Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Vulnerability Disclosure

20 articles

SecurityWeek Vulnerability Disclosure Google Linux 1d ago

15-Year-Old Linux Vulnerability ‘GhostLock’ Earns Researchers $92k From Google

Affecting every major distribution since 2011, the Linux kernel vulnerability allows attackers to gain root access. The post 15-Year-Old Linux Vulnerability ...

SecurityWeek →

GBHackers Vulnerability Disclosure Google Amazon 1d ago

GhostApproval Attack Impacts Amazon Q, Claude Code, Cursor, Google Antigravity, and Windsurf

A newly disclosed vulnerability pattern known as “GhostApproval” is exposing significant flaws in the trust boundary of leading AI coding assistants, includi...

GBHackers →

GBHackers Vulnerability Disclosure Microsoft Amazon 1d ago

Foxit Patches Multiple Use-After-Free Flaws Leading to Remote Code Execution

Foxit has released critical security updates to address multiple use-after-free vulnerabilities that could lead to remote code execution (RCE) in its widely ...

T1190

GBHackers →

GBHackers Vulnerability Disclosure Microsoft Google Apple Amazon Linux 1d ago

Google Chrome Update Patches 27 Security Vulnerabilities Including Critical Use-After-Free Flaws

Google has released a critical security update for Chrome, upgrading the Stable channel to version 150.0.

T1190

GBHackers →

GBHackers Vulnerability Disclosure 1d ago

HalluSquatting Attack Lets Hackers Turn AI Coding Assistants Into Botnet Installers

A newly disclosed attack technique called “HalluSquatting” is raising serious concerns in the AI security landscape. This technique demonstrates how attacker...

GBHackers →

GBHackers Vulnerability Disclosure 1d ago

Claude AI Prompt Injection Attack Turns Chatbot Into Stealthy C2 Agent to Achieve Remote Code Execution

Claude Desktop’s synced Personal Preferences feature can be exploited as a covert prompt-injection vector, transforming the AI assistant into a de facto comm...

T1566 T1190

GBHackers →

BleepingComputer Vulnerability Disclosure 2d ago

Hackers exploit Roundcube flaw to spy on academic researchers

A China-linked threat cluster has been exploiting vulnerable Roundcube servers at U.S.

BleepingComputer →

Cisco Advisories Vulnerability Disclosure Cisco 2d ago

Cisco Advance Notification for Publication of July 15, 2026, Security Advisories

On July 15, 2026, the Cisco Product Security Incident Response Team (PSIRT) will publish advisories to disclose security vulnerability information along with...

Cisco Advisories →

Qualys Blog Vulnerability Disclosure 2d ago

Operationalizing Day Minus Seven: The Cloud-Native ROC

Summary Frontier AI models in the post-Mythos era are changing the speed and scale of exposure risk. Security teams are entering an era where AI can help dis...

Qualys Blog →

GBHackers Vulnerability Disclosure Google Linux 2d ago

IonStack Exploit Chain Lets Hackers Root Android 17 Phones With a Single URL Click

Nebula Security has revealed a significant exploit chain known as “IonStack,” demonstrating how attackers could gain full root access on Android 17 devices w...

GBHackers →

SecurityWeek Vulnerability Disclosure Google 2d ago

Google Dialogflow CX Bug Allowed Attackers to Hijack AI Conversations

The "Rogue Agent" vulnerability could have enabled attackers to silently manipulate AI conversations, exfiltrate data, and compromise every Dialogflow CX age...

T1041

SecurityWeek →

CSO Online Vulnerability Disclosure GitHub 2d ago

GitHub AI agent leaks private repositories via prompt injection attack

A prompt injection attack can trick GitHub’s preview Agentic Workflows into retrieving content from private repositories and publishing it publicly, exposing...

CSO Online →

CSO Online Vulnerability Disclosure 2d ago

Cybercriminals exploit India’s tax filing season with a dual-malware campaign

Cybercriminals are exploiting India’s tax filing season with a new malware campaign that refuses to put all its eggs in one basket. Researchers at Cyderes ha...

T1566

CSO Online →

SecurityWeek Vulnerability Disclosure GitHub 2d ago

Critical Vulnerability Exposes GitHub Agentic Workflows to Prompt Injection

Researchers show how attackers can use a crafted public GitHub Issue to trick AI-powered workflows into exposing data from private repositories without authe...

SecurityWeek →

BleepingComputer Vulnerability Disclosure 2d ago

CISA orders feds to prioritize patching Langflow auth bypass flaw

The U.S.

T1556

BleepingComputer →

BleepingComputer Vulnerability Disclosure 2d ago

Ubiquiti warns of new max severity UniFi OS vulnerability

Ubiquiti has released security updates to patch seven critical vulnerabilities in UniFi OS, including a maximum-severity flaw that can be exploited in comman...

T1059

BleepingComputer →

GBHackers Vulnerability Disclosure WordPress 2d ago

Over 70% of Public WordPress Sites Running Outdated PHP Exposed to Cyberattacks

A new analysis has revealed a significant security gap within the global web ecosystem. Over 70% of publicly accessible WordPress sites are running outdated,...

GBHackers →

Help Net Security Vulnerability Disclosure Docker 2d ago

20 open-source cybersecurity tools to keep your team ready for anything

AI is changing how security teams find vulnerabilities, analyze code, test applications, and protect infrastructure. Developers are building tools to secure ...

Help Net Security →

Zero Day Initiative Vulnerability Disclosure 2d ago

ZDI-26-403: (0Day) Ollama downloadBlob Improper Validation of Array Index Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Ollama. Authentication is not required to exp...

Zero Day Initiative →

Zero Day Initiative Vulnerability Disclosure 2d ago

ZDI-26-402: (0Day) Glarysoft Glary Utilities Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Glarysoft Glary Utilities. An attacker must first obtain the ab...

T1548 T1068

Zero Day Initiative →

«Previous page 1 2 3 4 ... 44 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA