Aggregator

Reclaim Security secures $26 million to automate cybersecurity remediation

Help Net Security
1 month 2 weeks ago

Reclaim Security has raised $26 million in total funding, including a recent $20 million Series A round led by Acrew Capital, with participation from QP Ventures and Ibex Investors. The funding will accelerate the company’s mission to eliminate what many security leaders consider cybersecurity’s most persistent gap: remediation. As attacker breakout times have fallen to as little as 27 seconds, enterprises still require an average of 27 days to remediate critical exposures. Over the past … More →

The post Reclaim Security secures $26 million to automate cybersecurity remediation appeared first on Help Net Security.

Industry News

CVE-2026-3236 | Octopus Deploy Octopus Server up to 2025.3.14760/2025.4.10408 New API Key authorization (EUVD-2026-9817 / WID-SEC-2026-0613)

VulDB Recent Entries
1 month 2 weeks ago
A vulnerability classified as critical has been found in Octopus Deploy Octopus Server up to 2025.3.14760/2025.4.10408. Affected by this vulnerability is an unknown functionality of the component New API Key Handler. Performing a manipulation results in incorrect authorization. This vulnerability was named CVE-2026-3236. The attack may be initiated remotely. There is no available exploit. It is recommended to upgrade the affected component.
vuldb.com

CVE-2026-1605 | Eclipse Jetty up to 12.0.31/12.1.5 HTTP Request resource consumption (GHSA-xxh7-fcf3-rj7f / EUVD-2026-9815)

VulDB Recent Entries
1 month 2 weeks ago
A vulnerability described as problematic has been identified in Eclipse Jetty up to 12.0.31/12.1.5. Affected is an unknown function of the component HTTP Request Handler. Such manipulation leads to resource consumption. This vulnerability is uniquely identified as CVE-2026-1605. The attack can be launched remotely. No exploit exists.
vuldb.com

CVE-2025-11143 | Eclipse Jetty up to 9.4.58/10.0.26/11.0.26/12.0.30/12.1.4 URI Parser input validation (GHSA-wjpw-4j6x-6rwh)

VulDB Recent Entries
1 month 2 weeks ago
A vulnerability marked as problematic has been reported in Eclipse Jetty up to 9.4.58/10.0.26/11.0.26/12.0.30/12.1.4. This impacts an unknown function of the component URI Parser. This manipulation causes improper input validation. This vulnerability is handled as CVE-2025-11143. The attack can be initiated remotely. There is not any exploit available.
vuldb.com

CVE-2025-59059

CVE Trends
1 month 2 weeks ago
Currently trending CVE - Hype Score: 1 - Remote Code Execution Vulnerability in NashornScriptEngineCreator is reported in Apache Ranger versions <= 2.7.0. Users are recommended to upgrade to version 2.8.0, which fixes this issue.

CVE-2025-54136

CVE Trends
1 month 2 weeks ago
Currently trending CVE - Hype Score: 8 - Cursor is a code editor built for programming with AI. In versions 1.2.4 and below, attackers can achieve remote and persistent code execution by modifying an already trusted MCP configuration file inside a shared GitHub repository or editing the file locally on the target's ...

Managed ad