24h | 7d | 30d

Overview

  • NetScaler
  • ADC

30 Jun 2026
Published
30 Jun 2026
Updated

CVSS v4.0
HIGH (8.8)
EPSS
Pending

KEV

Description

Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler ADC or NetScaler Gateway is configured as a SAML IDP

Statistics

  • 9 Posts
  • 69 Interactions

Last activity: 2 hours ago

Fediverse

Profile picture fallback

mum: what impact did you have on the cybersecurity industry?

me: LOGOS

if you have SAML IDP enabled on Netscaler, you want to patch CVE-2026-8451 labs.watchtowr.com/citrixbleed

This is already being exploited in the wild, one of my honeypots got MFA bypassed with it.

Edit: actually looking at it it looks like the honeypot got owned via a different vuln but you should probably patch this too.

  • 21
  • 46
  • 0
  • 19h ago
Profile picture fallback

Six NetScaler vulnerabilities allow denial of service, memory overreads, and an unauthenticated file read. Patch NetScaler ADC and Gateway now.

securityonline.info/netscaler-

  • 1
  • 0
  • 0
  • 23h ago
Profile picture fallback
  • 0
  • 0
  • 0
  • 16h ago
Profile picture fallback

A lot of offensive activities were identified targeting Citrix NetScaler ADC and NetScaler Gateway (CVE-2026-8451) vuldb.com/vuln/374866/cti

  • 0
  • 0
  • 0
  • 2h ago

Bluesky

Profile picture fallback
CitrixBleed To Infinity And Beyond (Citrix NetScaler Pre-Auth Memory Overread CVE-2026-8451) - watchTowr Labs
  • 1
  • 0
  • 2
  • 20h ago
Profile picture fallback
深度解析CitrixBleed漏洞:CVE-2026-8451的影响与应对策略 https://qian.cx/posts/DB246552-F718-4A26-85A6-7953BB0E18B9
  • 0
  • 0
  • 0
  • 7h ago
Profile picture fallback
CitrixBleed: Угроза для корпоративных систем и способы защиты от уязвимости CVE-2026-8451 https://kripta.biz/posts/56E88484-4FC8-4C23-9572-204FC47B7D8B
  • 0
  • 0
  • 0
  • 7h ago

Overview

  • Progress Software
  • LoadMaster

04 Jun 2026
Published
01 Jul 2026
Updated

CVSS v3.1
CRITICAL (9.6)
EPSS
1.87%

KEV

Description

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in multiple command endpoints

Statistics

  • 8 Posts

Last activity: Last hour

Fediverse

Profile picture fallback

⚠️ CRITICAL: Progress Kemp LoadMaster Flaw Could Let Attackers Run Root Commands Pre-Auth

Critical unauthenticated RCE in Progress Kemp LoadMaster (CVE-2026-8037) allows attackers to execute arbitrary root commands via API input sanitization bypass. A public proof-of-concept exists. All LoadMaster instances are at risk unless patched immediately.

