News

NVIDIA Fixes High-Severity Flaws in KAI Scheduler and CUDA-Q NVIDIA GPU Security CUDA-Q Vulnerability NVIDIA Apex Vulnerability AI Infrastructure Security NVIDIA Cumulus Linux CVE-2025-33179 NVIDIA Arm divestment NVIDIA DGX Spark, CVE-2025-33187 NVIDIA Isaac-GROOT, Code Injection Megatron-LM Vulnerability, AI Code Injection NVIDIA China NVIDIA GPUs, Hardware Kill Switches NVIDIA Megatron-LM, LLM Vulnerabilities NVIDIA Base Command Manager - CVE-2024-0138

NVIDIA GPU Security CUDA-Q Vulnerability NVIDIA Apex Vulnerability AI Infrastructure Security NVIDIA Cumulus Linux CVE-2025-33179 NVIDIA Arm divestment NVIDIA DGX Spark, CVE-2025-33187 NVIDIA Isaac-GROOT, Code Injection Megatron-LM Vulnerability, AI Code Injection NVIDIA China NVIDIA GPUs, Hardware Kill Switches NVIDIA Megatron-LM, LLM Vulnerabilities NVIDIA Base Command Manager - CVE-2024-0138

NVIDIA Fixes High-Severity Flaws in KAI Scheduler and CUDA-Q

Do Son April 22, 2026

NVIDIA has released a series of software updates to address high-severity vulnerabilities in its KAI Scheduler and...

GitLab Security Update: High-Severity Vulnerabilities Patched in April Release GitLab security updates, GitLab patch release, CVE-2026-6552, CVE-2026-10087, CVE-2026-7250 GitLab Security Update May 2026 GitLab XSS and DoS Vulnerabilities GitLab Security Session Hijacking GitLab Security Update, CI/CD Vulnerability GitLab DoS, Security Update bypassing SAML - CVE-2024-8312 and CVE-2024-6826

GitLab security updates, GitLab patch release, CVE-2026-6552, CVE-2026-10087, CVE-2026-7250 GitLab Security Update May 2026 GitLab XSS and DoS Vulnerabilities GitLab Security Session Hijacking GitLab Security Update, CI/CD Vulnerability GitLab DoS, Security Update bypassing SAML - CVE-2024-8312 and CVE-2024-6826

GitLab Security Update: High-Severity Vulnerabilities Patched in April Release

Do Son April 22, 2026

GitLab has released a vital set of security updates for both Community Edition (CE) and Enterprise Edition...

CVE-2026-40342: CVSS 10.0 Path Traversal to RCE in Firebird Database Firebird Database RCE CVE-2026-40342

Firebird Database RCE CVE-2026-40342

CVE-2026-40342: CVSS 10.0 Path Traversal to RCE in Firebird Database

Do Son April 22, 2026

Researchers have disclosed a critical-severity vulnerability in Firebird, the long-standing relational database with roots dating back to...

The $600 Billion Orbit: SpaceX and xAI Join Forces with Cursor to Command the Future of Coding Cursor SpaceX acquisition

Cursor SpaceX acquisition

The $600 Billion Orbit: SpaceX and xAI Join Forces with Cursor to Command the Future of Coding

Do Son April 22, 2026

Within the burgeoning domain of AI-assisted software development, Cursor—a startup currently held in high esteem by the...

The 271-Zero-Day Sweep: How Anthropic’s “Project Glasswing” Just Saved Firefox Anthropic Claude Lawsuit Claude Max limits, AI subscription lawsuit, Claude Pro vs Max Claude Mythos security audit Claude Identity Verification Anthropic DMCA GitHub takedown bugs Nuclear weapons Xcode, Claude AI Anthropic, Claude Sonnet 4 Claude AI, AI safety

Anthropic Claude Lawsuit Claude Max limits, AI subscription lawsuit, Claude Pro vs Max Claude Mythos security audit Claude Identity Verification Anthropic DMCA GitHub takedown bugs Nuclear weapons Xcode, Claude AI Anthropic, Claude Sonnet 4 Claude AI, AI safety

The 271-Zero-Day Sweep: How Anthropic’s “Project Glasswing” Just Saved Firefox

Do Son April 22, 2026

When Anthropic proclaimed earlier this month its ambition to fortify cybersecurity through its nascent AI models, the...

OpenAI Unveils ChatGPT Images 2.0 with Native Reasoning and 2K Precision ChatGPT Images 2.0 reasoning

ChatGPT Images 2.0 reasoning

OpenAI Unveils ChatGPT Images 2.0 with Native Reasoning and 2K Precision

Do Son April 22, 2026

More than a year has elapsed since OpenAI first empowered ChatGPT users to manifest images directly within...

TikTok’s Secret Tracker: The “Featured” Extensions Harvesting Your Data TikTok Downloader Malware Browser Extension Fingerprinting

TikTok Downloader Malware Browser Extension Fingerprinting

TikTok’s Secret Tracker: The “Featured” Extensions Harvesting Your Data

Do Son April 22, 2026

A new report from LayerX security researchers has pulled back the curtain on a massive, coordinated campaign...

Command Injection Vulnerability (CVE-2025-29635) Exploited in the Wild Cloudflare DDoS attacks 2 Tbps

Cloudflare DDoS attacks 2 Tbps

Command Injection Vulnerability (CVE-2025-29635) Exploited in the Wild

Do Son April 22, 2026

The Akamai Security Intelligence and Response Team (SIRT) has issued a warning regarding a surge in malicious...

“FakeWallet” Trojan Masquerades as Crypto Wallets to Drain Assets

FakeWallet Trojan Crypto Phishing

“FakeWallet” Trojan Masquerades as Crypto Wallets to Drain Assets

Do Son April 22, 2026

A sophisticated new mobile threat is stalking the Apple App Store, preying on cryptocurrency users through a...

The Rise of Payouts King and the Resurrection of BlackBasta Payouts King Ransomware BlackBasta Successor

Payouts King Ransomware BlackBasta Successor

The Rise of Payouts King and the Resurrection of BlackBasta

Do Son April 22, 2026

Following the high-profile disbandment of the BlackBasta ransomware group in early 2025, security researchers at Zscaler ThreatLabz...

Splunk Unmasks New Malware Campaign Pairing Ghost RAT with CloverPlus Adware Ghost RAT RDP Credential Theft

Ghost RAT RDP Credential Theft

Splunk Unmasks New Malware Campaign Pairing Ghost RAT with CloverPlus Adware

Do Son April 22, 2026

The Splunk Threat Research Team (STRT) has identified a sophisticated new malware campaign that defies traditional deployment...

CrowdStrike Issues Critical Alert: LogScale Vulnerability Allows Unauthenticated File Access LogScale Vulnerability Path Traversal Falcon Sensor File Deletion, CVE-2025-42701 CrowdStrike update crashes - CVE 2025-1146

LogScale Vulnerability Path Traversal Falcon Sensor File Deletion, CVE-2025-42701 CrowdStrike update crashes - CVE 2025-1146

CrowdStrike Issues Critical Alert: LogScale Vulnerability Allows Unauthenticated File Access

Do Son April 22, 2026

TranslationCrowdStrike has released an urgent security update to address a critical flaw in its LogScale platform that...

Critical RCE Alert: Bamboo Data Center Vulnerable to OS Command Injection CVE-2023-22518 Bamboo RCE CI/CD Supply Chain Security

CVE-2023-22518 Bamboo RCE CI/CD Supply Chain Security

Critical RCE Alert: Bamboo Data Center Vulnerable to OS Command Injection

Do Son April 22, 2026

Atlassian has issued a high-priority advisory for its Bamboo Data Center users, detailing a critical-severity security flaw...

Emergency .NET Update: Critical Data Protection Flaw Allows Authentication Forgery Windows DNS Client RCE .NET 10 Auth Bypass CVE-2026-40372

Windows DNS Client RCE .NET 10 Auth Bypass CVE-2026-40372

Emergency .NET Update: Critical Data Protection Flaw Allows Authentication Forgery

Do Son April 22, 2026

Microsoft has issued an urgent out-of-band (OOB) security update for .NET 10 to address a critical vulnerability...

