbital data centers on February 5. AI is now central to business, drawing half of global startup funding.

**Cybersecurity:** A ransomware group allegedly hit a US airport on February 4. CISA added an actively exploited SolarWinds RCE vulnerability (CVE-2025-40551) to its KEV catalog. Gartner outlined top 2026 cyber trends, including Agentic AI oversight and post-quantum computing.

##

jbhall56@infosec.exchange at 2026-02-05T13:39:42.000Z ##

The vulnerability under attack, CVE-2025-40551, is an untrusted deserialization flaw that can lead to remote code execution, allowing a remote, unauthenticated attacker to execute OS commands on the affected system. https://www.theregister.com/2026/02/04/critical_solarwinds_web_help_desk/

##

CVE-2020-37086
(6.2 MEDIUM)

EPSS: 1.19%

updated 2026-02-04T00:30:41

1 posts

Easy Transfer 1.7 iOS mobile application contains a directory traversal vulnerability that allows remote attackers to access unauthorized file system paths without authentication. Attackers can exploit the vulnerability by manipulating path parameters in GET and POST requests to list or download sensitive system files and inject malicious scripts into application parameters.

secdb at 2026-02-09T00:01:00.893Z ##

📈 CVE Published in last 7 days (2026-02-02 - 2026-02-09)
See more at https://secdb.nttzen.cloud/dashboard

EPSS: 0.02%

updated 2026-02-03T16:44:03.343000

2 posts

In mObywatel iOS application an unauthorized user can use the App Switcher to view the account owner's personal information in the minimized app window, even after the login session has ended (reopening the app would require the user to log in). The data exposed depends on the last application view displayed before the application was minimized This issue was fixed in version 4.71.0

1 repos

agnieszkaserafinowicz@imagazine.pl at 2026-02-08T19:00:15.000Z ##

Masz mObywatela na iPhone? Sprawdź wersję. CERT ostrzega przed „podglądaczem” w multitaskingu

To drobiazg, ale kluczowy dla prywatności. CERT Polska potwierdził podatność w rządowej aplikacji mObywatel na iOS. Jeśli nie zaktualizowałeś jej w ostatnich dniach, Twój PESEL może świecić z ekranu nawet po wyjściu z aplikacji.

O co chodzi?

Błąd oznaczony jako CVE-2025-11598 dotyczy mechanizmu App Switcher (przełączania aplikacji). Gdy minimalizujesz aplikację na iPhone (przesuwając palcem od dołu), system robi jej „zrzut ekranu”, by wyświetlić go na karcie podglądu. Dobre aplikacje bankowe (i rządowe) powinny w tym momencie automatycznie zamazywać ekran (blur), by nikt, kto weźmie Twój telefon do ręki i wejdzie w listę otwartych apek, nie zobaczył stanu konta czy danych dowodu.

Wersje mObywatela poniżej 4.71.0 tego nie robiły. Efekt? Nieuprawniona osoba mogła podejrzeć Twoje dane bez logowania, po prostu przeglądając otwarte w tle aplikacje. Oczywiście wymagało to i tak fizycznego dostępu do Twojego iPhone’a i odblokowanego ekranu, ale niemniej problem z bezpieczeństwem istniał.

Co zrobić?

Sprawa jest prosta: wejdź do App Store i upewnij się, że masz wersję 4.71.0 lub nowszą. Poprawka już tam jest. Ten błąd w starszej wersji mObywatela wykrył i przesłał ekipie CERT.pl Maciej Krakowiak z DSecure.me.

mObywatel wchodzi w 2026 rok z polskim AI

#aktualizacjaMObywatel #bezpieczeństwoIPhone #błądMObywatel #CERTPolska #CVE202511598 #mObywatelIOS ##

agnieszkaserafinowicz@imagazine.pl at 2026-02-08T19:00:15.000Z ##

Masz mObywatela na iPhone? Sprawdź wersję. CERT ostrzega przed „podglądaczem” w multitaskingu

To drobiazg, ale kluczowy dla prywatności. CERT Polska potwierdził podatność w rządowej aplikacji mObywatel na iOS. Jeśli nie zaktualizowałeś jej w ostatnich dniach, Twój PESEL może świecić z ekranu nawet po wyjściu z aplikacji.

O co chodzi?

Błąd oznaczony jako CVE-2025-11598 dotyczy mechanizmu App Switcher (przełączania aplikacji). Gdy minimalizujesz aplikację na iPhone (przesuwając palcem od dołu), system robi jej „zrzut ekranu”, by wyświetlić go na karcie podglądu. Dobre aplikacje bankowe (i rządowe) powinny w tym momencie automatycznie zamazywać ekran (blur), by nikt, kto weźmie Twój telefon do ręki i wejdzie w listę otwartych apek, nie zobaczył stanu konta czy danych dowodu.

Wersje mObywatela poniżej 4.71.0 tego nie robiły. Efekt? Nieuprawniona osoba mogła podejrzeć Twoje dane bez logowania, po prostu przeglądając otwarte w tle aplikacje. Oczywiście wymagało to i tak fizycznego dostępu do Twojego iPhone’a i odblokowanego ekranu, ale niemniej problem z bezpieczeństwem istniał.

Co zrobić?

