Aggregator

CVE-2026-30522 | SourceCodester Loan Management System 1.0 Loan Plan penalty_rate logic error

VulDB Recent Entries
2 weeks 2 days ago
A vulnerability identified as critical has been detected in SourceCodester Loan Management System 1.0. This impacts an unknown function of the component Loan Plan Handler. The manipulation of the argument penalty_rate leads to business logic errors. This vulnerability is documented as CVE-2026-30522. The attack can be initiated remotely. There is not any exploit available.
vuldb.com

CVE-2026-5342 | LibRaw up to 0.22.0 TIFF/NEF decoders_libraw.cpp nikon_load_padded_packed_raw load_flags/raw_width out-of-bounds (Issue 795)

VulDB Recent Entries
2 weeks 2 days ago
A vulnerability categorized as problematic has been discovered in LibRaw up to 0.22.0. This affects the function LibRaw::nikon_load_padded_packed_raw of the file src/decoders/decoders_libraw.cpp of the component TIFF/NEF. Executing a manipulation of the argument load_flags/raw_width can lead to out-of-bounds read. This vulnerability is registered as CVE-2026-5342. It is possible to launch the attack remotely. Furthermore, an exploit is available. It is advisable to upgrade the affected component.
vuldb.com

Iran Calls U.S. Tech Companies ‘Legitimate Targets,’ Threatens to Attack

Security Boulevard
2 weeks 2 days ago

The Iranian government is threatening to attack the Middle East operations of more than a dozen U.S. tech companies, including Microsoft, Nvidia, and Google, calling them "legitimate targets." Meanwhile, pro-Iranian threat groups expand their operations as the U.S. and Israel continues their bombing campaign against Iran.

The post Iran Calls U.S. Tech Companies ‘Legitimate Targets,’ Threatens to Attack appeared first on Security Boulevard.

Jeffrey Burt

过去一年最活跃的勒索软件组织是 Qilin

Solidot
2 weeks 2 days ago
从 2025 年 3 月到 2026 年 3 月,勒索软件组织在 376 天内发布了 7,655 条受害者组织名单,平均每天约 20 条,或每 71 分钟新增一个受害者组织。对受害者名单的分析显示,在 129 个活跃的勒索软件组织中排名前五的组织发布了 3,027 条受害者名单,占总数的 40%。其中最活跃的是麒麟(Qilin),发布了 1,179 条占总数的 15.4%;其次是 Akira 的 706 条占 9.2%,INC Ransom 的 415 条 占5.4%,Play 的 386 条占 5.0%,Safepay 的 341 条占 4.5%。麒麟的受害者遍及 74 个国家,最主要受害者是美国 (438)、法国 (55)、加拿大 (48)、西班牙 (41)、英国 (36)。Akira 和 Play 的受害者都主要集中在美国。麒麟组织最初的名字叫 Agenda,2022 年 9 月改名为麒麟,沿用至今。

North Korean hackers linked to Axios npm supply chain compromise

Help Net Security
2 weeks 2 days ago

The software supply chain attack that resulted in the compromise of npm packages of Axios, an extremely popular HTTP client library, is believed to be the work of financially-motivated North Korean attackers. Links to UNC1069 On March 31, 2026, unknown attackers managed to publish two backdoored Axios npm packages after gaining access to a maintainer’s npm account. The malicious versions introduced a hidden dependency containing a post-install script, and this script executed automatically during installation … More →

The post North Korean hackers linked to Axios npm supply chain compromise appeared first on Help Net Security.

Zeljka Zorz

CVE-2026-5339 | Tenda G103 1.0.0.5 Setting gpon.lua action_set_net_settings command injection

VulDB Recent Entries
2 weeks 2 days ago
A vulnerability was found in Tenda G103 1.0.0.5. It has been rated as critical. The impacted element is the function action_set_net_settings of the file gpon.lua of the component Setting Handler. Performing a manipulation of the argument authLoid/authLoidPassword/authPassword/authSerialNo/authType/oltType/usVlanId/usVlanPriority results in command injection. This vulnerability is cataloged as CVE-2026-5339. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2026-5338 | Tenda G103 1.0.0.5 Setting system.lua action_set_system_settings lanIp command injection

VulDB Recent Entries
2 weeks 2 days ago
A vulnerability was found in Tenda G103 1.0.0.5. It has been declared as critical. The affected element is the function action_set_system_settings of the file system.lua of the component Setting Handler. Such manipulation of the argument lanIp leads to command injection. This vulnerability is listed as CVE-2026-5338. The attack may be performed from remote. In addition, an exploit is available.
vuldb.com

Managed ad