CVE-2026-2234

creationtimestamp| type| source ---|---|--- 2026-02-09 06:59:00+00:00| seen| https://www.twcert.org.tw/en/cp-139-10704-d5aba-2.html 2026-02-09 08:23:47+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mefzhtaqaj2v 2026-02-09 08:24:13+00:00| seen|...

CVE-2024-3231

creationtimestamp| type| source ---|---|--- 2026-02-08 10:45:23+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-3231.yaml 2026-02-11 21:03:07+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3memet7yse324...

openSUSE 16 Security Update : golang-github-prometheus-prometheus (openSUSE-SU-2026:20177-1)

The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20177-1 advisory. Update to version 3.5.0: Security issues fixed: - CVE-2025-13465: prototype pollution in the .unset and .omit functions can lead to deletion of...

CVE-2026-25592

creationtimestamp| type| source ---|---|--- 2026-02-06 21:21:48+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3me7tkaj2tn2r 2026-02-07 15:30:15+00:00| seen| https://infosec.exchange/users/offseq/statuses/116030060248069413 2026-02-07 15:30:16+00:00| seen|...

PYSEC-2026-1 A single post-release of dydx-v4-client contained obfuscated multi-stage loader

A PyPI user account compromised by an attacker and was able to upload a malicious version 1.1.5.post1 of the dydx-v4-client package. This version contains a highly obfuscated multi-stage loader that ultimately executes malicious code on the host system. While the final payload is not visible...

Malicious Package

Overview @opposhop/nuxt-ssr-cache is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

CVE-2026-1976

A weakness has been identified in Free5GC up to 4.1.0. Affected is the function SessionDeletionResponse of the component SMF. This manipulation causes null pointer dereference. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be used f...

MAL-2026-778 Malicious code in ac-dom-nodes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b323cec1a59645d9dcb2c0951a0f7d31b362ac58e4f930306a940ed67037b20d The package ac-dom-nodes was found to contain malicious code. Source: ossf-package-analysis...

MAL-2026-784 Malicious code in monkey-tags (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d92f2c8690bbb505437734e0b5ffe74a1c8a9411dde8716bd9440600db0a0f1d The package monkey-tags was found to contain malicious code. Source: ghsa-malware 18cc7d0ec7d65006d2618f716b268a58021234dc7bcad189f062848160afd16f An...

AlertBERT: A Noise-Robust Alert Grouping Framework for Simultaneous Cyber Attacks

Automated detection of cyber attacks is a critical capability to counteract the growing volume and sophistication of cyber attacks. However, the high numbers of security alerts issued by intrusion detection systems lead to alert fatigue among analysts working in security operations centres SOC,...

GHSA-M82Q-59GV-MCR9

creationtimestamp| type| source ---|---|--- 2026-02-05 15:56:30+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/n8n-security-advisory-av26-091...

GHSA-HV53-3329-VMRM

creationtimestamp| type| source ---|---|--- 2026-02-05 15:56:30+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/n8n-security-advisory-av26-091...

CVE-2026-25054

creationtimestamp| type| source ---|---|--- 2026-02-05 08:08:06+00:00| seen| https://www.acn.gov.it/portale/w/rilevate-vulnerabilita-in-n8n-1...

CVE-2026-25027

creationtimestamp| type| source ---|---|--- 2026-02-05 00:32:03+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3me35altaou2r...

CVE-2026-0659

creationtimestamp| type| source ---|---|--- 2026-02-04 17:17:50+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3me2ey6d7qz2x...

CVE-2026-24954

creationtimestamp| type| source ---|---|--- 2026-02-03 19:20:51+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mdy3f6vls42m...

CVE-2026-1432

creationtimestamp| type| source ---|---|--- 2026-02-03 13:16:27+00:00| seen| Telegram/fpMcrY2RALMfsN1onUqQsHu7uTJCJuSmLnazyi9cvEQogc...

CVE-2026-24071

creationtimestamp| type| source ---|---|--- 2026-02-02 18:18:37+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mdvhgzmqxl2g...

CVE-2025-47398

creationtimestamp| type| source ---|---|--- 2026-02-02 16:18:54+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mdvaqwvlkb2x 2026-02-06 05:15:47+00:00| seen| https://notnow.dev/objects/7e03b73a-ee5a-44fc-b7e0-8cb584640a7d...

Malicious Package

Overview react-native-expofp is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...