threatnoir.com/focus

  • 0
  • 0
  • 0
  • 18h ago

Bluesky

Profile picture fallback
Enterprise Tech In, Shell Out (Progress Kemp LoadMaster Uninitialized Heap to Pre-Auth RCE CVE-2026-8037) labs.watchtowr.com/enterprise-t...
  • 0
  • 0
  • 0
  • 20h ago
Profile picture fallback
Critical Progress Kemp LoadMaster Vulnerability Enables Pre-Auth Remote Code Execution – Patch Now Before Attackers Do + Video Introduction: A newly disclosed critical vulnerability in Progress Kemp LoadMaster, tracked as CVE-2026-8037, allows unauthenticated remote attackers to execute arbitrary…
  • 0
  • 0
  • 0
  • 18h ago
Profile picture fallback
Угроза удалённого выполнения кода: анализ уязвимости CVE-2026-8037 в Progress ADC https://kripta.biz/posts/5C472C42-2F7E-4BE5-A64C-E5EFAC2BF4B8
  • 0
  • 0
  • 0
  • 10h ago
Profile picture fallback
📢 CVE-2026-8037 : RCE pré-authentifiée dans Progress Kemp LoadMaster via heap non initialisé 📝 ## 🔍 Contexte Le 29 juin 2026, watchTowr Labs… https://cyberveille.ch/posts/2026-07-01-cve-2026-8037-rce-pre-authentifiee-dans-progress-kemp-loadmaster-via-heap-non-initialise/ #CVE_2026_8037 #Cyberveille
  • 0
  • 0
  • 0
  • 6h ago
Profile picture fallback
Progress Kemp LoadMaster CVE-2026-8037 enables unauthenticated OS command injection leading to arbitrary code execution, with active exploitation attempts observed since June 29, 2026.
  • 0
  • 0
  • 0
  • 2h ago
Profile picture fallback
进展 Kemp LoadMaster 存在严重漏洞 CVE-2026-8037:攻击者正在积极利用,企业如何应对? https://qian.cx/posts/D44F3346-3C0D-4E9F-9760-CA83BFE6CF4D
  • 0
  • 0
  • 0
  • Last hour
Profile picture fallback
Active exploitation attempts target CVE-2026-8037 in Progress Kemp LoadMaster, a critical pre-auth command injection flaw that could enable unauthenticated remote code execution. #ProgressKempLoadMaster #CVE20268037 #eSentire
  • 0
  • 0
  • 0
  • Last hour

Overview

  • libssh2
  • libssh2

17 Jun 2026
Published
01 Jul 2026
Updated

CVSS v4.0
CRITICAL (9.2)
EPSS
0.92%

KEV

Description

libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2_transport_read() that fails to enforce upper bounds on packet_length field. Remote attackers can send crafted SSH packets with excessively large packet_length values to corrupt heap memory and achieve remote code execution.

Statistics

  • 4 Posts
  • 110 Interactions

Last activity: 4 hours ago

Fediverse

Profile picture fallback

No, the libssh2 vulnerability CVE-2026-55200 isn't end of the world.

1. You need to defeat ASLR to successfully exploit it. The PoC works only when you disable ASLR. In most realistic use cases you need additional off-band infoleak from the app using libssh2.
2. You also must somehow convince the victim to connect to your malicious server, OR compromise some existing server to perform the attack.

Calling this a "CRITICAL VULNERABILITY" is dumb.

  • 46
  • 64
  • 0
  • 20h ago
Profile picture fallback

📰 Critical Pre-Auth RCE Flaw in libssh2 Library Poses Widespread Risk

🚨 CRITICAL VULNERABILITY: A pre-auth RCE flaw (CVE-2026-55200, CVSS 9.8) in the widely used libssh2 library puts countless apps at risk. Malicious SSH servers can exploit clients. PoC is public. #CyberSecurity #Vulnerability #RCE #SupplyChain

🌐 cyber[.]netsecops[.]io

🔗 cyber.netsecops.io/articles/cr

  • 0
  • 0
  • 0
  • 23h ago

Bluesky

Profile picture fallback
libssh2: patch CVE-2025-15661, CVE-2026-55199, and CVE-2026-55200 https://github.com/NixOS/nixpkgs/pull/537250 #security
  • 0
  • 0
  • 0
  • 14h ago
Profile picture fallback
[Backport staging-26.05] libssh2: patch CVE-2025-15661, CVE-2026-55199, and CVE-2026-55200 https://github.com/NixOS/nixpkgs/pull/537259 #security
  • 0
  • 0
  • 0
  • 4h ago

Overview

  • Oracle Corporation
  • Oracle Payments

28 May 2026
Published
29 May 2026
Updated

CVSS v3.1
CRITICAL (9.8)
EPSS
0.68%

KEV

Description

Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File Transmission). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Payments. Successful attacks of this vulnerability can result in takeover of Oracle Payments. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

Statistics

  • 6 Posts
  • 6 Interactions

Last activity: 3 hours ago

Fediverse

Profile picture fallback

Oracle E-Business Suite Under Siege: Critical CVE-2026-46817 Exploited as Hundreds of Enterprise Systems Remain Exposed + Video

