ARTIKEL SUCHE
Threat Feed QueryDurchsuche alle aggregierten Security-Artikel nach Schlagworten, CVE-IDs und Quellen.
[Critical] CVE-2018-25357 – Dolibarr ERP CRM 7.0.3 contains a remote code execution vulnerability that allow...
Critical CVE-2018-25357 Dolibarr ERP CRM 7.0.3 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary code by injecting PHP code through the db_name parameter. Attackers
CVE-2026-9082: Drupal’s Highly Critical SQL Injection Flaw Is Already Under Active Attack
Attackers began exploiting Drupal SQL injection flaw CVE-2026-9082 within 48 hours of patch release. Drupal issued a highly critical security patch on May 20 for CVE-2026-9082, a SQL injection vulnerability that allows u
Anthropic’s Claude Mythos Preview Uncovers 10,000+ 0-Days in Project Glasswing
Anthropic has revealed the staggering initial results of Project Glasswing, a collaborative cybersecurity initiative designed to secure critical infrastructure using advanced AI before malicious actors can exploit it. In
CVE-2026-41104 - Microsoft Planetary Computer Pro Information Disclosure Vulnerability
CVE ID :CVE-2026-41104 Published : May 22, 2026, 10:04 p.m. | 55 minutes ago Description :None Severity: 10.0 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, a
CVE-2026-42901 - Microsoft Entra ID Elevation of Privilege Vulnerability
CVE ID :CVE-2026-42901 Published : May 22, 2026, 10:04 p.m. | 55 minutes ago Description :None Severity: 10.0 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, a
CVE-2026-33843 - Microsoft Azure Active Directory B2C Elevation of Privilege Vulnerability
CVE ID :CVE-2026-33843 Published : May 22, 2026, 10:03 p.m. | 56 minutes ago Description :None Severity: 9.1 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, an
CVE-2026-41090 - Microsoft Copilot Tampering Vulnerability
CVE ID :CVE-2026-41090 Published : May 22, 2026, 10:03 p.m. | 56 minutes ago Description :None Severity: 9.3 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, an
CVE-2026-47280 - Azure Resource Manager Elevation of Privilege Vulnerability
CVE ID :CVE-2026-47280 Published : May 22, 2026, 10:03 p.m. | 56 minutes ago Description :None Severity: 10.0 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, a
CVE-2026-40411 - Azure Virtual Network Gateway Remote Code Execution Vulnerability
CVE ID :CVE-2026-40411 Published : May 22, 2026, 10:03 p.m. | 56 minutes ago Description :None Severity: 9.9 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, an
CVE-2026-23652 - Microsoft Power Pages Remote Code Execution Vulnerability
CVE ID :CVE-2026-23652 Published : May 22, 2026, 10:03 p.m. | 56 minutes ago Description :None Severity: 10.0 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, a
CVE-2026-40412 - Azure Orbital Spatio Remote Code Execution Vulnerability
CVE ID :CVE-2026-40412 Published : May 22, 2026, 10:03 p.m. | 56 minutes ago Description :None Severity: 10.0 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, a
Ubiquiti Patches Critical UniFi OS Vulnerabilities Allowing Remote Privilege Escalation
Ubiquiti Networks has released urgent security updates to address a series of highly critical vulnerabilities affecting its UniFi OS platform. These severe flaws could allow unauthenticated, remote attackers to execute a
LiteSpeed cPanel Plugin 0-Day Exploited in the wild to Gain Server Root Access
LiteSpeed has disclosed and patched a critical 0‑day privilege escalation flaw in its user-end cPanel plugin that is already being actively exploited to gain root access on Linux hosting servers. The bug is tracked as CV
[Critical] CVE-2026-32253 – Sunshine is a self-hosted game stream host for Moonlight. In versions prior to 2...
Critical CVE-2026-32253 Sunshine is a self-hosted game stream host for Moonlight. In versions prior to 2026.516.143833, the client-certificate authentication can be bypassed because of how OpenSSL verification results ar
CISA adds Langflow Origin Validation Flaw to Known Exploited Vulnerabilities Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Langflow vulnerability, tracked as CVE-2025-34291, to its Known Exploited Vulnerabilities (KEV) Catalog, signaling active exploitatio
Cisco’s Risk-Based Vulnerability Disclosure in the Age of AI
Discover how Cisco is evolving its vulnerability disclosure practices. We are leveraging AI to prioritize high-risk security issues, helping customers focus on critical patching and remediation efforts.
CISA Warns of Microsoft Defender 0-Day Vulnerabilities Exploited in Attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two critical Microsoft Defender vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, warning organizations of active exploitatio
Drupal: Critical SQL injection flaw now targeted in attacks
Drupal is warning that hackers are attempting to exploit a "highly critical" SQL injection vulnerability announced earlier this week. [...]
Update Chrome now: Critical bugs could let attackers run code
This Chrome update fixes critical flaws attackers could exploit through malicious websites, but not the “Browser Fetch” vulnerability.
CISA Warns of Trend Micro Apex One Vulnerability Exploited in Attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in Trend Micro Apex One to its Known Exploited Vulnerabilities (KEV) catalog, warning organizations of active exploitati