CVE/vulnerability – Page 23

CISA Flags Actively Exploited Windows Video ActiveX Control RCE in KEV List

The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical vulnerability affecting Microsoft Windows to its Known Exploited Vulnerabilities (KEV) catalog. This specific security flaw, identified as CVE-2008-0015, impact…

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
CISA Warns of Actively Exploited Google Chromium 0‑Day Vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical vulnerability affecting the Google Chromium engine to its Known Exploited Vulnerabilities (KEV) catalog. Tracking as CVE-2026-2441, this security flaw is curren…

·

Chrome, CVE/vulnerability, cyber security, Cyber Security News, Google, vulnerability, Zero-Day, zeroday

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Critical Flaw in Windows Admin Center Exposes Systems to Privilege Escalation Attacks

Microsoft has officially released a security update addressing a severe vulnerability found within the Windows Admin Center. Tracking under the identifier CVE-2026-26119, this critical flaw presents a significant risk to enterprise environments relying…

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability, Windows

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Dell 0-Day Vulnerability Targeted by Chinese Hackers Since Mid-2024 for Ongoing Malware Campaign

A critical zero-day vulnerability in Dell RecoverPoint for Virtual Machines has been actively exploited by Chinese state-sponsored hackers since mid-2024. Mandiant and Google Threat Intelligence Group (GTIG) attribute this campaign to UNC6201, a threat…

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Firefox v147.0.3 Released with Critical Fix for Heap Buffer Overflow Vulnerability

Mozilla has released an emergency security update for Firefox, addressing a critical heap buffer overflow vulnerability in the libvpx library. The update, version 147.0.4, was announced on February 16, 2026, alongside corresponding patches for Firefox …

·

Buffer over flow, CVE/vulnerability, cyber security, Cyber Security News, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Apache NiFi Vulnerabilities Expose Systems to Authorization Bypass Attacks

Apache NiFi users are being urged to upgrade after the project disclosed a high-severity authorization flaw tracked as CVE-2026-25903. The issue, published on 2026-02-16, can allow a less-privileged authenticated user to modify configuration properties…

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Langchain Community SSRF Bypass Vulnerability Exposes Internal Services to Unauthorized Access

The Langchain development team has released a critical security update for the @langchain/community package to address a Server-Side Request Forgery (SSRF) vulnerability. Identified as CVE-2026-26019, this flaw exists within the RecursiveUrlLoader clas…

·

CVE/vulnerability, cyber security, Cyber Security News, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
25 Vulnerabilities Found in Cloud Password Managers, Exposing Users to Unauthorized Access and Changes

The three major cloud-based password managers, such as Bitwarden, LastPass, and Dashlane, collectively serve approximately 60 million users. Despite marketing claims of “zero-knowledge encryption,” the research team demonstrated that these …

·

CVE/vulnerability, cyber security, Cyber Security News, Password, Vulnerabilities, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Windows 11 KB5077181 Update Triggers Infinite Restart Loop on Some Devices

Microsoft’s February 10, 2026, Patch Tuesday cumulative update KB5077181 for Windows 11 is being linked to severe boot failures on some devices, with users reporting systems that restart repeatedly and never reach the desktop. The issue is pr…

·

CVE/vulnerability, cyber security, Cyber Security News, Vulnerabilities, vulnerability, Windows

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶
Joomla Vulnerabilities in Novarain/Tassos Framework Expose SQL Injection Risks

Joomla site owners using extensions that bundle the Novarain/Tassos Framework are being warned after a source code review identified multiple attack primitives that can be chained together to achieve administrator takeover and reliable remote code exec…

·

CVE/vulnerability, cyber security, Cyber Security News, Vulnerabilities, vulnerability

¶¶¶¶¶

¶¶¶¶¶

¶¶¶¶¶

1010.cx

1010.cx

Category: CVE/vulnerability

CISA Flags Actively Exploited Windows Video ActiveX Control RCE in KEV List

CISA Warns of Actively Exploited Google Chromium 0‑Day Vulnerability

Critical Flaw in Windows Admin Center Exposes Systems to Privilege Escalation Attacks

Dell 0-Day Vulnerability Targeted by Chinese Hackers Since Mid-2024 for Ongoing Malware Campaign

Firefox v147.0.3 Released with Critical Fix for Heap Buffer Overflow Vulnerability

Apache NiFi Vulnerabilities Expose Systems to Authorization Bypass Attacks

Langchain Community SSRF Bypass Vulnerability Exposes Internal Services to Unauthorized Access

25 Vulnerabilities Found in Cloud Password Managers, Exposing Users to Unauthorized Access and Changes

Windows 11 KB5077181 Update Triggers Infinite Restart Loop on Some Devices

Joomla Vulnerabilities in Novarain/Tassos Framework Expose SQL Injection Risks