CVE Analysis Center
393 posts | Page 1 of 17
CVE Analysis Center
CVE-2026-42208: Critical Pre-Auth SQL Injection in LiteLLM Actively Exploited Within 36 Hours of Disclosure
CVE Analysis Center
Robinhood Account Creation Vulnerability Exploited for Phishing: HTML Injection in Device Metadata Bypasses Email Security
CVE Analysis Center
BlueNoroff APT Targets Crypto and Web3 Firms with AI Deepfakes and Fake Zoom Malware on macOS
CVE Analysis Center
OpenWrt 23.05 Authenticated Remote Code Execution (RCE) Vulnerability: Risk Analysis, Impact, and Mitigation (CVE-2025-62526)
CVE Analysis Center
Critical Authenticated Remote Code Execution Vulnerability in JuzaWeb CMS 3.4.2 (CVE-2025-5425) – Exploit in the Wild and Mitigation Guidance
CVE Analysis Center
Firestarter Backdoor Malware Targets Cisco ASA and FTD Firewalls, Survives Updates and Security Patches
CVE Analysis Center
CVE-2026-33626: Critical SSRF Vulnerability in LMDeploy Rapidly Exploited in the Wild — Technical Analysis and Mitigation Guide
CVE Analysis Center
Pack2TheRoot (CVE-2026-41651): Critical Local Privilege Escalation Vulnerability in PackageKit Grants Root Access on Major Linux Distributions
CVE Analysis Center
China-Linked GopherWhisper APT Targets Mongolian Government: Abuse of Slack, Discord, and Microsoft 365 in Advanced Espionage Campaign
CVE Analysis Center
26 FakeWallet Apps Impersonating Crypto Wallets Discovered on Apple App Store: Seed Phrase Theft Campaign Targeting iOS Users (April 2026)
CVE Analysis Center
fast16 Malware: Pre-Stuxnet Cyber Sabotage Targeting LS-DYNA, PKPM, and MOHID Engineering Software Uncovered
CVE Analysis Center
Outpost24 C-Suite Spearphishing Incident: Analysis of 7-Stage Social Engineering Attack in March 2026
CVE Analysis Center
Loblaw Companies Limited Data Breach 2026: Customer PII Exposed in Targeted Attack
CVE Analysis Center
FortiGate FortiCloud SSO Authentication Bypass: Active Exploitation of CVE-2025-59718/59719 for Credential Theft and Network Breach
CVE Analysis Center
Critical SAP FS-QUO and NetWeaver Vulnerabilities Exposed in March 2026 Security Patch Day: Immediate Action Required
CVE Analysis Center
APT28 Deploys BEARDSHELL and Customized COVENANT Malware for Targeted Cyber Espionage Against the Ukrainian Military
CVE Analysis Center
ScarCruft Exploits Zoho WorkDrive and USB Malware to Compromise Air-Gapped Government and Defense Networks
CVE Analysis Center
Ongoing Cyberattack Exploits Sangoma FreePBX CVE-2025-64328: Over 900 Instances Compromised by Web Shells
CVE Analysis Center
ManoMano Zendesk Data Breach Exposes 38 Million Customers Across Europe: Incident Analysis and Security Implications
CVE Analysis Center
Malicious Go Module github.com/xinfeisoft/crypto Targets Ubuntu and CI/CD Environments With Rekoobe Backdoor and Credential Theft
CVE Analysis Center
Critical CVE-2026-21902 Vulnerability in Juniper Networks PTX Series Routers Running Junos OS Evolved: Full Device Takeover Risk and Mitigation Steps
CVE Analysis Center
APT37’s Ruby Jumper Malware Targets Air-Gapped Windows Networks with USB-Based Attacks
CVE Analysis Center
UAT-9921 Targets Technology and Financial Sectors with VoidLink Malware via Apache Dubbo Vulnerabilities
CVE Analysis Center