CVE ID :CVE-2026-5241 Published : June 3, 2026, 2:16 p.m. | 3 hours, 59 minutes ago Description :A vulnerability in the LightGlue model loading path of huggingface/transformers version 5.2.0 allows an attacker-controlled model repository to execute arbitrary code during model initialization. The…
CVE ID :CVE-2026-35085 Published : June 3, 2026, 1:16 p.m. | 5 hours ago Description :A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root. Severity: 8.8 | HIGH Visit…
CVE ID :CVE-2026-35084 Published : June 3, 2026, 1:16 p.m. | 5 hours ago Description :A remote attacker with user privileges can exploit a stack buffer overflow in dali-devconfig to gain full system access as root. Severity: 8.8 | HIGH Visit…
CVE ID :CVE-2026-35083 Published : June 3, 2026, 1:16 p.m. | 5 hours ago Description :A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as root. Severity: 8.8 | HIGH Visit the link…
Google on Monday released patches for 124 security vulnerabilities impacting its Android operating system for the month of June 2026, including one high-severity flaw in the Framework component that has come under active exploitation. Tracked as CVE-2025-48595 (CVSS score: 8.4),…
The Russian hacking group known as Gamaredon has been attributed to the continued exploitation of a WinRAR vulnerability to deliver multiple malware families aimed at data theft and propagation. Per Sekoia, the activity involves the weaponization of CVE-2025-8088, a path…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security flaw impacting Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. The vulnerability, CVE-2024-21182 (CVSS score: 7.5), allows an…
CVE ID :CVE-2026-42074 Published : June 2, 2026, 5:16 p.m. | 55 minutes ago Description :OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Prior to version 0.5.1, the dangerouslyDisableSandbox parameter is exposed as part of…
CVE ID :CVE-2026-0611 Published : June 2, 2026, 5:16 p.m. | 55 minutes ago Description :Spacelabs Healthcare Sentinel versions 10.5.x and higher and 11.x.x before 11.6.0 contain an unauthenticated remote code execution vulnerability through a deprecated .NET Remoting HTTP channel exposed…
A new Mini Shai-Hulud supply chain attack campaign, codenamed Miasma, has compromised @redhat-cloud-services packages to steal credentials and secrets from developer machines and deliver a self-propagating worm. “This is effectively a Mini Shai-Hulud campaign: it uses the same core tactics…