Tag: vulnerability

Trend Micro Apex Central RCE Flaw Scores 9.8 CVSS in On-Prem Windows Versions

Jan 9, 2026 12:01 PM

Tags: cve, cvss, flaw, rce, remote-code-execution, update, vulnerability, windows

Trend Micro has released security updates to address multiple security vulnerabilities impacting on-premise versions of Apex Central for Windows, including a critical bug that could result in arbitrary code execution.The vulnerability, tracked as CVE-2025-69258, carries a CVSS score of 9.8 out of a maximum of 10.0. The vulnerability has been described as a case of…
NDSS 2025 ReThink: Reveal The Threat Of Electromagnetic Interference On Power Inverters

Jan 9, 2026 10:01 AM

Tags: attack, awareness, control, cyber, Hardware, Internet, iot, network, service, software, threat, vulnerability

Session 8B: Electromagnetic Attacks Authors, Creators & Presenters: Fengchen Yang (Zhejiang University; ZJU QI-ANXIN IoT Security Joint Laboratory), Zihao Dan (Zhejiang University; ZJU QI-ANXIN IoT Security Joint Laboratory), Kaikai Pan (Zhejiang University; ZJU QI-ANXIN IoT Security Joint Laboratory), Chen Yan (Zhejiang University; ZJU QI-ANXIN IoT Security Joint Laboratory), Xiaoyu Ji (Zhejiang University; ZJU QI-ANXIN IoT…
Cisco identifies vulnerability in ISE network access control devices

Jan 9, 2026 5:01 AM

Tags: access, advisory, breach, cisco, control, credentials, cvss, data, exploit, firewall, google, identity, malicious, network, sans, theft, vulnerability

rotate ISE credentials for those with existing and approved access;ensure only those who need access have credentials;reduce the number of devices that can access the ISE server;patch as soon as it’s possible to take the server offline.In its notice to customers, Cisco says a vulnerability [CVE-2026-20029] in the licensing features of ISE and Cisco ISE…
CISA sunsets 10 emergency directives thanks to evolution of exploited vulnerabilities catalog

Jan 9, 2026 12:01 AM

Tags: cisa, cybersecurity, exploit, infrastructure, vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) said on Thursday that the 10 directives being retired were issued between 2019 and 2024, spanning both the Trump and Biden administrations. First seen on therecord.media Jump to article: therecord.media/cisa-sunsets-10-emergency-directives
VMware ESXi zero-days likely exploited a year before disclosure

Jan 8, 2026 11:01 PM

Tags: china, exploit, threat, vmware, vpn, vulnerability, zero-day

Chinese-speaking threat actors used a compromised SonicWall VPN appliance to deliver a VMware ESXi exploit toolkit that seems to have been developed more than a year before the targeted vulnerabilities became publicly known. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/vmware-esxi-zero-days-likely-exploited-a-year-before-disclosure/
n8n Users Urged to Patch CVSS 10.0 Full System Takeover Vulnerability

Jan 8, 2026 10:02 PM

Tags: automation, cvss, update, vulnerability

A critical vulnerability (CVE-2026-21877) found by Upwind affects n8n automation tools. Learn why researchers are urging users to update to version 1.121.3 immediately to prevent remote code execution. First seen on hackread.com Jump to article: hackread.com/n8n-users-patch-full-system-takeover-vulnerability/
The 2 faces of AI: How emerging models empower and endanger cybersecurity

Jan 8, 2026 8:02 PM

Tags: ai, api, attack, compliance, credentials, cyber, cybersecurity, data, deep-fake, defense, detection, endpoint, espionage, exploit, finance, flaw, framework, GDPR, google, governance, government, group, guide, hacker, HIPAA, incident response, injection, intelligence, LLM, malicious, malware, mandiant, microsoft, network, PCI, penetration-testing, privacy, risk, russia, scam, security-incident, service, social-engineering, strategy, tactics, threat, tool, vulnerability, zero-day

Self-modifying, evasive malware More recently, the researchers at Google Threat Intelligence Group (GTIG) identified a disturbing new trend: malware that uses LLMs during execution to dynamically alter its own behavior and evade detection. This is not pre-generated code, this is code that adapts mid-execution.In June 2025, GTIG identified an experimental malware called PROMPTFLUX, which connects…
The 2 faces of AI: How emerging models empower and endanger cybersecurity

