Lucene search
K

1614 matches found

Circl
Circl
added 2 days ago6 views

CERTFR-2026-ACT-028

creationtimestamp| type| source ---|---|--- 2026-06-29 13:18:55+00:00| seen| https://bsky.app/profile/cert-fr.bsky.social/post/3mpglahrxgg2r 2026-06-29 13:19:01+00:00| seen| https://social.numerique.gouv.fr/users/certfr/statuses/116833591913906031 2026-06-30 09:08:15+00:00| seen|...

5.8AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 5 days ago4 views

Oracle Linux 9 : dracut (ELSA-2026-26533)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-26533 advisory. 057-115.git20260527.0.1 - Skip the default FIPS logic on special UEK kernels where the FIPS module is linked directly into the kernel. Orabug: 38705580 - Ship...

7.5CVSS6AI score0.01131EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: configfs-tsm-report: Fixed the NULL dereference of tsmops. Unlike sysfs, the lifetime of configfs objects is controlled by userspace. There is no mechanism for the kernel to find and delete all created config-items. Instead, t...

5.5CVSS6.3AI score0.00146EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.10 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: KVM: PPC: Book3S HV: Fixed stack handling in idlekvmstartguest In commit 10d91611f426 “powerpc/64s: Reimplemented the book3s idle code in C”, kvmstartguest became idlekvmstartguest. The old code allocated a stack frame on the...

7.1CVSS5.4AI score0.00224EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: powerpc/64s: Fixed the program check interrupt emergency stack path issue. The emergency stack path was jumping into a 3: label within the GENCOMMONBODY macro for the normal path after it had finished, rather than jumping over...

5.5CVSS6.1AI score0.00222EPSS
Exploits0References2
NVD
NVD
added 2026/06/17 1:19 p.m.4 views

CVE-2024-35648

Cross-Site request forgery CSRF vulnerability in Andy Moyle Emergency Password Reset allows Cross Site Request Forgery. This issue affects Emergency Password Reset: from n/a through 8.0...

4.3CVSS0.00127EPSS
Exploits0References1
Circl
Circl
added 2026/06/16 9:0 p.m.6 views

CVE-2026-46944

creationtimestamp| type| source ---|---|--- 2026-06-16 21:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1923 2026-06-17 05:31:59+00:00| seen| https://www.acn.gov.it/portale/w/critical-patch-update-di-oracle-8 2026-06-18 15:37:06+00:00| seen|...

9.1CVSS4.9AI score0.00453EPSS
Exploits0References3
Circl
Circl
added 2026/06/09 6:55 a.m.8 views

CVE-2026-47901

creationtimestamp| type| source ---|---|--- 2026-06-09 06:55:00+00:00| seen| https://cert.pl/en/posts/2026/06/CVE-2026-9279...

4.6CVSS5.3AI score0.00139EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:46 p.m.9 views

CVE-2026-28581

In fixInitiatingUserIfNecessary of CallIntentProcessor.java, there is a possible way to make an emergency call due to a logic error in the code. This could lead to local with null execution privileges needed. User interaction is null for exploitation...

4CVSS5.7AI score0.00074EPSS
Exploits0References1
Malwarebytes
Malwarebytes
added 2026/06/04 9:9 a.m.14 views

Meta’s AI support bot happily handed Instagram accounts to hackers

Customer service chatbots have one job: get the user what they're asking for without bothering a human. Meta's new AI support assistant took that brief a little too seriously. Over the past few months, attackers have been opening support chats, telling the bot they were locked out of Instagram...

5.7AI score
Exploits0
NVD
NVD
added 2026/06/01 10:16 p.m.14 views

CVE-2026-28581

In fixInitiatingUserIfNecessary of CallIntentProcessor.java, there is a possible way to make an emergency call due to a logic error in the code. This could lead to local with null execution privileges needed. User interaction is null for exploitation...

4CVSS0.00074EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/01 9:14 p.m.6 views

CVE-2026-28581

In fixInitiatingUserIfNecessary of CallIntentProcessor.java, there is a possible way to make an emergency call due to a logic error in the code. This could lead to local with null execution privileges needed. User interaction is null for exploitation...

4CVSS5.9AI score0.00074EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/01 9:14 p.m.32 views

CVE-2026-28581

In fixInitiatingUserIfNecessary of CallIntentProcessor.java, there is a possible way to make an emergency call due to a logic error in the code. This could lead to local with null execution privileges needed. User interaction is null for exploitation...

0.00074EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/01 9:14 p.m.12 views

CVE-2026-28581

In fixInitiatingUserIfNecessary of CallIntentProcessor.java, there is a possible way to make an emergency call due to a logic error in the code. This could lead to local with null execution privileges needed. User interaction is null for exploitation...

5.9AI score0.00074EPSS
Exploits0References1
CVE
CVE
added 2026/06/01 9:14 p.m.17 views

CVE-2026-28581

Technical details for CVE-2026-28581 are not publicly available in the provided documents; monitor for updates.

4CVSS5.9AI score0.00074EPSS
Exploits0References1Affected Software1
Schneier on Security
Schneier on Security
added 2026/06/01 4:49 p.m.16 views

Vulnerability Disclosure in the Age of AI

New article: "Responsible Disclosure in the Age of AI: A Call for Urgent Action," by Melissa Hathaway. Abstract: Artificial intelligence is fundamentally reshaping the balance between vulnerability discovery and remediation. Frontier AI models are now capable of autonomously identifying exploitab...

5.9AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.19 views

PT-2026-45613

In fixInitiatingUserIfNecessary of CallIntentProcessor.java, there is a possible way to make an emergency call due to a logic error in the code. This could lead to local with null execution privileges needed. User interaction is null for exploitation...

4CVSS5.9AI score0.00074EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.16 views

PT-2026-45412

🔒 CyberSecurity CVE-2026-37890: Atlassian Confluence OGNL Injection — Detection and Emergency P… "Critical OGNL injection flaw CVE-2026-37890 in Atlassian Confluence…" 🔗 https://t.co/RLZcRST2d3 CyberSecurity ThreatIntel penetrationtesting redteam offensivesecurity...

5.8AI score
Exploits0References1
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.7 views

Google Android 安全漏洞

Google Android is an open-source operating system based on Linux, developed by Google Inc. There is a security vulnerability in Google Android, which stems from a logical error in the fixInitiatingUserIfNecessary function. This vulnerability may lead to emergency calls...

4CVSS5.3AI score0.00074EPSS
Exploits0References1
OSV
OSV
added 2026/06/01 12:0 a.m.8 views

ASB-A-479515555

Bulletin has no description...

5.7AI score
Exploits0
Rows per page
Query Builder