Sprawa jest prosta: wejdź do App Store i upewnij się, że masz wersję 4.71.0 lub nowszą. Poprawka już tam jest. Ten błąd w starszej wersji mObywatela wykrył i przesłał ekipie CERT.pl Maciej Krakowiak z DSecure.me.

mObywatel wchodzi w 2026 rok z polskim AI

#aktualizacjaMObywatel #bezpieczeństwoIPhone #błądMObywatel #CERTPolska #CVE202511598 #mObywatelIOS ##

CVE-2026-23515
(10.0 CRITICAL)

EPSS: 1.21%

updated 2026-02-03T16:12:17

1 posts

### Summary A Command Injection vulnerability allows authenticated users with write permissions to execute arbitrary shell commands on the Signal K server when the set-system-time plugin is enabled. Unauthenticated users can also exploit this vulnerability if security is disabled on the Signal K server. This occurs due to unsafe construction of shell commands when processing `navigation.datetime`

secdb at 2026-02-09T00:01:00.893Z ##

📈 CVE Published in last 7 days (2026-02-02 - 2026-02-09)
See more at https://secdb.nttzen.cloud/dashboard

Total CVEs: 1178

Severity:
- Critical: 93
- High: 363
- Medium: 498
- Low: 65
- None: 159

Status:
- : 9
- Analyzed: 94
- Awaiting Analysis: 636
- Modified: 2
- Received: 139
- Rejected: 20
- Undergoing Analysis: 278

Top CNAs:
- GitHub, Inc.: 225
- VulnCheck: 149
- VulDB: 134
- kernel.org: 79
- Wordfence: 71
- MITRE: 64
- wikimedia-foundation: 47
- Patchstack: 45
- Tanium: 26
- TPLink: 25

Top Affected Products:
- UNKNOWN: 1071
- Samsung Exynos 850 Firmware: 10
- Tp-link Archer Be230 Firmware: 10
- Samsung Exynos 980 Firmware: 10
- Samsung Exynos W920 Firmware: 10
- Samsung Exynos W1000 Firmware: 10
- Samsung Exynos 1080 Firmware: 10
- Samsung Exynos W930 Firmware: 10
- Samsung Exynos 1480 Firmware: 9
- Mediatek Nr15: 9

##

CVE-2026-24061
(9.8 CRITICAL)

EPSS: 32.54%

updated 2026-01-30T13:28:59.293000

1 posts

telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable.

1 repos

https://www.synology.com/en-us/releaseNote/DSM?model=DS1821%2B#ver_86009-1

Infoseepage@mastodon.social at 2026-02-05T15:03:00.000Z ##

Here are the release notes from Synology, the CVE and some lay reporting on just how incredibly bad this bug is and how long it has lingered providing backdoor root level access to a really long list of devices running Telnet. So many routing/networking devices have Telnet access at least as an option which can be enabled to this day, despite this being an absolutely terrible idea.

https://www.cve.org/CVERecord?id=CVE-2026-24061

https://www.theregister.com/2026/01/22/root_telnet_bug/

##

CVE-2026-1281
(9.8 CRITICAL)

EPSS: 16.41%

updated 2026-01-30T13:28:18.610000

6 posts

A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.

1 repos

https://github.com/MehdiLeDeaut/CVE-2026-1281-Ivanti-EPMM-RCE

hrbrmstr@mastodon.social at 2026-02-09T07:39:07.000Z ##

Orgs that still daftly run Ivanti kit and didn't patch for CVE-2026-1281 (which is likely most b/c if you're still running Ivanti you have no idea how to do cyber or IT) are gonna have a really bad day today or later this week once they realize what happened to them over the weekend.

##

hrbrmstr@mastodon.social at 2026-02-09T07:39:07.000Z ##

Orgs that still daftly run Ivanti kit and didn't patch for CVE-2026-1281 (which is likely most b/c if you're still running Ivanti you have no idea how to do cyber or IT) are gonna have a really bad day today or later this week once they realize what happened to them over the weekend.

##

avuko@infosec.exchange at 2026-02-06T20:57:56.000Z ##

If you have Ivanti EPMM, please follow these instructions.

https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-CVE-2026-1281-CVE-2026-1340?language=en_US

“Technical Analysis updated with reliable Indicators of Compromise (IoC’s). Both in partnership with NCSC-NL.”

The Dutchies are at it again!🤘🇳🇱

#EPMM #CVE20261281 #CVE20261340 #Ivanti #Cybersecurity #infosec #ioc

##

harrysintonen@infosec.exchange at 2026-02-05T14:45:24.000Z ##

This Ivanti Endpoint Manager Mobile (IPMM) security advisory seems to fit the timeline of the incident: https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-CVE-2026-1281-CVE-2026-1340?language=en_US

##

cyberveille@mastobot.ping.moi at 2026-02-05T07:30:07.000Z ##

📢 NCSC NL alerte: exploitation active de la zero‑day Ivanti EPMM (CVE‑2026‑1281), assume‑breach requis
📝 Selon le NCSC (Pays-Bas), une mise à jour de son av...
📖 cyberveille : https://cyberveille.ch/posts/2026-02-05-ncsc-nl-alerte-exploitation-active-de-la-zero-day-ivanti-epmm-cve-2026-1281-assume-breach-requis/
🌐 source : https://www.ncsc.nl/waarschuwing/ncsc-roept-organisaties-op-zich-te-melden-bij-gebruik-van-ivanti-endpoint-manager
#CVE_2026_1281 #Ivanti_EPMM #Cyberveille

##

sambowne@infosec.exchange at 2026-02-04T20:47:51.000Z ##

Someone Knows Bash Far Too Well, And We Love It (Ivanti EPMM Pre-Auth RCEs CVE-2026-1281 and CVE-2026-1340) https://labs.watchtowr.com/someone-knows-bash-far-too-well-and-we-love-it-ivanti-epmm-pre-auth-rces-cve-2026-1281-cve-2026-1340/

##

CVE-2025-15467
(9.8 CRITICAL)

EPSS: 0.66%

updated 2026-01-29T15:31:31

3 posts

Issue summary: Parsing CMS AuthEnvelopedData message with maliciously crafted AEAD parameters can trigger a stack buffer overflow. Impact summary: A stack buffer overflow may lead to a crash, causing Denial of Service, or potentially remote code execution. When parsing CMS AuthEnvelopedData structures that use AEAD ciphers such as AES-GCM, the IV (Initialization Vector) encoded in the ASN.1 para

