Vulnerability Archives • Page 13 of 190 • Daily CyberSecurity

RADIUS Risk: Unauthenticated Remote Attacker Can Crash Cisco ISE by Default CVE-2024-20419 - Cisco Webex Vulnerability Cisco ISE DoS, CVE-2025-20152

CVE-2024-20419 - Cisco Webex Vulnerability Cisco ISE DoS, CVE-2025-20152

RADIUS Risk: Unauthenticated Remote Attacker Can Crash Cisco ISE by Default

Do Son May 22, 2025

Cisco has published a security advisory for a high-severity vulnerability impacting its Identity Services Engine (ISE) product....

Grafana Zero-Day? Emergency Patch Released ‘One Day Ahead of Schedule’ for XSS Flaw Grafana SCIM Flaw CVE-2025-41115 Grafana Vulnerabilities, XSS Flaw Grafana security alert, XSS patch

Grafana Zero-Day? Emergency Patch Released ‘One Day Ahead of Schedule’ for XSS Flaw

Do Son May 22, 2025

Grafana Labs issued an unscheduled security release—Grafana 12.0.0+security-01—alongside patches for all supported versions, addressing a high-severity cross-site...

GitLab Patches High-Severity Flaws: DoS and 2FA Bypass Fixed GitLab Security Update CVE-2026-0723 CVE-2023-7028 & CVE-2023-5356 GitLab vulnerability, DoS flaw

GitLab Security Update CVE-2026-0723 CVE-2023-7028 & CVE-2023-5356 GitLab vulnerability, DoS flaw

GitLab Patches High-Severity Flaws: DoS and 2FA Bypass Fixed

Do Son May 22, 2025

GitLab announced the release of versions 18.0.1, 17.11.3, and 17.10.7 for both its Community Edition (CE) and...

NIST Proposes New Metric to Predict “Likely Exploited” Vulnerabilities NIST LEV, vulnerability prioritization Likely Exploited Vulnerability

NIST LEV, vulnerability prioritization Likely Exploited Vulnerability

NIST Proposes New Metric to Predict “Likely Exploited” Vulnerabilities

Do Son May 22, 2025

The U.S. National Institute of Standards and Technology (NIST) is proposing a metric to address one of...

Langroid Flaws (CVSS 9.8) Expose LLM Apps to RCE Langroid vulnerability, LLM agent exploit

Langroid Flaws (CVSS 9.8) Expose LLM Apps to RCE

Do Son May 22, 2025

Researchers have disclosed two critical vulnerabilities in Langroid, a popular Python framework designed for building large language...

Critical Flaws in AI Browse Agents: Exposed to Credential Theft and Hijacking Prompt injection, agent hijacking

Critical Flaws in AI Browse Agents: Exposed to Credential Theft and Hijacking

Do Son May 22, 2025

As AI-powered browsing agents increasingly automate complex web tasks—from booking travel to managing emails—they’re becoming both indispensable...

Industrial Alert: AutomationDirect MB-Gateway Flaw Rated CVSS 10, No Software Fix MB-Gateway vulnerability, OT security

Industrial Alert: AutomationDirect MB-Gateway Flaw Rated CVSS 10, No Software Fix

Do Son May 22, 2025

In a newly disclosed advisory, the Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert...

setuptools Flaw Exposes Millions of Python Users to RCE setuptools vulnerability, Python RCE

setuptools Flaw Exposes Millions of Python Users to RCE

Do Son May 21, 2025

The Python Packaging Authority (PyPA) has patched a serious path traversal vulnerability in the widely-used setuptools project....

BIND DNS Server Vulnerable to Remote Crash BIND 9 Vulnerability CVE-2025-13878 BIND Cache Poisoning, DNS RCE BIND Vulnerabilities, DNS Security BIND 9 vulnerabilities BIND vulnerability, DNS server crash

BIND 9 Vulnerability CVE-2025-13878 BIND Cache Poisoning, DNS RCE BIND Vulnerabilities, DNS Security BIND 9 vulnerabilities BIND vulnerability, DNS server crash

BIND DNS Server Vulnerable to Remote Crash

Do Son May 21, 2025

The Internet Systems Consortium (ISC) has issued a high-severity security advisory for BIND, one of the most...