Jan 8, 2026 8:02 PM

Tags: ai, api, attack, compliance, credentials, cyber, cybersecurity, data, deep-fake, defense, detection, endpoint, espionage, exploit, finance, flaw, framework, GDPR, google, governance, government, group, guide, hacker, HIPAA, incident response, injection, intelligence, LLM, malicious, malware, mandiant, microsoft, network, PCI, penetration-testing, privacy, risk, russia, scam, security-incident, service, social-engineering, strategy, tactics, threat, tool, vulnerability, zero-day

Self-modifying, evasive malware More recently, the researchers at Google Threat Intelligence Group (GTIG) identified a disturbing new trend: malware that uses LLMs during execution to dynamically alter its own behavior and evade detection. This is not pre-generated code, this is code that adapts mid-execution.In June 2025, GTIG identified an experimental malware called PROMPTFLUX, which connects…
React2Shell Vulnerability Hit by 8.1 Million Attack Attempts

Jan 8, 2026 7:02 PM

Tags: attack, cve, cyber, exploit, intelligence, remote-code-execution, threat, vulnerability

The React Server Components (RSC) >>Flight<>React2Shell,<< has become the target of a massive exploitation campaign that shows no signs of slowing. Since the vulnerability's initial disclosure, threat intelligence firm GreyNoise has recorded over 8.1 million attack sessions, with daily attack volumes […] The post React2Shell Vulnerability Hit by 8.1 Million Attack Attempts appeared first on…
Embracing Uncertainty with AI Agents: Vulnerability Assessment using Pydantic AI

Jan 8, 2026 7:02 PM

Tags: ai, vulnerability

In this blog, we show union-type structured output allows AI agents to handle uncertain outcomes, critical for auditable and accurate vulnerability triage. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/embracing-uncertainty-with-ai-agents-vulnerability-assessment-using-pydantic-ai/
Cisco ISE Vulnerability Enables Access to Sensitive Data

Jan 8, 2026 7:02 PM

Tags: access, cisco, cve, cvss, cyber, data, identity, service, vulnerability

Cisco has disclosed a new XML External Entity (XXE) vulnerability in Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) that could allow authenticated attackers with administrative access to read sensitive data from the underlying operating system. The vulnerability is tracked as CVE-2026-20029 and is rated CVSS 4.9 (medium severity), but its…
Cisco Snort 3 Vulnerability Leading to Sensitive Data Disclosure

Jan 8, 2026 7:02 PM

Tags: advisory, cisco, cve, cyber, data, defense, detection, firewall, leak, service, threat, vulnerability

Cisco has disclosed two critical vulnerabilities in the Snort 3 detection engine affecting multiple enterprise security products, including firewalls, threat defense systems, and edge platforms. The vulnerabilities, tracked as CVE-2026-20026 and CVE-2026-20027 under advisory cisco-sa-snort3-dcerpc-vulns-J9HNF4tH, could allow unauthenticated remote attackers to leak sensitive information or cause denial-of-service conditions by disrupting packet inspection capabilities. The vulnerabilities…
Public PoC prompts Cisco patch for ISE, ISE-PIC vulnerability

Jan 8, 2026 6:03 PM

Tags: cisco, cve, exploit, identity, service, update, vulnerability

Cisco addressed a medium-severity vulnerability in ISE and ISE-PIC after a public PoC exploit was disclosed. Cisco addressed a medium-severity vulnerability, tracked as CVE-2026-20029 (CVSS score: 4.9), in Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) after a public PoC exploit was disclosed. The vulnerability resides in the licensing feature of Cisco ISE…
Cybersecurity at the edge: Securing rugged IoT in mission-critical environments

Jan 8, 2026 5:05 PM

Tags: 5G, access, attack, authentication, breach, business, cio, compliance, control, credentials, cyber, cybersecurity, data, data-breach, defense, detection, firmware, framework, gartner, Hardware, HIPAA, identity, infrastructure, iot, leak, least-privilege, mitigation, monitoring, network, nist, password, risk, strategy, supply-chain, technology, theft, threat, unauthorized, update, vpn, vulnerability, zero-trust

