Lucene search
K

6800 matches found

MSRC
MSRC
added 2026/05/27 12:0 a.m.12 views

A shared responsibility: Protecting customers through Coordinated Vulnerability Disclosure

In recent weeks several zero-day vulnerabilities have been publicly disclosed. The details of these vulnerabilities were not shared with Microsoft prior to release, and the disclosures put our customers at unnecessary risk...

5.8AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/26 2:30 a.m.10 views

CVE-2026-9523

A vulnerability was detected in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 3000WEBV2. Affected by this vulnerability is an unknown functionality of the file /SubstationWEBV2/app/..;/calc/getCalcmeterDetailDayListTree. Performing a manipulation of the argument...

7.5CVSS6.9AI score0.0033EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2026/05/21 2:16 p.m.27 views

CVE-2025-71211

A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations. This vulnerability is similar in scope to CVE-2025-71210 but affects a different executable. Please note: although this vulnerabili...

9.8CVSS0.03754EPSS
Exploits0References2
NVD
NVD
added 2026/05/21 2:16 p.m.34 views

CVE-2025-71210

A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations. Please note: although this vulnerability carries a technical critical CVSS rating, this was reported via responsible disclosure via...

9.8CVSS0.03811EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/21 1:2 p.m.8 views

CVE-2025-71211

A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations. This vulnerability is similar in scope to CVE-2025-71210 but affects a different executable. Please note: although this vulnerabili...

9.8CVSS7.7AI score0.03811EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/21 1:2 p.m.43 views

CVE-2025-71211

A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations. This vulnerability is similar in scope to CVE-2025-71210 but affects a different executable. Please note: although this vulnerabili...

9.8CVSS0.03754EPSS
Exploits0References2
CVE
CVE
added 2026/05/21 1:2 p.m.23 views

CVE-2025-71211

CVE-2025-71211 concerns Trend Micro Apex One Console; a directory traversal vulnerability enables remote code execution on affected installations. The ZDI advisory notes that the Apex One Console, listening on ports 8080 and 4343, allows remote attackers to execute arbitrary code without authenti...

9.8CVSS7.6AI score0.03754EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/05/21 1:2 p.m.18 views

EUVD-2025-209911

A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations. This vulnerability is similar in scope to CVE-2025-71210 but affects a different executable. Please note: although this vulnerabili...

9.8CVSS7.7AI score0.03811EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/21 1:1 p.m.52 views

CVE-2025-71210

A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations. Please note: although this vulnerability carries a technical critical CVSS rating, this was reported via responsible disclosure via...

9.8CVSS0.03811EPSS
Exploits0References2
CVE
CVE
added 2026/05/21 1:1 p.m.31 views

CVE-2025-71210

CVE-2025-71210 affects the Trend Micro Apex One management console. The connected sources describe a path traversal vulnerability in the console that could allow a remote attacker to upload and execute code, with exploitation possible when an attacker has access to the console. Affected products ...

9.8CVSS7.6AI score0.03811EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/21 1:1 p.m.10 views

CVE-2025-71210

A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations. Please note: although this vulnerability carries a technical critical CVSS rating, this was reported via responsible disclosure via...

9.8CVSS7.7AI score0.03811EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/05/20 4:15 a.m.85 views

SOC-Alert-Investigation-Portfolio

SOC Alert Investigation Portfolio This repository contains pr...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/20 12:0 a.m.10 views

FuzzingBrain V2: A Multi-Agent LLM System for Automated Vulnerability Discovery and Reproduction

Software vulnerabilities pose critical security threats, with nearly 50,000 CVEs reported in 2025. While Large Language Models LLMs show promise for automated vulnerability detection, three key challenges remain. First, LLM-generated vulnerability reports suffer from high false positive rates and...

5.9AI score
Exploits0
HackRead
HackRead
added 2026/05/19 3:59 p.m.22 views

Pwn2Own Berlin 2026 Closes With $1.3 Million in Zero-Day Payouts

Cybersecurity researchers successfully demonstrated 47 unique zero-day exploits at Pwn2Own Berlin 2026, targeting major enterprise software and AI platforms...

5.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2026/05/18 11:8 a.m.19 views

Zero-Day Exploit Against Windows BitLocker

It's nasty, but it requires physical access to the computer: The exploit, named YellowKey, was published earlier this week by a researcher who goes by the alias Nightmare-Eclipse. It reliably bypasses default Windows 11 deployments of BitLocker, the full-volume encryption protection Microsoft...

5.8AI score
Exploits0
The Hacker News
The Hacker News
added 2026/05/18 8:57 a.m.21 views

MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems

Chaotic Eclipse, the security researcher behind the recently disclosed Windows flaws, YellowKey and GreenPlasma, has released a proof-of-concept PoC for a Windows privilege escalation zero-day flaw that grants attackers SYSTEM privileges on fully patched Windows systems. Codenamed MiniPlasma , th...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/17 4:8 a.m.80 views

Advance_WAF_project_CS

WAFinity - Infinite Protection, Intelligent Detection WAFin...

5.9AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/17 12:0 a.m.10 views

PT-2026-41523

🔒 CyberSecurity CVE-2026-20241: Cisco SD-WAN Sixth Zero-Day of 2026 — Detection and Hardening G… "Active exploitation of CVE-2026-20241 marks the 6th Cisco SD-WAN zero-day this year." 🔗 https://t.co/KYmOaJdFr3 CyberSecurity ThreatIntel cve zeroday patchtuesday...

5.8AI score
Exploits0References1
GithubExploit
GithubExploit
added 2026/05/16 5:23 a.m.159 views

darksword-Exploit

🗡️ DarkSword — iOS Full-Chain Exploit Analysis Reference:...

8.8CVSS7.3AI score0.22359EPSS
Exploits16
hivepro
hivepro
added 2026/05/15 2:37 p.m.9 views

The Machine Found It First. The Machine Will Exploit It Next.

& For decades, the question behind every CVE has been "who found it, and how fast can attackers catch up?" As of May 12, 2026, the question has flipped. Machines found the bug. Machines will weaponize the next one. The race is no longer human-versus-human with a stopwatch. Discovery Discovery...

9.8CVSS6.3AI score0.01225EPSS
Exploits2
Rows per page
Query Builder