Lucene search
K

5789 matches found

The Hacker News
The Hacker News
added 4 days ago11 views

Laser Attack Resets Tangem Wallet Passwords on Cards That Can't Be Patched

Researchers at Ledger's Donjon security team have shown that a precisely timed laser pulse, aimed at the chip inside a Tangem crypto wallet card, can reset the card's password to anything the attacker picks. No old password. No backup card. Once it is reset, whoever did it controls the wallet and...

6.1AI score
Exploits0
Cisco
Cisco
added 2026/07/01 4:0 p.m.15 views

ClamAV Vulnerabilities Affecting Cisco Products: July 2026

Multiple vulnerabilities in ClamAV could allow a remote attacker to cause a denial of service DoS condition, interrupting scanning operations. For more information about these vulnerabilities, see the Details "details" section of this advisory. For additional information on these vulnerabilities ...

7.5CVSS5.8AI score0.00463EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.7 views

PT-2026-54766

Name of the Vulnerable Software and Affected Versions ColdFusion versions 2023.20 and earlier ColdFusion version 2025.9 Description An improper input validation issue exists that allows a remote attacker to execute arbitrary code in the context of the current user. This exploitation does not...

10CVSS7.8AI score0.01396EPSS
Exploits0References8
NVD
NVD
added 2026/06/24 9:16 p.m.10 views

CVE-2026-7539

A potential security vulnerability has been identified in the HP Accessory WMI Provider installer for some HP Docking Stations, which might allow escalation of privilege and/or arbitrary code execution. HP is releasing software updates to mitigate the potential vulnerability...

7.3CVSS0.00096EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/24 7:47 p.m.7 views

EUVD-2026-39057

A potential security vulnerability has been identified in the HP Accessory WMI Provider installer for some HP Docking Stations, which might allow escalation of privilege and/or arbitrary code execution. HP is releasing software updates to mitigate the potential vulnerability...

7.3CVSS6AI score0.00096EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/16 12:34 a.m.10 views

EUVD-2026-37011

Potential security vulnerabilities have been identified in the HP One Agent for certain HP PC products, which might allow for escalation of privilege and/or denial of service. HP is releasing software updates to mitigate these potential vulnerabilities...

8.5CVSS5.3AI score0.00114EPSS
Exploits0References2
NVD
NVD
added 2026/06/15 10:16 p.m.14 views

CVE-2026-5064

Potential security vulnerabilities have been identified in the HP One Agent for certain HP PC products, which might allow for escalation of privilege and/or denial of service. HP is releasing software updates to mitigate these potential vulnerabilities...

8.5CVSS0.00114EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.16 views

PT-2026-49530

Name of the Vulnerable Software and Affected Versions HP One Agent affected versions not specified Description Security issues in the HP One Agent for certain HP PC products could allow an attacker to perform escalation of privilege, which is the act of gaining higher-level permissions than...

8.5CVSS5.2AI score0.00114EPSS
Exploits0References4
Cisco
Cisco
added 2026/06/03 4:0 p.m.14 views

Cisco Finesse Remote File Inclusion Vulnerability

A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to load arbitrary files from remote locations into an active user session on an affected device, possibly leading to browser-based attacks. This vulnerability is due to insufficient validation of user-supplied input...

6.1CVSS6.1AI score0.0018EPSS
Exploits0References1
Cisco
Cisco
added 2026/05/20 4:0 p.m.11 views

Cisco Secure Workload Unauthorized API Access Vulnerability

A vulnerability in the access validation of internal REST APIs of Cisco Secure Workload could allow an unauthenticated, remote attacker to access site resources with the privileges of the Site Admin role. This vulnerability is due to insufficient validation and authentication when accessing REST...

10CVSS5.8AI score0.00835EPSS
Exploits1References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in WebKit2GTK

This issue has been resolved through improved memory handling. This issue is fixed in Safari 26.1, iOS 18.7.2, and iPadOS 18.7.2; iOS 26.1 and iPadOS 26.1; macOS Tahoe 26.1; tvOS 26.1; visionOS 26.1; and watchOS 26.1. Processing maliciously crafted web content may lead to memory corruption...

8.8CVSS6.7AI score0.00786EPSS
Exploits0References2
NCSC
NCSC
added 2026/05/13 9:23 a.m.13 views

Vulnerabilities that can be addressed in Adobe Connect

Adobe has identified vulnerabilities in Adobe Connect versions 2025.9.15, 2025.8.157, and earlier versions. These vulnerabilities allow attackers to execute arbitrary code on the affected system. This can occur when users interact with malicious URLs or compromised web pages. The first...

9.6CVSS6.3AI score0.00635EPSS
Exploits0References1
Intel
Intel
added 2026/05/12 12:0 a.m.28 views

Intel® Graphics Advisory

Summary: Potential security vulnerabilities for some Intel® Graphics software may allow escalation of privilege or denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2026-20794 Description: Buffer overflow for the...

9.3CVSS5.9AI score0.00127EPSS
Exploits0
Hewlett-Packard
Hewlett-Packard
added 2026/05/12 12:0 a.m.20 views

Intel Connectivity Performance Suite May 2026 Security Update

Intel has informed HP of a potential security vulnerability in some Intel® Connectivity Performance Suite software installers, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the...

5.4CVSS5.8AI score0.00089EPSS
Exploits0Affected Software63
Vulnrichment
Vulnrichment
added 2026/05/11 8:8 p.m.8 views

CVE-2026-28983

A type confusion issue was addressed with improved checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. A remote attacker may be able to cause a denial of service...

5.8AI score0.0063EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2026/05/07 12:45 p.m.14 views

CVE-2026-8092

Memory safety bugs present in Thunderbird ESR 140.10.1 and Thunderbird 150.0.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 150.0.2, Firefox ES...

8.1CVSS6AI score0.00384EPSS
Exploits0References6
Cisco
Cisco
added 2026/05/06 4:0 p.m.17 views

Cisco IoT Field Network Director Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco IoT Field Network Director Software could allow an authenticated, remote attacker to access files, execute commands, and cause denial of service DoS conditions on managed routers. For more information about these...

7.7CVSS5.9AI score0.00272EPSS
Exploits0References1
Cisco
Cisco
added 2026/05/06 4:0 p.m.14 views

Cisco Identity Services Engine Authentication Bypass Vulnerabilities

Multiple vulnerabilities in Cisco Identity Services Engine ISE could allow a remote attacker to bypass authorization mechanisms or examine error messages to gain access to sensitive information on an affected device. For more information about these vulnerabilities, see the Details "details"...

5.3CVSS5.8AI score0.00275EPSS
Exploits0References1
Cisco
Cisco
added 2026/05/06 4:0 p.m.24 views

Cisco Crosswork Network Controller and Cisco Network Services Orchestrator Advisory

Following the initial publication of the Security Advisory about a denial of service DoS condition in Cisco Crosswork Network Controller and Cisco Network Services Orchestrator NSO, additional information has been made available to the Cisco Product Security Incident Response Team PSIRT. Upon...

5.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/03 12:0 a.m.5 views

Slackware Linux 15.0 / current mozilla-thunderbird Multiple Vulnerabilities (SSA:2026-122-03)

The version of mozilla-thunderbird installed on the remote host is prior to 140.10.1esr. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2026-122-03 advisory. New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues...

9.6CVSS6.1AI score0.00375EPSS
Exploits0References5
Rows per page
Query Builder