Cyber Security News

• Cyber Attack
• Cyber Security News

Critical Marimo CVE‑2026‑39987 Pre‑Auth RCE Actively Exploited

John 3 weeks ago 0

Marimo, a popular open‑source reactive Python notebook used in data science and AI workflows, is under active...

Read More Read more about Critical Marimo CVE‑2026‑39987 Pre‑Auth RCE Actively Exploited

• Cyber Attack
• Cyber Security News

CVE-2026-32172: Critical Microsoft Power Apps RCE Fully Fixed

John 3 weeks ago 0

Microsoft has disclosed CVE-2026-32172, a critical remote code execution (RCE) vulnerability in Microsoft Power Apps caused by...

Read More Read more about CVE-2026-32172: Critical Microsoft Power Apps RCE Fully Fixed

• Cyber Attack
• Cyber Security News

Microsoft Defender Flaw CVE-2026-33825 Lets Hackers Gain SYSTEM

John 3 weeks ago 0

A high-severity vulnerability in Microsoft Defender, tracked as CVE-2026-33825, allows attackers with low-level local access to escalate...

Read More Read more about Microsoft Defender Flaw CVE-2026-33825 Lets Hackers Gain SYSTEM

• Cyber Attack
• Cyber Security News

CVE-2026-41679: Paperclip AI RCE Flaw Lets Attackers Own Servers

John 3 weeks ago 0

A maximum-severity vulnerability in the paperclipai server npm package enables any remote, unauthenticated attacker to execute arbitrary...

Read More Read more about CVE-2026-41679: Paperclip AI RCE Flaw Lets Attackers Own Servers

• Cyber Attack
• Cyber Security News

CVE-2026-41211: vite-plus Path Traversal Escapes VP_HOME Cache

John 3 weeks ago 0

A moderate-severity path traversal flaw in the vite-plus The npm package (CVE-2026-41211) allows programmatic callers to escape the designated...

Read More Read more about CVE-2026-41211: vite-plus Path Traversal Escapes VP_HOME Cache

• Cyber Attack
• Cyber Security News

CVE-2026-40937: RustFS Webhook Hijack Exposes S3 Event Data

John 3 weeks ago 0

A newly disclosed vulnerability in RustFS, the Rust-based distributed object storage system, allows any low-privileged authenticated user...

Read More Read more about CVE-2026-40937: RustFS Webhook Hijack Exposes S3 Event Data

• Cyber Attack
• Cyber Security News

CVE-2026-6023: Telerik AJAX Flaw Enables Remote Code Execution

John 3 weeks ago 0

The Progress Telerik team has confirmed a critical deserialization flaw tracked as CVE-2026-6023, affecting Progress Telerik UI for...

Read More Read more about CVE-2026-6023: Telerik AJAX Flaw Enables Remote Code Execution

• Cyber Security News

GitLab Patches 11 Flaws Including 3 High-Severity CVEs

John 3 weeks ago 0

GitLab released critical security patch updates for versions 18.11.1, 18.10.4, and 18.9.6 on April 22, 2026, addressing 11...

Read More Read more about GitLab Patches 11 Flaws Including 3 High-Severity CVEs

• Cyber Attack
• Cyber Security News

CVE-2026-39808: Fortinet FortiSandbox RCE Flaw Grants Root Access

John 3 weeks ago 0

A critical unauthenticated remote code execution (RCE) vulnerability, tracked as CVE-2026-39808, has been publicly disclosed in Fortinet’s...

Read More Read more about CVE-2026-39808: Fortinet FortiSandbox RCE Flaw Grants Root Access

• Cyber Attack
• Cyber Security News

Checkmarx KICS Docker Images Hijacked to Steal Cloud Secrets

John 3 weeks ago 0

Attackers hijacked official Checkmarx KICS Docker Hub images and VS Code extensions to steal cloud credentials silently,...

Read More Read more about Checkmarx KICS Docker Images Hijacked to Steal Cloud Secrets