Palo Alto Networks Warns of XSS Flaw with PoC Exploit Code GlobalProtect XSS, PAN-OS security

Palo Alto Networks Warns of XSS Flaw with PoC Exploit Code

Do Son May 21, 2025

Palo Alto Networks has issued a security advisory for a reflected cross-site scripting (XSS) vulnerability, tracked as...

Pwn2Own Berlin Recap: VMware ESXi, Windows 11 Hacked with Zero-Days

Do Son May 21, 2025

The renowned hacking competition, Pwn2Own 2025 Berlin, recently concluded with cybersecurity researchers securing a total of $1,078,750...

Critical Remote Code Execution Flaw Hits Lexmark Printers

Do Son May 21, 2025

Lexmark has released a security advisory for a critical vulnerability—CVE-2025-1127—affecting a wide range of its printer models....

Critical CVSS 9.8 RCE Flaw in vLLM Exposes AI Hosts to Remote Attacks vLLM Vulnerability CVE-2026-22778 vLLM Memory Corruption, AI Inference RCE CVE-2025-29783 CVE-2025-32444 vLLM vulnerability vLLM, Remote Code Execution

vLLM Vulnerability CVE-2026-22778 vLLM Memory Corruption, AI Inference RCE CVE-2025-29783 CVE-2025-32444 vLLM vulnerability vLLM, Remote Code Execution

Critical CVSS 9.8 RCE Flaw in vLLM Exposes AI Hosts to Remote Attacks

Do Son May 21, 2025

A critical vulnerability—CVE-2025-47277—has been disclosed in vLLM, a high-performance inference and serving engine for large language models...

Critical containerd Vulnerability: Malicious Images Can Hijack Host Filesystem containerd vulnerability, container security

Critical containerd Vulnerability: Malicious Images Can Hijack Host Filesystem

Do Son May 21, 2025

The containerd project has issued an urgent security advisory for a critical vulnerability in its container runtime,...

CISA Alerts: Vertiv Products Vulnerable to RCE, Auth Bypass (CVSS 9.8) Vertiv RCE, authentication bypass

CISA Alerts: Vertiv Products Vulnerable to RCE, Auth Bypass (CVSS 9.8)

Do Son May 21, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent advisory addressing two high-severity vulnerabilities...

PoC Available: TP-Link Archer AX50 Flaw Allows Remote Root Access Archer AX50 exploit, router security

PoC Available: TP-Link Archer AX50 Flaw Allows Remote Root Access

Do Son May 21, 2025

A critical vulnerability in TP-Link’s widely deployed Archer AX50 router has been uncovered, potentially allowing remote attackers...

High-Severity Privilege Escalation Threat Hits Atlassian Jira Data Center CVE-2024-21678 Jira, Privilege Escalation

High-Severity Privilege Escalation Threat Hits Atlassian Jira Data Center

Do Son May 21, 2025

A newly disclosed vulnerability—CVE-2025-22157—has put organizations using Atlassian’s Jira Core Data Center and Jira Service Management Data...

High Risk: PowerDNS DNSdist Flaw Allows Unauthenticated DoS Attacks PowerDNS Authoritative Server Vulnerabilities CVE-2026-42001 DoS CVE-2024-25581 DNSdist vulnerability, DNS DoS

PowerDNS Authoritative Server Vulnerabilities CVE-2026-42001 DoS CVE-2024-25581 DNSdist vulnerability, DNS DoS

High Risk: PowerDNS DNSdist Flaw Allows Unauthenticated DoS Attacks

Do Son May 21, 2025

PowerDNS has released a critical update to its high-performance DNS proxy and load balancer, DNSdist, addressing a...

Is Your Unix Automation Secure? Critical Broadcom Flaw Poses High Risk VMware Telco Cloud Platform 9 Tesco, Broadcom, VMware Walmart Broadcom Jericho4, Distributed AI Infrastructure Broadcom VMware, Perpetual Licenses AI Data Centers, Network Switch Unix automation security, Broadcom vulnerability