Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

CVE

20 articles

The Hacker News CVE Linux Jun 26

New DirtyClone Linux Kernel Flaw Lets Local Users Gain Root via Cloned Packets

DirtyClone is a new Linux kernel privilege escalation in the DirtyFrag family. JFrog Security Research published a working exploit walkthrough for the flaw o...

T1548 1 IOC

The Hacker News →

GBHackers CVE GitHub Docker Jun 26

FOSSBilling Flaw Lets Admin Attackers Abuse DI Container for SQL Access and RCE

A critical server-side template injection (SSTI) vulnerability in FOSSBilling, tracked as CVE-2026-28496, is exposing instances to potential full database co...

T1190 1 IOC

GBHackers →

Help Net Security CVE Amazon Jun 26

Synology issues critical fix for MailPlus Server vulnerabilities

Synology has has fixed critical vulnerabilities in MailPlus Server, a software package used to run private email infrastructure on Synology NAS devices.

2 IOCs

Help Net Security →

Security Affairs CVE Amazon Cisco Jun 26

U.S. CISA adds Cisco and PTC Windchill and FlexPLM flaws to its Known Exploited Vulnerabilities catalog

U.S.

1 IOC

Security Affairs →

GBHackers CVE Jun 26

Hackers Exploit WinRAR CVE-2025-8088 to Plant Startup Shortcut and Run PowerShell Loader

Hackers have weaponized a WinRAR path-traversal flaw tracked as CVE-2025-8088 to silently plant a Startup shortcut and run a multi-stage PowerShell loader th...

T1592 1 IOC

GBHackers →

SecurityWeek CVE Jun 26

First-Ever Exploitation of PTC Windchill Vulnerability Discovered in the Wild

CISA has added the remote code execution flaw CVE-2026-12569 to its Known Exploited Vulnerabilities catalog. The post First-Ever Exploitation of PTC Windchil...

T1190 1 IOC

SecurityWeek →

GBHackers CVE Amazon Cisco Jun 26

CISA Adds Actively Exploited Cisco Unified CM Flaws to KEV Catalog

The U.S.

1 IOC

GBHackers →

GBHackers CVE Jun 25

ManageEngine AD360 Integrated Products Hit by Account Takeover Vulnerability

ManageEngine has disclosed a critical account takeover vulnerability, tracked as CVE-2026-11374, affecting various integrated products within its AD360 ident...

1 IOC

GBHackers →

CISA Advisories CVE Cisco Jun 25

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-12569 PTC Win...

2 IOCs

CISA Advisories →

SecurityWeek CVE Jun 25

Lantronix Serial-to-IP Converter Flaw Exploited in Attacks After OT Threat Warning

The exploited flaw, CVE-2025-67038, is one of the vulnerabilities disclosed in April as part of the BRIDGE:BREAK research project. The post Lantronix Serial-...

1 IOC

SecurityWeek →

GBHackers CVE Jun 25

Langflow RCE Flaw Lets Attackers Execute Arbitrary Python Code Without Authentication

A critical unauthenticated remote code execution (RCE) vulnerability in Langflow, tracked as CVE-2026-33017, is being actively exploited in the wild within h...

T1190 1 IOC

GBHackers →

GBHackers CVE Microsoft Apple Jun 25

Microsoft WinRE Vulnerability Allows Hackers to Bypass UEFI/BIOS Password Enforcement

A newly disclosed vulnerability in the Microsoft Windows Recovery Environment (WinRE) could allow attackers to bypass UEFI and BIOS password protections, exp...

1 IOC

GBHackers →

The Hacker News CVE Jun 24

CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited

The U.S.

1 IOC

The Hacker News →

SC Media CVE Linux Jun 24

Patched Samsung KNOX kernel flaw (CVE-2026-20971) detailed

The vulnerability stems from a race condition within the kernel's process integrity validation.

1 IOC

SC Media →

Security Affairs CVE Cisco Jun 24

Cisco Unified CM Flaw CVE-2026-20230 Actively Exploited in the Wild

Attackers exploit Cisco Unified CM flaw (CVE-2026-20230) allowing unauth HTTP requests to trigger SSRF, write files, and gain root access Cisco Unified Commu...

1 IOC

Security Affairs →

Help Net Security CVE Cisco Intel Apache Jun 24

Cisco Unified CM flaw actively exploited to drop webshells (CVE-2026-20230)

CVE-2026-20230, a server-side request forgery (SSRF) vulnerability affecting Cisco’s Unified Communications Manager (Unified CM), is being exploited to drop ...

T1190 1 IOC

Help Net Security →

GBHackers CVE Microsoft Jun 24

PoC Released for Microsoft Exchange Server EWS InstallApp SSRF Vulnerability

A proof-of-concept exploit has been released for CVE-2026-45502, a server-side request forgery (SSRF) vulnerability in the Microsoft Exchange Server’s Exchan...

1 IOC

GBHackers →

GBHackers CVE Jun 24

Webmin Stored XSS Vulnerability Lets Attackers Exploit Root Users

A newly disclosed stored cross-site scripting (XSS) vulnerability in Webmin has raised significant security concerns, as it allows attackers with limited pri...

1 IOC

GBHackers →

GBHackers CVE Cisco Jun 24

Cisco Unified Communications Manager Flaw Exposes Systems to SSRF Attacks and Root Access

Cisco has disclosed a critical server-side request forgery (SSRF) vulnerability affecting its Unified Communications Manager (Unified CM) and Unified Communi...

1 IOC

GBHackers →

The Hacker News CVE Cisco Jun 24

Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root

Threat actors have begun to exploit a recently disclosed critical security flaw impacting Cisco Unified Communications Manager (Unified CM) and Unified Commu...

1 IOC

The Hacker News →

«Previous page 1 ... 4 5 6 7 8 ... 41 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA