Aggregator

CVE-2026-24692 | Mattermost up to 10.11.10/11.2.2/11.3.0 API Endpoint authorization (EUVD-2026-12443)

VulDB Recent Entries
2 weeks 2 days ago
A vulnerability classified as problematic was found in Mattermost up to 10.11.10/11.2.2/11.3.0. Affected by this vulnerability is an unknown functionality of the component API Endpoint. Executing a manipulation can lead to incorrect authorization. The identification of this vulnerability is CVE-2026-24692. The attack may be launched remotely. There is no exploit available. Upgrading the affected component is advised.
vuldb.com

DPRK IT Worker Fraud: Hiring an Insider Threat

Security Boulevard
2 weeks 2 days ago

Nisos
DPRK IT Worker Fraud: Hiring an Insider Threat

Here at Nisos, we’ve spent years helping organizations understand and mitigate complex, human risk-related threats, such as insider risk, executive protection and employment fraud...

The post DPRK IT Worker Fraud: Hiring an Insider Threat appeared first on Nisos by Ryan LaSalle, CEO

The post DPRK IT Worker Fraud: Hiring an Insider Threat appeared first on Security Boulevard.

Ryan LaSalle, CEO

16th March – Threat Intelligence Report

Check Point Research
2 weeks 2 days ago

For the latest discoveries in cyber research for the week of 16th March, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES United States-based medical technology company Stryker has suffered a cyberattack that caused a global disruption to its environment. The company said its surgical robotics, clinical communications platform, and life support monitors are […]

The post 16th March – Threat Intelligence Report appeared first on Check Point Research.

urias

BSidesCache 2025 – KEYNOTE: The AI Cyber War: Inside The AI Race Between Attackers And Hunters

Security Boulevard
2 weeks 2 days ago

Author, Creator & Presenter: Mike Spicer (@d4rkm4tter)

Our thanks to BSidesCache for publishing their Creators, Authors and Presenter’s outstanding BSidesCache 2025 content on the Organizations' YouTube Channel.

Permalink

The post BSidesCache 2025 – KEYNOTE: The AI Cyber War: Inside The AI Race Between Attackers And Hunters appeared first on Security Boulevard.

Marc Handelman

CVE-2025-69246 | Raytha CMS up to 1.4.5 excessive authentication

VulDB Recent Entries
2 weeks 2 days ago
A vulnerability was found in Raytha CMS up to 1.4.5. It has been rated as problematic. This issue affects some unknown processing. Performing a manipulation results in improper restriction of excessive authentication attempts. This vulnerability is reported as CVE-2025-69246. The attack is possible to be carried out remotely. No exploit exists. Upgrading the affected component is advised.
vuldb.com

CVE-2026-2462 | Mattermost up to 10.11.10/11.2.2/11.3.0 Plugin authorization

VulDB Recent Entries
2 weeks 2 days ago
A vulnerability was found in Mattermost up to 10.11.10/11.2.2/11.3.0. It has been declared as problematic. This vulnerability affects unknown code of the component Plugin Handler. Such manipulation leads to incorrect authorization. This vulnerability is documented as CVE-2026-2462. The attack can be executed remotely. There is not any exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2026-25780 | Mattermost up to 10.11.10/11.2.2/11.3.0 DOC File Parser memory allocation

VulDB Recent Entries
2 weeks 2 days ago
A vulnerability was found in Mattermost up to 10.11.10/11.2.2/11.3.0. It has been classified as problematic. This affects an unknown part of the component DOC File Parser. This manipulation causes uncontrolled memory allocation. This vulnerability is registered as CVE-2026-25780. Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is recommended.
vuldb.com

CVE-2025-10685 | Softing smartLink SW-PN/smartLink SW-HT Webserver heap-based overflow

VulDB Recent Entries
2 weeks 2 days ago
A vulnerability was found in Softing smartLink SW-PN and smartLink SW-HT and classified as critical. Affected by this issue is some unknown functionality of the component Webserver Module. The manipulation results in heap-based buffer overflow. This vulnerability is cataloged as CVE-2025-10685. The attack may be launched remotely. There is no exploit available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2025-10461 | Softing smartLink SW-HT/smartLink SW-PN webserver input validation

VulDB Recent Entries
2 weeks 2 days ago
A vulnerability has been found in Softing smartLink SW-HT and smartLink SW-PN and classified as problematic. Affected by this vulnerability is an unknown functionality of the component webserver. The manipulation leads to improper input validation. This vulnerability is listed as CVE-2025-10461. The attack may be initiated remotely. There is no available exploit. The affected component should be upgraded.
vuldb.com

Managed ad