Introduction: A New Enterprise Security Crisis Is Unfolding Enterprise software is often trusted as the backbone of finance, procurement, and payment operations inside some of the world's largest organizations. That trust is now being challenged after security researchers confirmed active exploitation of a newly disclosed critical…

undercodenews.com/oracle-e-bus

  • 0
  • 0
  • 0
  • 3h ago
Profile picture fallback

CRITICAL CVE-2026-46817 in Oracle E-Business Suite: Over 900 exposed instances face active exploit attempts via HTTP. Attackers can fully compromise systems. Apply May 2026 patch ASAP. Details: radar.offseq.com/threat/over-9

  • 0
  • 0
  • 0
  • 3h ago

Bluesky

Profile picture fallback
We have improved our Oracle E-Business Suite fingerprinting by adding domain based scans in collaboration with Validin. Around 950 exposed instances now seen globally (no vulnerability assessment). CVE-2026-46817 attempts have been observed in the wild by DefusedCyber.
  • 2
  • 4
  • 0
  • 6h ago
Profile picture fallback
Oracle E-Business Suiteの脆弱性CVE-2026-46817が実際に悪用されている Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild #HackerNews (Jun 30) thehackernews.com/2026/06/orac...
  • 0
  • 0
  • 0
  • 10h ago
Profile picture fallback
IP data for your network/constituency shared in Device ID reporting (device_vendor Oracle device_model Oracle E-Business Suite) World Map view of exposed EBS instances (no vulnerability assessment): dashboard.shadowserver.org/statistics/i... CVE-2026-46817 NVD entry: nvd.nist.gov/vuln/detail/...
  • 0
  • 0
  • 0
  • 6h ago
Profile picture fallback
Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild thehackernews.com/2026/06/orac...
  • 0
  • 0
  • 0
  • 5h ago

Overview

  • langflow-ai
  • langflow

20 Mar 2026
Published
21 May 2026
Updated

CVSS v4.0
CRITICAL (9.3)
EPSS
98.41%

Description

Langflow is a tool for building and deploying AI-powered agents and workflows. In versions prior to 1.9.0, the POST /api/v1/build_public_tmp/{flow_id}/flow endpoint allows building public flows without requiring authentication. When the optional data parameter is supplied, the endpoint uses attacker-controlled flow data (containing arbitrary Python code in node definitions) instead of the stored flow data from the database. This code is passed to exec() with zero sandboxing, resulting in unauthenticated remote code execution. This is distinct from CVE-2025-3248, which fixed /api/v1/validate/code by adding authentication. The build_public_tmp endpoint is designed to be unauthenticated (for public flows) but incorrectly accepts attacker-supplied flow data containing arbitrary executable code. This issue has been fixed in version 1.9.0.

Statistics

  • 4 Posts
  • 1 Interaction

Last activity: 20 hours ago

Fediverse

Profile picture fallback

‼️ One POST to RCE: Unauthenticated Code Execution in Langflow (CVE-2026-33017)

darkwebinformer.com/one-post-t

  • 0
  • 1
  • 0
  • 22h ago

Bluesky

Profile picture fallback
Threat actors exploit CVE-2026-33017 in exposed Langflow endpoints to deploy Monero miners, disable defenses, persist via cron, and spread through reused SSH keys.
  • 0
  • 0
  • 0
  • 23h ago
Profile picture fallback
Уязвимость CVE-2026-33017 в Langflow: как злоумышленники эксплуатируют незащищённые API-эндпоинты https://kripta.biz/posts/5CD28AF0-2632-445B-8F6A-D8DA125521C7
  • 0
  • 0
  • 0
  • 22h ago
Profile picture fallback
Langflow CVE-2026-33017 is being exploited for unauthenticated RCE, deploying a Monero miner via a multi-stage chain. The lambsys binary disables defenses, persists, and spreads using reused credentials. #Langflow #CVE2026 #Monero
  • 0
  • 0
  • 0
  • 20h ago

