Aggregator

CVE-2025-47389 | Qualcomm Snapdragon Auto up to XRV9209 buffer overflow

VulDB Recent Entries
3 weeks 4 days ago
A vulnerability described as critical has been identified in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Edge Cloud AI, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon WBC and Snapdragon Wearables. Affected by this vulnerability is an unknown functionality. The manipulation results in buffer overflow. This vulnerability is reported as CVE-2025-47389. The attack requires a local approach. No exploit exists. Upgrading the affected component is recommended.
vuldb.com

CVE-2026-34378 | AcademySoftwareFoundation OpenEXR up to 3.4.8 EXR File Parser generic_unpack integer overflow (GHSA-v76p-4qvv-vh4g)

VulDB Recent Entries
3 weeks 4 days ago
A vulnerability labeled as problematic has been found in AcademySoftwareFoundation OpenEXR up to 3.4.8. This impacts the function generic_unpack of the component EXR File Parser. Executing a manipulation can lead to integer overflow. This vulnerability is registered as CVE-2026-34378. It is possible to launch the attack remotely. No exploit is available. The affected component should be upgraded.
vuldb.com

CISA Warns of Fortinet 0-Day Vulnerability Actively Exploited in Attacks

Cyber Security News
3 weeks 4 days ago

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2026-35616, a critical improper access control vulnerability in Fortinet FortiClient Enterprise Management Server (EMS), to its Known Exploited Vulnerabilities (KEV) catalog on April 6, 2026, mandating federal agencies to remediate by April 9, 2026. CVE-2026-35616 is a critical-severity flaw rooted in CWE-284 (Improper Access Control), carrying a CVSS score […]

The post CISA Warns of Fortinet 0-Day Vulnerability Actively Exploited in Attacks appeared first on Cyber Security News.

Guru Baran

DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea

The Hackers News
3 weeks 4 days ago
Threat actors likely associated with the Democratic People's Republic of Korea (DPRK) have been observed using GitHub as command-and-control (C2) infrastructure in multi-stage attacks targeting organizations in South Korea. The attack chain, per Fortinet FortiGuard Labs, involves obfuscated Windows shortcut (LNK) files acting as the starting point to drop a decoy PDF
The Hacker News

CVE-2025-50286

CVE Trends
3 weeks 4 days ago
Currently trending CVE - Hype Score: 8 - A Remote Code Execution (RCE) vulnerability in Grav CMS v1.7.48 allows an authenticated admin to upload a malicious plugin via the /admin/tools/direct-install interface. Once uploaded, the plugin is automatically extracted and loaded, allowing arbitrary PHP code execution and ...

CVE-2026-28289

CVE Trends
3 weeks 4 days ago
Currently trending CVE - Hype Score: 8 - FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. A patch bypass vulnerability for CVE-2026-27636 in FreeScout 1.8.206 and earlier allows any authenticated user with file upload permissions to achieve Remote Code Execution (RCE) on the server by ...

CVE-2025-20741

CVE Trends
3 weeks 4 days ago
Currently trending CVE - Hype Score: 20 - In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00434422; ...

Storm-1175 focuses gaze on vulnerable web-facing assets in high-tempo Medusa ransomware operations

Threat intelligence | Microsoft Security Blog
3 weeks 4 days ago

The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize recently disclosed vulnerabilities to obtain initial access, exfiltrate data, and deploy Medusa ransomware.

The post Storm-1175 focuses gaze on vulnerable web-facing assets in high-tempo Medusa ransomware operations appeared first on Microsoft Security Blog.

Microsoft Threat Intelligence

eCapture v2 来了,AI Agent 写了 90% 的代码

莿鸟栖草堂
3 weeks 4 days ago
eCapture v2 完成了整个内部架构重建——8 个 Probe 全部标准化重写,`user/` 目录彻底删除,E2E 测试覆盖 72+ 场景。更值得一说的是:v2 系列 90% 的代码由 GitHub Copilot AI Agent 完成,笔者主要负责写需求和审 PR。这是一次 AI 真正深度参与开源项目的真实实验。
CFC4N

Managed ad