Aggregator
Over 900 Oracle E-Business instances exposed to ongoing attacks
CVE-2022-39402 | Oracle MySQL Shell up to 8.0.30 Core Client information disclosure (EUVD-2022-41847 / Nessus ID 250152)
CVE-2022-39404 | Oracle MySQL Installer up to 1.6.3 Local Privilege Escalation (EUVD-2022-41849)
CVE-2022-39403 | Oracle MySQL Shell up to 8.0.30 Core Client (EUVD-2022-41848)
CVE-2022-39400 | Oracle MySQL Server up to 8.0.30 Optimizer denial of service (EUVD-2022-41845 / Nessus ID 236677)
CVE-2022-39401 | Oracle Solaris 11 Kernel denial of service (EUVD-2022-41846)
Mitigating Attacks Before They Impact Infrastructure: Link11 provides next generation network DDoS protection
AI Inference Is Swallowing the Cloud
Threat Report: Nation-State Cyberattacks on Critical Infrastructure Since the War in Ukraine Began
CVE-2026-5450 | GNU C Library up to 2.43 malloc Character Match heap-based overflow (Nessus ID 308167 / WID-SEC-2026-1190)
CVE-2026-5928 | GNU C Library up to 2.43 Unicode Character libio/wgenops.c _IO_wdefault_pbackfail buffer under-read (Nessus ID 308161 / WID-SEC-2026-1190)
CVE-2026-9132 | GitHub Enterprise Server up to 3.17.16/3.18.10/3.19.7/3.20.3 authorization (WID-SEC-2026-2164)
CVE-2026-9106 | GitHub Enterprise Server up to 3.21.1 clickjacking (WID-SEC-2026-2164)
CVE-2026-5358 | GNU C Library up to 2.43 UDP nis_local_principal buffer overflow (Nessus ID 308170 / WID-SEC-2026-1190)
CVE-2026-10585 | GitHub Enterprise Server up to 3.17.16/3.18.10/3.19.7/3.20.3 REST API cross site scripting (WID-SEC-2026-2164)
CVE-2026-4430 | LibreOffice up to 25.8.6/26.2.2 OOXML salt out-of-bounds write (Nessus ID 313070 / WID-SEC-2026-1393)
Release Notes: In-Browser Data Inspection, Torq Integration, and 1,100+ Threat Coverage Updates
Phishing pages don’t sit still anymore. They redirect, load scripts, harvest credentials through dynamic forms, and rebuild their DOM after the initial load — and most URL analysis workflows still only see the finish line, not the race. This June, ANY.RUN closed that gap directly inside the Interactive Sandbox and extended its automation reach with […]
The post Release Notes: In-Browser Data Inspection, Torq Integration, and 1,100+ Threat Coverage Updates appeared first on ANY.RUN's Cybersecurity Blog.
2026 Cybersecurity Assessment: The Gap Between Awareness and Resilience
22nd June – Threat Intelligence Report
For the latest discoveries in cyber research for the week of 22nd June, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Texas Parks and Wildlife Department has been affected by a third-party data breach involving its license system vendor. The incident exposed driver’s license information, passport numbers, emails, phone numbers, and residential addresses for […]
The post 22nd June – Threat Intelligence Report appeared first on Check Point Research.