Lucene search
K

940591 matches found

Circl
Circl
added 4 days ago7 views

CVE-2026-56690

creationtimestamp| type| source ---|---|--- 2026-07-10 12:32:05+00:00| seen| https://bsky.app/profile/malwareobserver.bsky.social/post/3mqc5qu5luq2o 2026-07-10 12:53:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqc6wpo2tm2i 2026-07-10 16:49:16+00:00| seen|...

8.5CVSS6.1AI score0.0023EPSS
Exploits0References5
Fedora
Fedora
added 5 days ago10 views

[SECURITY] Fedora 44 Update: python-pendulum-3.2.0-1.fc44

Unlike other datetime libraries for Python, Pendulum is a drop-in replacement for the standard datetime class it inherits from it, so, basically, you can replace all your datetime instances by DateTime instances in you code. It also removes the notion of naive datetimes: each Pendulum instance is...

5.9AI score
Exploits0
Circl
Circl
added 2026/06/30 10:41 p.m.10 views

CVE-2026-11541

creationtimestamp| type| source ---|---|--- 2026-06-30 22:41:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpk34s2k5x2u 2026-07-01 02:51:56+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mpkj56ehry2l 2026-07-02 01:31:56+00:00| seen|...

9.8CVSS5.9AI score0.00418EPSS
Exploits0References7
Circl
Circl
added 2026/06/28 1:22 p.m.9 views

CVE-2026-13487

creationtimestamp| type| source ---|---|--- 2026-06-28 13:22:36+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mpe2y3obci2v 2026-06-28 14:35:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpe72l5y2323 2026-06-29 19:46:18+00:00| seen|...

7.5CVSS7.1AI score0.00269EPSS
Exploits0References3
OSV
OSV
added 2026/06/23 12:59 p.m.7 views

JLSEC-2026-617 Open redirect in the HTTP.jl static file server canonical redirects

Description The static file server's canonical 301 redirects index-file strip, directory trailing-slash add, and file trailing-slash strip built the Location header verbatim from the un-normalized request target. Request-target validation only requires a leading /, has no CTL bytes, and the...

5.8AI score
Exploits0References2
Circl
Circl
added 2026/06/22 4:16 a.m.6 views

CVE-2026-9456

creationtimestamp| type| source ---|---|--- 2026-06-22 04:16:36+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3motzobguut2b...

10CVSS5.8AI score0.01909EPSS
Exploits0References1
OSV
OSV
added 2026/06/17 12:0 p.m.6 views

MAL-2026-6151 Malicious code in buildautomation-touch (npm)

The npm package buildautomation-touch published by npm user sproger, [email protected] is a deceptive React Native component and part of a coordinated 37-package campaign across two attacker-controlled domains surrprisingcoompanny.lol and barbellmate.xyz. On component mount it registers...

5.4AI score
Exploits0References1
OSV
OSV
added 2026/06/17 12:0 p.m.5 views

MAL-2026-6161 Malicious code in flexbox-oauth-machinelearning (npm)

The npm package flexbox-oauth-machinelearning published by npm user sproger, [email protected] is a deceptive React Native component and part of a coordinated 37-package campaign across two attacker-controlled domains surrprisingcoompanny.lol and barbellmate.xyz. On component mount it...

5.5AI score
Exploits0References1
OSV
OSV
added 2026/06/17 12:0 p.m.7 views

MAL-2026-6181 Malicious code in virtualization-compression-collapse (npm)

The npm package virtualization-compression-collapse published by npm user sproger, [email protected] is a deceptive React Native component and part of a coordinated 37-package campaign across two attacker-controlled domains surrprisingcoompanny.lol and barbellmate.xyz. On component mount it...

5.5AI score
Exploits0References1
OSV
OSV
added 2026/06/17 12:0 p.m.8 views

MAL-2026-6162 Malicious code in font-picker-responsive (npm)

The npm package font-picker-responsive published by npm user sproger, [email protected] is a deceptive React Native component and part of a coordinated 37-package campaign across two attacker-controlled domains surrprisingcoompanny.lol and barbellmate.xyz. On component mount it registers...

