Lucene search
K

2655 matches found

Microsoft Secure
Microsoft Secure
added 4 days ago11 views

​​What’s new in Microsoft Security: June 2026

As organizations scale AI and agents across environments, security teams need protection that covers every surface. The Microsoft vision is simple: security should be ambient and autonomous, just like the AI it protects. This month’s updates help security and IT teams strengthen identity and...

6AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/26 5:3 p.m.3 views

Security Bulletin: Vulnerabilities in Spring Security, Handlebars, Apache MINA and Apache Tomcat might affect IBM Storage Defender Copy Data Management

Summary IBM Storage Defender Copy Data Management can be affected by vulnerabilities in Spring Security, Handlebars, Apache MINA and Apache Tomcat. Vulnerabilities include an authorization bypass, providing the power necessary to let users build semantic templates, allowing arbitrary code to be...

9.8CVSS6.5AI score0.0178EPSS
Exploits5Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/26 4:53 p.m.3 views

Security Bulletin: Vulnerabilities in lodash, cryptography and axios might affect IBM Storage Defender Sentinel Anomaly Scan Engine.

Summary IBM Storage Defender Sentinel Anomaly Scan Engine can be affected by lodash, cryptography and axios. Vulnerabilities include allowing an attacker to perform prototype pollution, create buffer overflows, improper validation of certificates and connect to internal services. More details are...

9.8CVSS7.7AI score0.01735EPSS
Exploits5Affected Software1
The Hacker News
The Hacker News
added 2026/06/17 12:36 p.m.16 views

Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development

Microsoft has formally disclosed that it's working to release a patch to address a Defender zero-day codenamed RoguePlanet. The vulnerability has now been assigned the CVE identifier CVE-2026-50656 CVSS score: 7.8, with the tech giant describing it as a privilege escalation flaw. "Microsoft is...

7.8CVSS5.6AI score0.03391EPSS
Exploits0
Information Security Automation
Information Security Automation
added 2026/06/17 9:0 a.m.6 views

June "In the Trend of VM" (#28): Linux kernel, Microsoft Defender, and Palo Alto Networks device vulnerabilities

June "In the Trend of VM" 28: Linux kernel, Microsoft Defender, and Palo Alto Networks device vulnerabilities. Presenting the traditional monthly roundup of trending vulnerabilities according to Positive Technologies. In the previous May edition, we covered four vulnerabilities. This time, there...

9.8CVSS6.9AI score0.93235EPSS
Exploits50
Cvelist
Cvelist
added 2026/06/16 6:1 p.m.19 views

CVE-2026-50656 Microsoft Defender Elevation of Privilege Vulnerability

...

7.8CVSS0.03391EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/16 6:1 p.m.9 views

CVE-2026-50656 Microsoft Defender Elevation of Privilege Vulnerability

...

7.8CVSS5.2AI score0.03391EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 6:1 p.m.200 views

CVE-2026-50656

Technical details about CVE-2026-50656 (affected components, root cause, impact specifics, remedies) are not publicly available in the provided documents. Monitor official advisories for updates.

7.8CVSS5.3AI score0.03391EPSS
Exploits0References2Affected Software1
Microsoft Secure
Microsoft Secure
added 2026/06/15 4:0 p.m.10 views

Microsoft Defender email security benchmarking: Key insights from one year of data

Microsoft publishes quarterly email security benchmarking data comparing Microsoft Defender against secure email gateway SEG and integrated cloud email security ICES vendors using real-world threat telemetry. A year ago, we set out to change how email security effectiveness is measured. With our...

5.5AI score
Exploits0
OSV
OSV
added 2026/06/15 11:43 a.m.9 views

MAL-2026-5776 Malicious code in fastgptmini (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4da10d62527ca4b69f4458b6a01c77f01af42c5a1631d5cc6f207070d1ade20d setup.py fetches an opaque file from https://tmpfiles.org/dl/wJwhUXDhUK6M/zvgfsj.txt an anonymous, throwaway file-sharing host during pip install,...

5.8AI score
Exploits0References7
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/15 11:43 a.m.11 views

Malicious code in fastgptmini (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4da10d62527ca4b69f4458b6a01c77f01af42c5a1631d5cc6f207070d1ade20d setup.py fetches an opaque file from https://tmpfiles.org/dl/wJwhUXDhUK6M/zvgfsj.txt an anonymous, throwaway file-sharing host during pip install,...

5.7AI score
Exploits0References7
GithubExploit
GithubExploit
added 2026/06/13 3:22 a.m.47 views

vader-toctou

OPERATION VADER — TOCTOU EXPLOITATION SYLLABUS OPERATIONS...

5.9AI score
Exploits0
HackRead
HackRead
added 2026/06/11 1:20 p.m.21 views

Hackers Use Fake Claude Code Guide and AI PDFs to Spread AsyncRAT Malware

Hackers are using fake Claude Code guide and AI PDFs to spread AsyncRAT malware via Windows attack using PowerShell and Defender exclusions...

5.4AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/10 9:3 p.m.9 views

CVE-2026-45647

Time-of-check time-of-use toctou race condition in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally...

7CVSS5.4AI score0.00215EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2026/06/10 5:22 a.m.114 views

Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows

The anonymous security researcher going by the name Chaotic Eclipse aka Nightmare-Eclipse has released a proof-of-concept PoC exploit for yet another Microsoft Defender zero-day named RoguePlanet. "The exploit is a race condition, so it's a hit or miss," the researcher, who published the exploit...

7.8CVSS6.4AI score0.08371EPSS
Exploits2
Microsoft Secure
Microsoft Secure
added 2026/06/09 5:35 p.m.12 views

Reconstructing AI activity in investigations

AI systems are now part of everyday work. Investigators need a consistent way to reconstruct what happened within them. Security teams are already investigating activity involving Microsoft 365 Copilot and Azure AI services—from prompt injection attempts to unexpected data access. Those signals a...

5.4AI score
Exploits0
NVD
NVD
added 2026/06/09 5:17 p.m.19 views

CVE-2026-45647

Time-of-check time-of-use toctou race condition in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally...

7CVSS0.00215EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/09 5:5 p.m.17 views

CVE-2026-45647 Microsoft Defender for Endpoint for Mac Elevation of Privilege Vulnerability

...

5.5CVSS5.4AI score0.00215EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 5:5 p.m.36 views

CVE-2026-45647 Microsoft Defender for Endpoint for Mac Elevation of Privilege Vulnerability

...

5.5CVSS0.00215EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 5:5 p.m.10 views

EUVD-2026-35571

Time-of-check time-of-use toctou race condition in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally...

5.5CVSS5.4AI score0.00215EPSS
Exploits0References1
Rows per page
Query Builder