Lucene search
K

30 matches found

GoogleProjectZero
GoogleProjectZero
added 2026/05/13 12:0 a.m.37 views

A 0-click exploit chain for the Pixel 10: When a Door Closes, a Window Opens

Posted by Seth Jenkins We recently published an exploit chain for the Google Pixel 9 that demonstrated it was possible to go from a zero-click context to root on Android in just two exploits. The Dolby 0-click vulnerability existed across all of Android, until it was patched in January 2026. Whil...

9.8CVSS6.2AI score0.01613EPSS
Exploits1
Malwarebytes
Malwarebytes
added 2026/03/25 2:40 p.m.9 views

New FCC router ban could leave home networks less secure

On Monday, the Federal Communications Commission FCC updated its list of insecure equipment, outlining its reasons for adding all consumer-grade routers made outside the US. Effectively, this would stop foreign-made routers from being imported unless their manufacturers obtain an exemption, due t...

5.9AI score
Exploits0
The Hacker News
The Hacker News
added 2026/01/29 11:55 a.m.6 views

Survey of 100+ Energy Systems Reveals Critical OT Cybersecurity Gaps

A study by OMICRON has revealed widespread cybersecurity gaps in the operational technology OT networks of substations, power plants, and control centers worldwide. Drawing on data from more than 100 installations, the analysis highlights recurring technical, organizational, and functional issues...

7.8CVSS6.1AI score0.74497EPSS
Exploits7
RedhatCVE
RedhatCVE
added 2026/01/14 2:22 a.m.10 views

CVE-2025-66177

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision NVR/DVR/CVR/IPC models. If exploited, an attacker on the same local area network LAN could cause the device to malfunction by sending specially crafted packets to an unpatched device...

8.8CVSS6.8AI score0.00323EPSS
Exploits0References1
NVD
NVD
added 2026/01/13 3:16 a.m.11 views

CVE-2025-66177

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision NVR/DVR/CVR/IPC models. If exploited, an attacker on the same local area network LAN could cause the device to malfunction by sending specially crafted packets to an unpatched device...

8.8CVSS0.00323EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/13 1:47 a.m.2 views

CVE-2025-66177

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision NVR/DVR/CVR/IPC models. If exploited, an attacker on the same local area network LAN could cause the device to malfunction by sending specially crafted packets to an unpatched device...

8.8CVSS6.4AI score0.00323EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/13 1:47 a.m.2 views

CVE-2025-66176

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on the same local area network LAN could cause the device to malfunction by sending specially crafted packets to an unpatched device...

8.8CVSS6.4AI score0.00485EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.5 views

Hikvision NVR/DVR Devices 安全漏洞

Hikvision NVR/DVR Devices are a series of network cameras from Hikvision, a Chinese company. A security vulnerability exists in Hikvision NVR/DVR Devices that stems from a stack overflow in the device's search and discovery function, which could allow an attacker on the same LAN to cause the devi...

8.8CVSS6.1AI score0.00323EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/12 12:0 a.m.12 views

PT-2026-2347

Name of the Vulnerable Software and Affected Versions Hikvision Access Control Products affected versions not specified Description A stack overflow issue exists in the device Search and Discovery feature of Hikvision Access Control Products. An attacker on the same local area network LAN can cau...

8.8CVSS6.4AI score0.00485EPSS
Exploits0References14
OSV
OSV
added 2025/12/19 3:15 p.m.3 views

UBUNTU-CVE-2025-50681

igmpproxy 0.4 before commit 2b30c36 allows remote attackers to cause a denial of service application crash via a crafted IGMPv3 membership report packet with a malicious source address. Due to insufficient validation in the recvigmp function in src/igmpproxy.c, an invalid group record type can...

7.5CVSS5.8AI score0.0044EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/11/09 12:0 a.m.9 views

PT-2025-45579

What is the critical vulnerability being exploited in the ongoing cyber attacks targeting unpatched Cisco IOS XE devices in Australia, linked to the implant known as BADCANDY? A CVE-2021-34527 B CVE-2023-20198 C CVE-2022-12345 D CVE-2023-10554...

10CVSS7AI score0.99759EPSS
Exploits69References1
HackRead
HackRead
added 2025/11/04 10:50 a.m.5 views

China-Linked Hackers Target Cisco Firewalls in Global Campaign

New reports show China-based hackers are targeting US federal, state, and global government networks via unpatched Cisco firewalls. Get the full details and necessary steps to secure devices...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/11/01 1:43 p.m.10 views

ASD Warns of Ongoing BADCANDY Attacks Exploiting Cisco IOS XE Vulnerability

The Australian Signals Directorate ASD has issued a bulletin about ongoing cyber attacks targeting unpatched Cisco IOS XE devices in the country with a previously undocumented implant known as BADCANDY. The activity, per the intelligence agency, involves the exploitation of CVE-2023-20198 CVSS...

10CVSS7.1AI score0.99571EPSS
Exploits26
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-9826

Malware in sbrugna...

8.8CVSS8.8AI score0.0203EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2025/08/20 3:59 p.m.9 views

FBI Warns FSB-Linked Hackers Exploiting Unpatched Cisco Devices for Cyber Espionage

A Russian state-sponsored cyber espionage group known as Static Tundra has been observed actively exploiting a seven-year-old security flaw in Cisco IOS and Cisco IOS XE software as a means to establish persistent access to target networks. Cisco Talos, which disclosed details of the activity, sa...

10CVSS9.7AI score0.9951EPSS
Exploits2
Talos Blog
Talos Blog
added 2025/08/20 1:0 p.m.6 views

Russian state-sponsored espionage group Static Tundra compromises unpatched end-of-life network devices

Static Tundra is a Russian state-sponsored cyber espionage group linked to the FSB's Center 16 unit that has been operating for over a decade, specializing in compromising network devices for long-term intelligence gathering operations. The group actively exploits a seven-year-old vulnerability...

10CVSS10AI score0.9951EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-47715

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7915: fix oops on non- dbdc mt7986 mt7915bandconfig sets bandidx = 1 on the ma...

5.5CVSS5.8AI score0.00218EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2024/08/29 3:59 p.m.52 views

Russian Hackers Exploit Safari and Chrome Flaws in High-Profile Cyberattack

Cybersecurity researchers have flagged multiple in-the-wild exploit campaigns that leveraged now-patched flaws in Apple Safari and Google Chrome browsers to infect mobile users with information-stealing malware. "These campaigns delivered n-day exploits for which patches were available, but would...

9.6CVSS9.5AI score0.29179EPSS
Exploits6
The Hacker News
The Hacker News
added 2024/01/16 1:39 p.m.80 views

Alert: Over 178,000 SonicWall Firewalls Potentially Vulnerable to Exploits - Act Now

Over 178,000 SonicWall firewalls exposed over the internet are exploitable to at least one of the two security flaws that could be potentially exploited to cause a denial-of-service DoS condition and remote code execution RCE. "The two issues are fundamentally the same but exploitable at differen...

9.8CVSS10AI score0.57324EPSS
Exploits3
CNNVD
CNNVD
added 2023/11/23 12:0 a.m.5 views

Hikvision NVR/DVR Devices Security Breach

Hikvision NVR/DVR Devices is a series of network cameras from Hikvision, a Chinese company. A security vulnerability exists in Hikvision NVR/DVR Devices, which stems from the presence of a buffer overflow issue that could allow an attacker to cause a device failure by sending specially crafted...

7.4CVSS7.1AI score0.00394EPSS
Exploits0References2
Rows per page
Query Builder