Lucene search
+L

491 matches found

The Hacker News
The Hacker News
added 2026/06/29 11:40 a.m.9 views

Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse

A Russian advanced persistent threat APT group has continued to evolve and expand its malware arsenal as part of its ongoing cyber onslaught against Ukraine throughout 2025. Slovakian cybersecurity company ESET said it observed 35 distinct spear-phishing campaigns mounted by Gamaredon against new...

8.8CVSS7.3AI score0.80906EPSS
Exploits35
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-53164

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iommu/dma: Do not try to iommumap a 0 length region in swiotlb iommudmaiovalinkswiotlb processes a mapping that is unaligned in three parts, the head, middle an...

5.5CVSS6AI score0.00121EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/26 7:34 a.m.11 views

CVE-2026-53164

A flaw was found in the Linux kernel's input/output memory management unit IOMMU Direct Memory Access DMA subsystem, specifically within the software IOMMU bounce buffer SWIOTLB mechanism. This vulnerability occurs when the system attempts to map a zero-length memory region, which can be triggere...

5.5CVSS5.9AI score0.00121EPSS
Exploits0References4
NVD
NVD
added 2026/06/25 9:16 a.m.8 views

CVE-2026-53164

In the Linux kernel, the following vulnerability has been resolved: iommu/dma: Do not try to iommumap a 0 length region in swiotlb iommudmaiovalinkswiotlb processes a mapping that is unaligned in three parts, the head, middle and trailer. If the middle is empty because there are no aligned pages ...

5.5CVSS0.00121EPSS
Exploits0References3
OSV
OSV
added 2026/06/25 9:16 a.m.3 views

UBUNTU-CVE-2026-53164

In the Linux kernel, the following vulnerability has been resolved: iommu/dma: Do not try to iommumap a 0 length region in swiotlb iommudmaiovalinkswiotlb processes a mapping that is unaligned in three parts, the head, middle and trailer. If the middle is empty because there are no aligned pages ...

5.8CVSS5.7AI score0.00121EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.22 views

PT-2026-45870

Name of the Vulnerable Software and Affected Versions openSeaChest version 25.05.3 Description Out of bounds write and read operations occur when using the --showSCSIDefects command. This issue allows for writing defect information out of bounds when processing very large defect lists, which can ...

1.8CVSS5.8AI score0.00102EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: scsi: smartpqi: Correct device removal for multi-actuator devices. Correct device count for multi-actuator drives, which can cause kernel panics...

5.2AI score0.00198EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/18 12:28 p.m.15 views

CVE-2026-43487

A flaw was found in the Linux kernel's libata-core module. This vulnerability arises from issues with Link Power Management LPM when specific Seagate BarraCuda hard drives e.g., ST1000DM010-2EP102 are connected. This can lead to random system freezes, resulting in a denial of service for the...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4
OSV
OSV
added 2026/05/13 3:8 p.m.2 views

CVE-2026-43487 ata: libata-core: Disable LPM on ST1000DM010-2EP102

In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Disable LPM on ST1000DM010-2EP102 According to a user report, the ST1000DM010-2EP102 has problems with LPM, causing random system freezes. The drive belongs to the same BarraCuda family as the ST2000DM008-2FR102...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References7
Qualys Blog
Qualys Blog
added 2026/04/13 3:0 p.m.9 views

Deep Scan: Expanding Vulnerability Detection Beyond Traditional Boundaries

Security teams estimate that a significant percentage of enterprise software is installed outside standard system directories or package-managed locations, creating persistent visibility gaps for traditional vulnerability-scanning methods. As environments become more decentralized, with...

5.8AI score
Exploits0
The Hacker News
The Hacker News
added 2026/04/09 12:57 p.m.10 views

ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories

Thursday. Another week, another batch of things that probably should've been caught sooner but weren't. This one's got some range — old vulnerabilities getting new life, a few "why was that even possible" moments, attackers leaning on platforms and tools you'd normally trust without thinking twic...

8.8CVSS7.5AI score0.96666EPSS
Exploits16
HackRead
HackRead
added 2026/03/18 10:21 a.m.9 views

New ClickFix Scam Tricks Users Into Mapping Hacker-Controlled Drives

A new ClickFix scam tricks Windows users into running hidden commands that map hacker-controlled drives and load malware…...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/11 12:0 a.m.6 views

Microsoft Graph Enterprise Intelligence Collector

This Metasploit auxiliary module interacts with the Microsoft Graph API to perform enterprise intelligence collection. It supports authentication using Azure AD application credentials or an existing access token and enables enumeration of Azure users, SharePoint sites, OneDrive files, and Exchan...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/15 10:32 p.m.7 views

CVE-2025-13453

A potential vulnerability was reported in some ThinkPlus USB drives that could allow a user with physical access to read data stored on the drive...

5.1CVSS6.3AI score0.00121EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/15 12:31 a.m.6 views

EUVD-2025-206289

A potential vulnerability was reported in some ThinkPlus USB drives that could allow a user with physical access to read data stored on the drive...

7CVSS5.8AI score0.00121EPSS
Exploits0References2
NVD
NVD
added 2026/01/14 11:15 p.m.5 views

CVE-2025-13453

A potential vulnerability was reported in some ThinkPlus USB drives that could allow a user with physical access to read data stored on the drive...

5.1CVSS0.00121EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/14 10:18 p.m.30 views

CVE-2025-13453

A potential vulnerability was reported in some ThinkPlus USB drives that could allow a user with physical access to read data stored on the drive...

5.1CVSS0.00121EPSS
Exploits0References1
CVE
CVE
added 2026/01/14 10:18 p.m.19 views

CVE-2025-13453

CVE-2025-13453 concerns ThinkPlus USB drives where a user with physical access could read data stored on the drive. The NVD entry and multiple third-party sources (Red Hat, EUVD, CIRCL, CVE records) describe the issue as a data-retrieval risk tied to physical access, with CVSS v3.1 base score 4.6...

5.1CVSS5.9AI score0.00121EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/14 10:18 p.m.3 views

CVE-2025-13453

A potential vulnerability was reported in some ThinkPlus USB drives that could allow a user with physical access to read data stored on the drive...

5.1CVSS5.9AI score0.00121EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/14 12:0 a.m.9 views

PT-2026-2959

Name of the Vulnerable Software and Affected Versions ThinkPlus USB drives affected versions not specified Description A potential issue exists in some ThinkPlus USB drives that may allow a user with physical access to read data stored on the drive. Recommendations At the moment, there is no...

7CVSS5.9AI score0.00121EPSS
Exploits0References3
Rows per page
Query Builder