24h | 7d | 30d

CVE-2026-50751

Overview

  • checkpoint
  • Quantum Security Gateway
08 Jun 2026
Published
09 Jun 2026
Updated
CVSS
Pending
EPSS
17.69%
KEV

Description

A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.

Statistics

  • 25 Posts
  • 9 Interactions
Last activity: Last hour

Fediverse

Profile picture fallback
N_{Dario Fadda} @nuke

CVE-2026-50751: Check Point VPN 0-Day Actively Exploited to Deploy Qilin Ransomware
#CyberSecurity
securebulletin.com/cve-2026-50

  • 5
  • 0
  • 0
  • Last hour
Profile picture fallback
Günter Born @gborn

In Check Point Firewalls und Gateways gibt es zwei Schwachstellen, von denen eine angegriffen wird (Qilin). Es gibt aber Patches und Gegenmaßnahmen.

borncity.com/blog/2026/06/08/s

  • 1
  • 0
  • 0
  • 17h ago
Profile picture fallback
🔒 Security Cyber @securitycyber

🚨 [CRITICAL INFRASTRUCTURE ALERT]: CVE-2026-50751

• CVE ID: CVE-2026-50751
• CVSS Score: 9.3 (Critical)
• Affected: IKEv1 Setups

What it is:

securitycyber.uk

  • 0
  • 0
  • 0
  • 22h ago
Profile picture fallback
:mastodon: decio @decio

⚠️ Si vous gérez un firewall Check Point avec accès VPN pour vos utilisateurs, prenez quelques minutes pour vérifier la configuration.

Une faille critique, CVE-2026-50751, est exploitée activement. Elle concerne les VPN Check Point utilisant encore l’ancien protocole IKEv1. Dans certains cas, un attaquant peut se connecter au VPN sans mot de passe valide.

Selon l’advisory, les attaques ont commencé le 7 mai et ont augmenté début juin. L’acteur observé serait motivé financièrement et utiliserait Qilin ransomware.

Security Advisory – Action Required – Active Exploitation of Check Point VPN Authentication Bypass (CVE-2026-50751)
👇
blog.checkpoint.com/security/c

🩹
👇
blog.checkpoint.com/security/c

Rémediation :

• appliquer le hotfix Check Point ;
• désactiver les anciens clients / IKEv1 ;
• forcer IKEv2 ;
• imposer un certificat machine ;
• activer les signatures IPS à jour.

  • 0
  • 0
  • 0
  • 10h ago
Profile picture fallback
OffSequence @offseq

🚨 CRITICAL: CVE-2026-50751 is being actively exploited in Check Point VPNs. Auth bypass possible with IKEv1 & legacy client configs — Qilin ransomware involved. Patch now or mitigate: restrict to IKEv2, remove legacy clients, enforce certs. radar.offseq.com/threat/cisa-g

  • 0
  • 0
  • 0
  • 7h ago
Profile picture fallback
Jeff Hall - PCIGuru :verified: @jbhall56

Tracked as CVE-2026-50751 (CVSS score of 9.3), the security defect is described as a logic flow weakness in the validation process of Remote Access and Mobile Access certificates. securityweek.com/check-point-v

  • 0
  • 0
  • 1
  • 4h ago
Profile picture fallback
CyberNetsecIO @netsecio

📰 Qilin Ransomware Exploits Critical Check Point VPN Zero-Day, CISA Mandates Urgent Patch

🚨 CRITICAL: A Check Point VPN zero-day (CVE-2026-50751) is being actively exploited by Qilin ransomware affiliates to bypass authentication. CISA has added it to the KEV catalog. Patch immediately and disable IKEv1! #CyberSecurity #ZeroDay #Ransomware

🌐 cyber[.]netsecops[.]io

🔗 cyber.netsecops.io/articles/qi

  • 0
  • 0
  • 0
  • Last hour
Profile picture fallback
CyberNetsecIO @netsecio

📰 CISA Adds Actively Exploited LiteLLM and Check Point Flaws to KEV Catalog

📢 CISA adds two actively exploited flaws to its KEV list! A command injection in LiteLLM (CVE-2026-42271) and an auth bypass in Check Point VPNs (CVE-2026-50751). Federal agencies must patch now. All orgs should prioritize! #CyberSecurity #Vulnerabi...

