Aggregator

The business social networking site is a vast, publicly accessible database of corporate information. Don’t believe everyone on the site is who they say they are.

关注高级攻防对抗技术热点，研究对手技术进行高级威胁模拟，研判攻击安全发展方向。

新型窃密软件伪装文件，专攻金融与浏览器敏感数据。

抓紧预约！看雪视频号见

看雪论坛作者ID：αβγδεξπ

A vulnerability was found in Mattermost up to 10.11.8/11.1.x and classified as problematic. Affected by this issue is some unknown functionality of the component HTTP Request Handler. The manipulation results in inefficient algorithmic complexity. This vulnerability is reported as CVE-2025-14822. The attack can be launched remotely. No exploit exists. It is suggested to upgrade the affected component.

A vulnerability labeled as critical has been found in Linux Kernel up to 6.18.3/6.19-rc3. This issue affects the function kimage_map_segment. Executing a manipulation can lead to allocation of resources. This vulnerability is tracked as CVE-2025-71139. The attack is only possible within the local network. No exploit exists. The affected component should be upgraded.

A vulnerability marked as critical has been reported in Linux Kernel up to 6.18.3/6.19-rc3. Impacted is the function remote_partition_disable of the file kernel/cgroup/cpuset.c of the component cpuset. The manipulation leads to state issue. This vulnerability is listed as CVE-2025-71142. The attack must be carried out from within the local network. There is no available exploit. It is suggested to upgrade the affected component.

融合进程监控与 Glob 匹配，关联进程与连接，实现 TUN 对特定应用的持续性流量捕获！

《军事情报专业公报》（Military Intelligence Professional Bulletin）2025年1-6月刊的多篇文章，涵盖了师级与旅级单位的情报支援、多国情报融合、后勤情报保障以及远征军事情报旅的建设等核心议题。

世界经济论坛Cybercrime Atlas发布的报告《揭开网络犯罪的面纱：加强数字身份验证以对抗深度伪造技术》（2026年1月），深入分析了深度伪造技术如何从娱乐工具演变为对数字身份系统的实质性威胁。

A vulnerability described as problematic has been identified in Microsoft Windows. Affected by this vulnerability is an unknown functionality of the component Remote Assistance. The manipulation results in protection mechanism failure. This vulnerability was named CVE-2026-20824. The attack needs to be approached locally. There is no available exploit. It is best practice to apply a patch to resolve this issue.

A vulnerability classified as problematic has been found in Microsoft Windows. Affected by this issue is some unknown functionality of the component Hyper-V. This manipulation causes improper access controls. The identification of this vulnerability is CVE-2026-20825. The attack can only be executed locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as critical was found in Microsoft Windows. This affects an unknown part of the component Tablet Windows User Interface. Such manipulation leads to race condition. This vulnerability is referenced as CVE-2026-20826. The attack can only be performed from a local environment. No exploit is available. Applying a patch is advised to resolve this issue.

A vulnerability, which was classified as problematic, has been found in Microsoft Windows. This vulnerability affects unknown code of the component Tablet Windows User Interface. Performing a manipulation results in information disclosure. This vulnerability is identified as CVE-2026-20827. The attack is only possible with local access. There is not any exploit available. It is suggested to install a patch to address this issue.

A vulnerability, which was classified as problematic, was found in Microsoft Windows. This issue affects some unknown processing in the library rndismp6.sys. Executing a manipulation can lead to out-of-bounds read. This vulnerability is tracked as CVE-2026-20828. The physical device can be targeted for the attack. No exploit exists. A patch should be applied to remediate this issue.