Aggregator

CVE-2022-2882 | GitLab Community Edition/Enterprise Edition up to 15.2.4/15.3.3/15.4.0 Access Token exposure of resource (Issue 37108 / EUVD-2022-35114)

Vuldb Updates
3 days 2 hours ago
A vulnerability, which was classified as problematic, was found in GitLab Community Edition and Enterprise Edition up to 15.2.4/15.3.3/15.4.0. The affected element is an unknown function of the component Access Token Handler. Such manipulation leads to exposure of resource. This vulnerability is listed as CVE-2022-2882. The attack may be performed from remote. There is no available exploit. You should upgrade the affected component.
vuldb.com

Robinhood宣布股民可接入第三方智能体

不安全
3 days 2 hours ago
Robinhood宣布股民可接入第三方智能体AI智能体(AI Agent)亲自上阵炒股的时代终于来了。有着美国 “散户大本营” 称号的互联网券商Robinhood周三宣布,即日起推出“智能体交易”功能

CVE-2026-1561 | IBM WebSphere Application Server Liberty up to 26.0.0.3 server-side request forgery (Nessus ID 313186 / WID-SEC-2026-1687)

Vuldb Updates
3 days 2 hours ago
A vulnerability labeled as critical has been found in IBM WebSphere Application Server Liberty up to 26.0.0.3. This affects an unknown function. Executing a manipulation can lead to server-side request forgery. This vulnerability is tracked as CVE-2026-1561. The attack can be launched remotely. No exploit exists. The affected component should be upgraded.
vuldb.com

Romanian Hacker Gets Nearly 5 Years in US Prison Over Network Intrusion

Security Affairs
3 days 5 hours ago
Romanian hacker Catalin Dragomir (45) got 4 years and 8 months in prison for selling access to an Oregon state network. Romanian hacker Catalin Dragomir (45) will spend 4 years and 8 months in a US prison after admitting he sold access to an Oregon state network. ” A Romanian national was sentenced to 56 months […]
Pierluigi Paganini

CVE-2026-41091

CVE Trends
3 days 6 hours ago
Currently trending CVE - Hype Score: 1 - Improper link resolution before file access ('link following') in Microsoft Defender allows an authorized attacker to elevate privileges locally.

CVE-2026-33552 | Northern.tech Mender Enterprise Server up to 4.1.0 access control

VulDB Recent Entries
3 days 6 hours ago
A vulnerability labeled as critical has been found in Northern.tech Mender Enterprise Server up to 4.1.0. The impacted element is an unknown function. The manipulation results in improper access controls. This vulnerability is identified as CVE-2026-33552. The attack can only be performed from the local network. There is not any exploit available. The affected component should be upgraded.
vuldb.com

CVE-2026-9759 | Wireshark up to 4.4.15/4.6.5 ROHC Protocol Dissector null pointer dereference

VulDB Recent Entries
3 days 6 hours ago
A vulnerability identified as problematic has been detected in Wireshark up to 4.4.15/4.6.5. The affected element is an unknown function of the component ROHC Protocol Dissector. The manipulation leads to null pointer dereference. This vulnerability is referenced as CVE-2026-9759. Remote exploitation of the attack is possible. No exploit is available. You should upgrade the affected component.
vuldb.com

Managed ad