Lucene search
K

1544 matches found

Cvelist
Cvelist
added 2026/06/24 5:45 p.m.30 views

CVE-2026-44020 Docling: Unsafe XML Entity Expansion in USPTO Patent Backend

Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.13.0 until 2.74.0, the USPTO patent XML parser used the standard xml.sax.parseString without protection against XML External Entity XXE attacks. An attacker could...

7.5CVSS0.00334EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2026/06/19 2:0 p.m.20 views

CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Thursday urged Fortinet customers with FortiGate appliances to take steps to secure against ongoing malicious activity aimed at thousands of internet-accessible devices. The sweeping campaign, believed to be the work of...

6AI score
Exploits0
NVD
NVD
added 2026/06/18 5:16 p.m.11 views

CVE-2026-54103

The U.S. Government Accountability Office GAO Electronic Protest Docketing System EPDS and Civilian Board of Contract Appeals CBCA Electronic Docketing System EDS does not authenticate password change requests to the '/update-profile/N' API endpoint. A remote, unauthenticated attacker could chang...

9.8CVSS0.00427EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.14 views

PT-2026-50053

Vulnerability in the Oracle HRMS UK product of Oracle E-Business Suite component: UK Payroll. Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle HRMS UK. Successful attacks of...

7.2CVSS5.2AI score0.00339EPSS
Exploits0References2
HackRead
HackRead
added 2026/06/13 2:31 p.m.15 views

Extradited Ukrainian Man Admits Role in Conti Ransomware Attacks

Ukrainian national Oleksii Lytvynenko has pleaded guilty in the US to wire fraud conspiracy linked to Conti ransomware, which hit more than 1,000 victims and generated at least $150 million in ransom payments...

5.4AI score
Exploits0
The Hacker News
The Hacker News
added 2026/06/13 5:42 a.m.18 views

U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals

Anthropic said on Friday it will "abruptly disable" its most advanced artificial intelligence AI models, Claude Fable 5 and Mythos 5 , for all users after the U.S. government ordered it to suspend access to the models for foreign nationals, whether inside or outside the U.S., citing national...

5.6AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2026/06/11 7:41 p.m.8 views

Grok Is Still Hosting Sexualized Deepfakes of Famous Women

A WIRED investigation found dozens of “nudified” deepfake images and videos on Grok's website, including nonconsensual depictions of celebrities and at least one prominent US politician...

5.4AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2026/06/10 8:55 p.m.8 views

CISA Tells US Agencies to Fix Security Bugs in as Little as 3 Days Thanks to AI Threats

“Defenders cannot afford to take weeks to patch,” one Cybersecurity and Infrastructure Security Agency official warned on Wednesday...

5.5AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2026/06/10 10:0 a.m.23 views

Mapping Every Flock License Plate Reader Near US World Cup Stadiums

Most US World Cup stadiums are surrounded by surveillance cameras. Want to know if you’re being watched on your way to a match? These maps will help you...

5.5AI score
Exploits0
Lenovo
Lenovo
added 2026/06/09 5:23 p.m.10 views

Multi-Vendor BIOS Security Vulnerabilities (June 2026) - Lenovo Support US

No description provided...

5.4AI score
Exploits0
Lenovo
Lenovo
added 2026/06/09 2:55 p.m.11 views

MediaTek Tablet Vulnerabilities, June 2026 - Lenovo Support US

No description provided...

5.4AI score
Exploits0
Lenovo
Lenovo
added 2026/06/09 2:42 p.m.45 views

Qualcomm Fastboot UEFI Vulnerabilities - Lenovo Support US

No description provided...

5.4AI score
Exploits0
Lenovo
Lenovo
added 2026/06/09 2:34 p.m.11 views

MediaTek WLAN Vulnerabilities - Lenovo Support US

No description provided...

5.4AI score
Exploits0
Lenovo
Lenovo
added 2026/06/09 2:20 p.m.11 views

Lenovo LanSchool Classic Vulnerability - Lenovo Support US

No description provided...

5.4AI score
Exploits0
Lenovo
Lenovo
added 2026/06/09 2:7 p.m.22 views

Lenovo Accessories and Display Manager for Enterprise for Windows Vulnerability - Lenovo Support US

No description provided...

5.4AI score
Exploits0
The Hacker News
The Hacker News
added 2026/06/08 11:53 a.m.20 views

The Hardest Fork

Mythos is real. I know a big chunk of the industry thinks it's a marketing stunt, and I get why. I get it. But I've seen the findings, and they're bad. These aren't "whoops, this line right here is wrong, and that's RCE." They're novel combinations of a few dozen issues out of thousands of things...

5.6AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2026/06/08 6:0 a.m.20 views

All the Ways Europe Is Ditching American Technology

A WIRED timeline shows how dozens of governments, companies, and other organizations across Europe are moving, or planning to shift, away from US Big Tech...

5.5AI score
Exploits0
Veeam
Veeam
added 2026/06/08 12:0 a.m.14 views

Guidance for Veeam Data Cloud Customers in Middle East Regions

Summary Veeam is monitoring risks that may affect cloud infrastructure in the Middle East regions, including the UAE, Qatar, and Israel. Customers using Veeam Data Cloud services in these regions should review their data resilience requirements and consider whether additional geographic separatio...

5.5AI score
Exploits0
The Hacker News
The Hacker News
added 2026/06/04 12:22 p.m.18 views

China-Linked TA4922 Expands Phishing Attacks to U.K., Germany, Italy, and South Africa

A new China-linked cybercrime group known as TA4922 has expanded its targeting focus to target European organizations in the U.K., Germany, Italy, and South Africa. These efforts have been complemented by a "rapid operational tempo" and a continually evolving malware arsenal comprising known...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/03 12:0 a.m.8 views

CISA: CISA and Partners Urge Hardening Automatic Tank Gauge Systems

The Cybersecurity and Infrastructure Security Agency CISA, the Federal Bureau of Investigation FBI, the National Security Agency NSA, the Department of Energy DOE, the Environmental Protection Agency EPA, the Transportation Security Administration TSA, the Department of Transportation DOT, and th...

5.8AI score
Exploits0
Rows per page
Query Builder