Ни капли нефти. Построен первый в мире корабль на аммиаке — и это меняет всё судоходство
HD Hyundai показала судно, которое отрасль ждала и боялась одновременно.
Aggregator
OpenAI Warns macOS Users to Update ChatGPT and Codex Immediately
1 week 3 days ago
OpenAI has disclosed a security incident tied to the compromise of Axios, a widely used third-party JavaScript developer library, as part of a broader software supply chain attack detected on March 31, 2026. While the company confirmed no user data, API keys, or systems were compromised, it is taking aggressive precautionary measures to protect its […]
The post OpenAI Warns macOS Users to Update ChatGPT and Codex Immediately appeared first on Cyber Security News.
Guru Baran
GlassWorm evolves with Zig dropper to infect multiple developer tools
1 week 3 days ago
The GlassWorm campaign uses a Zig-based dropper hidden in a fake IDE extension to infect developer tools and compromise systems. The GlassWorm campaign, active since 2025, has evolved from malicious npm packages to large-scale supply chain attacks across GitHub, npm, and VS Code, even deploying RATs via fake browser extensions. In its latest iteration, threat […]
Pierluigi Paganini
Saturday Security: AI Could Trigger a Zero-Day Exploit Tsunami
1 week 3 days ago
For decades, zero-day vulnerabilities were the cyber equivalent of secret weapons — only nation-states and elite attackers could find and weaponize them. That balance may be gone. On April 7, 2026, Anthropic announced Claude Mythos Preview — an AI model so capable of finding and exploiting vulnerabilities that the company decided it’s too dangerous to […]
The post Saturday Security: AI Could Trigger a Zero-Day Exploit Tsunami appeared first on Security Boulevard.
psilva
Сюрприз для криптанов: популярный пакет Velora SDK начал жить своей жизнью и звать хакеров в гости
1 week 3 days ago
Похоже, даже безупречная репутация не гарантирует, что данные уцелеют.
NightSpire
1 week 3 days ago
You must login to view this content
cohenido
CVE-2026-6124 | Tenda F451 1.0.0.7 httpd /goform/SafeMacFilter fromSafeMacFilter page/menufacturer stack-based overflow (EUVD-2026-21726)
1 week 3 days ago
A vulnerability classified as critical was found in Tenda F451 1.0.0.7. This vulnerability affects the function fromSafeMacFilter of the file /goform/SafeMacFilter of the component httpd. Executing a manipulation of the argument page/menufacturer can lead to stack-based buffer overflow.
This vulnerability is handled as CVE-2026-6124. The attack can be executed remotely. Additionally, an exploit exists.
vuldb.com
CVE-2026-6123 | Tenda F451 1.0.0.7 httpd /goform/addressNat fromAddressNat entrys stack-based overflow (EUVD-2026-21724)
1 week 3 days ago
A vulnerability classified as critical has been found in Tenda F451 1.0.0.7. This affects the function fromAddressNat of the file /goform/addressNat of the component httpd. Performing a manipulation of the argument entrys results in stack-based buffer overflow.
This vulnerability is known as CVE-2026-6123. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
vuldb.com
CVE-2026-6122 | Tenda F451 1.0.0.7 httpd /goform/L7Prot frmL7ProtForm page stack-based overflow (EUVD-2026-21722)
1 week 3 days ago
A vulnerability described as critical has been identified in Tenda F451 1.0.0.7. Affected by this issue is the function frmL7ProtForm of the file /goform/L7Prot of the component httpd. Such manipulation of the argument page leads to stack-based buffer overflow.
This vulnerability is traded as CVE-2026-6122. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2026-6121 | Tenda F451 1.0.0.7 httpd /goform/WrlclientSet GO stack-based overflow (EUVD-2026-21720)
1 week 3 days ago
A vulnerability marked as critical has been reported in Tenda F451 1.0.0.7. Affected by this vulnerability is the function WrlclientSet of the file /goform/WrlclientSet of the component httpd. This manipulation of the argument GO causes stack-based buffer overflow.
This vulnerability appears as CVE-2026-6121. The attack may be initiated remotely. In addition, an exploit is available.
vuldb.com
CVE-2026-6120 | Tenda F451 1.0.0.7 httpd /goform/DhcpListClient fromDhcpListClient page stack-based overflow (EUVD-2026-21718)
1 week 3 days ago
A vulnerability labeled as critical has been found in Tenda F451 1.0.0.7. Affected is the function fromDhcpListClient of the file /goform/DhcpListClient of the component httpd. The manipulation of the argument page results in stack-based buffer overflow.
This vulnerability is reported as CVE-2026-6120. The attack can be launched remotely. Moreover, an exploit is present.
vuldb.com
FBI Recovers Deleted Signal Messages Through iPhone Notifications
1 week 3 days ago
Signal messages may persist in iPhone notification data, enabling FBI access even after deletion, a court case reveals.
Deeba Ahmed
Submit #792874: Tenda F451_kfw_V1.0.0.7_cn_svn7958 V1.0.0.7 Buffer Overflow [Accepted]
1 week 3 days ago
Submit #792874 / VDB-356987
Jxm666
Submit #792873: Tenda F451_kfw_V1.0.0.7_cn_svn7958 V1.0.0.7 Buffer Overflow [Accepted]
1 week 3 days ago
Submit #792873 / VDB-356986
Jxm666
Submit #792872: Tenda F451_kfw_V1.0.0.7_cn_svn7958 V1.0.0.7 Buffer Overflow [Accepted]
1 week 3 days ago
Submit #792872 / VDB-356985
Jxm666
Submit #792866: Tenda F451_kfw_V1.0.0.7_cn_svn7958 V1.0.0.7 Buffer Overflow [Duplicate]
1 week 3 days ago
Submit #792866 / VDB-356542
Jimi
Submit #792865: Tenda F451_kfw_V1.0.0.7_cn_svn7958 V1.0.0.7 Buffer Overflow [Accepted]
1 week 3 days ago
Submit #792865 / VDB-356984
Jimi
Submit #792864: Tenda F451_kfw_V1.0.0.7_cn_svn7958 V1.0.0.7 Buffer Overflow [Accepted]
1 week 3 days ago
Submit #792864 / VDB-356983
Jimi
【新手易懂】VeraCrypt加密卷创建与解密步骤详解
1 week 3 days ago
使用相关工具和方法时须严格遵守法律法规及道德准则
【APK / IPA 安装包获取及静态分析实战】
1 week 3 days ago
详细介绍了获取 APK /IPA 安装包的方法。重点讲解了 APK 静态分析的核心内容,打包公司证据核验的关键点,借助 jadx 和 APK Messenger 等工具,解析应用的基本信息、权限、签名、源码和隐藏的 URL。