🌐 cyber[.]netsecops[.]io

🔗 cyber.netsecops.io/articles/ci

  • 0
  • 0
  • 0
  • Last hour

Bluesky

Profile picture fallback
Information Security Briefly @infosecbriefly.bsky.social
CVE-2026-50751 in Check Point Remote Access VPN and Mobile Access was exploited by a Qilin affiliate to bypass authentication and create VPN sessions, now patched.
  • 1
  • 0
  • 0
  • 22h ago
Profile picture fallback
r/blueteamsec bot @r-blueteamsec.bsky.social
Security Advisory – Action Required – Active Exploitation of Check Point VPN Authentication Bypass (CVE-2026-50751)
  • 0
  • 1
  • 0
  • 9h ago
Profile picture fallback
Information Security Briefly @infosecbriefly.bsky.social
A critical VPN/firewall authentication bypass zero-day (CVE-2026-50751) is being exploited in the wild, enabling passwordless VPN sessions via IKEv1 logic flaws.
  • 0
  • 1
  • 0
  • 6h ago
Profile picture fallback
Bitnewsbot @bitnewsbot.bsky.social
Check Point warns of active exploitation of CVE-2026-50751, a critical VPN authentication bypass vulnerability. The flaw affects Remote Access VPN […]
  • 0
  • 0
  • 0
  • 23h ago
Profile picture fallback
Rapid7 @rapid7.com
🚨 On 6/8/26, #CheckPoint published a security advisory for a critical vuln. affecting its Remote Access VPN, Mobile Access, and Spark Firewall products. CVE-2026-50751 allows an unauth. attacker to establish a VPN session without providing valid credentials. More: r-7.co/4fyoJJc
  • 0
  • 0
  • 0
  • 23h ago
Profile picture fallback
Information Security Briefly @infosecbriefly.bsky.social
A critical authentication-bypass VPN flaw (CVE-2026-50751) was exploited starting May 7, prompting an emergency fix and revealing Qilin ransomware activity.
  • 0
  • 0
  • 0
  • 20h ago
Profile picture fallback
Undercode Testing @undercode.bsky.social
Check Point VPN Zero-Day (CVE-2026-50751): Hackers Bypass IKEv1 Passwords in Active Ransomware Campaign Introduction: The legacy IKEv1 key exchange protocol, still active in many enterprise remote-access VPNs, harbors a critical logic flow weakness. Tracked as CVE-2026-50751 with a near-maximum…
  • 0
  • 0
  • 0
  • 19h ago
Profile picture fallback
キタきつね @kitafox.bsky.social
Qilinランサムウェア関連組織がCheck Point VPNのゼロデイ脆弱性(CVE-2026-50751)を悪用 Qilin ransomware affiliate exploited Check Point VPN zero-day (CVE-2026-50751) #HelpNetSecurity (Jun 8) www.helpnetsecurity.com/2026/06/08/c...
  • 0
  • 0
  • 0
  • 16h ago
Profile picture fallback
CyberVeille @cyberveille-ch.bsky.social
📢 Exploitation active de CVE-2026-50751 : bypass d'authentification VPN Check Point lié à Qilin 📝 ## 🔍 Contexte Le 8 juin 2026, Check Po… https://cyberveille.ch/posts/2026-06-09-exploitation-active-de-cve-2026-50751-bypass-d-authentification-vpn-check-point-lie-a-qilin/ #CVE_2026_50751 #Cyberveille
  • 0
  • 0
  • 0
  • 6h ago
Profile picture fallback
NEWSTECNICAS | Tecnología , IA y Gaming @newstecnicas.com
🛡️ #Alerta Crítica: Explotación activa de CVE-2026-50751 en #VPNs de Check Point – Cómo mitigar el #RCE www.newstecnicas.com/2026/06/aler...
  • 0
  • 0
  • 0
  • 6h ago
Profile picture fallback
Cybersecurity News Everyday @hendryadrian.bsky.social
CISA gave federal agencies 3 days to patch Check Point VPNs after CVE-2026-50751 was exploited as a zero-day, letting attackers bypass auth in legacy IKEv1 setups linked to Qilin ransomware. #CheckPoint #Qilin #USA
  • 0
  • 0
  • 0
  • 5h ago
Profile picture fallback
Cybersecurity News Everyday @hendryadrian.bsky.social
Check Point says CVE-2026-50751 is actively exploited to bypass auth in deprecated IKEv1 VPN setups, affecting Remote Access and Mobile Access deployments. CVE-2026-50752 may enable AitM attacks. #CheckPoint #Qilin #VPN
  • 0
  • 0
  • 0
  • 17h ago
Profile picture fallback
キタきつね @kitafox.bsky.social
CISAが既知の悪用された脆弱性2件をカタログに追加 CISA Adds Two Known Exploited Vulnerabilities to Catalog #CISA (Jun 8) CVE-2026-42271 BerriAI LiteLLM コマンドインジェクションの脆弱性 CVE-2026-50751 Check Point Security Gatewayの認証エラーの脆弱性 www.cisa.gov/news-events/...
  • 0
  • 0
  • 0
  • 16h ago
Profile picture fallback
boredchilada @boredchilada.bsky.social
~Cisa~ CISA added CVE-2026-42271 (BerriAI LiteLLM) and CVE-2026-50751 (Check Point Security Gateway) to its KEV catalog due to active exploitation. - IOCs: CVE-2026-42271, CVE-2026-50751 - #CISA #KEV #ThreatIntel
  • 0
  • 0
  • 0
  • 12h ago
Profile picture fallback
Cybersecurity News Everyday @hendryadrian.bsky.social
Check Point disclosed CVE-2026-50751, a critical VPN auth bypass exploited as a zero-day since May 7. Related flaw CVE-2026-50752 also fixed; CISA added the issue to KEV. #CheckPoint #Qilin #KEV
  • 0
  • 0
  • 0
  • 5h ago
Profile picture fallback
boredchilada @boredchilada.bsky.social
~Cybergcca~ Active exploitation of Check Point VPN (CVE-2026-50751) and Google Chrome (CVE-2026-11645) vulnerabilities. - IOCs: CVE-2026-50751, CVE-2026-11645 - #CheckPoint #Chrome #threatintel
  • 0
  • 0
  • 0
  • 4h ago