4 repos

https://github.com/MAXI8594/CVE-2025-15467_Scan

https://github.com/balgan/CVE-2025-15467

https://github.com/mr-r3b00t/CVE-2025-15467

https://github.com/guiimoraes/CVE-2025-15467

mastokukei@social.josko.org at 2026-02-09T09:02:20.000Z ##

studies warning vibe coding could threaten maintainer incentives and OSS funding.
- Passwordless/login security on Linux: passkeys/ WebAuthn in Linux; credentials-for-Linux talks.
- CI/CD tooling critique: GitHub Actions is slowly killing engineering teams; tooling UX debates (Xcode, VSCode, JetBrains).
- AWS Lambda base-image CVEs: CVE-2025-15467, CVE-2026-0989, CVE-2026-0992; calls for timely updates and hardened security. [2/2]

##

neverpanic@chaos.social at 2026-02-08T21:39:37.000Z ##

@gehrke_test "nginx proxy manager" klingt jetzt nicht danach als würde es CMS überhaupt benutzen, und falls doch, ist CVE-2025-15467 auf Platformen mit Stack Canaries (i.e., alles was nicht ranziges embedded Zeug ist) ein denial of service, kein RCE.

##

neverpanic@chaos.social at 2026-02-08T21:39:37.000Z ##

@gehrke_test "nginx proxy manager" klingt jetzt nicht danach als würde es CMS überhaupt benutzen, und falls doch, ist CVE-2025-15467 auf Platformen mit Stack Canaries (i.e., alles was nicht ranziges embedded Zeug ist) ein denial of service, kein RCE.

##

CVE-2026-21509
(7.8 HIGH)

EPSS: 2.91%

updated 2026-01-27T16:19:42.330000

7 posts

Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a security feature locally.

1 repos

https://undercodenews.com/extracting-hidden-urls-from-malicious-rtf-files-a-quick-guide/

threatcodex at 2026-02-09T15:59:15.818Z ##

APT28’s Stealthy Multi-Stage Campaign Leveraging CVE‑2026‑21509 and Cloud C2 Infrastructure
#APT28 #CVE_2026_21509
https://www.trellix.com/blogs/research/apt28-stealthy-campaign-leveraging-cve-2026-21509-cloud-c2/

##

undercodenews@mastodon.social at 2026-02-09T12:47:59.000Z ##

Extracting Hidden URLs from Malicious RTF Files: A Quick Guide

Malicious RTF (Rich Text Format) files are making headlines again, as cyber threat group APT28 exploits the newly disclosed CVE-2026-21509 vulnerability. Attackers are leveraging RTF documents disguised as Word files—like BULLETEN_H.doc and Consultation_Topics_Ukraine(Final).doc—to sneak malicious content past unsuspecting users. Despite the .doc extension, these files are genuine RTF documents, a common…

##

undercodenews@mastodon.social at 2026-02-09T04:10:33.000Z ##

APT28 Strikes NATO Targets in Lightning-Fast Microsoft Office Exploit Campaign

Introduction: A 24-Hour Window That Changed the Battlefield A familiar threat actor has once again demonstrated how quickly modern cyber-espionage can escalate. APT28, a well-known advanced persistent threat group, moved at exceptional speed to exploit a newly disclosed Microsoft Office vulnerability, CVE-2026-21509, launching a coordinated spear-phishing campaign against NATO-linked…

https://undercodenews.com/apt28-strikes-nato-targets-in-lightning-fast-microsoft-office-exploit-campaign/

##

threatcodex at 2026-02-08T19:25:11.407Z ##

How to detect CVE-2026-21509 exploits
#CVE_2026_21509
https://decalage.info/CVE-2026-21509/

##

decalage@mastodon.social at 2026-02-06T09:11:11.000Z ##

How can we detect malicious documents exploiting CVE-2026-21509, the recent 0-day vulnerability in MS Office ?
=> I designed a YARA rule for this, which detects all the malicious files that have been reported.
I also improved oletools to analyze those files and see the suspicious URLs.
You can find the YARA rule and all the explanations about that vulnerability on my website https://decalage.info/CVE-2026-21509/

##

hackmag@infosec.exchange at 2026-02-05T18:00:02.000Z ##

⚪ APT28 group exploits new vulnerability in Microsoft Office

🗨️ Just three days after Microsoft released an out-of-band patch for Office, the APT28 group began exploiting the CVE-2026-21509 vulnerability in attacks against Ukrainian and European organizations.

🔗 https://hackmag.com/news/cve-2026-21509-atp28?utm_source=mastodon&utm_medium=social&utm_campaign=repost_hackmag_to_socials

updated 2025-12-10T21:31:32

1 posts

A malicious actor can access camera configuration information, including account credentials, without authenticating when accessing a vulnerable URL.

beyondmachines1@infosec.exchange at 2026-02-06T13:01:02.000Z ##

Critical Authentication Bypass in D-Link, Securus, and Sparsh CCTV Cameras

A critical vulnerability (CVE-2025-13607) in D-Link, Securus, and Sparsh Securitech CCTV cameras allows unauthenticated remote attackers to steal account credentials and configuration data.

