Aggregator

深度解析：GitHub 智能自主工作流安全架构

不安全

1 month ago

环境异常当前环境异常，完成验证后即可继续访问。去验证

苹果华为小米手机，全线降价最高 3000；电信推 Token 套餐，9.9 元起；知乎 CEO：AI 时代，真实创作者价值不可替代 | 极客早知道

极客公园

1 month ago

张雪机车 WSBK 捷克站再夺冠，斩获赛季第五冠；特斯拉两年来首次上调 Model Y 美国售价；真人漫改电影《新 · 驯龙高手 2》杀青

New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released

Bleeping Computer.

1 month ago

A cybersecurity researcher has released a proof-of-concept exploit for a Windows privilege escalation zero-day dubbed "MiniPlasma" that lets attackers gain SYSTEM privileges on fully patched Windows systems. [...]

Lawrence Abrams

Closing the Gap: The Regulatory and Structural Maturation of Digital Assets

Hack Read

1 month ago

Digital assets are reshaping global finance as institutions adopt regulated crypto infrastructure, stablecoins, and tokenized assets.

Owais Sultan

Debian 13.5 point release lands with security fixes, bug patches

Help Net Security

1 month ago

Debian 13.5 is the fifth point release for the stable distribution “trixie.” The update folds in roughly 100 Debian Security Advisories and corrections for more than 130 source packages, covering everything from the Linux kernel and Apache HTTP Server to OpenSSH, sudo, systemd, OpenSSL, glibc, and FreeRDP. Fresh installer images carrying the same fixes will follow at the regular download locations. Sysadmins running trixie do not need to reinstall. Existing media remain valid, and machines … More →

The post Debian 13.5 point release lands with security fixes, bug patches appeared first on Help Net Security.

Anamarija Pogorelec

CVE-2026-44194

CVE Trends

1 month ago

Currently trending CVE - Hype Score: 5 - OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.8, an authenticated Remote Code Execution (RCE) vulnerability in the OPNsense core allows a user with user-management privileges to execute arbitrary system commands as root. An attacker can bypass input ...

CVE-2024-0519

CVE Trends

1 month ago

Currently trending CVE - Hype Score: 11 - Out of bounds memory access in V8 in Google Chrome prior to 120.0.6099.224 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2026-46720 | RRWO Net::Statsd::Tiny up to 0.3.7 on Perl crlf injection (EUVD-2026-30706)

VulDB Recent Entries

1 month ago

A vulnerability classified as critical has been found in RRWO Net::Statsd::Tiny up to 0.3.7 on Perl. This vulnerability affects unknown code. The manipulation leads to crlf injection. This vulnerability is listed as CVE-2026-46720. The attack may be initiated remotely. There is no available exploit. It is recommended to upgrade the affected component.

vuldb.com

CVE-2026-8721 | JONASBN Crypt::OpenSSL::PKCS12 up to 1.94 on Perl strlen null termination (EUVD-2026-30707)

VulDB Recent Entries

1 month ago

A vulnerability described as problematic has been identified in JONASBN Crypt::OpenSSL::PKCS12 up to 1.94 on Perl. This affects the function strlen. Executing a manipulation can lead to improper null termination. This vulnerability is tracked as CVE-2026-8721. The attack can be launched remotely. No exploit exists.

vuldb.com

CVE-2026-8507 | JONASBN Crypt::OpenSSL::PKCS12 up to 1.94 on Perl info/info_as_hash out-of-bounds write (ID 55 / EUVD-2026-30708)

VulDB Recent Entries

1 month ago

A vulnerability marked as critical has been reported in JONASBN Crypt::OpenSSL::PKCS12 up to 1.94 on Perl. Affected by this issue is the function info/info_as_hash. Performing a manipulation results in out-of-bounds write. This vulnerability is identified as CVE-2026-8507. The attack can be initiated remotely. There is not any exploit available. It is recommended to apply a patch to fix this issue.

vuldb.com