Aggregator

A vulnerability has been found in Antynea grub-btrfs up to 2026-01-31 and classified as critical. This affects the function resolve_device. Performing a manipulation of the argument root results in os command injection. This vulnerability is identified as CVE-2026-25828. The attack can only be performed from the local network. There is not any exploit available.

A vulnerability described as problematic has been identified in lty628 aidigu 1.9.1. Affected by this vulnerability is an unknown functionality of the file /setting/ of the component setting Handler. The manipulation of the argument intro results in cross site scripting. This vulnerability is known as CVE-2025-70845. It is possible to launch the attack remotely. No exploit is available.

A vulnerability, which was classified as problematic, has been found in Apple iOS and iPadOS up to 26.2. Affected by this issue is some unknown functionality of the component App. The manipulation leads to information disclosure. This vulnerability is documented as CVE-2026-20678. The attack needs to be performed locally. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability has been found in Apple macOS up to 26.2 and classified as problematic. This vulnerability affects unknown code of the component App. This manipulation causes information disclosure. This vulnerability appears as CVE-2026-20681. The attack requires local access. There is no available exploit. The affected component should be upgraded.

A vulnerability, which was classified as problematic, has been found in Apple macOS, iOS and iPadOS up to 26.2. Affected by this vulnerability is an unknown functionality of the component Mail Preview. Performing a manipulation results in information disclosure. This vulnerability is known as CVE-2026-20673. Remote exploitation of the attack is possible. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Apple macOS, watchOS, visionOS, iOS, iPadOS and tvOS up to 26.2. Affected by this issue is some unknown functionality of the component Image Parser. Executing a manipulation can lead to memory corruption. This vulnerability is handled as CVE-2026-20675. The attack can be executed remotely. There is not any exploit available. You should upgrade the affected component.

A vulnerability marked as critical has been reported in Apple macOS, watchOS, iOS and iPadOS up to 26.2. This affects an unknown function of the component App. This manipulation causes improper access controls. This vulnerability is tracked as CVE-2026-20667. The attack is restricted to local execution. No exploit exists. It is suggested to upgrade the affected component.

A vulnerability classified as problematic was found in Apple iOS and iPadOS up to 26.2. Affected by this vulnerability is an unknown functionality of the component User Information Handler. Executing a manipulation can lead to information disclosure. This vulnerability is registered as CVE-2026-20674. The physical device can be targeted for the attack. No exploit is available. Upgrading the affected component is advised.

Хаос в базах данных постепенно превращается в новую норму.

NYT 报道，美国国家科学基金会（NSF）周四宣布，国家大气研究中心（NCAR）的超算管理权将转移给第三方。该超算被用于运行天气模型提供天气预报和灾害预警等服务。NSF 没有提供更多信息。此举令气候科学家感到恐慌，他们担心 NCAR 可能被拆分，担心可能无法再使用超算运行天气模型。NCAR 的超算叫 Derecho，在 Top500 超算榜单（2025 年 11 月版）中排在 160 名，由 HPE 制造，使用了 AMD EPYC 7763 64C 处理器，328 个英伟达 GPU，理论峰值 19.87 PFLOPS(每秒千万亿次)。特朗普政府去年 12 月宣布计划解散 NCAR，管理和预算办公室主任 Russell Vought 称该中心是“美国最大的气候恐慌论源头之一”，表示联邦政府将“拆分”该机构。

本次微访谈于2月12日举行，邀请了9位专家分享自己的观点和看法。

服务不间断，安心过新年！

免费远程初诊(30分钟)·15分钟响应·全程保密

看雪论坛作者ID：zzzhangyu

A vulnerability has been found in Apple Safari, macOS, visionOS, iOS and iPadOS up to 26.2 and classified as critical. Impacted is an unknown function of the component Web Handler. This manipulation causes memory corruption. This vulnerability is handled as CVE-2026-20636. The attack can be initiated remotely. There is not any exploit available. The affected component should be upgraded.

A vulnerability was found in Apple macOS, watchOS, iOS, iPadOS and tvOS up to 26.2. It has been classified as problematic. The impacted element is an unknown function of the component User Information Handler. Performing a manipulation results in sensitive information in log files. This vulnerability was named CVE-2026-20649. The attack needs to be approached locally. There is no available exploit. Upgrading the affected component is recommended.

A vulnerability described as problematic has been identified in Apple macOS, watchOS, visionOS, iOS, iPadOS and tvOS up to 26.2. The affected element is an unknown function of the component App. The manipulation results in information disclosure. This vulnerability is cataloged as CVE-2026-20641. The attack must be initiated from a local position. There is no exploit available. Upgrading the affected component is recommended.

A vulnerability classified as critical has been found in Apple iOS and iPadOS up to 26.2. The impacted element is an unknown function of the component Screenshot Handler. This manipulation causes improper access controls. This vulnerability is registered as CVE-2026-20640. It is feasible to perform the attack on the physical device. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability was found in Apple macOS, watchOS, visionOS, iOS, iPadOS and tvOS up to 26.2. It has been classified as critical. This affects an unknown part of the component App. This manipulation causes memory corruption. This vulnerability is handled as CVE-2026-20654. It is possible to launch the attack on the local host. There is not any exploit available. Upgrading the affected component is recommended.