**As a general rule, make sure your CCTV cameras are not accessible from the internet. Check your CCTV inventory immediately for these models and apply the available firmware updates from D-Link and Securus. If you use Sparsh cameras or cannot patch, isolate these devices, and place them behind a VPN and consider replacement**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-authentication-bypass-in-d-link-securus-and-sparsh-cctv-cameras-a-g-i-n-p/gD2P6Ple2L

##

CVE-2025-66516(CVSS UNKNOWN)

EPSS: 2.61%

updated 2025-12-05T02:26:57

1 posts

Critical XXE in Apache Tika tika-core (1.13-3.2.1), tika-pdf-module (2.0.0-3.2.1) and tika-parsers (1.13-1.28.5) modules on all platforms allows an attacker to carry out XML External Entity injection via a crafted XFA file inside of a PDF. This CVE covers the same vulnerability as in CVE-2025-54988. However, this CVE expands the scope of affected packages in two ways. First, while the entrypoi

https://github.com/yunatamos/Blackash-CVE-2025-66516

4 repos

https://github.com/intSheep/Tika-CVE-2025-66516-Lab

https://github.com/sid6224/CVE-2025-66516-POC

https://github.com/chasingimpact/CVE-2025-66516-Writeup-POC

rombert@fosstodon.org at 2026-02-09T13:12:39.000Z ##

The #ApacheSling project has published an advisory regarding CVE-2025-66516 https://sling.apache.org/security/CVE-2025-66516.html

#Apache

##

CVE-2025-26399
(9.8 CRITICAL)

EPSS: 12.86%

updated 2025-11-14T23:41:16.280000

4 posts

SolarWinds Web Help Desk was found to be susceptible to an unauthenticated AjaxProxy deserialization remote code execution vulnerability that, if exploited, would allow an attacker to run commands on the host machine. This vulnerability is a patch bypass of CVE-2024-28988, which in turn is a patch bypass of CVE-2024-28986.

1 repos

https://github.com/rxerium/CVE-2025-26399

AAKL at 2026-02-09T16:44:21.438Z ##

From yesterday.

Huntress: Active Exploitation of SolarWinds Web Help Desk https://www.huntress.com/blog/active-exploitation-solarwinds-web-help-desk-cve-2025-26399 @huntress #infosec #SolarWinds #vulnerability #threatresearch

##

huntress at 2026-02-09T02:49:47.741Z ##

Hat tip to @JohnHammond @gleeda @russianpanda9xx et al

https://www.huntress.com/blog/active-exploitation-solarwinds-web-help-desk-cve-2025-26399

##

AAKL@infosec.exchange at 2026-02-09T16:44:21.000Z ##

From yesterday.

Huntress: Active Exploitation of SolarWinds Web Help Desk https://www.huntress.com/blog/active-exploitation-solarwinds-web-help-desk-cve-2025-26399 @huntress #infosec #SolarWinds #vulnerability #threatresearch

##

huntress@infosec.exchange at 2026-02-09T02:49:47.000Z ##

Hat tip to @JohnHammond @gleeda @russianpanda9xx et al

https://www.huntress.com/blog/active-exploitation-solarwinds-web-help-desk-cve-2025-26399

##

CVE-2024-3596
(9.0 CRITICAL)

EPSS: 23.85%

updated 2025-11-04T18:16:31.367000

2 posts

RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature.

1 repos

https://github.com/alperenugurlu/CVE-2024-3596-Detector

beyondmachines1@infosec.exchange at 2026-02-06T11:01:02.000Z ##

Hitachi Energy Patches a Blast-RADIUS Flaw in FOX61x

Hitachi Energy patched the Blast-RADIUS vulnerability (CVE-2024-3596) in FOX61x industrial communication devices that allows attackers to bypass RADIUS authentication using MD5 forgery.

**First, make sure your industrial network is isolated from the internet and accessible only from trusted networks. Then plan a patch for your Hitachi FOX61x devices and your RADIUS servers.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/hitachi-energy-patches-a-blast-radius-flaw-in-fox61x-e-l-1-s-p/gD2P6Ple2L

##

beyondmachines1@infosec.exchange at 2026-02-06T10:01:02.000Z ##

Hitachi Energy Patches Critical Blast-RADIUS Vulnerability in XMC20 Industrial Platforms

Hitachi Energy patched the Blast-RADIUS vulnerability (CVE-2024-3596) in XMC20 industrial communication devices that allows attackers to bypass RADIUS authentication using MD5 forgery.

**First, make sure your industrial network is isolated from the internet and accessible only from trusted networks. Then plan a patch for your Hitachi XMC20 devices and your RADIUS servers.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/hitachi-energy-addresses-critical-blast-radius-vulnerability-in-xmc20-industrial-platforms-p-b-u-t-a/gD2P6Ple2L

##

CVE-2024-42318
(5.5 MEDIUM)

EPSS: 0.01%

updated 2025-11-04T00:31:15

1 posts

In the Linux kernel, the following vulnerability has been resolved: landlock: Don't lose track of restrictions on cred_transfer When a process' cred struct is replaced, this _almost_ always invokes the cred_prepare LSM hook; but in one special case (when KEYCTL_SESSION_TO_PARENT updates the parent's credentials), the cred_transfer LSM hook is used instead. Landlock only implements the cred_prep

alip@mastodon.online at 2026-02-05T20:44:32.000Z ##

To compare #sydbox and #gvisor, take 2 CVEs: CVE-2018-19333, gvisor proc2proc arbitrary-memory-write which wasn't classified as sandbox break. Vuln is there because gvisor uses the seccomp-trap API to run all in a single process ignoring ASLR.. CVE-2024-42318 aka Houdini is a #landlock break where a keyrings(7) call would unlock the sandbox. Syd wasn't affected: 1. keyrings is def disabled 2. open call happens in a syd emulator thread confined by same landlock sandbox. #exherbo #linux #security

##

CVE-2025-22225
(8.2 HIGH)

EPSS: 5.41%

updated 2025-10-30T19:52:45.300000

4 posts

VMware ESXi contains an arbitrary write vulnerability. A malicious actor with privileges within the VMX process may trigger an arbitrary kernel write leading to an escape of the sandbox.

youranonnewsirc@nerdculture.de at 2026-02-09T07:45:46.000Z ##

Here's a summary of recent important global, technology, and cybersecurity news:

**Global:**
US-Iran talks continued, with the US demanding nuclear concessions (Feb 7). Italy thwarted suspected Russian cyberattacks targeting government and Olympic-linked websites (Feb 6).

