101 matches found
CVE-2026-56323
Capgo before 12.128.2 contains an information disclosure vulnerability in the /functions/v1/channelself endpoint that allows unauthenticated attackers to enumerate non-public channel names and determine app existence and subscription status. Remote attackers can send GET requests with arbitrary...
EUVD-2026-38373
Capgo before 12.128.2 contains an information disclosure vulnerability in the /functions/v1/channelself endpoint that allows unauthenticated attackers to enumerate non-public channel names and determine app existence and subscription status. Remote attackers can send GET requests with arbitrary...
PT-2026-51411
Name of the Vulnerable Software and Affected Versions Capgo versions prior to 12.128.2 Description An information disclosure issue exists in the '/functions/v1/channel self' endpoint. Unauthenticated remote attackers can send GET requests using arbitrary app id parameters to enumerate non-public...
CLEANSTART-2026-EF68467 Security fixes for CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32288, CVE-2026-32289, CVE-2026-33810, CVE-2026-39882, CVE-2026-39883, ghsa-hfvc-g4fc-pqhx, ghsa-w8rr-5gcm-pp58 applied in versions: 0.36.0-r0, 0.36.0-r1
Multiple security vulnerabilities affect the grafana-rollout-operator package. These issues are resolved in later releases. See references for individual vulnerability details...
CLEANSTART-2026-MO33100 Security fixes for CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32288, CVE-2026-32289, CVE-2026-33810, CVE-2026-39882, CVE-2026-39883, ghsa-hfvc-g4fc-pqhx, ghsa-w8rr-5gcm-pp58 applied in versions: 0.36.0-r0, 0.36.0-r1
Multiple security vulnerabilities affect the grafana-rollout-operator package. These issues are resolved in later releases. See references for individual vulnerability details...
Online Safety Regulation Increases Privacy Risk: Evidence from the UK Online Safety Act
Governments worldwide are increasingly regulating digital platforms to reduce online harms, particularly those affecting children. However, access restrictions can alter user behaviour and introduce new privacy and security risks. The UK Online Safety Act OSA, passed in October 2023, illustrates...
May 26, 2026—KB5089573 (OS Builds 26200.8524 and 26100.8524) Preview
May 26, 2026—KB5089573 OS Builds 26200.8524 and 26100.8524 Preview This cumulative update for Windows 11, version 25H2 and 24H2 KB5089573, includes production-quality improvements. Visit the Windows release health dashboard for the latest status on this release. Announcements and messages Thi...
May 26, 2026—KB5089570 (OS Build 28000.2179) Preview
May 26, 2026—KB5089570 OS Build 28000.2179 Preview This cumulative update for Windows 11, version 26H1 KB5083806, includes production-quality improvements. Visit the Windows release health dashboard for the latest status on this release. Highlights This update is available through two release...
CLEANSTART-2026-UY10441 Security fixes for CVE-2026-32280, CVE-2026-32281, CVE-2026-32282, CVE-2026-32283, CVE-2026-32289, CVE-2026-33810, CVE-2026-39882, CVE-2026-39883, ghsa-hfvc-g4fc-pqhx, ghsa-w8rr-5gcm-pp58 applied in versions: 0.36.0-r0, 0.36.0-r1
Multiple security vulnerabilities affect the grafana-rollout-operator package. These issues are resolved in later releases. See references for individual vulnerability details...
Microsoft is changing Edge’s plaintext password behavior
Microsoft said it will change Edge’s password handling as a “defense‑in‑depth” measure. Originally, Edge decrypted the entire saved‑password store on startup and kept all credentials resident in process memory in clear text for the whole browser session, regardless of whether a given credential w...
April 30, 2026—KB5083806 (OS Build 28000.1896) Preview
April 30, 2026—KB5083806 OS Build 28000.1896 Preview This non-security update for Windows 11, version 26H1 KB5083806, includes production-quality improvements. To learn more about differences between security updates, optional non-security preview updates, out-of-band OOB updates, and...
April 30, 2026—KB5083631 (OS Builds 26200.8328 and 26100.8328) Preview
April 30, 2026—KB5083631 OS Builds 26200.8328 and 26100.8328 Preview This non-security update for Windows 11, version 25H2 and 24H2 KB5083631, includes production-quality improvements. To learn more about differences between security updates, optional non-security preview updates, out-of-band...
OpenAI Launches GPT-5.4-Cyber with Expanded Access for Security Teams
OpenAI on Tuesday unveiled GPT-5.4-Cyber , a variant of its latest flagship model, GPT‑5.4, that's specifically optimized for defensive cybersecurity use cases, days after rival Anthropic unveiled its own frontier model, Mythos. "The progressive use of AI accelerates defenders – those responsible...
GHSA-FV83-X2XW-2J55 vulnerabilities
Vulnerabilities for packages: smokescreen, polaris, clickhouse-operator, flux, newrelic-infra-operator, malcontent, aws-load-balancer-controller, stakater-reloader, aws-network-policy-agent, dkron, hubble, flux-operator, local-path-provisioner, victoriametrics-cluster, gh, omnibump, pluto,...
GHSA-7MR4-XJXG-34G6 vulnerabilities
Vulnerabilities for packages: openbao, aactl, grafana-agent-operator, terraform-provider-sendgrid, certificate-transparency, helm-set-status, kube-arangodb, docker-cli, helm-mapkubeapis, argo-rollouts, kyverno-notation-aws, terraform-provider-tls, step-ca, bento, filebrowser, caddy, kaf,...
GHSA-HFVC-G4FC-PQHX vulnerabilities
Vulnerabilities for packages: azuredisk-csi, aactl, openbao, tekton-pipelines, kube-arangodb, azurefile-csi, argo-rollouts, kyverno-notation-aws, clickhouse-operator, terraform-provider-grafana, spicedb, step-ca, bento, hydra, neuvector-sigstore-interface, pulumi-language-dotnet, kube-rbac-proxy,...
March 26, 2026—KB5079391 (OS Builds 26200.8116 and 26100.8116) Preview
March 26, 2026—KB5079391 OS Builds 26200.8116 and 26100.8116 Preview This update is no longer being offered to new devices due to an installation issue identified after release. The issue has been addressed in the March 31, 2026—KB5086672 OS Builds 26200.8117 and 26100.8117 Out-of-band update tha...
Important: Red Hat Security Advisory: Red Hat OpenShift GitOps v1.18.4 security update
Important: Red Hat OpenShift GitOps v1.18.4 security update An update is now available for Red Hat OpenShift GitOps. Bug Fixes and Enhancements: GITOPS-8439 CVE-2025-12816 openshift-gitops-1/console-plugin-rhel8: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic...
Important: Red Hat Security Advisory: Red Hat OpenShift GitOps v1.17.5 security update
Important: Red Hat OpenShift GitOps v1.17.5 security update An update is now available for Red Hat OpenShift GitOps. Bug Fixes and Enhancements: GITOPS-8438 CVE-2025-12816 openshift-gitops-1/console-plugin-rhel8: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic...
Instagram flagged explicit messages to minors in 2018. Image-blurring arrived six years later
Meta took six years to blur explicit images on Instagram, even though internal emails show executives were aware in 2018 that minors were receiving them, according to newly unsealed court documents. In a deposition given last year, Adam Mosseri now the head of Instagram discusses an email thread...