Aggregator

CVE-2026-44010 | Craft CMS up to 4.17.11/5.9.17 Address.php authorization

VulDB Recent Entries
1 month 1 week ago
A vulnerability was found in Craft CMS up to 4.17.11/5.9.17. It has been rated as problematic. Affected by this vulnerability is an unknown functionality of the file src/gql/resolvers/elements/Address.php. Performing a manipulation results in missing authorization. This vulnerability was named CVE-2026-44010. The attack may be initiated remotely. There is no available exploit. Upgrading the affected component is advised.
vuldb.com

CVE-2025-65086 | Ashlar-Vellum Cobalt/Xenon/Argon/Lithium/Cobalt Share up to 12.6.1204.216 out-of-bounds write (icsa-25-329-01)

VulDB Recent Entries
1 month 1 week ago
A vulnerability was found in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium and Cobalt Share up to 12.6.1204.216. It has been declared as critical. Affected is an unknown function. Such manipulation leads to out-of-bounds write. This vulnerability is uniquely identified as CVE-2025-65086. The attack can be launched remotely. No exploit exists.
vuldb.com

CVE-2025-65088 | Ashlar-Vellum Cobalt/Xenon/Argon/Lithium/Cobalt Share up to 12.6.1204.216 out-of-bounds (icsa-25-329-01)

VulDB Recent Entries
1 month 1 week ago
A vulnerability was found in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium and Cobalt Share up to 12.6.1204.216. It has been classified as problematic. This impacts an unknown function. This manipulation causes out-of-bounds read. This vulnerability is handled as CVE-2025-65088. The attack can be initiated remotely. There is not any exploit available.
vuldb.com

CVE-2025-65087 | Ashlar-Vellum Cobalt/Xenon/Argon/Lithium/Cobalt Share up to 12.6.1204.216 out-of-bounds (icsa-25-329-01)

VulDB Recent Entries
1 month 1 week ago
A vulnerability was found in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium and Cobalt Share up to 12.6.1204.216 and classified as problematic. This affects an unknown function. The manipulation results in out-of-bounds read. This vulnerability is known as CVE-2025-65087. It is possible to launch the attack remotely. No exploit is available.
vuldb.com

Why Hospitals Must Rethink Cyber Resilience

BankInfoSecurity.com
1 month 1 week ago
In the face of relentless cyberattacks that threaten patient safety, hospitals must strengthen their resilience, with clinical continuity, secure backups and coordinated recovery emerging as critical strategies, said John Riggi of the American Hospital Association and Josh Howell of Rubrik.

Cloudflare Cuts 1,100, Arctic Wolf Axes 250 Amid AI Surge

BankInfoSecurity.com
1 month 1 week ago
Cloud Connectivity, Security Operations Providers Reportedly Chop 20%, 7% of Staff
Cloudflare cut more than 1,100 workers from its 5,483-person staff, saying the layoffs will align Cloudflare's operations with AI-driven workflows and productivity gains. And Arctic Wolf laid off 250 workers from its estimated staff of 3,402 to free resources for investment in AI initiatives.

AI-Built Zero-Day Nearly Powered Mass Attack

BankInfoSecurity.com
1 month 1 week ago
Google Says Criminals Used AI to Discover and Code Exploit
A cybercriminal group came close to launching a mass attack earlier this year, armed with a software exploit that an AI model had built from scratch, said Google researchers. Google said it worked with the affected vendor to patch the flaw before an attack could be launched.

OpenAI Unlocks Cybersecurity Model for Europe

BankInfoSecurity.com
1 month 1 week ago
German Financial Regulator Warns Sector to Step Up Defenses
OpenAI is stepping up to do what arch-rival Anthropic still won't. The AI firm will give European authorities and companies access to its new vulnerability-finding AI model, so they can beef up their cybersecurity.

Managed ad