CVE-2026-42271

Overview

  • BerriAI
  • litellm
08 May 2026
Published
09 Jun 2026
Updated
CVSS v4.0
HIGH (8.7)
EPSS
60.78%
KEV

Description

LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. From version 1.74.2 to before version 1.83.7, two endpoints used to preview an MCP server before saving it — POST /mcp-rest/test/connection and POST /mcp-rest/test/tools/list — accepted a full server configuration in the request body, including the command, args, and env fields used by the stdio transport. When called with a stdio configuration, the endpoints attempted to connect, which spawned the supplied command as a subprocess on the proxy host with the privileges of the proxy process. The endpoints were gated only by a valid proxy API key, with no role check. Any authenticated user — including holders of low-privilege internal-user keys — could therefore run arbitrary commands on the host. This issue has been patched in version 1.83.7.

Statistics

  • 12 Posts
  • 4 Interactions
Last activity: Last hour

Fediverse

Profile picture fallback
Neo @neo_agent

🚨 Kürzlich bei einem Projekt auf Exploits in LiteLLM gestoßen – dem beliebten Open-Source AI Gateway.

CVE-2026-42271 erlaubt logged-in Users Command Execution auf dem Server. Mit dem zweiten Bug sogar unauthentifiziert.

Falls ihr LiteLLM deployed: Sofort updaten oder den Zugang stark einschränken. Das ist kein Feature, sondern ein ernstes Problem. #Security #AI #DevOps #LiteLLM

  • 1
  • 0
  • 0
  • 9h ago
Profile picture fallback
Sam Stepanyan :verified: 🐘 @securestep9

command injection vulnerability CVE-2026-42271 that could allow any authenticated user to run arbitrary commands on the host, has been added to the CISA KEV catalog:
👇
thehackernews.com/2026/06/lite

  • 1
  • 0
  • 1
  • 5h ago
Profile picture fallback
🔒 Security Cyber @securitycyber

🚨 [CRITICAL INFRASTRUCTURE ALERT]: CVE-2026-42271

• CVE ID: CVE-2026-42271
• CVSS Score: 8.8 (High)
• Affected: Wild
• ⚠️ CISA KEV: Known Exploited Vulnerability — BerriAI LiteLLM (added 2026-06-08)

What it is:

securitycyber.uk

  • 0
  • 0
  • 0
  • 8h ago
Profile picture fallback
CyberNetsecIO @netsecio

📰 CISA Adds Actively Exploited LiteLLM and Check Point Flaws to KEV Catalog

📢 CISA adds two actively exploited flaws to its KEV list! A command injection in LiteLLM (CVE-2026-42271) and an auth bypass in Check Point VPNs (CVE-2026-50751). Federal agencies must patch now. All orgs should prioritize! #CyberSecurity #Vulnerabi...

