Aggregator

CVE-2026-4702 | Mozilla Firefox up to 148 JavaScript Engine Remote Code Execution (Nessus ID 303907)

3 weeks ago

A vulnerability has been found in Mozilla Firefox up to 148 and classified as critical. Affected is an unknown function of the component JavaScript Engine. This manipulation causes Remote Code Execution. This vulnerability is tracked as CVE-2026-4702. The attack is possible to be carried out remotely. No exploit exists. The affected component should be upgraded.

vuldb.com

CVE-2026-4704 | Mozilla Firefox up to 148 Signaling denial of service (Nessus ID 303907)

Vuldb Updates

3 weeks ago

A vulnerability was found in Mozilla Firefox up to 148. It has been classified as problematic. Affected by this issue is some unknown functionality of the component Signaling. Performing a manipulation results in denial of service. This vulnerability is cataloged as CVE-2026-4704. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is recommended.

vuldb.com

В Люксембурге нашли лишний код. Теперь 5000 чиновников переустанавливают систему на планшетах

Securitylab.ru

3 weeks ago

Государство раскрыло подробности взлома правительственной сети.

CVE-2026-4988 | Open5GS 2.7.6 CCA Message smf_gx_cca_cb/smf_gy_cca_cb/smf_s6b denial of service (Issue 4342)

VulDB Recent Entries

3 weeks ago

A vulnerability labeled as problematic has been found in Open5GS 2.7.6. This issue affects the function smf_gx_cca_cb/smf_gy_cca_cb/smf_s6b of the component CCA Message Handler. The manipulation results in denial of service. This vulnerability is cataloged as CVE-2026-4988. The attack may be launched remotely. Furthermore, there is an exploit available.

vuldb.com

The Good, the Bad and the Ugly in Cybersecurity – Week 13

SentinelOne Blog

3 weeks ago

Alleged RedLine operator faces 30 years, FAUX#ELEVATE compromises enterprises in 30 seconds, and TeamPCP launches cascading supply chain attacks.

SentinelOne

The Telnyx SDK on PyPI Compromise and the 2026 TeamPCP Supply Chain Attacks

The Akamai Blog

3 weeks ago

Akamai Security Intelligence Group

The Telnyx PyPI Compromise and the 2026 TeamPCP Supply Chain Attacks

The Akamai Blog

3 weeks ago

Akamai Security Intelligence Group

Magento Polyshell — The Latest Magento Threat (APSB25-94)

The Akamai Blog

3 weeks ago

Akamai Security Intelligence Group

Google Sets 2029 Deadline for Quantum-Safe Cryptography

darkreading

3 weeks ago

The post-quantum future may be coming sooner than you think, as Google plans to have PQC migration in place by 2029.

Alexander Culafi

How we use Abstract Syntax Trees (ASTs) to turn Workflows code into visual diagrams

The Cloudflare Blog

3 weeks ago

Workflows are now visualized via step diagrams in the dashboard. Here’s how we translate your TypeScript code into a visual representation of the workflow.

André Venceslau

Submit #771349: Open5GS SMF v2.7.6 Denial of Service [Accepted]

Vuldb Submit

3 weeks ago

Submit #771349 / VDB-353875

ZiyuLin

Submit #771349: Open5GS SMF v2.7.6 Denial of Service [Accepted]

Vuldb Submit

3 weeks ago

Submit #771349 / VDB-353875

ZiyuLin

CVE-2026-4985 | dloebl CGIF up to 0.5.2 GIF Image src/cgif.c cgif_addframe width/height integer overflow (Issue 110)

VulDB Recent Entries

3 weeks ago

A vulnerability identified as problematic has been detected in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgif_addframe of the file src/cgif.c of the component GIF Image Handler. The manipulation of the argument width/height leads to integer overflow. This vulnerability is listed as CVE-2026-4985. The attack may be initiated remotely. There is no available exploit. It is suggested to install a patch to address this issue.

vuldb.com