CVE Analysis Center
401 posts | Page 1 of 17
CVE Analysis Center
CVE-2026-27771: Critical Gitea Container Registry Vulnerability Exposes Private Images to Unauthenticated Attackers
CVE Analysis Center
CVE-2026-41241: Critical Stored XSS in Pretalx Conference Platform Allows Attackers 100% Talk Acceptance (Patched in 2026.1.0)
CVE Analysis Center
CVE-2024-55638: Highly Critical Drupal Core Vulnerability Threatens PostgreSQL Sites with Remote Code Execution (RCE)
CVE Analysis Center
Shai-Hulud Malware Source Code Leak Fuels Major npm Supply Chain Attack: Technical Analysis, Impact, and Mitigation Strategies
CVE Analysis Center
MiniPlasma Zero-Day in Windows Cloud Files Mini Filter Driver Enables SYSTEM Privilege Escalation on Fully Patched Windows 10, 11, and Server 2022/2025
CVE Analysis Center
CVE Analysis Report: Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware Targeting JavaScript Supply Chain
CVE Analysis Center
CVE-2026-8153: Critical OS Command Injection Vulnerability in Universal Robots PolyScope 5 Exposes Industrial Robot Fleets to Remote Hacking
CVE Analysis Center
Critical RCE, SQL Injection, and Privilege Escalation Vulnerabilities Affecting Ivanti Endpoint Manager, Fortinet FortiClient EMS (CVE-2026-21643), SAP, VMware, and n8n: CVE Analysis, Exploitation, and Patch Guidance
CVE Analysis Center
Claw Chain: Critical OpenClaw Vulnerabilities (CVE-2026-44112, 44113, 44115, 44118) Enable Data Theft, Privilege Escalation, and Persistent Access
CVE Analysis Center
Critical Apache HTTP Server 2.4.66 Vulnerability (CVE-2026-23918): HTTP/2 mod_http2 Double-Free Enables DoS and Remote Code Execution
CVE Analysis Center
OpenWrt 23.05 Authenticated Remote Code Execution (RCE) Vulnerability: Risk Analysis, Impact, and Mitigation (CVE-2025-62526)
CVE Analysis Center
Pack2TheRoot (CVE-2026-41651): Critical Local Privilege Escalation Vulnerability in PackageKit Grants Root Access on Major Linux Distributions
CVE Analysis Center
April 2026 Patch Tuesday: Critical Vulnerabilities in SAP, Adobe, Microsoft SharePoint, Fortinet, and ColdFusion Threaten Enterprise Security
CVE Analysis Center
Microsoft Patch Tuesday April 2026: Critical Vulnerabilities, RDP and Secure Boot Zero-Days Impacting Windows Systems
CVE Analysis Center
Google Chrome 147 Security Update: Patches 60 Vulnerabilities Including Critical WebML Remote Code Execution Flaws (CVE-2026-5858, CVE-2026-5859)
CVE Analysis Center
Critical Orthanc DICOM Server Vulnerabilities Expose Healthcare Systems to Crashes and Remote Code Execution (RCE)
CVE Analysis Center
Critical Marimo Python Notebook RCE Vulnerability (CVE-2026-39987) Exploited Within 10 Hours of Disclosure
CVE Analysis Center
Outpost24 C-Suite Spearphishing Incident: Analysis of 7-Stage Social Engineering Attack in March 2026
CVE Analysis Center
Loblaw Companies Limited Data Breach 2026: Customer PII Exposed in Targeted Attack
CVE Analysis Center
FortiGate FortiCloud SSO Authentication Bypass: Active Exploitation of CVE-2025-59718/59719 for Credential Theft and Network Breach
CVE Analysis Center
Critical SAP FS-QUO and NetWeaver Vulnerabilities Exposed in March 2026 Security Patch Day: Immediate Action Required
CVE Analysis Center
APT28 Deploys BEARDSHELL and Customized COVENANT Malware for Targeted Cyber Espionage Against the Ukrainian Military
CVE Analysis Center
ScarCruft Exploits Zoho WorkDrive and USB Malware to Compromise Air-Gapped Government and Defense Networks
CVE Analysis Center