5.4AI score
Exploits0References1
Circl
Circl
added 2026/06/15 9:2 p.m.11 views

CVE-2026-52718

creationtimestamp| type| source ---|---|--- 2026-06-15 21:02:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3moe6n7ygzu2v...

6.5CVSS5AI score0.0031EPSS
Exploits0References1
Circl
Circl
added 2026/06/12 4:0 p.m.10 views

GHSA-8HG8-63C5-GWMX

creationtimestamp| type| source ---|---|--- 2026-06-12 16:00:32+00:00| seen| https://bsky.app/profile/euvd-bot.bsky.social/post/3mo44dsnzdc2y...

5AI score
Exploits0References1
Circl
Circl
added 2026/06/12 1:36 p.m.15 views

CVE-2026-49347

creationtimestamp| type| source ---|---|--- 2026-06-12 13:36:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mo3ud4luzf2r...

5.3CVSS5AI score0.00235EPSS
Exploits0References1
Circl
Circl
added 2026/06/11 12:59 a.m.9 views

CVE-2026-49218

creationtimestamp| type| source ---|---|--- 2026-06-11 00:59:56+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnxzkh72te2n 2026-06-11 02:10:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mny5i4wo5u2v...

7.5CVSS5.3AI score0.00346EPSS
Exploits0References2
Rapid7 Blog
Rapid7 Blog
added 2026/06/09 9:4 p.m.26 views

Patch Tuesday - June 2026

Microsoft is publishing 200 vulnerabilities on June 2026 Patch Tuesday. Microsoft is not aware of exploitation in the wild for any of these vulnerabilities, and is aware of public disclosure for three. This is similar to last month’s Patch Tuesday, however several of last month’s vulnerabilities...

8.4CVSS6.2AI score0.00814EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/02 12:0 a.m.9 views

AI Model Extraction Attacks: Bypassing Single-Client Assumptions in Defenses

Ensuring the protection of Artificial Intelligence AI models deployed in military Command and Control C2 systems and critical infrastructure is essential for maintaining information superiority. Model Extraction Attacks MEAs pose a significant threat, as they enable adversaries to replicate...

5.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2026/06/01 4:49 p.m.18 views

Vulnerability Disclosure in the Age of AI

New article: "Responsible Disclosure in the Age of AI: A Call for Urgent Action," by Melissa Hathaway. Abstract: Artificial intelligence is fundamentally reshaping the balance between vulnerability discovery and remediation. Frontier AI models are now capable of autonomously identifying exploitab...

5.9AI score
Exploits0
Circl
Circl
added 2026/05/31 9:13 a.m.11 views

CVE-2026-10168

creationtimestamp| type| source ---|---|--- 2026-05-31 09:13:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn57yvfu272p...

6.5CVSS5.8AI score0.00243EPSS
Exploits0References1
NVD
NVD
added 2026/05/29 8:16 p.m.16 views

CVE-2026-4387

StrongDM Desktop Application before 23.74.0 Desktop Client before 53.77.0 on Microsoft Windows stores authentication state, including a JSON Web Token and asymmetric key material, in cleartext in a per-user state file located at C:\Users\.sdm\state.kv. The file is protected only by default...

2CVSS0.00132EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/29 6:28 p.m.15 views

CVE-2026-4387 Unencrypted storage of authentication state in StrongDM Desktop Application state.kv file

StrongDM Desktop Application before 23.74.0 Desktop Client before 53.77.0 on Microsoft Windows stores authentication state, including a JSON Web Token and asymmetric key material, in cleartext in a per-user state file located at C:\Users\.sdm\state.kv. The file is protected only by default...

2CVSS5.9AI score0.00132EPSS
Exploits0References1
Rows per page
Query Builder