Aggregator
CVE-2026-45659 | Microsoft SharePoint Enterprise Server deserialization (EUVD-2026-31518 / WID-SEC-2026-1652)
1 month 1 week ago
A vulnerability marked as critical has been reported in Microsoft SharePoint Enterprise Server. Affected by this vulnerability is an unknown functionality. This manipulation causes deserialization.
The identification of this vulnerability is CVE-2026-45659. It is possible to initiate the attack remotely. There is no exploit available.
It is suggested to upgrade the affected component.
vuldb.com
CVE-2026-33111 | Microsoft Copilot Chat command injection (EUVD-2026-28449)
1 month 1 week ago
A vulnerability classified as critical was found in Microsoft Copilot Chat. Affected by this issue is some unknown functionality. The manipulation results in command injection.
This vulnerability is identified as CVE-2026-33111. The attack can be executed remotely. There is not any exploit available.
This product operates as a managed service, which prevents users from maintaining vulnerability countermeasures themselves.
vuldb.com
CVE-2026-33823 | Microsoft Teams improper authorization (EUVD-2026-28450 / WID-SEC-2026-1413)
1 month 1 week ago
A vulnerability, which was classified as critical, has been found in Microsoft Teams. This affects an unknown part. This manipulation causes improper authorization.
This vulnerability is tracked as CVE-2026-33823. The attack is possible to be carried out remotely. No exploit exists.
This product is provided as a managed service, meaning users do not have the ability to maintain vulnerability countermeasures themselves.
vuldb.com
CVE-2026-34327 | Microsoft Partner Center external reference (EUVD-2026-28452 / WID-SEC-2026-1419)
1 month 1 week ago
A vulnerability, which was classified as critical, was found in Microsoft Partner Center. This vulnerability affects unknown code. Such manipulation leads to externally controlled reference.
This vulnerability is listed as CVE-2026-34327. The attack may be performed from remote. There is no available exploit.
This product is a managed service, indicating that users are not permitted to maintain vulnerability countermeasures themselves.
vuldb.com
CVE-2026-35428 | Microsoft Azure Cloud Shell command injection (EUVD-2026-28453 / WID-SEC-2026-1419)
1 month 1 week ago
A vulnerability was found in Microsoft Azure Cloud Shell. It has been rated as critical. This affects an unknown function. This manipulation causes command injection.
This vulnerability appears as CVE-2026-35428. The attack may be initiated remotely. There is no available exploit.
This product is available as a managed service. Users are not able to maintain vulnerability countermeasures themselves.
vuldb.com
CVE-2026-41105 | Microsoft Azure Monitor Action Group Notification System server-side request forgery (EUVD-2026-28457 / WID-SEC-2026-1419)
1 month 1 week ago
A vulnerability was found in Microsoft Azure Monitor Action Group Notification System and classified as critical. This affects an unknown function. The manipulation results in server-side request forgery.
This vulnerability is cataloged as CVE-2026-41105. The attack may be launched remotely. There is no exploit available.
This product is available as a managed service. Users are not able to maintain vulnerability countermeasures themselves.
vuldb.com
CVE-2026-35435 | Microsoft Azure AI Foundry access control (EUVD-2026-28454 / WID-SEC-2026-1419)
1 month 1 week ago
A vulnerability categorized as critical has been discovered in Microsoft Azure AI Foundry. This impacts an unknown function. Such manipulation leads to improper access controls.
This vulnerability is traded as CVE-2026-35435. The attack may be launched remotely. There is no exploit available.
This product is a managed service. It is not possible for users to maintain vulnerability countermeasures themselves.
vuldb.com
CVE-2026-42826 | Microsoft Azure DevOps information disclosure (EUVD-2026-28460 / WID-SEC-2026-1414)
1 month 1 week ago
A vulnerability has been found in Microsoft Azure DevOps and classified as problematic. The impacted element is an unknown function. The manipulation leads to information disclosure.
This vulnerability is listed as CVE-2026-42826. The attack may be initiated remotely. There is no available exploit.
This product is a managed service. This means that users are not able to maintain vulnerability countermeasures themselves.
vuldb.com
传 Anthropic 新估值反超 OpenAI;iPhone 18 Pro 配色曝光,橙色没了;中国将实施太空人体研究计划 | 极客早知道
1 month 1 week ago
SpaceX 第三代星舰首飞成功!;苹果在 WWDC 前夕筹备「Gen AI」网站,子域名已上线但尚未开放访问;OpenAI 开出最高 44.5 万美元年薪招聘研究员
CVE-2026-44060 | Netatalk up to 4.4.2 dsi_writeinit integer underflow
1 month 1 week ago
A vulnerability classified as problematic has been found in Netatalk up to 4.4.2. This affects the function dsi_writeinit. The manipulation leads to integer underflow.
This vulnerability is traded as CVE-2026-44060. Access to the local network is required for this attack to succeed. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2026-44061 | Netatalk up to 4.4.3 DES-ECB timing discrepancy
1 month 1 week ago
A vulnerability classified as problematic was found in Netatalk up to 4.4.3. This impacts an unknown function of the component DES-ECB. The manipulation results in observable timing discrepancy.
This vulnerability is known as CVE-2026-44061. Access to the local network is required for this attack. No exploit is available.
Upgrading the affected component is advised.
vuldb.com
CVE-2026-44062 | Netatalk up to 4.4.2 pull_charset_flags memory corruption
1 month 1 week ago
A vulnerability, which was classified as critical, has been found in Netatalk up to 4.4.2. Affected is the function pull_charset_flags. This manipulation causes memory corruption.
This vulnerability is handled as CVE-2026-44062. The attack can only be done within the local network. There is not any exploit available.
It is advisable to upgrade the affected component.
vuldb.com
CVE-2026-44063 | Netatalk up to 4.4.3 ldap injection
1 month 1 week ago
A vulnerability, which was classified as critical, was found in Netatalk up to 4.4.3. Affected by this vulnerability is an unknown functionality. Such manipulation leads to ldap injection.
This vulnerability is uniquely identified as CVE-2026-44063. The attack can only be initiated within the local network. No exploit exists.
You should upgrade the affected component.
vuldb.com
CVE-2026-44064 | Netatalk up to 4.4.2 ASP session ID out-of-bounds
1 month 1 week ago
A vulnerability has been found in Netatalk up to 4.4.2 and classified as problematic. Affected by this issue is some unknown functionality of the component ASP session ID Handler. Performing a manipulation results in out-of-bounds read.
This vulnerability was named CVE-2026-44064. The attack needs to be approached within the local network. There is no available exploit.
The affected component should be upgraded.
vuldb.com
Brazilian ERP Software House Sisplan Sistemas Listed in Alleged Source Code & Database Sale
1 month 1 week ago
A threat actor using the alias sta6 claims to be selling a full source-code and database leak allegedly belonging to Sisplan Sistemas, a Brazilian ERP software house based in Indaial/SC operating since 1996.
Dark Web Informer
BravoX
1 month 1 week ago
You must login to view this content
cohenido
【课程】图片拍摄地点分析方法与技术16-17(含视频)
1 month 1 week ago
反向图片搜索引擎反向图片搜索(Reverse Image Search)是图片地理定位的第一道关卡。
不用迷信Mythos ,开源AI以更低的成本发现漏洞
1 month 1 week ago
DARPA在2025年8月宣布了竞赛的三名获胜者后,为使用其AI系统发现并修复关键重要软件中漏洞的决赛选手设立了140万美元的奖金池。
BravoX
1 month 1 week ago
You must login to view this content
cohenido