Aggregator

A vulnerability, which was classified as critical, has been found in Red Hat Ansible Automation Platform 2. Affected is the function do_git_checkout of the component Legacy Role Import API. Performing a manipulation results in os command injection. This vulnerability is reported as CVE-2026-12398. The attack is possible to be carried out remotely. No exploit exists.

A vulnerability has been found in Eyal Fitoussi GEO my WordPress Plugin up to 4.5.5 on WordPress and classified as critical. This affects an unknown function. This manipulation causes sql injection. The identification of this vulnerability is CVE-2026-52715. It is possible to initiate the attack remotely. There is no exploit available.

The concept of the IOC — the Indicator of Compromise — sits at the operational heart of modern threat detection. Block the IP. Flag the domain. Quarantine the hash. The logic is clean and satisfying. But embedded in every IOC is an invisible timestamp that most detection pipelines never read.  Intelligence ages. It decays. And […]

The post The Half-Life of Threat Intelligence: When Does an IOC Stop Being Useful?  appeared first on Cyber Security News.

Threat actors are actively exploiting multiple critical vulnerabilities in Fortinet’s FortiSandbox platform, with live attack telemetry confirming exploitation attempts over the past 24 hours. Defused has flagged three CVEs under active targeting — including one, CVE-2026-39813, with no previously recorded exploitation history. Honeypot sensors and deception infrastructure disguised as Fortinet FortiSandbox instances have captured exploitation […]

The post Critical Fortinet FortiSandbox Vulnerabilities Actively Exploited in Attacks appeared first on Cyber Security News.

Пентагон внезапно понял, что спутники могут сбить, и срочно ищет план «Б».

A vulnerability categorized as critical has been discovered in Rizin up to 0.4.0. This issue affects the function rz_bin_reloc_storage_free of the file bobj.c of the component qnx Binary Plugin. Such manipulation leads to double free. This vulnerability is uniquely identified as CVE-2022-36043. The attack can be launched remotely. No exploit exists. Applying a patch is advised to resolve this issue.

A vulnerability was found in Rizin up to 0.4.0. It has been declared as critical. This impacts an unknown function of the component PYC File Handler. Such manipulation leads to out-of-bounds write. This vulnerability is referenced as CVE-2022-36040. It is possible to launch the attack remotely. No exploit is available. Applying a patch is advised to resolve this issue.

A vulnerability was found in Rizin up to 0.4.0 and classified as critical. This affects an unknown function of the component dyld Cache File Handler. Such manipulation leads to out-of-bounds write. This vulnerability is traded as CVE-2022-36042. The attack may be launched remotely. There is no exploit available. It is best practice to apply a patch to resolve this issue.

A vulnerability was found in Rizin up to 0.4.0. It has been classified as critical. This impacts an unknown function of the component Mach-O File Handler. Performing a manipulation results in out-of-bounds write. This vulnerability is known as CVE-2022-36041. Remote exploitation of the attack is possible. No exploit is available. It is recommended to apply a patch to fix this issue.

Amos Stealer targets macOS users through fake downloads, stealing Keychain files, browser passwords, cookies, and developer configs for data theft.

A vulnerability has been found in Linux Kernel up to 6.6.129/6.12.76/6.18.16/6.19.6/7.0-rc2 and classified as problematic. This issue affects the function eqbr_irq_mask in the library drivers/gpio/gpiolib.c. The manipulation leads to privilege escalation. This vulnerability is uniquely identified as CVE-2026-23308. The attack can only be initiated within the local network. No exploit exists. The affected component should be upgraded.

A vulnerability classified as critical was found in Linux Kernel up to 7.0-rc2. Affected is the function ems_usb_read_bulk_callback. Such manipulation leads to buffer overflow. This vulnerability is documented as CVE-2026-23307. The attack requires being on the local network. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability was found in Linux Kernel up to 7.0-rc1. It has been declared as critical. The impacted element is the function pm8001_queue_command. Such manipulation leads to use after free. This vulnerability is referenced as CVE-2026-23306. The attack needs to be initiated within the local network. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability described as critical has been identified in Linux Kernel up to 6.18.16/6.19.6. This affects the function rocket_core_init of the component accel. The manipulation results in out-of-bounds read. This vulnerability is cataloged as CVE-2026-23305. The attack must originate from the local network. There is no exploit available. Upgrading the affected component is recommended.

A vulnerability was found in Linux Kernel up to 7.0-rc2. It has been rated as critical. This affects the function ip6_rt_get_dev_rcu of the file net/ipv6/route.c. Performing a manipulation results in null pointer dereference. This vulnerability is identified as CVE-2026-23304. The attack can only be performed from the local network. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability has been found in Linux Kernel up to 7.0-rc1 and classified as critical. This affects the function cifs_set_cifscreds of the component smb. The manipulation leads to information exposure through debug log file. This vulnerability is traded as CVE-2026-23303. An attack has to be approached locally. There is no exploit available. The affected component should be upgraded.

气候变化和城市化加剧了热岛效应，城市地区的温度显著高于农村地区，而更高的温度又推动了制冷需求和加剧了电网压力，形成某种恶性循环。日本大阪府大学 Jihui Yuan 副教授领导的团队调查了垂直绿化等城市降温策略。他们的研究显示，朝南绿墙可将室内热条件改善最多 1.7°C；低反照率外表面能改善室外热舒适度最多 1.5°C；高反照率外表面则有助于降低室内温度。

Currently trending CVE - Hype Score: 8 - Atril Document Viewer is the default document reader of the MATE desktop environment for Linux. A single-click remote code execution vulnerability in versions prior to 1.26.3 and 1.28.4 allows an attacker to achieve arbitrary code execution as the user by tricking them into ...

ISCC-2026-区域赛练武wp详解，可以供各位师傅进行赛后复盘参考

聚焦于AI供应链中的新型高危威胁API中转站投毒（Relay Station Poisoning）。研究不可信中转节点如何利用其对HTTP/SSE流的完全控制权，在Claude Code等AI Agent场景中实现从“数据窃取”到“远程命令执行（RCE）”的完整攻击链，以及如何防御，防御有什么缺陷