7 Critical Vulnerabilities Threaten Spring Security 7.0 cve-2024-38810 Spring Security 7.0 Vulnerabilities Authorization Bypass

cve-2024-38810 Spring Security 7.0 Vulnerabilities Authorization Bypass

7 Critical Vulnerabilities Threaten Spring Security 7.0

Do Son April 22, 2026

The Spring Security team has issued a series of security advisories detailing seven distinct vulnerabilities impacting the...

The Intel “AppDomain” Hijack: Unmasking a Sophisticated Post-Exploitation Framework phan

phan

The Intel “AppDomain” Hijack: Unmasking a Sophisticated Post-Exploitation Framework

Do Son April 22, 2026

A new and highly advanced threat has emerged in the financial sectors of the Middle East and...

Microsoft Teams Exploited for Silent Enterprise Takeovers Teams Impersonation Administrative Abuse

Teams Impersonation Administrative Abuse

Microsoft Teams Exploited for Silent Enterprise Takeovers

Do Son April 22, 2026

A new investigative report from the Microsoft Defender Security Research Team has unmasked a sophisticated intrusion chain...

Three Silent Vulnerabilities Discovered in the glibc Core glibc Security Legacy DNS Flaws glibc Vulnerabilities Linux Security Alert glibc Vulnerability CVE-2026-0861

glibc Security Legacy DNS Flaws glibc Vulnerabilities Linux Security Alert glibc Vulnerability CVE-2026-0861

Three Silent Vulnerabilities Discovered in the glibc Core

Do Son April 21, 2026

The core of many Linux-based operating systems is facing a series of security challenges. Recent advisories for...

The Dual CVSS 10.0 RCE Flaws Threatening Spinnaker Pipelines

The Dual CVSS 10.0 RCE Flaws Threatening Spinnaker Pipelines

Do Son April 21, 2026

A pair of critical remote code execution (RCE) vulnerabilities has been disclosed in Spinnaker, the heavyweight open-source...

Critical 9.8 RCE Threat to SGLang AI Infrastructure SGLang RCE Vulnerability CVE-2026-7301 Zero-Day SGLang RCE AI Infrastructure Vulnerability

SGLang RCE Vulnerability CVE-2026-7301 Zero-Day SGLang RCE AI Infrastructure Vulnerability

Critical 9.8 RCE Threat to SGLang AI Infrastructure

Do Son April 21, 2026

A critical remote code execution (RCE) vulnerability has been uncovered in SGLang, a popular open-source framework used...

🚨

Receive alerts for vulnerabilities being exploited in the wild.

⚡

Get notified instantly when a Proof of Concept (PoC) exploit is published.

🔍

Access critical info on vulnerabilities even when marked as "RESERVED".

🧠

Insights powered by decades of expertise and global intelligence sources.

🎯

Customize alerts with up to 10 keywords for your specific tech stack.

📊

Export the raw CVE database for SIEM integration and reporting.

CVE-2018-1273CVSS 9.8
Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a...
CVE-2026-20230CVSS 8.6
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified...
CVE-2026-12569
A critical remote code execution (RCE) vulnerability has been reported in PTC Windchill PDMlink and PTC FlexPLM. The...
CVE-2026-28496CVSS 9.4
FOSSBilling is a free, open-source billing and client management system. Versions prior to 0.8.0 have a Server-Side Template...
CVE-2026-21509CVSS 7.8
Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a...
CVE-2026-34908CVSS 10.0
A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi...
CVE-2026-34909CVSS 10.0
A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS...
CVE-2026-34910CVSS 10.0
A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi...
CVE-2025-67038CVSS 9.8
An issue was discovered in Lantronix EDS5000 2.1.0.0R3. The HTTP RPC module executes a shell command to write...
CVE-2024-23692CVSS 9.8
Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability. This...