Aggregator

A vulnerability marked as critical has been reported in Google Chrome on Windows. Affected is an unknown function of the component Media. Performing a manipulation results in use after free. This vulnerability is cataloged as CVE-2026-12013. It is possible to initiate the attack remotely. There is no exploit available. It is suggested to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Google Chrome. This vulnerability affects unknown code of the component Network. This manipulation causes use after free. This vulnerability appears as CVE-2026-12012. The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability was found in Google Chrome on Android. It has been declared as critical. Impacted is an unknown function of the component GPU. Executing a manipulation can lead to heap-based buffer overflow. The identification of this vulnerability is CVE-2026-12010. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability categorized as critical has been discovered in Google Chrome. The impacted element is an unknown function of the component DigitalCredentials. The manipulation results in use after free. This vulnerability is identified as CVE-2026-12008. The attack can be executed remotely. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability identified as critical has been detected in Google Chrome on macOS. This affects an unknown function of the component Accessibility. This manipulation causes sandbox issue. This vulnerability is tracked as CVE-2026-12009. The attack is possible to be carried out remotely. No exploit exists. You should upgrade the affected component.

A vulnerability was found in Google Chrome on Windows. It has been rated as critical. The affected element is an unknown function of the component Core. The manipulation leads to use after free. This vulnerability is referenced as CVE-2026-12007. Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is advised.

小米雷军总结 YU7 八大环节测试直播；小鹏集团副总裁余鹏；英特尔开源版图持续收缩

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

A vulnerability categorized as critical has been discovered in ARM Mali GPU Driver up to 2022-06-29. This vulnerability affects unknown code. Such manipulation leads to race condition. This vulnerability is referenced as CVE-2022-34830. It is possible to launch the attack remotely. No exploit is available.

A vulnerability was found in Vermeg AgileReporter 21.3. It has been rated as problematic. This issue affects some unknown processing of the component Analysis. This manipulation causes xml external entity reference. This vulnerability is registered as CVE-2022-34832. The attack requires access to the local network. No exploit is available.

A vulnerability, which was classified as critical, was found in NEC CLUSTERPRO X and EXPRESSCLUSTER X up to 5.0 on Windows. The affected element is an unknown function. Executing a manipulation can lead to uncontrolled search path. This vulnerability appears as CVE-2022-34825. The attack may be performed from remote. There is no available exploit.

A vulnerability classified as critical was found in Carel Boss Mini 1.5.0. Affected is an unknown function. Such manipulation leads to improper access controls. This vulnerability is traded as CVE-2022-34827. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability, which was classified as critical, has been found in NEC CLUSTERPRO X and EXPRESSCLUSTER X up to 5.0 on Windows. Impacted is an unknown function. Performing a manipulation results in permission issues. This vulnerability is reported as CVE-2022-34824. The attack is possible to be carried out remotely. No exploit exists.

Anthropic强大新模型为何突遭出口管制？知情人士称，特朗普政府决定停止允许外国人使用 Anthropic 最先进的AI模型，这一决定源于亚马逊公司CEO安迪·贾西与美国财政部长斯科特·贝森特等官

环境异常 当前环境异常，完成验证后即可继续访问。 去验证

Currently trending CVE - Hype Score: 4 - In createSessionInternal of PackageInstallerService.java, there is a possible way for an app to update its ownership due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed ...

Currently trending CVE - Hype Score: 1 - In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry vgic_its_invalidate_cache() walks the per-ITS translation cache with xa_for_each() and drops the cache's reference on each ...

A former  IT employee at an Iowa school district was sentenced to 21 months in prison after conducting a prolonged cyberattack against the former employer that disrupted classroom operations, deleted accounts, and caused tens of thousands of dollars in damages. [...]

The Commerce Department’s expert control decree led to the company shutting off access to Fable 5 and Mythos 5 worldwide, drawing sharp criticism from researchers and industry analysts.

The post Anthropic disables new models after government calls them a national security concern appeared first on CyberScoop.