**Technology:**
Big Tech firms (Amazon, Alphabet, Meta, Microsoft) are committing $650B to AI infrastructure in 2026. OpenAI launched Frontier, an enterprise AI agent platform (Feb 6). Intel and AMD warned China of server CPU shortages, citing AI demand and US export rules (Feb 6).

**Cybersecurity:**
CISA ordered US federal agencies to remove unsupported edge network devices to reduce risk (Feb 6). Ransomware groups are actively exploiting a critical VMware ESXi flaw (CVE-2025-22225) (Feb 6). Global cybersecurity laws are tightening, mandating rapid incident reporting (Feb 7).

##

youranonnewsirc@nerdculture.de at 2026-02-09T07:45:46.000Z ##

Here's a summary of recent important global, technology, and cybersecurity news:

**Global:**
US-Iran talks continued, with the US demanding nuclear concessions (Feb 7). Italy thwarted suspected Russian cyberattacks targeting government and Olympic-linked websites (Feb 6).

**Technology:**
Big Tech firms (Amazon, Alphabet, Meta, Microsoft) are committing $650B to AI infrastructure in 2026. OpenAI launched Frontier, an enterprise AI agent platform (Feb 6). Intel and AMD warned China of server CPU shortages, citing AI demand and US export rules (Feb 6).

**Cybersecurity:**
CISA ordered US federal agencies to remove unsupported edge network devices to reduce risk (Feb 6). Ransomware groups are actively exploiting a critical VMware ESXi flaw (CVE-2025-22225) (Feb 6). Global cybersecurity laws are tightening, mandating rapid incident reporting (Feb 7).

https://github.com/pescada-dev/-CVE-2025-8088

##

beyondmachines1@infosec.exchange at 2026-02-06T12:01:03.000Z ##

CISA Reports Actively Exploited VMware ESXi Flaw in Ransomware Campaigns

CISA reports active exploitation of VMware ESXi flaw (CVE-2025-22225) after reports of ransomware gangs using sandbox escape techniques to compromise hypervisors and encrypt virtual disks.

**If you are using VMware ESXi, Fusion, Workstation, Cloud Foundation or Telco Cloud, and have not patched them since March 2025, this is now URGENT. Not only you are actively hacked, now regulators mandate urgent patching. So start patching.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/cisa-reports-actively-exploited-vmware-esxi-flaw-in-ransomware-campaigns-9-6-2-3-k/gD2P6Ple2L

##

jbhall56@infosec.exchange at 2026-02-05T13:37:23.000Z ##

Broadcom patched this ESXi arbitrary-write vulnerability (tracked as CVE-2025-22225) almost one year ago, in March 2025, alongside a memory leak (CVE-2025-22226) and a TOCTOU flaw (CVE-2025-22224), and tagged them all as actively exploited zero-days. https://www.bleepingcomputer.com/news/security/cisa-vmware-esxi-flaw-now-exploited-in-ransomware-attacks/

##

CVE-2025-8088
(8.8 HIGH)

EPSS: 3.90%

updated 2025-10-30T15:50:59.680000

1 posts

A path traversal vulnerability affecting the Windows version of WinRAR allows the attackers to execute arbitrary code by crafting malicious archive files. This vulnerability was exploited in the wild and was discovered by Anton Cherepanov, Peter Košinár, and Peter Strýček from ESET.

27 repos

https://github.com/hbesljx/CVE-2025-8088-EXP

https://github.com/Shinkirou789/Cve-2025-8088-WinRar-vulnerability

https://github.com/knight0x07/WinRAR-CVE-2025-8088-PoC-RAR

https://github.com/walidpyh/CVE-2025-8088

https://github.com/pentestfunctions/best-CVE-2025-8088

https://github.com/xi0onamdev/WinRAR-CVE-2025-8088-Exploitation-Toolkit

https://github.com/ilhamrzr/RAR-Anomaly-Inspector

https://github.com/pexlexity/WinRAR-CVE-2025-8088-Path-Traversal-PoC

https://github.com/0xAbolfazl/CVE-2025-8088-WinRAR-PathTraversal-PoC

https://github.com/DeepBlue-dot/CVE-2025-8088-WinRAR-Startup-PoC

https://github.com/pentestfunctions/CVE-2025-8088-Multi-Document

https://github.com/onlytoxi/CVE-2025-8088-Winrar-Tool

https://github.com/kitsuneshade/WinRAR-Exploit-Tool---Rust-Edition

https://github.com/Markusino488/cve-2025-8088

https://github.com/sxyrxyy/CVE-2025-8088-WinRAR-Proof-of-Concept-PoC-Exploit-

https://github.com/papcaii2004/CVE-2025-8088-WinRAR-builder

https://github.com/AdityaBhatt3010/CVE-2025-8088-WinRAR-Zero-Day-Path-Traversal

https://github.com/hexsecteam/CVE-2025-8088-Winrar-Tool

https://github.com/Syrins/CVE-2025-8088-Winrar-Tool-Gui

https://github.com/techcorp/CVE-2025-8088-Exploit

https://github.com/lucyna77/winrar-exploit

https://github.com/jordan922/CVE-2025-8088

https://github.com/ghostn4444/CVE-2025-8088

https://github.com/travisbgreen/cve-2025-8088

https://github.com/nhattanhh/CVE-2025-8088

https://github.com/nuky-alt/CVE-2025-8088

hackerworkspace@infosec.exchange at 2026-02-05T06:26:28.000Z ##

Amaranth-Dragon: Weaponizing CVE-2025-8088 for Targeted Espionage in the Southeast Asia - Check Point Research

https://research.checkpoint.com/2026/amaranth-dragon-weaponizes-cve-2025-8088-for-targeted-espionage/

#cybersecurity #vulnerability #espionage

##

CVE-2025-6978
(7.2 HIGH)

EPSS: 0.24%

updated 2025-10-23T21:31:50

1 posts

Diagnostics command injection vulnerability

thezdi@infosec.exchange at 2026-02-05T16:49:52.000Z ##

CVE-2025-6978: Arbitrary Code Execution in the #Arista NG Firewall - our researchers took a deep dive into this recently patched RCE to provide root cause and detection guidance. Read all the details at https://www.zerodayinitiative.com/blog/2026/2/4/cve-2025-6978-arbitrary-code-execution-in-the-arista-ng-firewall

##

CVE-2017-12615
(8.1 HIGH)

EPSS: 94.22%

updated 2025-10-22T17:31:15

1 posts

When running Apache Tomcat 7.0.0 to 7.0.79 on Windows with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default to false) it was possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it contained would be executed by the server.

https://github.com/Fa1c0n35/CVE-2017-12615

18 repos

https://github.com/w0x68y/CVE-2017-12615-EXP

https://github.com/lizhianyuguangming/TomcatScanPro

https://github.com/BeyondCy/CVE-2017-12615

https://github.com/mefulton/cve-2017-12615

https://github.com/tpt11fb/AttackTomcat

https://github.com/xiaokp7/Tomcat_PUT_GUI_EXP

https://github.com/cved-sources/cve-2017-12615

https://github.com/wudidwo/CVE-2017-12615-poc

https://github.com/ianxtianxt/CVE-2017-12615

https://github.com/cyberharsh/Tomcat-CVE-2017-12615

https://github.com/edyekomu/CVE-2017-12615-PoC

https://github.com/Shellkeys/CVE-2017-12615

https://github.com/netw0rk7/CVE-2017-12615-Home-Lab

https://github.com/1337g/CVE-2017-12615

https://github.com/breaktoprotect/CVE-2017-12615

https://github.com/zi0Black/POC-CVE-2017-12615-or-CVE-2017-12717

https://github.com/wsg00d/cve-2017-12615

hrbrmstr@mastodon.social at 2026-02-07T07:56:43.000Z ##

Apache Tomcat is far and away the most likely intended target given port 8080 and the Java exception body content. The DefaultServlet with readonly=false in web.xml is the textbook case (CVE-2017-12615, CVE-2017-12617). Eclipse Jetty can also expose similar behavior if its DefaultServlet or WebDAV module is configured to allow PUT writes. Apache TomEE, being Tomcat-based with Jakarta EE extensions, inherits all of the same misconfigurations. (5/15)

##

CVE-2025-22226
(7.1 HIGH)

EPSS: 6.02%

updated 2025-10-22T00:33:13

1 posts

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. A malicious actor with administrative privileges to a virtual machine may be able to exploit this issue to leak memory from the vmx process.

jbhall56@infosec.exchange at 2026-02-05T13:37:23.000Z ##

Broadcom patched this ESXi arbitrary-write vulnerability (tracked as CVE-2025-22225) almost one year ago, in March 2025, alongside a memory leak (CVE-2025-22226) and a TOCTOU flaw (CVE-2025-22224), and tagged them all as actively exploited zero-days. https://www.bleepingcomputer.com/news/security/cisa-vmware-esxi-flaw-now-exploited-in-ransomware-attacks/

##

CVE-2017-12617
(8.1 HIGH)

EPSS: 94.36%

updated 2025-10-22T00:16:04.407000

1 posts

When running Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to 8.5.22, 8.0.0.RC1 to 8.0.46 and 7.0.0 to 7.0.81 with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default servlet to false) it was possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it contained would be executed by the server.

https://github.com/TheRealCiscoo/Tomcat_CVE201712617

13 repos

https://github.com/K3ysTr0K3R/CVE-2017-12617-EXPLOIT

https://github.com/jptr218/tc_hack

https://github.com/LongWayHomie/CVE-2017-12617

https://github.com/devcoinfet/CVE-2017-12617

https://github.com/qiantu88/CVE-2017-12617

https://github.com/ygouzerh/CVE-2017-12617

https://github.com/scirusvulgaris/CVE-2017-12617

https://github.com/yZee00/CVE-2017-12617

https://github.com/tyranteye666/tomcat-cve-2017-12617

https://github.com/cyberheartmi9/CVE-2017-12617

https://github.com/zi0Black/POC-CVE-2017-12615-or-CVE-2017-12717

https://github.com/DevaDJ/CVE-2017-12617

hrbrmstr@mastodon.social at 2026-02-07T07:56:43.000Z ##

Apache Tomcat is far and away the most likely intended target given port 8080 and the Java exception body content. The DefaultServlet with readonly=false in web.xml is the textbook case (CVE-2017-12615, CVE-2017-12617). Eclipse Jetty can also expose similar behavior if its DefaultServlet or WebDAV module is configured to allow PUT writes. Apache TomEE, being Tomcat-based with Jakarta EE extensions, inherits all of the same misconfigurations. (5/15)

##

CVE-2025-49825
(9.8 CRITICAL)

EPSS: 11.53%

updated 2025-06-18T13:46:52.973000

1 posts

Teleport provides connectivity, authentication, access controls and audit for infrastructure. Community Edition versions before and including 17.5.1 are vulnerable to remote authentication bypass. At time of posting, there is no available open-source patch.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2202/

sambowne@infosec.exchange at 2026-02-04T20:41:49.000Z ##

Exploiting CVE-2025-49825 - authentication bypass vulnerability in Teleport https://blog.offensive.af/posts/exploiting-cve-2025-49825/

##

CVE-2025-1920
(8.8 HIGH)

EPSS: 0.15%

updated 2025-04-07T18:54:46.053000

1 posts

Type Confusion in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

linux@activitypub.awakari.com at 2026-02-05T23:27:17.000Z ## Google’s Quiet Fix: Inside the Critical Chrome Vulnerability That Put Billions of Users at Risk Google's latest Chrome update patches 14 vulnerabilities, including a critical V8 heap corrupti...

