Aggregator
INC
3 hours 26 minutes ago
You must login to view this content
cohenido
CVE-2024-26230
3 hours 30 minutes ago
Currently trending CVE - Hype Score: 1 - Windows Telephony Server Elevation of Privilege Vulnerability
CVE-2025-15604
3 hours 30 minutes ago
Currently trending CVE - Hype Score: 2 - Amon2 versions before 6.17 for Perl use an insecure random_string implementation for security functions.
In versions 6.06 through 6.16, the random_string function will attempt to read bytes from the /dev/urandom device, but if that is unavailable then it generates bytes by ...
CVE-2025-15036
3 hours 30 minutes ago
Currently trending CVE - Hype Score: 2 - A path traversal vulnerability exists in the `extract_archive_to_dir` function within the `mlflow/pyfunc/dbconnect_artifact_cache.py` file of the mlflow/mlflow repository. This vulnerability, present in versions before v3.7.0, arises due to the lack of validation of tar member ...
CVE-2025-12548
3 hours 30 minutes ago
Currently trending CVE - Hype Score: 1 - A flaw was found in Eclipse Che che-machine-exec. This vulnerability allows unauthenticated remote arbitrary command execution and secret exfiltration (SSH keys, tokens, etc.) from other users' Developer Workspace containers, via an unauthenticated JSON-RPC / websocket API ...
CVE-2023-2868
3 hours 30 minutes ago
Currently trending CVE - Hype Score: 1 - A remote command injection vulnerability exists in the Barracuda Email Security Gateway (appliance form factor only) product effecting versions 5.1.3.001-9.2.0.006. The vulnerability arises out of a failure to comprehensively sanitize the processing of .tar file (tape ...
CVE-2025-53521
3 hours 30 minutes ago
Currently trending CVE - Hype Score: 20 - When a BIG-IP APM access policy is configured on a virtual server, specific malicious traffic can lead to Remote Code Execution (RCE).
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CVE-2025-32975
3 hours 30 minutes ago
Currently trending CVE - Hype Score: 1 - Quest KACE Systems Management Appliance (SMA) 13.0.x before 13.0.385, 13.1.x before 13.1.81, 13.2.x before 13.2.183, 14.0.x before 14.0.341 (Patch 5), and 14.1.x before 14.1.101 (Patch 4) contains an authentication bypass vulnerability that allows attackers to impersonate ...
CVE-2025-0108
3 hours 30 minutes ago
Currently trending CVE - Hype Score: 7 - An authentication bypass in the Palo Alto Networks PAN-OS software enables an unauthenticated attacker with network access to the management web interface to bypass the authentication otherwise required by the PAN-OS management web interface and invoke certain PHP scripts. While ...
CVE-2025-33073
3 hours 30 minutes ago
Currently trending CVE - Hype Score: 1 - Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.
CVE-2025-4632
3 hours 30 minutes ago
Currently trending CVE - Hype Score: 9 - Improper limitation of a pathname to a restricted directory vulnerability in Samsung MagicINFO 9 Server version before 21.1052 allows attackers to write arbitrary file as system authority.
HIBP Mega Update: Passkeys, k-Anonymity Searches, Massive Speed Enhancements and a Bulk Domain Verification API
5 hours 5 minutes ago
For a hobby project built in my spare time to provide a simple community service, Have I Been Pwned sure has, well, "escalated". Today, we support hundreds of thousands of website visitors each day, tens of millions of API queries, and hundreds of millions of password searches. We&
Troy Hunt
Play
5 hours 21 minutes ago
You must login to view this content
cohenido
Play
5 hours 21 minutes ago
You must login to view this content
cohenido
Play
5 hours 22 minutes ago
You must login to view this content
cohenido
Play
5 hours 22 minutes ago
You must login to view this content
cohenido
Play
5 hours 22 minutes ago
You must login to view this content
cohenido
Play
5 hours 23 minutes ago
You must login to view this content
cohenido
Play
5 hours 23 minutes ago
You must login to view this content
cohenido