Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit

An unknown threat actor has been observed using a large language model LLM agent to conduct post-compromise actions after obtaining initial access following the exploitation of a publicly-accessible Marimo network using a recently disclosed vulnerability. "The attacker compromised an...

JumpServer > 3.6.4 - Information Disclosure

JumpServer is an open source bastion host and a professional operation and maintenance security audit system. Starting in version 3.0.0 and prior to versions 3.5.5 and 3.6.4, session replays can download without authentication. Session replays stored in S3, OSS, or other cloud storage are not...

EUVD-2026-29882

Warpgate is an open source SSH, HTTPS and MySQL bastion host for Linux. Prior to 0.23.3, the SSO flow does not validate the state parameter, which makes it possible for an attacker to trick a user into logging into the attacker's account, possibly convincing them to perform sensitive actions on t...

PT-2026-40469

Name of the Vulnerable Software and Affected Versions Warpgate versions prior to 0.23.3 Description The SSO flow fails to validate the state parameter. This allows an attacker to trick a user into logging into an account controlled by the attacker, which could lead the user to perform sensitive...

CVE-2026-31798

JumpServer is an open source bastion host and an operation and maintenance security audit system. Prior to v4.10.16-lts, JumpServer improperly validates certificates in the Custom SMS API Client. When JumpServer sends MFA/OTP codes via Custom SMS API, an attacker can intercept the request and...

poc_automatisation_wallix

Automatisation WALLIX Bastion PoC d'automatisation pour deplo...

CVE-2023-43660

Warpgate is a smart SSH, HTTPS and MySQL bastion host for Linux that doesn't need special client apps. The SSH key verification for a user can be bypassed by sending an SSH key offer without a signature. This allows bypassing authentication under following conditions: 1. The attacker knows the...

CVE-2023-45140

The Bastion provides authentication, authorization, traceability and auditability for SSH accesses. SCP and SFTP plugins don't honor group-based JIT MFA. Establishing a SCP/SFTP connection through The Bastion via a group access where MFA is enforced does not ask for additional factor. This abnorm...

CVE-2025-49752

Azure Bastion Elevation of Privilege Vulnerability...

EUVD-2025-198370

Azure Bastion Elevation of Privilege Vulnerability...

CVE-2025-49752

Azure Bastion Elevation of Privilege Vulnerability...

CVE-2025-49752 Azure Bastion Elevation of Privilege Vulnerability

...

CVE-2025-49752

Azure Bastion Elevation of Privilege Vulnerability...

CVE-2025-49752 Azure Bastion Elevation of Privilege Vulnerability

...

CVE-2025-49752

CVE-2025-49752 notes an Elevation of Privilege in Microsoft Azure Bastion. The vulnerability enables an authentication bypass via capture-replay attacks, with the underlying impact described as high confidentiality and integrity risk and low availability risk. Affected are Azure Bastion versions ...

Azure Bastion Elevation of Privilege Vulnerability

...

KLA90450 Multiple vulnerabilities in Microsoft Azure

Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Application Gateway can be exploited remotely to gain privileges. 2. An elevatio...

Microsoft Azure Bastion 安全漏洞

Microsoft Azure Bastion is a hosted PaaS service from Microsoft Corporation, USA. A security vulnerability exists in Microsoft Azure Bastion that stems from elevation of privilege...

PT-2025-47641

Name of the Vulnerable Software and Affected Versions Azure Bastion versions prior to November 20, 2025 Description A critical elevation of privilege flaw impacts Azure Bastion. Attackers can potentially gain higher permissions through capture-replay attacks if the system is unpatched. This allow...

CVE-2023-7325

Anheng Mingyu Operation and Maintenance Audit and Risk Control System up to 2023-08-10 contains a server-side request forgery SSRF vulnerability in the xmlrpc.sock handler. The product accepts specially crafted XML-RPC requests that can be used to instruct the server to connect to internal unix...