Defense: Compromised devices can leak mission-critical data or disrupt tactical communications.Utilities: Operational paralysis halts power distribution or water treatment, impacting millions.Public safety: Emergency response systems fail during crises, endangering lives.According to Gartner, in 2023, IoT-related incidents in critical infrastructure surged 400% over the previous three years and the average cost of an OT breach exceeded…
Cybersecurity at the edge: Securing rugged IoT in mission-critical environments

Jan 8, 2026 5:05 PM

Tags: 5G, access, attack, authentication, breach, business, cio, compliance, control, credentials, cyber, cybersecurity, data, data-breach, defense, detection, firmware, framework, gartner, Hardware, HIPAA, identity, infrastructure, iot, leak, least-privilege, mitigation, monitoring, network, nist, password, risk, strategy, supply-chain, technology, theft, threat, unauthorized, update, vpn, vulnerability, zero-trust

Defense: Compromised devices can leak mission-critical data or disrupt tactical communications.Utilities: Operational paralysis halts power distribution or water treatment, impacting millions.Public safety: Emergency response systems fail during crises, endangering lives.According to Gartner, in 2023, IoT-related incidents in critical infrastructure surged 400% over the previous three years and the average cost of an OT breach exceeded…
Recently fixed HPE OneView flaw is being exploited (CVE-2025-37164)

Jan 8, 2026 4:01 PM

Tags: cisa, exploit, flaw, remote-code-execution, vulnerability

An unauthenticated remote code execution vulnerability (CVE-2025-37164) affecting certain versions of HPE OneView is being leveraged by attackers, CISA confirmed by adding the … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/08/hpe-oneview-cve-2025-37164-exploited/
Android-Sicherheitslücken – Android-Schwachstellen: Ist Ihr Smartphone sicher?

Jan 8, 2026 3:01 PM

Tags: android, vulnerability

First seen on security-insider.de Jump to article: www.security-insider.de/android-schwachstellen-ist-ihr-smartphone-sicher-a-0311ea11d1400b547de2e3dbc015f308/
Neujahrsputz und Vorsätze Schwachstellen-Management mit dem BSI-Grundschutz

Jan 8, 2026 3:01 PM

Tags: bsi, compliance, framework, vulnerability

Mondoo unterstützt Organisationen dabei, das BSI-1.5-Compliance-Framework umzusetzen und damit diese große Herausforderung in einen optimierten, automatisierten Prozess zu verwandeln. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/neujahrsputz-und-vorsaetze-schwachstellen-management-mit-dem-bsi-grundschutz/a43294/
Neujahrsputz und Vorsätze Schwachstellen-Management mit dem BSI-Grundschutz

Jan 8, 2026 3:01 PM

Tags: bsi, compliance, framework, vulnerability

Mondoo unterstützt Organisationen dabei, das BSI-1.5-Compliance-Framework umzusetzen und damit diese große Herausforderung in einen optimierten, automatisierten Prozess zu verwandeln. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/neujahrsputz-und-vorsaetze-schwachstellen-management-mit-dem-bsi-grundschutz/a43294/
NIS2-Umsetzung: Neues BSI-Portal geht an den Start

Jan 8, 2026 2:01 PM

Tags: bsi, ceo, cloud, cyber, gartner, infrastructure, linkedin, nis-2, resilience, risk-analysis, risk-management, service, vulnerability

Unternehmen können sich ab sofort über das neue BSI-Portal als NIS2-Einrichtung registrieren und IT-Sicherheitsvorfälle melden.Seit Anfang Dezember gilt die EU-Sicherheitsrichtline NIS2 auch in Deutschland. Rund 29.500 Unternehmen sind dadurch verpflichtet, sich als NIS-2-Einrichtungen zu registrieren und dem Bundesamt für Sicherheit in der Informationstechnik (BSI) erhebliche Sicherheitsvorfälle zu melden. Vor diesem Hintergrund hat das BSI ein…
Critical jsPDF vulnerability enables arbitrary file read in Node.js deployments

Jan 8, 2026 2:01 PM

Tags: access, tool, update, vulnerability

Patching may not be enough: The jsPDF maintainers addressed the issue in version 4.0.0 by restricting filesystem access by default. The fix relies on Node.js permission mode, which requires applications to explicitly grant read access to specific directories at runtime. When properly configured, this prevents jsPDF from accessing files outside approved paths.However, this approach introduces…
PoC released for unauthenticated RCE in Trend Micro Apex Central (CVE-2025-69258)