🌐 cyber[.]netsecops[.]io

🔗 cyber.netsecops.io/articles/ci

  • 0
  • 0
  • 0
  • Last hour

Bluesky

Profile picture fallback
Help Net Security @helpnetsecurity.com
LiteLLM vulnerability under active attack, CISA warns (CVE-2026-42271) 📖 Read more: www.helpnetsecurity.com/2026/06/09/l... #cybersecurity #cybersecuritynews #AI #LLMs #opensource #proxy #vulnerability
  • 0
  • 2
  • 0
  • 4h ago
Profile picture fallback
Information Security Briefly @infosecbriefly.bsky.social
CISA added CVE-2026-42271 in LiteLLM to KEV due to active exploitation, where command injection lets authenticated users run arbitrary host commands.
  • 0
  • 0
  • 0
  • 9h ago
Profile picture fallback
Ninja Owl @ninjaowl.ai
LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE #cybersecurity #hacking #news #infosec #security #technology #privacy thehackernews.com/20...
  • 0
  • 0
  • 0
  • 9h ago
Profile picture fallback
Calimeg @calimegai.bsky.social
⚠️ La faille CVE-2026-42271 dans LiteLLM (#BerriAI) permet l'exécution de commandes à distance sans authentification. CISA confirme son exploitation active. #CyberSecurity #IA
  • 0
  • 0
  • 0
  • 9h ago
Profile picture fallback
Modat @modat-io.bsky.social
⚠️ CISA added CVE-2026-42271 to KEV: Command injection in LiteLLM gateway (1.74.2–1.83.7). MCP preview endpoints spawn attacker commands on the proxy host, gated only by an API key, so any authenticated user gets command execution. Patch to 1.83.7+. Query: product="LiteLLM API" OR product="LiteLLM"
  • 0
  • 0
  • 0
  • 1h ago
Profile picture fallback
キタきつね @kitafox.bsky.social
CISAが既知の悪用された脆弱性2件をカタログに追加 CISA Adds Two Known Exploited Vulnerabilities to Catalog #CISA (Jun 8) CVE-2026-42271 BerriAI LiteLLM コマンドインジェクションの脆弱性 CVE-2026-50751 Check Point Security Gatewayの認証エラーの脆弱性 www.cisa.gov/news-events/...
  • 0
  • 0
  • 0
  • 16h ago
Profile picture fallback
boredchilada @boredchilada.bsky.social
~Cisa~ CISA added CVE-2026-42271 (BerriAI LiteLLM) and CVE-2026-50751 (Check Point Security Gateway) to its KEV catalog due to active exploitation. - IOCs: CVE-2026-42271, CVE-2026-50751 - #CISA #KEV #ThreatIntel
  • 0
  • 0
  • 0
  • 12h ago

CVE-2026-11645

Overview

  • Google
  • Chrome
08 Jun 2026
Published
09 Jun 2026
Updated
CVSS
Pending
EPSS
0.08%
KEV

Description

Out of bounds read and write in V8 in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

Statistics

  • 15 Posts
  • 2 Interactions
Last activity: Last hour

Fediverse

Profile picture fallback
OffSequence @offseq

Google fixed a CRITICAL Chrome zero-day (CVE-2026-11645) — a V8 out-of-bounds read/write flaw allowing remote code execution within the sandbox. Actively exploited! Patch to Chrome 149 now. radar.offseq.com/threat/google

  • 0
  • 0
  • 0
  • 9h ago
Profile picture fallback
🔒 Security Cyber @securitycyber

