Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Vulnerability Disclosure

20 articles

GBHackers Vulnerability Disclosure Jun 18

Hackers Use Reporter Impersonation to Target C-Suite Executives in Social Engineering Attacks

A recent engagement demonstrates how persuasive pretexts and careful reconnaissance let attackers bypass technical controls by exploiting human trust at the ...

T1204 T1592

GBHackers →

Help Net Security Vulnerability Disclosure Amazon Jun 18

AWS Continuum brings AI models to code vulnerability management

AWS Continuum for code vulnerabilities, a system built to handle a vulnerability across its lifecycle, from discovery through to a fix, is now available in g...

T1598

Help Net Security →

Microsoft Security Blog Vulnerability Disclosure Microsoft Jun 17

Beyond the benchmark: Advancing security at AI speed 

Read how Microsoft Security has advanced its agentic vulnerability detection system, codename MDASH, integrating into real-world workflows across Windows, Az...

Microsoft Security Blog →

Tenable Blog Vulnerability Disclosure Tenable Jun 17

Operationalize CISA BOD 26-04 with Tenable One

CISA’s new directive officially ends federal agencies’ reliance on static vulnerability scores. Learn how Tenable One helps federal agencies pivot to dynamic...

Tenable Blog →

Wordfence Blog Vulnerability Disclosure WordPress Jun 17

Attackers Actively Exploiting Sensitive Information Exposure Vulnerability in Gravity SMTP Plugin

On March 30th, 2026, we publicly disclosed a Sensitive Information Exposure vulnerability in Gravity SMTP, a WordPress plugin with an estimated 100,000 activ...

Wordfence Blog →

Cisco Advisories Vulnerability Disclosure Cisco Jun 17

Cisco Identity Services Engine Remote Code Execution and Information Disclosure Vulnerabilities

Multiple vulnerabilities in Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow a remote attacker to achieve ...

T1190

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Jun 17

Cisco Crosswork Network Controller Server-Side Template Injection Vulnerability

A vulnerability in the web-based management interface of Cisco Crosswork Network Controller could allow an authenticated, remote attacker to execute arbitrar...

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Jun 17

Cisco Webex App Open Redirect Vulnerability

A vulnerability in the browser-based version of Cisco Webex App could have allowed an unauthenticated, remote attacker to redirect users to a malicious webpa...

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Jun 17

Cisco Umbrella Virtual Appliance Privilege Escalation Vulnerability

A vulnerability in the vmadmin CLI of Cisco Umbrella Virtual Appliance could allow an authenticated, local attacker to elevate privileges on an affected devi...

T1548

Cisco Advisories →

Help Net Security Vulnerability Disclosure Jun 17

ArmorCode helps product manufacturers prepare for EU Cyber Resilience Act requirements

ArmorCode has announced new Cyber Resilience Act (CRA) capabilities within the ArmorCode Agentic AI Platform. The capabilities help manufacturers of products...

Help Net Security →

Help Net Security Vulnerability Disclosure Jun 17

Legit Security brings agentic AI to AppSec remediation and risk reduction

Legit Security has launched new remediation agents that independently prioritize issues, generate fixes, open pull requests, and confirm results using contex...

T1556 T1598

Help Net Security →

CSO Online Vulnerability Disclosure Google Jun 17

Google’s Vertex AI SDK could allow RCE through bucket squatting

A design flaw in the Vertex AI software development kit (SDK) for Python, Google Cloud’s managed platform for building, training, and deploying AI agents, co...

CSO Online →

GBHackers Vulnerability Disclosure Google Palo Alto Networks Jun 17

Google Cloud Vertex AI Vulnerability Lets Attackers Take Over and Poison AI Models

A critical vulnerability in Google Cloud’s Vertex AI has been discovered, allowing attackers to hijack machine learning model uploads, poison artifacts, and ...

T1190

GBHackers →

GBHackers Vulnerability Disclosure Google Amazon Jun 17

Attackers Exploit Cloud Logging Platforms to Hide Malicious Activity

Attackers are increasingly targeting cloud logging platforms to evade detection and maintain persistent visibility into compromised environments.

GBHackers →

Help Net Security Vulnerability Disclosure Cisco Cloudflare Docker Jun 17

The Chainguard Athena coalition already shipped 2,000 patches across 500 open source projects

Chainguard launched Athena, an industry coalition that pools open source vulnerability findings and remediates them under embargo before public disclosure. T...

Help Net Security →

SecurityWeek Vulnerability Disclosure Google Jun 17

Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities

The browser updates address multiple memory safety bugs that could potentially lead to remote code execution. The post Chrome and Firefox Updated to Patch Cr...

T1190

SecurityWeek →

GBHackers Vulnerability Disclosure Jun 17

7-Year-Old OpenBSD Security Flaw Exposes Systems to Full PAP Authentication Bypass

A significant authentication flaw has been discovered in the PPP stack of OpenBSD, allowing attackers to bypass the Password Authentication Protocol (PAP) va...

T1556

GBHackers →

GBHackers Vulnerability Disclosure Oracle WordPress Jun 17

Hackers Inject Malicious JavaScript Into WordPress Sites to Deploy ErrTraffic ClickFix Lures

Hackers are injecting malicious JavaScript into compromised WordPress sites to deploy ErrTraffic-powered ClickFix lures, a campaign that achieved nearly 60% ...

T1059.001

GBHackers →

Help Net Security Vulnerability Disclosure Microsoft Jun 17

Microsoft AntiSSRF open-source library helps block server-side request forgery

AntiSSRF is an open-source code library from Microsoft that validates URLs and network connections to reduce server-side request forgery (SSRF) risks in web ...

Help Net Security →

GBHackers Vulnerability Disclosure NVIDIA Jun 17

NVIDIA NeMo Security Flaw Exposes Systems to Command Injection Attacks

NVIDIA has disclosed multiple high-severity vulnerabilities in its NeMo Framework, including a critical command injection flaw that could allow attackers to ...

T1059 T1548

GBHackers →

«Previous page 1 ... 10 11 12 13 14 ... 44 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA