Year: 2026

• Cyber Security News

CVE-2026-32202: Windows Shell Spoofing Flaw Exploited in Wild

John 3 weeks ago 0

Microsoft has confirmed that CVE-2026-32202, a Windows Shell spoofing vulnerability patched on April 14, 2026, is being actively...

Read More Read more about CVE-2026-32202: Windows Shell Spoofing Flaw Exploited in Wild

• Cyber Attack
• Cyber Security News

CVE-2026-25874: HuggingFace LeRobot RCE via Pickle Flaw

John 3 weeks ago 0

A critical flaw, currently unpatched remote code execution vulnerability (CVE-2026-25874) in HuggingFace’s LeRobot robotics framework allows any...

Read More Read more about CVE-2026-25874: HuggingFace LeRobot RCE via Pickle Flaw

• Cybersecurity

Google Chrome 147 Patches 30 Flaws, 4 Critical UAF Bugs Fixed

John 3 weeks ago 0

Google has released an emergency stable channel update for Chrome desktop, pushing version 147.0.7727.137/138 for Windows and macOS and 147.0.7727.137...

Read More Read more about Google Chrome 147 Patches 30 Flaws, 4 Critical UAF Bugs Fixed

• Cyber Attack
• Cyber Security News

Frappe Framework XSS Flaw Lets Attackers Hijack User Sessions

John 3 weeks ago 0

Frappe Framework has disclosed a Stored Cross-Site Scripting (XSS) vulnerability, tracked as CVE-2026-28436, affecting all versions before...

Read More Read more about Frappe Framework XSS Flaw Lets Attackers Hijack User Sessions

• Cyber Security News

Mozilla Patches Critical Firefox ESR Flaw Allowing Code Execution

John 3 weeks ago 0

An emergency security update for Firefox ESR 140.10.1, patching four vulnerabilities, including two rated critical, that could allow...

Read More Read more about Mozilla Patches Critical Firefox ESR Flaw Allowing Code Execution

• Cyber AI
• Cyber Security News

NVIDIA FLARE SDK Critical Flaw Lets Attackers Bypass Auth

John 3 weeks ago 0

An urgent security update for its NVIDIA FLARE SDK, addressing three vulnerabilities, including a critical 9.8 CVSS-rated...

Read More Read more about NVIDIA FLARE SDK Critical Flaw Lets Attackers Bypass Auth

• Cyber Security News

Cursor AI Flaw Lets Extensions Steal Dev API Keys Silently

John 3 weeks ago 0

A high-severity access control vulnerability (CVSS 8.2) in Cursor AI that allows any installed extension to silently...

Read More Read more about Cursor AI Flaw Lets Extensions Steal Dev API Keys Silently

• Cyber Security News

CISA KEV Alert: Windows Shell & ScreenConnect Flaws Exploited

John 3 weeks ago 0

Two high-severity vulnerabilities, a zero-click Windows Shell credential theft flaw and a legacy ConnectWise ScreenConnect path traversal...

Read More Read more about CISA KEV Alert: Windows Shell & ScreenConnect Flaws Exploited

• Cyber Attack
• Cyber Security News

GitHub RCE Flaw CVE-2026-3854 Exposed Millions of Repositories

John 3 weeks ago 0

A critical remote code execution (RCE) vulnerability in GitHub’s internal git infrastructure, CVE-2026-3854 (CVSS: 8.7), that allowed any authenticated...

Read More Read more about GitHub RCE Flaw CVE-2026-3854 Exposed Millions of Repositories

• Cyber Attack
• Cyber Security News

CVE-2026-33725: Metabase RCE Flaw Exposes Enterprise Servers

John 3 weeks ago 0

A high-severity Remote Code Execution (RCE) vulnerability, tracked as CVE-2026-33725, has been disclosed in Metabase Enterprise Edition,...

Read More Read more about CVE-2026-33725: Metabase RCE Flaw Exposes Enterprise Servers