🚨 [CRITICAL INFRASTRUCTURE ALERT]: CVE-2026-11645

• CVE ID: CVE-2026-11645
• CVSS Score: 8.8 (High)
• Affected: Wild

What it is:

securitycyber.uk

  • 0
  • 0
  • 0
  • 2h ago
Profile picture fallback
CyberNetsecIO @netsecio

📰 Google Patches Fifth Actively Exploited Chrome Zero-Day of 2026

⚠️ Google patches its FIFTH Chrome zero-day this year! CVE-2026-11645 is a high-severity V8 bug actively exploited in the wild. Update your browser to version 149.0.7827.103+ immediately! #CyberSecurity #ZeroDay #GoogleChrome #PatchNow

🌐 cyber[.]netsecops[.]io

🔗 cyber.netsecops.io/articles/go

  • 0
  • 0
  • 0
  • Last hour

Bluesky

Profile picture fallback
Cybersecurity News Everyday @hendryadrian.bsky.social
Google issues emergency Chrome update for CVE-2026-11645, an actively exploited V8 zero-day. The flaw enables code execution via crafted HTML pages. This is Chrome's fifth zero-day patch this year. #Chrome #V8 #CVE2026
  • 0
  • 1
  • 0
  • 8h ago
Profile picture fallback
Tech-News @technology-news.bsky.social
Google released security updates for 74 Chrome vulnerabilities, including CVE-2026-11645, a high-severity V8 out-of-bounds memory access flaw.
  • 0
  • 1
  • 0
  • 1h ago
Profile picture fallback
ohhara @shiojiri.com
"Google is aware that an exploit for CVE-2026-11645 exists in the wild."
  • 0
  • 0
  • 2
  • 14h ago
Profile picture fallback
Information Security Briefly @infosecbriefly.bsky.social
Chrome 149 patches 74 vulnerabilities, including exploited-in-the-wild zero-day CVE-2026-11645 in V8 that enables arbitrary code execution via crafted HTML.
  • 0
  • 0
  • 0
  • 10h ago
Profile picture fallback
Cybersecurity News Everyday @hendryadrian.bsky.social
Google Chrome 149 patches 74 flaws, including CVE-2026-11645, a zero-day in V8 actively exploited via crafted HTML to run code in a sandbox. Fifth Chrome zero-day exploited in 2026. #Chrome149 #CVE202611645 #V8
  • 0
  • 0
  • 0
  • 5h ago
Profile picture fallback
Help Net Security @helpnetsecurity.com
Google patches Chrome zero-day exploited in the wild (CVE-2026-11645) 🔗 Read more: www.helpnetsecurity.com/2026/06/09/g... #Google #vulnerability #cybersecurity
  • 0
  • 0
  • 1
  • 5h ago
Profile picture fallback
Information Security Briefly @infosecbriefly.bsky.social
Google patched CVE-2026-11645, an actively exploited V8 out-of-bounds bug, and paid a $55,000 bounty to its reporter.
  • 0
  • 0
  • 0
  • 4h ago
Profile picture fallback
Ninja Owl @ninjaowl.ai
Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild - Patch Now #cybersecurity #hacking #news #infosec #security #technology #privacy thehackernews.com/20...
  • 0
  • 0
  • 0
  • Last hour
Profile picture fallback
boredchilada @boredchilada.bsky.social
~Cybergcca~ Active exploitation of Check Point VPN (CVE-2026-50751) and Google Chrome (CVE-2026-11645) vulnerabilities. - IOCs: CVE-2026-50751, CVE-2026-11645 - #CheckPoint #Chrome #threatintel
  • 0
  • 0
  • 0
  • 4h ago

CVE-2026-23111

Overview

  • Linux
  • Linux
13 Feb 2026
Published
02 Jun 2026
Updated
CVSS v3.1
HIGH (7.8)
EPSS
0.01%
KEV

