ROOT-OS-UBUNTU-2404-CVE-2026-43495 CVE-2026-43495 in rootio-linux - Patched by Root

Root has patched CVE-2026-43495 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code that conceals a credential-stealing payload and worm propagation logic. A malicious actor associated with the "TeamPCP" or "Mini Shai-Hulud" campaign compromised a maintainer's access token; this allowed the...

Dark Web Market Lists Alleged 375TB Lockheed Martin Data for $600M

A dark web market known as Threat Market is listing 375TB of Lockheed Martin data, which it claims was provided by a group calling itself ‘APT Iran.’...

GIGABYTE Chipsets 安全漏洞

GIGABYTE Chipsets is a series of chipsets open-sourced by GIGABYTE of Taiwan, China. A security vulnerability exists in GIGABYTE Chipsets that stems from not properly enabling IOMMU, which could allow an unauthenticated physical attacker to read or write arbitrary physical memory before the...

CVE-2025-60002

creationtimestamp| type| source ---|---|--- 2025-10-09 17:12:48+00:00| seen| Telegram/oLpQU5nt5sxpiUmsyqMTgdjzEAqI68mlCwILq1xSgPPrI...

CVE-2025-20316

CVE-2025-20316 describes a vulnerability in the ACL programming of Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X Series Switches. The issue allows an unauthenticated, remote attacker to bypass a configured egress ACL. The root cause is tied to traffic flooding from an unlearned MAC addr...

UBUNTU-CVE-2025-39806

In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: fix slab out-of-bounds access in mtreportfixup A malicious HID device can trigger a slab out-of-bounds during mtreportfixup by passing in report descriptor smaller than 607 bytes. mtreportfixup attempts to patch...

600 GB of Alleged Great Firewall of China Data Published in Largest Leak Yet

Hackers leaked 600 GB of data linked to the Great Firewall of China, exposing documents, code, and operations.…...

Cyber Security of Mega Events: a Case Study of Securing the Digital Infrastructure for MahaKumbh 2025 -- a 45 Days Mega Event of 600 Million Footfalls

Mega events such as the Olympics, World Cup tournaments, G-20 Summit, religious events such as MahaKumbh are increasingly digitalized. From event ticketing, vendor booth or lodging reservations, sanitation, event scheduling, customer service, crime reporting, media streaming and messaging on...

The vulnerability of the software for the Hitachi Energy MicroSCADA X SYS600 system, related to errors in using standard permissions, allows a perpetrator to trigger a maintenance failure.

The vulnerability of the software used in the Hitachi Energy MicroSCADA X SYS600 equipment management system is related to errors in the use of standard permissions. Exploiting this vulnerability could allow an intruder to cause maintenance failures...

The vulnerability of the web interface of the Hitachi Energy MicroSCADA X SYS600 software allows a intruder to gain unauthorized access to protected information.

The vulnerability of the web interface of the Hitachi Energy MicroSCADA X SYS600 system management software relates to the disclosure of information. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

Poly Trio Security Breach

Poly Trio is a Trio series of business conference phones from Poly USA. A security vulnerability exists in Poly CCX and Trio that stems from a security flaw in the Web Interface component. Affected products and versions: Poly CCX version 400, CCX version 600, Trio version 8800, Trio version C60...

The vulnerability in the web-based interface for controlling WAGO PFC100/PFC200 programmable logic controllers, Edge Controllers, and WAGO Touch Panel 600 sensor panels allows a perpetrator to gain increased privileges.

The vulnerability of the web-based interface for controlling WAGO PFC100/PFC200 programmable logic controllers, Edge Controllers, and WAGO Touch Panel 600 sensors is related to errors in privilege management during control operations. Exploiting this vulnerability can allow attackers to gain...

LockBit Ransomware Extorts $91 Million from U.S. Companies

The threat actors behind the LockBit ransomware-as-a-service RaaS scheme have extorted $91 million following hundreds of attacks against numerous U.S. organizations since 2020. That's according to a joint bulletin published by the U.S. Cybersecurity and Infrastructure Security Agency CISA, the...

The vulnerability of the microprogramming software for WAGO CC100 programmable logic controllers and the microprogramming software for WAGO Touch Panel 600 sensors is related to insufficient verification of input data.

The vulnerability of the microprogramming software used in WAGO CC100 programmable logic controllers and the microprogramming software for WAGO Touch Panel 600 sensors is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to gain access to...

SUSE CVE-2008-1293

ldm in Linux Terminal Server Project LTSP 0.99 and 2 passes the -ac option to the X server on each LTSP client, which allows remote attackers to connect to this server via TCP port 6006 aka display :6...

SAP ERP 安全漏洞

SAP ERP is a series of software for ERP management from SAP, a German company. A security vulnerability exists in SAP ERP version 600. An attacker exploiting the vulnerability could view sensitive data...

CVE-2022-4697

creationtimestamp| type| source ---|---|--- 2022-12-23 18:14:41+00:00| seen| https://t.me/cibsecurity/55250...

CVE-2022-40698

creationtimestamp| type| source ---|---|--- 2022-11-19 02:43:42+00:00| seen| https://t.me/cibsecurity/53196...

多款WAGO产品安全漏洞

WAGO Series PFC100 and others are products of WAGO, Germany.WAGO Series PFC100 is a programmable logic controller.WAGO Compact Controller CC100 is a compact controller.WAGO Edge Controller is an edge controller. A security vulnerability exists in the WAGO Series PFC100/PFC200, Series Touch Panel...