#SecurityProNews #browser #security #2025 #Chrome #critical #patch #CVE-2025-1920 #Google #Chrome #security

Origin | Interest | Match ##

CVE-2018-19333
(9.8 CRITICAL)

2 posts

N/A

thehackerwire@mastodon.social at 2026-02-09T03:17:06.000Z ##

🟠 CVE-2026-2202 - High (8.8)

A vulnerability was detected in Tenda AC8 16.03.33.05. Affected is the function fromSetWifiGusetBasic of the file /goform/WifiGuestSet of the component httpd. The manipulation of the argument shareSpeed results in buffer overflow. The attack may b...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-09T03:17:06.000Z ##

🟠 CVE-2026-2202 - High (8.8)

A vulnerability was detected in Tenda AC8 16.03.33.05. Affected is the function fromSetWifiGusetBasic of the file /goform/WifiGuestSet of the component httpd. The manipulation of the argument shareSpeed results in buffer overflow. The attack may b...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2202/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2187
(0 None)

EPSS: 0.05%

2 posts

N/A

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2187/

thehackerwire@mastodon.social at 2026-02-08T21:16:29.000Z ##

🟠 CVE-2026-2187 - High (8.8)

A vulnerability was found in Tenda RX3 16.03.13.11. The affected element is the function set_qosMib_list of the file /goform/formSetQosBand. Performing a manipulation of the argument list results in stack-based buffer overflow. It is possible to i...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-08T21:16:29.000Z ##

🟠 CVE-2026-2187 - High (8.8)

A vulnerability was found in Tenda RX3 16.03.13.11. The affected element is the function set_qosMib_list of the file /goform/formSetQosBand. Performing a manipulation of the argument list results in stack-based buffer overflow. It is possible to i...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2187/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2185
(0 None)

EPSS: 0.05%

3 posts

N/A

1 repos

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2185/

thehackerwire@mastodon.social at 2026-02-08T21:16:07.000Z ##

🟠 CVE-2026-2185 - High (8.8)

A flaw has been found in Tenda RX3 16.03.13.11. This issue affects the function set_device_name of the file /goform/setBlackRule of the component MAC Filtering Configuration Endpoint. This manipulation of the argument devName/mac causes stack-base...

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

offseq at 2026-02-08T21:00:13.820Z ##

🚨 HIGH severity: Stack-based buffer overflow in Tenda RX3 (16.03.13.11) — CVE-2026-2185. Remote exploitation possible via MAC Filtering config. Public exploit released. Monitor and segment affected devices! https://radar.offseq.com/threat/cve-2026-2185-stack-based-buffer-overflow-in-tenda-5922d2b2 #OffSeq #Vulnerability #Infosec

##

thehackerwire@mastodon.social at 2026-02-08T21:16:07.000Z ##

🟠 CVE-2026-2185 - High (8.8)

A flaw has been found in Tenda RX3 16.03.13.11. This issue affects the function set_device_name of the file /goform/setBlackRule of the component MAC Filtering Configuration Endpoint. This manipulation of the argument devName/mac causes stack-base...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2185/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2175
(0 None)

EPSS: 0.19%

1 posts

N/A

offseq at 2026-02-08T19:30:17.531Z ##

🛡️ CVE-2026-2175: HIGH severity OS command injection in D-Link DIR-823X (v250416) via /goform/set_upnp. No auth needed; public exploit out. Patch ASAP or disable UPnP & segment networks. https://radar.offseq.com/threat/cve-2026-2175-os-command-injection-in-d-link-dir-8-2593454d #OffSeq #DLink #Vuln #RouterAlert

##

EPSS: 0.05%

2 posts

N/A

thehackerwire@mastodon.social at 2026-02-06T22:20:57.000Z ##

🔴 CVE-2026-25544 - Critical (9.8)

Payload is a free and open source headless content management system. Prior to 3.73.0, when querying JSON or richText fields, user input was directly embedded into SQL without escaping, enabling blind SQL injection attacks. An unauthenticated atta...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25544/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-06T22:16:42.000Z ##

🔴 CVE-2026-25544 - Critical (9.8)

Payload is a free and open source headless content management system. Prior to 3.73.0, when querying JSON or richText fields, user input was directly embedded into SQL without escaping, enabling blind SQL injection attacks. An unauthenticated atta...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25544/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2068
(0 None)

EPSS: 0.04%

1 posts

N/A

thehackerwire@mastodon.social at 2026-02-06T22:16:36.000Z ##

🟠 CVE-2026-2068 - High (8.8)

A vulnerability was detected in UTT 进取 520W 1.7.7-180627. This issue affects the function strcpy of the file /goform/formSyslogConf. The manipulation of the argument ServerIp results in buffer overflow. The attack may be launched remotely. The...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2068/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25636
(0 None)

EPSS: 0.01%

3 posts

N/A

thehackerwire@mastodon.social at 2026-02-06T21:57:14.000Z ##

🟠 CVE-2026-25636 - High (8.2)

calibre is an e-book manager. In 9.1.0 and earlier, a path traversal vulnerability in Calibre's EPUB conversion allows a malicious EPUB file to corrupt arbitrary existing files writable by the Calibre process. During conversion, Calibre resolves C...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25636/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-06T21:21:17.000Z ##

🟠 CVE-2026-25636 - High (8.2)

calibre is an e-book manager. In 9.1.0 and earlier, a path traversal vulnerability in Calibre's EPUB conversion allows a malicious EPUB file to corrupt arbitrary existing files writable by the Calibre process. During conversion, Calibre resolves C...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25636/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-06T21:18:28.000Z ##

🟠 CVE-2026-25636 - High (8.2)

calibre is an e-book manager. In 9.1.0 and earlier, a path traversal vulnerability in Calibre's EPUB conversion allows a malicious EPUB file to corrupt arbitrary existing files writable by the Calibre process. During conversion, Calibre resolves C...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25636/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25634
(0 None)

