Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Vulnerability Disclosure

20 articles

Security Affairs Vulnerability Disclosure Microsoft Jun 4

Gamaredon Uses WinRAR Vulnerability to Launch Modular Spy Campaign on Ukrainian Targets

Gamaredon exploits a WinRAR flaw to drop modular, nearly fileless malware on Ukrainian targets, hiding payloads in Windows streams and resolving C2s via Tele...

Security Affairs →

Cisco Advisories Vulnerability Disclosure Cisco Jun 4

Cisco Catalyst SD-WAN Manager Authenticated Privilege Escalation Vulnerability

A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, local attacker to execute arbitrary comma...

T1059 T1548

Cisco Advisories →

SecurityWeek Vulnerability Disclosure Cisco Jun 4

Cisco Warns of Available PoC for Critical Unified CM Vulnerability

The high-severity flaw can be exploited remotely, without authentication, in server-side request forgery (SSRF) attacks. The post Cisco Warns of Available Po...

SecurityWeek →

SecurityWeek Vulnerability Disclosure Microsoft GitHub Jun 4

VS Code Vulnerability Allows One-Click GitHub Token Theft

A researcher has disclosed the full details of the vulnerability and released a PoC without notifying Microsoft in advance. The post VS Code Vulnerability Al...

SecurityWeek →

CSO Online Vulnerability Disclosure Jun 4

Beware the ‘son of Mythos,’ security experts warn

LONDON — Enterprise security teams were urged by security experts at Infosecurity Europe to brace for impact as both Anthrophic and OpenAI expand access to t...

CSO Online →

Help Net Security Vulnerability Disclosure Jun 4

From critical to controlled: Cutting vulnerabilities in a live manufacturing environment

A vulnerability scanner flags a critical CVSS 10 vulnerability on an industrial asset. The report lands in the boss’ inbox and now he wants to know why we’re...

Help Net Security →

GBHackers Vulnerability Disclosure Google SAP Jun 4

Hackers Exploit Google Gemini Flaw Using Malicious Messages from WhatsApp, Slack, and SMS

Hackers are exploiting a newly discovered flaw in Google’s Gemini voice assistant by sending malicious messages via popular platforms such as WhatsApp, Slack...

GBHackers →

CSO Online Vulnerability Disclosure Microsoft GitHub Jun 4

Hole in GitHub’s browser-based VSCode editor could lead to stolen token

A vulnerability in GitHub’s browser-based VSCode editor could lead to the theft of a developer’s token under certain circumstances, says a researcher. The is...

T1598

CSO Online →

Wordfence Blog Vulnerability Disclosure WordPress Jun 3

Attackers Actively Exploiting Critical Vulnerability in Everest Forms Pro Plugin

On March 30th, 2026, we publicly disclosed a critical Remote Code Execution vulnerability in Everest Forms Pro, a WordPress plugin with an estimated 4,000 ac...

T1190

Wordfence Blog →

Cisco Advisories Vulnerability Disclosure Cisco Jun 3

Cisco Webex Meetings Cross-Site Scripting Vulnerability

A vulnerability in the web-based user interface of Cisco Webex Meetings could have allowed an unauthenticated, remote attacker to conduct a cross-site script...

T1566.002 T1598

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Jun 3

Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability

A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) cou...

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Jun 3

Cisco Finesse Remote File Inclusion Vulnerability

A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to load arbitrary files from remote locations into an active user session on...

Cisco Advisories →

Help Net Security Vulnerability Disclosure Microsoft Jun 3

Microsoft responds to security challenges emerging in AI development

Microsoft has introduced a series of security tools and capabilities focused on AI-driven vulnerability discovery, AI agents, and AI models. The updates incl...

Help Net Security →

Infosecurity Magazine Vulnerability Disclosure Jun 3

Infosecurity Europe: Vulnerability Management Innovator Konvu Wins Cyber Startup Award

Inaugural Infosecurity Europe Cyber Startup Award Winner Impresses Panel with Ability Help Prioritize Vulnerabilities in AI era

Infosecurity Magazine →

Help Net Security Vulnerability Disclosure Jun 3

Simplify security management with CIS SecureSuite Platform

New operating systems prioritize usability, a reality which threat actors use to exploit security gaps. Every misconfiguration creates an opportunity for com...

Help Net Security →

SecurityWeek Vulnerability Disclosure Linux Docker Jun 3

Organizations Warned of Exploited Linux Kernel Vulnerability

An improper authentication bug allows attackers to escalate their privileges and escape containers. The post Organizations Warned of Exploited Linux Kernel V...

SecurityWeek →

CSO Online Vulnerability Disclosure Microsoft Docker Jun 3

Microsoft wants to put AI agents on a short leash

As enterprises race to adopt AI agents across software development workflows, Microsoft is rolling out new controls aimed at keeping the transformation from ...

T1598

CSO Online →

SecurityWeek Vulnerability Disclosure Jun 3

‘HTTP/2 Bomb’ Exploit Knocks Web Servers Offline in Seconds

The default HTTP/2 configuration of major web servers is vulnerable to an attack chain combining a compression bomb and a Slowloris-style hold. The post ‘HTT...

SecurityWeek →

GBHackers Vulnerability Disclosure Microsoft Cloudflare F5 Apache Jun 3

HTTP/2 Bomb Remote DoS Exploit Impacts nginx, Apache, IIS, Envoy, and Cloudflare Pingora

A newly disclosed “HTTP/2 Bomb” attack is raising serious concerns across the web infrastructure ecosystem, enabling remote denial-of-service (DoS) condition...

GBHackers →

The Hacker News Vulnerability Disclosure Microsoft Cloudflare F5 Apache Jun 3

New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare

Cybersecurity researchers have discovered a remote denial-of-service exploit that affects major web servers, including NGINX, Apache HTTPD, Microsoft IIS, En...

The Hacker News →

«Previous page 1 ... 17 18 19 20 21 ... 45 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA