Black Nevas
You must login to view this content
Aggregator
Black Nevas
1 month ago
You must login to view this content
cohenido
CVE-2026-4749 | albfan miraclecast up to 0.x information disclosure (EUVD-2026-14764)
1 month ago
A vulnerability, which was classified as problematic, has been found in albfan miraclecast up to 0.x. The impacted element is an unknown function. Performing a manipulation results in information disclosure.
This vulnerability is cataloged as CVE-2026-4749. The attack must originate from the local network. There is no exploit available.
It is advisable to upgrade the affected component.
vuldb.com
CVE-2026-4753 | slajerek RetroDebugger up to 0.64.71 out-of-bounds (EUVD-2026-14772)
1 month ago
A vulnerability was found in slajerek RetroDebugger up to 0.64.71 and classified as problematic. Affected is an unknown function. The manipulation results in out-of-bounds read.
This vulnerability is reported as CVE-2026-4753. The attack can be launched remotely. No exploit exists.
It is suggested to upgrade the affected component.
vuldb.com
CVE-2026-4752 | No-Chicken Echo-Mate prior 250329 use after free (EUVD-2026-14770)
1 month ago
A vulnerability was found in No-Chicken Echo-Mate. It has been declared as critical. Affected by this issue is some unknown functionality. Such manipulation leads to use after free.
This vulnerability is traded as CVE-2026-4752. An attack has to be approached locally. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2026-4750 | fabiangreffrath woof up to 15.2.x out-of-bounds (EUVD-2026-14766 / Nessus ID 303483)
1 month ago
A vulnerability was found in fabiangreffrath woof up to 15.2.x. It has been rated as critical. This affects an unknown part. Performing a manipulation results in out-of-bounds read.
This vulnerability is known as CVE-2026-4750. Remote exploitation of the attack is possible. No exploit is available.
Upgrading the affected component is advised.
vuldb.com
CVE-2026-4751 | tmate-io tmate up to 2.3.x null pointer dereference (EUVD-2026-14768 / Nessus ID 303485)
1 month ago
A vulnerability categorized as problematic has been discovered in tmate-io tmate up to 2.3.x. This vulnerability affects unknown code. Executing a manipulation can lead to null pointer dereference.
This vulnerability is handled as CVE-2026-4751. The attack can be executed remotely. There is not any exploit available.
It is advisable to upgrade the affected component.
vuldb.com
CVE-2026-33852 | MolotovCherry Android-ImageMagick7 up to 7.1.2-10 memory leak (EUVD-2026-14774)
1 month ago
A vulnerability labeled as problematic has been found in MolotovCherry Android-ImageMagick7 up to 7.1.2-10. Impacted is an unknown function. The manipulation results in memory leak.
This vulnerability was named CVE-2026-33852. The attack may be performed from remote. There is no available exploit.
The affected component should be upgraded.
vuldb.com
CVE-2026-4754 | MolotovCherry Android-ImageMagick7 up to 7.1.2-10 cross site scripting (EUVD-2026-14776)
1 month ago
A vulnerability marked as problematic has been reported in MolotovCherry Android-ImageMagick7 up to 7.1.2-10. The affected element is an unknown function. This manipulation causes cross site scripting.
The identification of this vulnerability is CVE-2026-4754. It is possible to initiate the attack remotely. There is no exploit available.
It is suggested to upgrade the affected component.
vuldb.com
CVE-2026-4755 | MolotovCherry Android-ImageMagick7 up to 7.1.2-10 input validation (EUVD-2026-14778)
1 month ago
A vulnerability described as critical has been identified in MolotovCherry Android-ImageMagick7 up to 7.1.2-10. The impacted element is an unknown function. Such manipulation leads to improper input validation.
This vulnerability is referenced as CVE-2026-4755. It is possible to launch the attack remotely. No exploit is available.
Upgrading the affected component is recommended.
vuldb.com
CVE-2026-4756 | MolotovCherry Android-ImageMagick7 up to 7.1.2-10 out-of-bounds write (EUVD-2026-14780)
1 month ago
A vulnerability classified as critical has been found in MolotovCherry Android-ImageMagick7 up to 7.1.2-10. This affects an unknown function. Performing a manipulation results in out-of-bounds write.
This vulnerability is identified as CVE-2026-4756. The attack can be initiated remotely. There is not any exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-41660 | CODESYS Control RTE prior 3.5.22.0 resource transfer (VDE-2026-011 / EUVD-2025-208957)
1 month ago
A vulnerability, which was classified as very critical, was found in CODESYS Control RTE, Control RTE SL, Control Win, HMI, Runtime Toolkit, Control for BeagleBone SL, Control for emPC-A, iMX6 SL, Control for IOT2000 SL, Control for Linux ARM SL, Control for Linux SL, Control for PFC100 SL, Control for PFC200 SL, Control for PLCnext SL, Control for Raspberry Pi SL, Control for WAGO Touch Panels 600 SL and Virtual Control SL. Affected by this vulnerability is an unknown functionality. The manipulation results in incorrect resource transfer.
This vulnerability is cataloged as CVE-2025-41660. The attack may be launched remotely. There is no exploit available.
You should upgrade the affected component.
vuldb.com
Cybersecurity Companies’ Stocks Fall as Anthropic Tests Powerful New Model
1 month ago
Cybersecurity stocks declined sharply on Friday following revelations that Anthropic has begun testing “Mythos,” an extraordinarily powerful new AI model with advanced vulnerability-discovery capabilities. Anthropic is actively trialing a new tier of artificial intelligence models codenamed “Capybara,” with the flagship model operating under the moniker “Mythos”. Internal documents indicate that Mythos significantly outperforms the company’s […]
The post Cybersecurity Companies’ Stocks Fall as Anthropic Tests Powerful New Model appeared first on Cyber Security News.
Guru Baran
Codegate CTF 2026 Preliminary
1 month ago
Name: Codegate CTF 2026 Preliminary (an Codegate CTF Preliminary event.)
Date: March 28, 2026, midnight — 28 March 2026, 15:00 UTC [add to calendar]
Format: Jeopardy
On-line
Offical URL: http://ctf.codegate.org/
Rating weight: 62.00
Event organizers: CODEGATE
Date: March 28, 2026, midnight — 28 March 2026, 15:00 UTC [add to calendar]
Format: Jeopardy
On-line
Offical URL: http://ctf.codegate.org/
Rating weight: 62.00
Event organizers: CODEGATE
BSidesSLC 2025 – Good Models Gone Bad – Visualizing Data Poisoning With Gephi
1 month ago
Author, Creator & Presenter: Maria Khodak, GWAPT
Our thanks to BSidesSLC for publishing their Creators, Authors and Presenter’s outstanding BSidesSLC 2025 content on the Organizations' YouTube Channel.
The post BSidesSLC 2025 – Good Models Gone Bad – Visualizing Data Poisoning With Gephi appeared first on Security Boulevard.
Marc Handelman
BSidesSLC 2025 – Good Models Gone Bad – Visualizing Data Poisoning With Gephi
1 month ago
Author, Creator & Presenter: Maria Khodak, GWAPT
Our thanks to BSidesSLC for publishing their Creators, Authors and Presenter’s outstanding BSidesSLC 2025 content on the Organizations' YouTube Channel.
The post BSidesSLC 2025 – Good Models Gone Bad – Visualizing Data Poisoning With Gephi appeared first on Security Boulevard.
Marc Handelman
奥地利计划禁止 14 岁以下儿童使用社媒
1 month ago
在澳大利亚、丹麦、马来西亚和挪威之后,奥地利也计划严格限制 14 岁以下青少年使用社交媒体,理由是令人上瘾的算法以及对儿童有害的内容。政府计划在 6 月底前完成立法草案,执法和年龄验证细节尚未最终敲定。社会民主党的副总理 Andreas Babler 表示,政府不能袖手旁观,任由社交媒体平台让儿童上瘾以及令儿童受到伤害,他称应该像对待酒精或烟草那样对待社交媒体。
ProcIR-面向安全工程师的一键式应急响应工具
1 month ago
New Infinity Stealer malware grabs macOS data via ClickFix lures
1 month ago
A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an executable using the open-source Nuitka compiler. [...]
Bill Toulas
CISA Warns of F5 BIG-IP Vulnerability Actively Exploited in Attacks
1 month ago
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a newly disclosed vulnerability affecting F5 BIG-IP systems to its Known Exploited Vulnerabilities (KEV) catalog, warning that the flaw is being actively leveraged in real-world attacks. The vulnerability, tracked as CVE-2025-53521, was officially listed on March 27, 2026, with a remediation deadline of March 30, […]
The post CISA Warns of F5 BIG-IP Vulnerability Actively Exploited in Attacks appeared first on Cyber Security News.
Guru Baran