Overview

  • @fastify/middie
  • @fastify/middie

01 Jul 2026
Published
01 Jul 2026
Updated

CVSS v3.1
CRITICAL (9.1)
EPSS
Pending

KEV

Description

@fastify/middie versions 9.1.0 through 9.3.2 decode the encoded slash %2F inside path parameter values before matching middleware paths, while Fastify's underlying router preserves the encoding during route lookup. The two layers disagree on the canonical request path, so the middleware fails to match a URL that the route handler does match. When middleware is used for authentication, authorization, rate limiting, or auditing on parameterized paths, an attacker can reach the protected handler by sending a single crafted URL with an encoded slash in the parameter position. The bypass is HTTP method agnostic and requires no authentication or special preconditions. Patches: upgrade to @fastify/middie 9.3.3. Workarounds: avoid parameterized middleware paths for security decisions, or enforce authentication at the route handler or via a Fastify hook that runs after the router has resolved the request.

Statistics

  • 7 Posts

Last activity: 1 hour ago

Fediverse

Profile picture fallback

🚨 Critical-severity security fix in @fastify/middie 9.3.3 just released!

Patches CVE-2026-14198. @fastify/middie vulnerable to authorization bypass via encoded slash in path parameter values.

github.com/fastify/middie/secu

  • 0
  • 0
  • 1
  • 5h ago

Bluesky

Profile picture fallback
深度解析CVE-2026-14198漏洞:@fastify/middie插件的安全风险与修复指南 https://qian.cx/posts/716A3884-9EC0-4B14-AC66-95D4A3F43348
  • 0
  • 0
  • 0
  • 4h ago
Profile picture fallback
Уязвимость CVE-2026-14198 в @fastify/middie: что нужно знать разработчикам https://kripta.biz/posts/9E259A6D-6BB5-4C8A-BA17-BBD7E41E2977
  • 0
  • 0
  • 0
  • 4h ago
Profile picture fallback
CVE: CVE-2026-14198 Gravità: CVSS 9.1 CRITICAL (CVSS 3.1) Ambito: Open source / Web application / GitHub Advisory Prodotto rilevato: Non rilevato automaticamente PoC pubblico: Non rilevato Fonte: NVD / GitHub Advisory www.aiutocomputerhelp.it/cve-2026-141...
  • 0
  • 0
  • 0
  • 3h ago
Profile picture fallback
深度解析CVE-2026-14198:@fastify/middie漏洞详解与安全防护指南 https://qian.cx/posts/64432CA9-1106-4EFD-947D-EA4047E02064
  • 0
  • 0
  • 0
  • 1h ago
Profile picture fallback
Уязвимость CVE-2026-14198 в @fastify/middie: угроза безопасности и способы защиты https://kripta.biz/posts/9B41E31B-2CF4-4154-8BF5-7CF74DC6622F
  • 0
  • 0
  • 0
  • 1h ago

