Automated cyber signal feeds.
CVE ID :CVE-2026-48247 Published : May 21, 2026, 6:16 p.m. | 59 minutes ago Description :Open ISES Tickets before 3.44.2 disables TLS certificate verification in incs by setting CURLOPT_SSL_VERIFYPEER to false (and not setting CURLOPT_SSL_VERIFYHOST) when issuing outbound HTTPS requests for…
CVE ID :CVE-2026-48246 Published : May 21, 2026, 6:16 p.m. | 59 minutes ago Description :Open ISES Tickets before 3.44.2 disables TLS certificate verification in ajax by setting CURLOPT_SSL_VERIFYPEER to false (and not setting CURLOPT_SSL_VERIFYHOST) when issuing outbound HTTPS requests for…
CVE ID :CVE-2026-48242 Published : May 21, 2026, 6:16 p.m. | 59 minutes ago Description :Open ISES Tickets before 3.44.2 contains hardcoded MySQL database connection credentials (host, username, password, database name) in import_mdb.php. The credentials are embedded in source code committed…
CVE ID :CVE-2026-20223 Published : May 20, 2026, 5:16 p.m. | 1 hour, 55 minutes ago Description :A vulnerability in the access validation of internal REST APIs of Cisco Secure Workload could allow an unauthenticated, remote attacker to access site resources with the…
Microsoft has unveiled two new open-source tools called RAMPART and Clarity to assist developers in better testing the security of artificial intelligence (AI) agents. RAMPART, short for Risk Assessment and Measurement Platform for Agentic Red Teaming, functions as a Pytest-native…
CVE ID :CVE-2026-8598 Published : May 20, 2026, 4:16 p.m. | 2 hours, 54 minutes ago Description :An undocumented configuration export port is accessible on some models of ZKTeco CCTV cameras. This port does not require authentication and exposes critical information about…
Microsoft on Tuesday said it disrupted a malware-signing-as-a-service (MSaaS) operation that weaponized the company’s Artifact Signing system to deliver malicious code and conduct ransomware and other attacks, compromising thousands of machines and networks across the world. The tech giant attributed…
CVE ID :CVE-2026-8469 Published : May 20, 2026, 2:17 p.m. | 4 hours, 54 minutes ago Description :Allocation of Resources Without Limits or Throttling vulnerability in phenixdigital phoenix_storybook allows unauthenticated denial-of-service via BEAM atom table exhaustion. Multiple LiveView event handlers convert user-supplied…
CVE ID :CVE-2026-8604 Published : May 19, 2026, 6:16 p.m. | 50 minutes ago Description :In ScadaBR version 1.2.0, a CSRF vulnerability could allow an attacker to trigger any authenticated action through a victim’s session by luring any logged-in user to…
CVE ID :CVE-2026-8602 Published : May 19, 2026, 6:16 p.m. | 50 minutes ago Description :In ScadaBR version 1.2.0, a Missing Authentication for Critical Function vulnerability could allow an unauthenticated attacker to send a HTTP GET requests to the SCADA system…