Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

CVE

20 articles

CSO Online CVE Jun 24

Hole in widely-used FFmpeg codec could crash media servers or enable RCE

A newly discovered critical vulnerability in the FFmpeg media processing framework bundled in a huge number of open source and commercial applications points...

T1195 1 IOC

CSO Online →

SC Media CVE Jun 23

4 vulnerabilities in Dify expose cross-tenant data

The most severe flaw, CVE-2026-41947, resides in Dify's tracing system, enabling attackers to create a persistent channel for exfiltrating all messages and r...

T1041 1 IOC

SC Media →

Security Affairs CVE Linux Jun 23

Samsung KNOX Kernel UAF Exposes Millions of Galaxy Devices

Samsung’s KNOX flaw (CVE-2026-20971) is a kernel UAF in PROCA/FIVE that can enable corruption via a race; Samsung patched it in Jan 2026. Experts found a nas...

1 IOC

Security Affairs →

BleepingComputer CVE Cisco Jun 23

Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks

A high-severity SSRF vulnerability, tracked as CVE-2026-20230, in Cisco Unified Communications Manager Server is now being exploited in attacks. [.

1 IOC

BleepingComputer →

CISA Advisories CVE Jun 23

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

4 IOCs

CISA Advisories →

GBHackers CVE Jun 23

Critical libssh2 Vulnerability Lets Remote Attackers Execute Code via Crafted SSH Packets

A critical security vulnerability has been identified in libssh2, a widely used client-side SSH library. This flaw allows remote attackers to execute code by...

1 IOC

GBHackers →

GBHackers CVE Jun 23

Critical FFmpeg Vulnerability Lets Hackers Execute Remote Code via Malicious Media Files

A critical memory corruption vulnerability in FFmpeg has been disclosed, allowing for remote code execution through specially crafted media files. This flaw,...

T1190 1 IOC

GBHackers →

Security Affairs CVE Jun 23

Squidbleed: 29-Year-Old Squid Bug Leaks User Credentials

Squidbleed is a 29-year-old Squid Proxy flaw that can leak credentials, tokens, and other users’ HTTP data through a memory overread. Researchers at Calif.

2 IOCs

Security Affairs →

GBHackers CVE Jun 23

29-Year-Old Squid Proxy Vulnerability Exposes Authorization Headers and API Keys

A recently disclosed vulnerability in Squid Proxy, tracked as CVE-2026-47729 and referred to as “Squidbleed,” is exposing sensitive user data, including HTTP...

1 IOC

GBHackers →

SANS ISC CVE Jun 23

CVE-2024-40766: The Patch Fixed the Bug. Nobody Fixed the Configuration., (Tue, Jun 23rd)

The vulnerability

1 IOC

SANS ISC →

GBHackers CVE Apple Jun 22

Beats Studio Buds Vulnerability Lets Attackers Within Bluetooth Range Access Microphone

Apple has revealed a significant security vulnerability affecting Beats Studio Buds, which could allow attackers within Bluetooth range to access a device’s ...

1 IOC

GBHackers →

GBHackers CVE Jun 22

pgAdmin 4 Released with Patches for Seven Vulnerabilities and Feature Enhancements

pgAdmin 4 version 9.16 has been released by the pgAdmin Development Team, introducing significant security improvements along with feature enhancements and b...

2 IOCs

GBHackers →

The Hacker News CVE WordPress Jun 20

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Threat actors are exploiting a recently patched security flaw impacting Gravity SMTP, a WordPress plugin that's installed on about 100,000 sites. The vulnera...

1 IOC

The Hacker News →

GBHackers CVE WordPress Jun 19

Critical WordPress Plugin Bug Could Allow File Deletion Attacks on 1 Million Sites

A serious security vulnerability has been uncovered in the widely used Avada (Fusion) Builder WordPress plugin. This flaw could enable unauthenticated attack...

1 IOC

GBHackers →

Help Net Security CVE Splunk Jun 19

Unauthenticated RCE in Splunk Enterprise under active attack (CVE-2026-20253)

CISA has added CVE-2026-20253, a critical, remotely exploitable vulnerability in Splunk Enterprise, to its Known Exploited Vulnerabilities catalog, and order...

1 IOC

Help Net Security →

Security Affairs CVE Splunk Jun 19

U.S. CISA adds Splunk Enterprise flaw to its Known Exploited Vulnerabilities catalog and urges agencies to fix it by Sunday

U.S.

1 IOC

Security Affairs →

GBHackers CVE Splunk Jun 19

CISA Issues Alert on Critical Splunk Enterprise Bug Under Active Exploitation

CISA has issued an urgent alert regarding a critical vulnerability in Splunk Enterprise, tracked as CVE-2026-20253, which is now listed in the Known Exploite...

1 IOC

GBHackers →

The Hacker News CVE Apple Jun 19

Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone

Apple has updated its Beats Studio Buds wireless earbuds to patch a high-severity vulnerability that could be exploited by nearby hackers to eavesdrop on use...

1 IOC

The Hacker News →

SecurityWeek CVE Splunk Jun 19

Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure

CISA has given federal agencies only three days to patch CVE-2026-20253, which can be exploited for unauthenticated remote code execution. The post Splunk En...

T1190 1 IOC

SecurityWeek →

SC Media CVE Apple Jun 18

Apple releases security update for Beats Studio Buds vulnerability

The vulnerability, identified as CVE-2025-20701, was discovered by researchers Dennis Heinze and Frieder Steinmetz of ERNW GmbH.

1 IOC

SC Media →

«Previous page 1 ... 7 8 9 10 11 ... 41 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA