Lucene search
K

1881 matches found

OSV
OSV
added 2026/03/25 10:10 a.m.2 views

SUSE-SU-2026:1012-1 Security update 5.0.7 for Multi-Linux Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: - Security issues fixed: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: Fixed HTTP header parameter parsing algorithm bsc1254904...

7.8CVSS5.9AI score0.01525EPSS
Exploits0References16
Veeam
Veeam
added 2026/03/24 12:0 a.m.22 views

New Search Experience for Veeam Data Cloud for Microsoft 365

Purpose We are excited to announce the initial rollout of our new search feature, designed to significantly improve the speed and efficiency of your search experience. Below are the details and important limitations to be aware of during this phased rollout. What's New Faster Search Experience Ou...

5.8AI score
Exploits0
Qualys Blog
Qualys Blog
added 2026/03/23 12:45 p.m.10 views

Meet Agent Val: Closing the Validation Gap in Exposure Management at Machine Speed with Agentic AI

Executive Summary The primary challenge in vulnerability management is proving what is actually exploitable. Many vulnerabilities are not exploited, but still drain resources. Traditional tools often fail to validate real risks. Agent Val, within Qualys Enterprise TruRisk Management, delivers thi...

6AI score
Exploits0
Wiz blog
Wiz blog
added 2026/03/23 12:0 p.m.8 views

Introducing Wiz Agents & Workflows: Security at the Speed of AI

A new security operating model powered by AI agents that removes bottlenecks and enables teams to act at the speed of AI...

5.8AI score
Exploits0
Cvelist
Cvelist
added 2026/03/17 12:0 a.m.24 views

CVE-2026-30707

An issue was discovered in SpeedExam Online Examination System SaaS after v.FEV2026. It allows Broken Access Control via the ReviewAnswerDetails ASP.NET PageMethod. Authenticated attackers can bypass client-side restrictions and invoke this method directly to retrieve the full answer key. The...

0.00329EPSS
Exploits0References2
Akamai Blog
Akamai Blog
added 2026/03/11 12:0 p.m.6 views

Inside Akamai: How Offload and Performance Drive Speed and Resiliency

...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/06 12:0 a.m.0 views

Alkaid: Resilience to Edit Errors in Provably Secure Steganography Via Distance-Constrained Encoding

While provably secure steganography provides strong concealment by ensuring stego carriers are indistinguishable from natural samples, such systems remain vulnerable to real-world edit errors e.g., insertions, deletions, substitutions because their decoding depends on perfect synchronization and...

5.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.12 views

PT-2026-51776

Name of the Vulnerable Software and Affected Versions Flowise versions prior to 3.0.13 Description The software uses bcrypt with a default salt round value of 5, resulting in only 32 iterations. This is significantly lower than the OWASP-recommended minimum of 10 rounds 1024 iterations. This...

5.6CVSS5.8AI score0.00073EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/03/02 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005567)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005567 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: prefer nftchainvalidate nftchainvalidate already performs loop detection...

7.8CVSS6.9AI score0.0032EPSS
Exploits0References4
OSV
OSV
added 2026/02/26 1:17 p.m.3 views

SUSE-SU-2026:20592-1 Security update for 7zip

This update for 7zip fixes the following issues: - Update to 25.01 boo1249130 The code for handling symbolic links has been changed to provide greater security when extracting files from archives Command line switch -snld20 can be used to bypass default security checks when creating symbolic link...

7.5CVSS7.2AI score0.00635EPSS
Exploits2References6
OSV
OSV
added 2026/02/26 11:53 a.m.3 views

OPENSUSE-SU-2026:20273-1 Security update for 7zip

This update for 7zip fixes the following issues: - Update to 25.01 boo1249130 The code for handling symbolic links has been changed to provide greater security when extracting files from archives Command line switch -snld20 can be used to bypass default security checks when creating symbolic link...

7.5CVSS6AI score0.00635EPSS
Exploits2References5
HackRead
HackRead
added 2026/02/25 8:11 p.m.5 views

Why Intelligent Contract Solutions Are Replacing Traditional CLM Systems

Intelligent contract solutions replace traditional CLM by adding AI analysis, benchmarking, and risk insights that speed reviews, reduce delays, and improve decisions...

5.5AI score
Exploits0
HackRead
HackRead
added 2026/02/25 11:57 a.m.11 views

Autonomous Endpoint Management Isn’t Just Efficiency, It’s a Security Imperative

Autonomous Endpoint Management cuts exposure time by matching patch speed to attacker breakout timelines, reducing risk, workload delays, and breach costs...

5.5AI score
Exploits0
The Hacker News
The Hacker News
added 2026/02/25 11:0 a.m.8 views

Manual Processes Are Putting National Security at Risk

Why automating sensitive data transfers is now a mission-critical priority More than half of national security organizations still rely on manual processes to transfer sensitive data, according to The CYBER360: Defending the Digital Battlespace report. This should alarm every defense and governme...

5.8AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2026/02/24 12:0 a.m.178 views

Tattile Cameras 1.181.5 Use of Default Credentials

Summary Tattile is an Italian manufacturer specializing in advanced ANPR/ALPR, traffic‑enforcement, and machine‑vision camera systems used across intelligent transportation networks, tolling infrastructures, access‑control environments, and industrial automation. Their portfolio includes...

9.8CVSS5.8AI score0.02663EPSS
Exploits3
OSV
OSV
added 2026/02/21 9:12 a.m.7 views

CLSA-2026-1771665151 golang: Fix of CVE-2025-61728

CVE-2025-61728: fix denial-of-service in archive/zip by replacing super-linear index construction with an efficient algorithm...

6.5CVSS7.3AI score0.00643EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/20 1:26 p.m.7 views

CVE-2026-23545

Missing Authorization vulnerability in Aruba.it Dev Aruba HiSpeed Cache aruba-hispeed-cache allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Aruba HiSpeed Cache: from n/a through = 3.0.4...

6.5CVSS5.5AI score0.00194EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/02/18 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-71200

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mmc: sdhci-of-dwcmshc: Prevent illegal clock reduction in HS200/HS400 mode When operating in HS200 or HS400 timing modes, reducing the clock frequency below 52M...

5.5CVSS6.2AI score0.00114EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/17 8:36 p.m.11 views

Malicious code in telebot-infe (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 590d96b39de125e4d96c7b88fdc57ef5257eddbf8277011e51c84e1500302aaf The package, distinguished as a speed testing or typosquatted Telegram library, contains a Telegram bot to perform remote control of the computer --- Category:...

5.6AI score
Exploits0References2
NVD
NVD
added 2026/02/14 3:16 p.m.8 views

CVE-2025-71200

In the Linux kernel, the following vulnerability has been resolved: mmc: sdhci-of-dwcmshc: Prevent illegal clock reduction in HS200/HS400 mode When operating in HS200 or HS400 timing modes, reducing the clock frequency below 52MHz will lead to link broken as the Rockchip DWC MSHC controller...

5.5CVSS0.00114EPSS
Exploits0References5
Rows per page
Query Builder