Vulnerability Report Archives • Page 17 of 87 • Daily CyberSecurity

Linux Privilege Escalation: “Pack2TheRoot” Flaw Impacts Major Distributions Pack2TheRoot Vulnerability PackageKit Privilege Escalation

Linux Privilege Escalation: “Pack2TheRoot” Flaw Impacts Major Distributions

Do Son April 23, 2026

A long-standing security flaw has been unearthed in a core component of the modern Linux desktop and...

Over 400,000 WordPress Sites at Risk as “Breeze” Plugin Zero-Day Is Exploited in the Wild WordPress RCE Breeze Plugin Vulnerability

Over 400,000 WordPress Sites at Risk as “Breeze” Plugin Zero-Day Is Exploited in the Wild

Do Son April 23, 2026

A major security threat is currently sweeping through the WordPress ecosystem. Breeze, a highly popular caching plugin...

CVE-2026-33626: High-Severity SSRF Exploited in the Wild to Hijack AI Inference Engines CVE-2026-33626 LMDeploy SSRF

CVE-2026-33626: High-Severity SSRF Exploited in the Wild to Hijack AI Inference Engines

Do Son April 23, 2026

On April 21, 2026, a high-severity Server-Side Request Forgery (SSRF) vulnerability was disclosed in LMDeploy, a popular...

Microsoft Defender Zero-Day “BlueHammer” Hits KEV Catalog Following Researcher’s Protest BlueHammer Exploit Microsoft Defender LPE

Microsoft Defender Zero-Day “BlueHammer” Hits KEV Catalog Following Researcher’s Protest

Do Son April 23, 2026

CISA has officially added a fresh vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, citing evidence of...

Total Database Collapse: Inside the ElectricSQL CVSS 10.0 SQL Injection ElectricSQL SQL Injection PostgreSQL Tenant Isolation

Total Database Collapse: Inside the ElectricSQL CVSS 10.0 SQL Injection

Do Son April 22, 2026

ElectricSQL, the popular sync engine used to power modern real-time applications, has disclosed a catastrophic SQL injection...

High-Severity PHPUnit Vulnerability Enables Remote Code Execution PHPUnit RCE Poisoned Pipeline Execution PHPUnit Vulnerability CVE-2026-24765

PHPUnit RCE Poisoned Pipeline Execution PHPUnit Vulnerability CVE-2026-24765

High-Severity PHPUnit Vulnerability Enables Remote Code Execution

Do Son April 22, 2026

The PHP development community is facing a significant security risk following the disclosure of a critical argument...

NVIDIA Fixes High-Severity Flaws in KAI Scheduler and CUDA-Q NVIDIA GPU Security CUDA-Q Vulnerability NVIDIA Apex Vulnerability AI Infrastructure Security NVIDIA Cumulus Linux CVE-2025-33179 NVIDIA Arm divestment NVIDIA DGX Spark, CVE-2025-33187 NVIDIA Isaac-GROOT, Code Injection Megatron-LM Vulnerability, AI Code Injection NVIDIA China NVIDIA GPUs, Hardware Kill Switches NVIDIA Megatron-LM, LLM Vulnerabilities NVIDIA Base Command Manager - CVE-2024-0138

NVIDIA GPU Security CUDA-Q Vulnerability NVIDIA Apex Vulnerability AI Infrastructure Security NVIDIA Cumulus Linux CVE-2025-33179 NVIDIA Arm divestment NVIDIA DGX Spark, CVE-2025-33187 NVIDIA Isaac-GROOT, Code Injection Megatron-LM Vulnerability, AI Code Injection NVIDIA China NVIDIA GPUs, Hardware Kill Switches NVIDIA Megatron-LM, LLM Vulnerabilities NVIDIA Base Command Manager - CVE-2024-0138

NVIDIA Fixes High-Severity Flaws in KAI Scheduler and CUDA-Q

Do Son April 22, 2026

NVIDIA has released a series of software updates to address high-severity vulnerabilities in its KAI Scheduler and...

GitLab Security Update: High-Severity Vulnerabilities Patched in April Release GitLab security updates, GitLab patch release, CVE-2026-6552, CVE-2026-10087, CVE-2026-7250 GitLab Security Update May 2026 GitLab XSS and DoS Vulnerabilities GitLab Security Session Hijacking GitLab Security Update, CI/CD Vulnerability GitLab DoS, Security Update bypassing SAML - CVE-2024-8312 and CVE-2024-6826

GitLab security updates, GitLab patch release, CVE-2026-6552, CVE-2026-10087, CVE-2026-7250 GitLab Security Update May 2026 GitLab XSS and DoS Vulnerabilities GitLab Security Session Hijacking GitLab Security Update, CI/CD Vulnerability GitLab DoS, Security Update bypassing SAML - CVE-2024-8312 and CVE-2024-6826

GitLab Security Update: High-Severity Vulnerabilities Patched in April Release

Do Son April 22, 2026

GitLab has released a vital set of security updates for both Community Edition (CE) and Enterprise Edition...

CVE-2026-40342: CVSS 10.0 Path Traversal to RCE in Firebird Database Firebird Database RCE CVE-2026-40342

CVE-2026-40342: CVSS 10.0 Path Traversal to RCE in Firebird Database

Do Son April 22, 2026

Researchers have disclosed a critical-severity vulnerability in Firebird, the long-standing relational database with roots dating back to...

The 271-Zero-Day Sweep: How Anthropic’s “Project Glasswing” Just Saved Firefox Claude Mythos security audit Claude Identity Verification Anthropic DMCA GitHub takedown bugs Nuclear weapons Xcode, Claude AI Anthropic, Claude Sonnet 4 Claude AI, AI safety

Claude Mythos security audit Claude Identity Verification Anthropic DMCA GitHub takedown bugs Nuclear weapons Xcode, Claude AI Anthropic, Claude Sonnet 4 Claude AI, AI safety

The 271-Zero-Day Sweep: How Anthropic’s “Project Glasswing” Just Saved Firefox

Do Son April 22, 2026

When Anthropic proclaimed earlier this month its ambition to fortify cybersecurity through its nascent AI models, the...

Command Injection Vulnerability (CVE-2025-29635) Exploited in the Wild Cloudflare DDoS attacks 2 Tbps

Command Injection Vulnerability (CVE-2025-29635) Exploited in the Wild

Do Son April 22, 2026

The Akamai Security Intelligence and Response Team (SIRT) has issued a warning regarding a surge in malicious...

CrowdStrike Issues Critical Alert: LogScale Vulnerability Allows Unauthenticated File Access LogScale Vulnerability Path Traversal Falcon Sensor File Deletion, CVE-2025-42701 CrowdStrike update crashes - CVE 2025-1146

CrowdStrike Issues Critical Alert: LogScale Vulnerability Allows Unauthenticated File Access

Do Son April 22, 2026

TranslationCrowdStrike has released an urgent security update to address a critical flaw in its LogScale platform that...

Critical RCE Alert: Bamboo Data Center Vulnerable to OS Command Injection CVE-2023-22518 Bamboo RCE CI/CD Supply Chain Security

Critical RCE Alert: Bamboo Data Center Vulnerable to OS Command Injection

Do Son April 22, 2026

Atlassian has issued a high-priority advisory for its Bamboo Data Center users, detailing a critical-severity security flaw...

Emergency .NET Update: Critical Data Protection Flaw Allows Authentication Forgery Windows DNS Client RCE .NET 10 Auth Bypass CVE-2026-40372

Emergency .NET Update: Critical Data Protection Flaw Allows Authentication Forgery

Do Son April 22, 2026

Microsoft has issued an urgent out-of-band (OOB) security update for .NET 10 to address a critical vulnerability...

7 Critical Vulnerabilities Threaten Spring Security 7.0 cve-2024-38810 Spring Security 7.0 Vulnerabilities Authorization Bypass

7 Critical Vulnerabilities Threaten Spring Security 7.0

Do Son April 22, 2026

The Spring Security team has issued a series of security advisories detailing seven distinct vulnerabilities impacting the...

Three Silent Vulnerabilities Discovered in the glibc Core glibc Security Legacy DNS Flaws glibc Vulnerabilities Linux Security Alert glibc Vulnerability CVE-2026-0861

glibc Security Legacy DNS Flaws glibc Vulnerabilities Linux Security Alert glibc Vulnerability CVE-2026-0861

Three Silent Vulnerabilities Discovered in the glibc Core

Do Son April 21, 2026

The core of many Linux-based operating systems is facing a series of security challenges. Recent advisories for...

The Dual CVSS 10.0 RCE Flaws Threatening Spinnaker Pipelines

Do Son April 21, 2026

A pair of critical remote code execution (RCE) vulnerabilities has been disclosed in Spinnaker, the heavyweight open-source...

Critical 9.8 RCE Threat to SGLang AI Infrastructure SGLang RCE Vulnerability CVE-2026-7301 Zero-Day SGLang RCE AI Infrastructure Vulnerability

SGLang RCE Vulnerability CVE-2026-7301 Zero-Day SGLang RCE AI Infrastructure Vulnerability

Critical 9.8 RCE Threat to SGLang AI Infrastructure

Do Son April 21, 2026

A critical remote code execution (RCE) vulnerability has been uncovered in SGLang, a popular open-source framework used...

MOVEit WAF Critical Alert: Multi-Level RCE and WAF Bypass Vulnerabilities Disclosed CVE-2024-4358 MOVEit WAF RCE Progress ADC Vulnerabilities

MOVEit WAF Critical Alert: Multi-Level RCE and WAF Bypass Vulnerabilities Disclosed

Do Son April 21, 2026

Progress Software has released a critical security bulletin for April 2026, revealing five high-impact vulnerabilities affecting MOVEit...

OVN Security Alert: Critical Heap Over-Read Flaws Risk Sensitive Data Leaks OVN Heap Over-read Network Memory Leak

OVN Security Alert: Critical Heap Over-Read Flaws Risk Sensitive Data Leaks

Do Son April 21, 2026

The Open Virtual Network (OVN) team has issued a dual-threat security advisory concerning two critical heap over-read...

Critical Alert 1 Active Exploit Detected Today