Overview

  • Linux
  • Linux

23 May 2026
Published
30 Jun 2026
Updated

CVSS v3.1
HIGH (8.8)
EPSS
0.13%

KEV

Description

In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker through frag-transfer helpers Two frag-transfer helpers (__pskb_copy_fclone() and skb_shift()) fail to propagate the SKBFL_SHARED_FRAG bit in skb_shinfo()->flags when moving frags from source to destination. __pskb_copy_fclone() defers the rest of the shinfo metadata to skb_copy_header() after copying frag descriptors, but that helper only carries over gso_{size,segs, type} and never touches skb_shinfo()->flags; skb_shift() moves frag descriptors directly and leaves flags untouched. As a result, the destination skb keeps a reference to the same externally-owned or page-cache-backed pages while reporting skb_has_shared_frag() as false. The mismatch is harmful in any in-place writer that uses skb_has_shared_frag() to decide whether shared pages must be detoured through skb_cow_data(). ESP input is one such writer (esp4.c, esp6.c), and a single nft 'dup to <local>' rule -- or any other nf_dup_ipv4() / xt_TEE caller -- is enough to land a pskb_copy()'d skb in esp_input() with the marker stripped, letting an unprivileged user write into the page cache of a root-owned read-only file via authencesn-ESN stray writes. Set SKBFL_SHARED_FRAG on the destination whenever frag descriptors were actually moved from the source. skb_copy() and skb_copy_expand() share skb_copy_header() too but linearize all paged data into freshly allocated head storage and emerge with nr_frags == 0, so skb_has_shared_frag() returns false on its own; they need no change. The same omission exists in skb_gro_receive() and skb_gro_receive_list(). The former moves the incoming skb's frag descriptors into the accumulator's last sub-skb via two paths (a direct frag-move loop and the head_frag + memcpy path); the latter chains the incoming skb whole onto p's frag_list. Downstream skb_segment() reads only skb_shinfo(p)->flags, and skb_segment_list() reuses each sub-skb's shinfo as the nskb -- both p and lp must carry the marker. The same omission also exists in tcp_clone_payload(), which builds an MTU probe skb by moving frag descriptors from skbs on sk_write_queue into a freshly allocated nskb. The helper falls into the same family and warrants the same fix for consistency; no TCP TX-side in-place writer is currently known to reach a user page through this gap, but a future consumer depending on the marker would regress silently. The same omission exists in skb_segment(): the per-iteration flag merge takes only head_skb's flag, and the inner switch that rebinds frag_skb to list_skb on head_skb-frags exhaustion does not fold the new frag_skb's flag into nskb. Fold frag_skb's flag at both sites so segments drawing frags from frag_list members carry the marker.

Statistics

  • 3 Posts
  • 12 Interactions

Last activity: 1 hour ago

Fediverse

Profile picture fallback

Canonical says Ubuntu kernel updates are available for DirtyClone, a high-severity Linux local privilege escalation flaw tracked as CVE-2026-43503.
linuxiac.com/canonical-confirm

#linux #ubuntu #security

  • 2
  • 4
  • 0
  • 7h ago
Profile picture fallback

Dissecting and Exploiting Linux LPE Variant: DirtyClone (CVE-2026-43503) - JFrog Security Research #devopsish research.jfrog.com/post/dissec

  • 0
  • 0
  • 0
  • 1h ago

Bluesky

Profile picture fallback
Canonical says Ubuntu kernel updates are available for DirtyClone, a high-severity Linux local privilege escalation flaw tracked as CVE-2026-43503. linuxiac.com/canonical-co... #Linux #Ubuntu #Security #OpenSource
  • 1
  • 5
  • 0
  • 7h ago

Overview

  • uvnc
  • UltraVNC

01 Jul 2026
Published
01 Jul 2026
Updated

CVSS v4.0
HIGH (8.7)
EPSS
Pending

KEV

Description

UltraVNC viewer through 1.8.2.2 contains an integer overflow leading to a heap buffer overflow in the RFB protocol failure-response parsing path. In vncviewer/ClientConnection.cpp, the 4-byte network-supplied reasonLen field (type CARD32) is passed as reasonLen+1 to CheckBufferSize(). Because both operands are unsigned 32-bit, a reasonLen of 0xFFFFFFFF overflows to 0, causing CheckBufferSize to allocate only 256 bytes. The subsequent ReadString(m_netbuf, reasonLen) call then performs ReadExact for the original 4 GiB length into that 256-byte heap buffer. This overflow is reachable via rfbConnFailed (auth-scheme negotiation) and rfbVncAuthFailed (post-handshake) message types without successful authentication. A malicious VNC server, or any man-in-the-middle on the RFB stream, can trigger this condition when the victim viewer connects, potentially resulting in remote code execution as the user running the viewer. The crash was confirmed with AddressSanitizer on a portable reproduction harness (heap-buffer-overflow WRITE at offset 256).