EPSS: 0.01%

3 posts

N/A

thehackerwire@mastodon.social at 2026-02-06T21:56:53.000Z ##

🟠 CVE-2026-25634 - High (7.8)

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to 2.3.1.4, SrcPixel and DestPixel stack buffers overlap in CIccTagMultiProcessElement::Apply() int ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25634/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-06T21:20:57.000Z ##

🟠 CVE-2026-25634 - High (7.8)

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to 2.3.1.4, SrcPixel and DestPixel stack buffers overlap in CIccTagMultiProcessElement::Apply() int ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25634/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-06T21:17:58.000Z ##

🟠 CVE-2026-25634 - High (7.8)

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to 2.3.1.4, SrcPixel and DestPixel stack buffers overlap in CIccTagMultiProcessElement::Apply() int ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25634/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25632
(0 None)

EPSS: 0.11%

2 posts

N/A

thehackerwire@mastodon.social at 2026-02-06T21:20:02.000Z ##

🔴 CVE-2026-25632 - Critical (10)

EPyT-Flow is a Python package designed for the easy generation of hydraulic and water quality scenario data of water distribution networks. Prior to 0.16.1, EPyT-Flow’s REST API parses attacker-controlled JSON request bodies using a custom deser...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25632/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-06T21:17:54.000Z ##

🔴 CVE-2026-25632 - Critical (10)

EPyT-Flow is a Python package designed for the easy generation of hydraulic and water quality scenario data of water distribution networks. Prior to 0.16.1, EPyT-Flow’s REST API parses attacker-controlled JSON request bodies using a custom deser...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25632/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-2067
(0 None)

EPSS: 0.04%

2 posts

N/A

thehackerwire@mastodon.social at 2026-02-06T21:18:35.000Z ##

🟠 CVE-2026-2067 - High (8.8)

A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. This vulnerability affects the function strcpy of the file /goform/formTimeGroupConfig. The manipulation of the argument year1 leads to buffer overflow. The attack may be ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2067/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-06T21:17:45.000Z ##

🟠 CVE-2026-2067 - High (8.8)

A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. This vulnerability affects the function strcpy of the file /goform/formTimeGroupConfig. The manipulation of the argument year1 leads to buffer overflow. The attack may be ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-2067/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25587
(0 None)

EPSS: 0.05%

1 posts

N/A

thehackerwire@mastodon.social at 2026-02-06T20:18:07.000Z ##

🔴 CVE-2026-25587 - Critical (10)

SandboxJS is a JavaScript sandboxing library. Prior to 0.8.29, as Map is in SAFE_PROTOYPES, it's prototype can be obtained via Map.prototype. By overwriting Map.prototype.has the sandbox can be escaped. This vulnerability is fixed in 0.8.29.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25587/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-13523
(0 None)

EPSS: 0.01%

1 posts

N/A

1 posts

N/A

1 repos

https://github.com/stephaniesahnihi/CVE-2026-24300

thehackerwire@mastodon.social at 2026-02-05T23:17:53.000Z ##

🔴 CVE-2026-24300 - Critical (9.8)

Azure Front Door Elevation of Privilege Vulnerability

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-24300/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25053
(0 None)

EPSS: 0.02%

1 posts

N/A

thehackerwire@mastodon.social at 2026-02-05T22:01:06.000Z ##

🔴 CVE-2026-25053 - Critical (9.9)

n8n is an open source workflow automation platform. Prior to versions 1.123.10 and 2.5.0, vulnerabilities in the Git node allowed authenticated users with permission to create or modify workflows to execute arbitrary system commands or read arbitr...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25053/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2025-68722
(0 None)

EPSS: 0.03%

1 posts

N/A

1 posts

N/A

jbhall56@infosec.exchange at 2026-02-05T13:37:23.000Z ##

Broadcom patched this ESXi arbitrary-write vulnerability (tracked as CVE-2025-22225) almost one year ago, in March 2025, alongside a memory leak (CVE-2025-22226) and a TOCTOU flaw (CVE-2025-22224), and tagged them all as actively exploited zero-days. https://www.bleepingcomputer.com/news/security/cisa-vmware-esxi-flaw-now-exploited-in-ransomware-attacks/

##

CVE-2025-61506
(0 None)

EPSS: 0.12%

1 posts

N/A

2 posts

N/A

thehackerwire@mastodon.social at 2026-02-04T21:23:32.000Z ##

🟠 CVE-2026-25519 - High (8.1)

OpenSlides is a free, web based presentation and assembly system for managing and projecting agenda, motions and elections of an assembly. Prior to version 4.2.29, OpenSlides supports local logins with username and password or an optionally config...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25519/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-04T21:16:37.000Z ##

🟠 CVE-2026-25519 - High (8.1)

OpenSlides is a free, web based presentation and assembly system for managing and projecting agenda, motions and elections of an assembly. Prior to version 4.2.29, OpenSlides supports local logins with username and password or an optionally config...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25519/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-25160
(0 None)

EPSS: 0.01%

2 posts

N/A

thehackerwire@mastodon.social at 2026-02-04T20:28:43.000Z ##

🔴 CVE-2026-25160 - Critical (9.1)

Alist is a file list program that supports multiple storages, powered by Gin and Solidjs. Prior to version 3.57.0, the application disables TLS certificate verification by default for all outgoing storage driver communications, making the system v...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25160/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

thehackerwire@mastodon.social at 2026-02-04T20:21:56.000Z ##

🔴 CVE-2026-25160 - Critical (9.1)

Alist is a file list program that supports multiple storages, powered by Gin and Solidjs. Prior to version 3.57.0, the application disables TLS certificate verification by default for all outgoing storage driver communications, making the system v...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-25160/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

##

CVE-2026-24843
(0 None)

EPSS: 0.02%

1 posts

N/A

1 repos