Posts of last 24 hours

CVE-2026-53205 | Linux Kernel up to 6.12.93/6.18.35/7.0.12 accel out-of-bounds (Nessus ID 323537 / WID-SEC-2026-2077)
A vulnerability was found in Linux Kernel up to 6.12.93/6.18.35/7.0.12. It has been declared as critical. This impacts an unknown function of the component accel. Such manipulation leads to out-of-bounds read. This vulnerability is listed as CVE-2026-53205. The attack must be carried out from within the local network. There is no available exploit. It is recommended to upgrade the affected component.
https://vuldb.com/vuln/373779
CVE-2026-53217 | Linux Kernel up to 7.0.12 net dma_sync_single_range_for_cpu improper synchronization (Nessus ID 323539 / WID-SEC-2026-2077)
A vulnerability classified as critical was found in Linux Kernel up to 7.0.12. This vulnerability affects the function dma_sync_single_range_for_cpu of the component net. Such manipulation leads to improper synchronization. This vulnerability is uniquely identified as CVE-2026-53217. The attack can only be initiated within the local network. No exploit exists. Upgrading the affected component is advised.
https://vuldb.com/vuln/373773
CVE-2026-42387 | PowerDNS Recursor up to 5.2.10/5.3.7/5.4.2 Zone ZoneToCache denial of service (Nessus ID 323540)
A vulnerability classified as problematic was found in PowerDNS Recursor up to 5.2.10/5.3.7/5.4.2. Affected is the function ZoneToCache of the component Zone Handler. Such manipulation leads to denial of service. This vulnerability is documented as CVE-2026-42387. The attack can be executed remotely. There is not any exploit available. Upgrading the affected component is advised.
https://vuldb.com/vuln/373857
CVE-2026-52945 | Linux Kernel up to 6.12.73 wg_cpumask_choose_online rx_queue infinite loop (Nessus ID 323541 / WID-SEC-2026-2077)
A vulnerability described as critical has been identified in Linux Kernel up to 6.12.73. This impacts the function wg_cpumask_choose_online. Executing a manipulation of the argument rx_queue can lead to infinite loop. The identification of this vulnerability is CVE-2026-52945. The attack may be launched remotely. There is no exploit available. Upgrading the affected component is recommended.
https://vuldb.com/vuln/373295
Физики научили пиксель смотреть в обе стороны
Почти 100 лет пиксель был односторонним — швейцарские учёные это исправили.
https://www.securitylab.ru/news/574266.php
世界各地的学生使用智能眼镜在考试中作弊
世界各地的学生正使用 AI 驱动的智能眼镜在考试中作弊,而各国也开始加强对考生眼镜的检查。本月初的中国高考有逾千万学生参加,政府要求检查所有学生的眼镜。英格兰考试监管机构负责人警告,AI 眼镜和智能耳机等设备可能会加剧考试作弊现象。韩国报告了首起利用 AI 眼镜作弊的案例。专家担心相关个案可能预示着智能眼镜作弊正成为更为普遍的问题。研究过智能眼镜应用的 Thomas Corbin 说,“如果我们看到有些案例被报道,那么肯定还有更多案例没有被报道。”

https://www.solidot.org/story?sid=84711
Anubis

You must login to view this content

https://darkfeed.io/2026/06/29/anubis-88/
Anubis

You must login to view this content

https://darkfeed.io/2026/06/29/anubis-87/
Critical Dell Wyse Vulnerabilities Enable Remote Code Execution Attacks

Dell Technologies has released a critical security advisory addressing multiple vulnerabilities in its Wyse Management Suite (WMS), warning that attackers could exploit these flaws to execute arbitrary code on affected systems. The vulnerabilities affect Dell Wyse Management Suite versions before 5.5 HF1, a widely used platform for centralized management of thin clients and endpoint devices. […]

The post Critical Dell Wyse Vulnerabilities Enable Remote Code Execution Attacks appeared first on Cyber Security News.

https://cybersecuritynews.com/dell-wyse-vulnerabilities/
Microsoft 365 Apps RCE Vulnerability Exploited Using a Malicious Excel File

Microsoft has disclosed a critical remote code execution vulnerability in its Office ecosystem that can be exploited through a malicious Excel file. The vulnerability, tracked as CVE-2025-60727, affects multiple versions of Microsoft Office and underscores the continued risk posed by document-based attack techniques commonly used in phishing campaigns. The issue is classified as an out-of-bounds […]

The post Microsoft 365 Apps RCE Vulnerability Exploited Using a Malicious Excel File appeared first on Cyber Security News.

https://cybersecuritynews.com/microsoft-365-apps-rce-vulnerability-exploit/

Managed ad