Statistics

  • 3 Posts
  • 3 Interactions

Last activity: 2 hours ago

Fediverse

Profile picture fallback

CVE-2026-7838 - Critical RCE in UltraVNC viewer 1.8.2.2. Integer overflow causes heap buffer overflow in RFB failure-response parsing. CVSS 8.8. No patch available - disable or restrict access now. #CVE #UltraVNC #infosec

valtersit.com/cve/CVE-2026-783

  • 3
  • 0
  • 0
  • 2h ago

Bluesky

Profile picture fallback
深度解析CVE-2026-7838:UltraVNC Viewer 1.8.2.2整数溢出漏洞及安全防护指南 https://qian.cx/posts/65981030-A253-4F69-A9C1-29D08D69AC26
  • 0
  • 0
  • 0
  • 9h ago
Profile picture fallback
Уязвимость CVE-2026-7838 в UltraVNC: угроза безопасности и способы защиты https://kripta.biz/posts/557D101B-46ED-4ACE-A739-83AE0048B4A8
  • 0
  • 0
  • 0
  • 9h ago

Overview

  • Microsoft
  • Microsoft Defender Antimalware Platform

14 Apr 2026
Published
19 Jun 2026
Updated

CVSS v3.1
HIGH (7.8)
EPSS
6.75%

Description

Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to elevate privileges locally.

Statistics

  • 3 Posts
  • 5 Interactions

Last activity: 4 hours ago

Fediverse

Profile picture fallback

⚠️ CRITICAL: BlueHammer Vulnerability Exploited in Ransomware Attacks

CVE-2026-33825 (BlueHammer) in Microsoft Defender is being actively exploited in ransomware campaigns in the wild. This zero-day was publicly disclosed before patches became available on April 14, and CISA has confirmed active abuse. All Windows environments running vulnerable Defender versions are…

threatnoir.com/focus

  • 0
  • 1
  • 0
  • 18h ago
Profile picture fallback

BlueHammer CVE-2026-33825: The Silent Windows Defender Flaw That Turned Into a Global Ransomware Weapon in the Wild + Video

A Hidden Vulnerability That Escaped the Lab and Entered Real Attacks BlueHammer, tracked as CVE-2026-33825, has rapidly evolved from a proof-of-concept security concern into an active ransomware weapon used in real-world cyberattacks. Confirmed by the US Cybersecurity and Infrastructure Security Agency (CISA), this flaw targets Microsoft Defender…

undercodenews.com/bluehammer-c

  • 0
  • 0
  • 0
  • 4h ago

Bluesky

Profile picture fallback
BlueHammer Vulnerability Exploited in Ransomware Attacks - SecurityWeek A Microsoft Defender vulnerability tracked as BlueHammer and CVE-2026-33825 is being exploited in ran Read more: https://www.securityweek.com/bluehammer-vulnerability-exploited-in-ransomware-attacks/
  • 1
  • 3
  • 0
  • 9h ago

Overview

  • TP-Link Systems Inc.
  • TL-WR802N v4

13 Mar 2026
Published
01 Jul 2026
Updated

CVSS v4.0
HIGH (8.5)
EPSS
1.10%

KEV

Description

A command injection vulnerability was identified in TP-Link TL-WR802N v4, TL-WR841N v14, and TL-WR840N v6 due to improper neutralization of special elements used in an OS command. In the router configuration import function allows an authenticated attacker to upload a crafted configuration file that results in execution of OS commands with root privileges during port-trigger processing. Successful exploitation allows an authenticated attacker to execute system commands with root privileges, leading to full device compromise.

Statistics

  • 3 Posts
  • 1 Interaction

Last activity: 10 hours ago

Bluesky

Profile picture fallback
The latest update for #Foresiet includes "Phone Bombing Attacks 2026: A Complete Guide" and "TP-Link CVE-2026-3227: Authenticated Command Injection via Configuration Import". #cybersecurity #infosec https://opsmtrs.com/3J3CMGz
  • 1
  • 0
  • 0
  • 11h ago
Profile picture fallback
深度解析TP-Link路由器CVE-2026-3227漏洞:命令注入风险与安全防护指南 https://qian.cx/posts/35A3E67C-6C34-48FD-AC63-8AE69C000AE5
  • 0
  • 0
  • 0
  • 10h ago
Profile picture fallback
Уязвимость CVE-2026-3227 в маршрутизаторах TP-Link: угроза и способы защиты https://kripta.biz/posts/14B1893F-929E-47DD-9F10-9264BA435362
  • 0
  • 0
  • 0
  • 10h ago
Showing 1 to 10 of 209 CVEs