Aggregator

Submit #517790 / VDB-300861

Submit #517789 / VDB-300860

Submit #517788 / VDB-300859

Submit #517787 / VDB-300858

Submit #517786 / VDB-300857

Submit #517785 / VDB-300856

Submit #517783 / VDB-300855

Russia and China spend billions of dollars on state media, propaganda, and disinformation, while the Trump administration has slashed funding for US agencies.

Итальянцы придумали, как сократить госпитализацию в четыре раза.

A vulnerability, which was classified as critical, has been found in Fortinet FortiSandbox 3.1.4/3.2.2. Affected by this issue is some unknown functionality of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. This vulnerability is handled as CVE-2021-26105. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Fortinet FortiMail up to 6.2.9/6.4.4. Affected by this vulnerability is an unknown functionality. The manipulation leads to cryptographically weak prng. This vulnerability is known as CVE-2021-26091. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Mattermost Mobile Apps up to 2.25.0. Affected is an unknown function of the component GIF Image Validator. The manipulation leads to improper validation of specified type of input. This vulnerability is traded as CVE-2025-1558. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in H3C NX18 Plus, NX30, NX54, NX600, NX15000, BX54 and BX54-E. It has been rated as critical. This issue affects the function set_ipv6_static/clear_ipv6_info. The manipulation leads to privilege escalation. The identification of this vulnerability is CVE-2025-29294. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in HCL DevOps Deploy and Launch. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to improper authorization. This vulnerability was named CVE-2025-0256. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Forcepoint Email Security up to 8.5.5. It has been classified as problematic. This affects an unknown part. The manipulation leads to improper neutralization of script in attributes in a web page. This vulnerability is uniquely identified as CVE-2024-9103. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in api-platform core up to 4.1.3 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to improper input validation. This vulnerability is handled as CVE-2025-23204. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

Ukraine’s national railway company has suffered a “large-scale” cyber-attack, disrupting online services and operations

这些漏洞威胁超 6,500 个集群，可能导致集群被接管。

Microsoft on Monday announced a new feature called inline data protection for its enterprise-focused Edge for Business web browser. The native data security control is designed to prevent employees from sharing sensitive company-related data into consumer generative artificial intelligence (GenAI) apps like OpenAI ChatGPT, Google Gemini, and DeepSeek. The list will be expanded over time to

African law enforcement authorities have arrested 306 suspects as part of 'Operation Red Card,' an INTERPOL-led international crackdown targeting cross-border cybercriminal networks. [...]