7069 matches found
AMD CPU OP Cache May 2026 Security Update
AMD has informed HP of a potential security vulnerability in some AMD Processors which might allow escalation of privilege or arbitrary code execution. AMD is releasing firmware updates to mitigate these vulnerabilities. AMD has released updates to mitigate the potential vulnerability. HP has...
Stable Channel Update for Desktop
The Stable channel has been updated to 149.0.7827.114/.115 for Windows and Mac and 149.0.7827.114 for Linux, which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log Security Fixes and Rewards Note: Access to bug details and links may be kept...
CVE-2026-0274
An improper validation of credentials vulnerability in the CommvaultSecurityIQ integration for Cortex XSOAR and Cortex XSIAM allows an unauthenticated attacker to access and modify protected resources...
CVE-2026-45328
creationtimestamp| type| source ---|---|--- 2026-06-10 03:00:07+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnvpsfjeoy27 2026-06-10 03:00:38+00:00| seen| https://infosec.exchange/users/offseq/statuses/116723576453195786 2026-06-10 03:00:44+00:00| seen|...
PT-2026-48558
A privilege escalation PE vulnerability in the Palo Alto Networks Prisma Access Agent app on Linux devices enables a local user to execute code with elevated privileges. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS...
Scammers love Meta, according to Lloyds Bank
Scammers go phishing wherever the victims are. In the UK, that means Facebook, Instagram, and WhatsApp, according to Lloyds Bank. It just revealed that Meta platforms account for over two thirds of fraud reports made by its customers. Writing in The Sunday Times, Lloyds Bank's fraud prevention...
The Hidden Security Risk in Modern Networks: The Work Between Tools
Organizations have more visibility than ever. Growing tech stacks provide greater coverage, and network security teams are increasingly adopting AI and automation to help with routine tasks and reduce manual effort. But the same challenges persist. Outages still last hours, causing significant...
Microsoft Windows Storage 权限许可和访问控制问题漏洞
Microsoft Windows Storage is a data storage solution provided by the American company Microsoft. There are code-related vulnerabilities in Microsoft Windows Storage. Attackers can exploit these vulnerabilities to gain elevated privileges. The following products and versions are affected: Windows ...
AMD “Zen 5” Processors – RDSEED Failure
AMD has informed HP of a potential security vulnerability in some AMD “Zen 5” Processors, which might allow loss of confidentiality and integrity. AMD is releasing firmware updates to mitigate these vulnerabilities AMD has released updates to mitigate the potential vulnerability. HP has identifie...
GHSA-JHP3-H4HP-2C3P vulnerabilities
Vulnerabilities for packages: libssh2...
Introducing Wiz Cloud Cost: Powering Cost Management and Optimization with Context
Wiz unifies cloud and AI cost visibility to help teams eliminate waste and improve spend efficiency across their AWS, Azure, and GCP environments...
GHSA-W93M-F8FX-95GR vulnerabilities
Vulnerabilities for packages: chromium...
CVE-2026-28986
A race condition was addressed with additional validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, watchOS 26.5. An app may be able to cause unexpected system termination...
CVE-2026-40907
WWBN AVideo is an open source video platform. In versions 29.0 and prior, the endpoint plugin/Live/view/Liverestreams/list.json.php contains an Insecure Direct Object Reference IDOR vulnerability that allows any authenticated user with streaming permission to retrieve other users' live restream...
GHSA-HXQC-2XM4-R7P8 vulnerabilities
Vulnerabilities for packages: chromium...
CVE-2026-33662
OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. From 3.8.0 to 4.10, in the function emsapkcs1v15encode in core/drivers/crypto/cryptoapi/acipher/rsassa.c, the amount of padding needed, "...
CVE-2026-8370
Execution with unnecessary privileges vulnerability in Broadcom Automic Automation Agent Unix on Linux x64, Linux Power 64 BE, Linux Power 64 LE, zLinux zSeries, AIX, Solaris x64, Solaris Sparc 64 allows Privilege Escalation, Target Programs with Elevated Privileges. This issue affects Automic...
CVE-2026-11299
creationtimestamp| type| source ---|---|--- 2026-06-05 02:37:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnj46sfakj2g 2026-06-05 13:24:43+00:00| seen| https://infosec.exchange/users/cR0w/statuses/116697713800926918 2026-06-07 18:00:00+00:00| seen|...
PT-2026-46955
Six live production platforms were compromised during responsible disclosure testing. LiteLLM CVE-2026-30623, Critical, patched, Windsurf CVE-2026-30615, Critical, reported, Bisheng CVE-2026-33224, Critical, patched, and DocsGPT CVE-2026-26015, Critical, patched…...
GHSA-M62J-63MF-XR95 vulnerabilities
Vulnerabilities for packages: dnsmasq...