Jan 8, 2026 1:01 PM

Tags: flaw, rce, remote-code-execution, update, vulnerability

Trend Micro has released a critical patch fixing several remotely exploitable vulnerabilities in Apex Central (on-premise), including a flaw (CVE-2025-69258) that may allow … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/08/trend-micro-apex-central-cve-2025-69258-rce-poc/
Cisco Patches ISE Security Vulnerability After Public PoC Exploit Release

Jan 8, 2026 1:01 PM

Tags: access, cisco, cve, exploit, flaw, identity, service, update, vulnerability

Cisco has released updates to address a medium-severity security flaw in Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) with a public proof-of-concept (PoC) exploit.The vulnerability, tracked as CVE-2026-20029 (CVSS score: 4.9), resides in the licensing feature and could allow an authenticated, remote attacker with administrative privileges to gain access to First seen…
Coolify Discloses 11 Critical Flaws Enabling Full Server Compromise on Self-Hosted Instances

Jan 8, 2026 1:01 PM

Tags: authentication, backup, cve, cybersecurity, flaw, injection, open-source, vulnerability

Cybersecurity researchers have disclosed details of multiple critical-severity security flaws affecting Coolify, an open-source, self-hosting platform, that could result in authentication bypass and remote code execution.The list of vulnerabilities is as follows -CVE-2025-66209 (CVSS score: 10.0) – A command injection vulnerability in the database backup functionality allows any authenticated First seen on thehackernews.com Jump to…
Coolify Discloses 11 Critical Flaws Enabling Full Server Compromise on Self-Hosted Instances

Jan 8, 2026 1:01 PM

Tags: authentication, backup, cve, cybersecurity, flaw, injection, open-source, vulnerability

Cybersecurity researchers have disclosed details of multiple critical-severity security flaws affecting Coolify, an open-source, self-hosting platform, that could result in authentication bypass and remote code execution.The list of vulnerabilities is as follows -CVE-2025-66209 (CVSS score: 10.0) – A command injection vulnerability in the database backup functionality allows any authenticated First seen on thehackernews.com Jump to…
U.S. CISA adds HPE OneView and Microsoft Office PowerPoint flaws to its Known Exploited Vulnerabilities catalog

Jan 8, 2026 1:01 PM

Tags: cisa, cve, cybersecurity, exploit, flaw, infrastructure, kev, microsoft, office, vulnerability

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds HPE OneView and Microsoft Office PowerPoint flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added HPE OneView and Microsoft Office PowerPoint flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: CVE-2009-0556 is a memory corruption flaw…
Maximum Severity “Ni8mare” Bug Lets Hackers Hijack n8n Servers

Jan 8, 2026 12:01 PM

Tags: authentication, control, hacker, threat, vulnerability

A newly discovered vulnerability in authentication platform n8n could allow threat actors to take control of n8n servers First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/maximum-severity-ni8mare-bug/
Cisco warns of Identity Service Engine flaw with exploit code

Jan 8, 2026 11:01 AM

Tags: cisco, exploit, flaw, identity, service, vulnerability

Cisco has patched an ISE vulnerability with public proof-of-concept exploit code that can be abused by attackers with admin privileges. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisco-warns-of-identity-service-engine-flaw-with-exploit-code/
2026 Schalter umlegen: Von der Reaktion zur Prävention

Jan 8, 2026 10:01 AM

Tags: vulnerability

Neue Technologien, neues Tempo: Die Kompetenzen der Cyberkriminellen entwickeln sich schneller denn je. 2026 werden Unternehmen deshalb einen grundlegenden Wandel vollziehen: weg von einer reaktiven Defensive hin zu proaktiver und präventiver Gefahrenabwehr. Zwingender Auslöser dieses Umschaltens sind Cyberkriminelle, die zunehmend Schwachstellen in Edge-Netzwerken ausnutzen sowie Living-off-the-Land-Techniken (LOTL) verwenden. Letztere zielen darauf ab, eine herkömmliche Abwehr……
CISA tags max severity HPE OneView flaw as actively exploited

Jan 8, 2026 10:01 AM

Tags: cisa, cybersecurity, exploit, flaw, infrastructure, vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has flagged a maximum-severity HPE OneView vulnerability as actively exploited in attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-tags-max-severity-hpe-oneview-flaw-as-actively-exploited/