AgentSOC: A Multi-Layer Agentic AI Framework for Security Operations Automation

Security Operations Centers SOCs increasingly encounter difficulties in correlating heterogeneous alerts, interpreting multi-stage attack progressions, and selecting safe and effective response actions. This study introduces AgentSOC, a multi-layered agentic AI framework that enhances SOC...

CVE-2026-26943

creationtimestamp| type| source ---|---|--- 2026-04-20 21:21:58+00:00| seen| Telegram/itZIvBa41gHmxLOZ4e3ooVdAvJm4yIE4KZd9P4HVJMq4o...

CVE-2026-6619

creationtimestamp| type| source ---|---|--- 2026-04-20 11:53:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjwfttkvi72k...

CVE-2026-6583

creationtimestamp| type| source ---|---|--- 2026-04-20 00:13:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjv6pknaq72e...

Enhancing Anomaly-Based Intrusion Detection Systems with Process Mining

Anomaly-based Intrusion Detection Systems IDSs ensure protection against malicious attacks on networked systems. While deep learning-based IDSs achieve effective performance, their limited trustworthiness due to black-box architectures remains a critical constraint. Despite existing explainable...

CVE-2026-5966

creationtimestamp| type| source ---|---|--- 2026-04-19 23:52:00+00:00| seen| https://www.twcert.org.tw/en/cp-139-10855-e6d1b-2.html 2026-04-20 09:17:22+00:00| seen| Telegram/Lm9dzPhVRFRRMgyzsUGG1X5A2Qj2Q71JCDe8XQUe2-0mpLw 2026-04-20 10:08:41+00:00| seen|...

airflow-balancer (>=0.7.0 <=0.7.6), airflow-clickhouse-plug (=1.6.2) +37 more potentially affected by CVE-2026-25917 via apache-airflow-core (>=3.0.0 <=3.1.8rc2)

apache-airflow-core PYPI version =3.0.0, =0.7.0, =1.5.0, =0.6.1, =1.10.7, =0.6.0, =0.1.0, =1.4.3, =1.2.10, =0.1.1, =3.0.0, =1.6.0, =1.5.3, =1.25.0, =3.12.0, =3.12.0rc1 and more Source cves: CVE-2026-25917 Source advisory: SNYK:PYTHON-APACHEAIRFLOWCORE-16119148...

@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (>=0.8.3 <=0.9.5) +17 more potentially affected by CVE-2026-44109 via openclaw (>=0.0.1 <=2026.4.12)

openclaw NPM version =0.0.1, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.0, =0.1.1, =2.0.1, =0.0.7, =0.0.11 and more Source cves: CVE-2026-44109 Source advisory: OSV:GHSA-XH72-V6V9-MWHC...

GHSA-7JQ3-6J3C-5CM2

creationtimestamp| type| source ---|---|--- 2026-04-17 21:23:35+00:00| seen| Telegram/Q64crjFZRAFhidSIvAgPD7j9KS4Pns0gYZhyfeiZ9MDp9II...

CVE-2026-5919 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2026-6439

creationtimestamp| type| source ---|---|--- 2026-04-17 10:23:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjopg5kzre2f 2026-04-17 11:32:06+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mjotaarzaz2u...

AVTECH Room Alert 3E Exposure of Resource to Wrong Sphere (CVE-2019-13379)

On AVTECH Room Alert 3E devices before 2.2.5, an attacker with access to the device's web interface may escalate privileges from an unauthenticated user to administrator by performing a cmd.cgi?action=ResetDefaults&src=RA reset and using the default credentials to get in. This plugin only works...

AVTECH Room Alert Cleartext Storage of Sensitive Information (CVE-2024-33470)

When an administrator authenticates with the device and browses the settings pages, the SMTP password is loaded from the device and presented in the DOM in plaintext. When settings are saved, the SMTP credentials are sent back to the device in plain text. This allows an actor with administrative...

AVTECH Room Alert Cleartext Transmission of Sensitive Information (CVE-2024-33471)

An individual with administrative access can change the mail server host within the device. An attacker who has obtained administrative access can update the mail server to an attacker controller IP. When the device attempts to authenticate to the mail server, it will pass the previously configur...

CVE-2026-35496

creationtimestamp| type| source ---|---|--- 2026-04-16 20:00:00+00:00| seen| https://jvn.jp/en/jp/JVN78422311 2026-04-17 06:08:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjob6d5mmj2f...

GHSA-72C6-FX6Q-FR5W

creationtimestamp| type| source ---|---|--- 2026-04-16 15:20:04+00:00| seen| Telegram/YbTUbIPLh0mBIC2v2cs-sH-0kBWzIOZ-tc0xqHP7s3YdmQ...

MAL-2026-2789 Malicious code in otomi-tasks (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 801ad983065c3d079ec114f2e5c5fc207a1903c098b383a2b049060d4d64f654 The package otomi-tasks was found to contain malicious code...

CVE-2024-2374

creationtimestamp| type| source ---|---|--- 2026-04-16 10:08:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjm644xfd72t...

MAL-2026-2771 Malicious code in icims-express-dot-engine (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6cc7ed2f685a8199818c3090faeaf9536fa49cced26ffde16ff9061c729e3143 The package icims-express-dot-engine was found to contain malicious code...

MAL-2026-2743 Malicious code in chai-use-chain (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d69d3debb629659a8d363e7f538314293640ed2e1625ef9ff51f9e9999ad2593 The package chai-use-chain was found to contain malicious code. Source: ghsa-malware 47423a7175b64aa5c431093d8c904461cce80e3c62c6d1895f3d96a2a43974db...