Automated cyber signal feeds.
CVE ID :CVE-2026-48242 Published : May 21, 2026, 6:16 p.m. | 59 minutes ago Description :Open ISES Tickets before 3.44.2 contains hardcoded MySQL database connection credentials (host, username, password, database name) in import_mdb.php. The credentials are embedded in source code committed…
CVE ID :CVE-2026-20223 Published : May 20, 2026, 5:16 p.m. | 1 hour, 55 minutes ago Description :A vulnerability in the access validation of internal REST APIs of Cisco Secure Workload could allow an unauthenticated, remote attacker to access site resources with the…
Microsoft has unveiled two new open-source tools called RAMPART and Clarity to assist developers in better testing the security of artificial intelligence (AI) agents. RAMPART, short for Risk Assessment and Measurement Platform for Agentic Red Teaming, functions as a Pytest-native…
CVE ID :CVE-2026-8598 Published : May 20, 2026, 4:16 p.m. | 2 hours, 54 minutes ago Description :An undocumented configuration export port is accessible on some models of ZKTeco CCTV cameras. This port does not require authentication and exposes critical information about…
Microsoft on Tuesday said it disrupted a malware-signing-as-a-service (MSaaS) operation that weaponized the company’s Artifact Signing system to deliver malicious code and conduct ransomware and other attacks, compromising thousands of machines and networks across the world. The tech giant attributed…
CVE ID :CVE-2026-8469 Published : May 20, 2026, 2:17 p.m. | 4 hours, 54 minutes ago Description :Allocation of Resources Without Limits or Throttling vulnerability in phenixdigital phoenix_storybook allows unauthenticated denial-of-service via BEAM atom table exhaustion. Multiple LiveView event handlers convert user-supplied…
CVE ID :CVE-2026-8604 Published : May 19, 2026, 6:16 p.m. | 50 minutes ago Description :In ScadaBR version 1.2.0, a CSRF vulnerability could allow an attacker to trigger any authenticated action through a victim’s session by luring any logged-in user to…
CVE ID :CVE-2026-8602 Published : May 19, 2026, 6:16 p.m. | 50 minutes ago Description :In ScadaBR version 1.2.0, a Missing Authentication for Critical Function vulnerability could allow an unauthenticated attacker to send a HTTP GET requests to the SCADA system…
CVE ID :CVE-2026-8603 Published : May 19, 2026, 6:16 p.m. | 50 minutes ago Description :In ScadaBR version 1.2.0, an OS Command Injection vulnerability could allow an attacker to execute commands as root on the SCADA system. Severity: 8.7 | HIGH…
CVE ID :CVE-2026-6009 Published : May 19, 2026, 6:16 p.m. | 50 minutes ago Description :Java Deserialisation Vulnerability in Jaspersoft Reports Library leads to Remote Code Execution (RCE), potentially allowing code execution on the affected system Severity: 8.7 | HIGH Visit the…