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix inverted genmask check in nft_map_catchall_activate() nft_map_catchall_activate() has an inverted element activity check compared to its non-catchall counterpart nft_mapelem_activate() and compared to what is logically required. nft_map_catchall_activate() is called from the abort path to re-activate catchall map elements that were deactivated during a failed transaction. It should skip elements that are already active (they don't need re-activation) and process elements that are inactive (they need to be restored). Instead, the current code does the opposite: it skips inactive elements and processes active ones. Compare the non-catchall activate callback, which is correct: nft_mapelem_activate(): if (nft_set_elem_active(ext, iter->genmask)) return 0; /* skip active, process inactive */ With the buggy catchall version: nft_map_catchall_activate(): if (!nft_set_elem_active(ext, genmask)) continue; /* skip inactive, process active */ The consequence is that when a DELSET operation is aborted, nft_setelem_data_activate() is never called for the catchall element. For NFT_GOTO verdict elements, this means nft_data_hold() is never called to restore the chain->use reference count. Each abort cycle permanently decrements chain->use. Once chain->use reaches zero, DELCHAIN succeeds and frees the chain while catchall verdict elements still reference it, resulting in a use-after-free. This is exploitable for local privilege escalation from an unprivileged user via user namespaces + nftables on distributions that enable CONFIG_USER_NS and CONFIG_NF_TABLES. Fix by removing the negation so the check matches nft_mapelem_activate(): skip active elements, process inactive ones.

Statistics

  • 7 Posts
  • 5 Interactions
Last activity: Last hour

Fediverse

Profile picture fallback
N_{Dario Fadda} @nuke

CVE-2026-23111: Linux Kernel nftables Use-After-Free Enables Root Privilege Escalation — Public Exploit Available
#CyberSecurity
securebulletin.com/cve-2026-23

  • 5
  • 0
  • 0
  • Last hour
Profile picture fallback
DragonJAR @dragonjar

En las últimas 24 horas, se han descubierto vulnerabilidades críticas que permiten acceso root sin autenticación en UniFi OS y escalada local en el kernel de Linux, un zero-day en Check Point VPN bajo plazo urgente de patch y otro en Chrome explotado en campo; además, un hackeo a repositorios Microsoft expone contraseñas de desarrolladores AI, mientras sqlmap resalta como herramienta clave para detectar inyecciones SQL. Descubre estos y más detalles en el siguiente listado de noticias sobre seguridad informática:

🗞️ ÚLTIMAS NOTICIAS EN SEGURIDAD INFORMÁTICA 🔒
====| 🔥 LO QUE DEBES SABER HOY 09/06/26 📆 |====

🔓 FALLO EN EL KERNEL DE LINUX PERMITE ACCESO ROOT LOCAL

La vulnerabilidad CVE-2026-23111 afecta al kernel de Linux, posibilitando a usuarios locales sin privilegios escalar a root y escapar de contenedores, comprometiendo la seguridad de sistemas críticos y entornos aislados. Es fundamental actualizar y aplicar parches para mitigar este riesgo. Profundiza en los detalles y medidas de mitigación aquí 👉 djar.co/6SjXce

⚠️ VULNERABILIDAD CRÍTICA EN UNIFI OS PERMITE ROOT SIN AUTENTICACIÓN

Investigadores han detectado una falla grave en UniFi OS de Ubiquiti que permite a atacantes ejecutar código remoto con privilegios de root sin necesidad de autenticarse, incluso en versiones que ya habían recibido correcciones. Esto abre la puerta a compromisos severos en redes gestionadas con esta plataforma. Conoce cómo proteger tu infraestructura 👉 djar.co/pm8QUK

🛠️ SQLMAP: HERRAMIENTA AUTOMATIZADA PARA INYECCIÓN SQL Y CONTROL DE BASES DE DATOS

sqlmap es una potente herramienta de código abierto que facilita la detección y explotación de fallas de inyección SQL, permitiendo a los expertos en seguridad evaluar la robustez de bases de datos y prevenir ataques que podrían comprometer datos sensibles. Aprende a usar sqlmap para fortalecer la seguridad de tus sistemas 👉 djar.co/OHrke9

🚨 CISA ORDENA PATCH URGENTE PARA VULNERABILIDAD CRÍTICA EN CHECK POINT VPN

La Agencia de Seguridad Cibernética de EE. UU. ha dado un plazo de solo tres días a agencias federales para parchear una vulnerabilidad zero-day en dispositivos VPN de Check Point, explotada por grupos vinculados al ransomware Qilin. Esta amenaza afecta la confidencialidad y continuidad operativa en entornos gubernamentales. Revisa la alerta completa y pasos recomendados 👉 djar.co/RhMk

🌐 GOOGLE ACTUALIZA CHROME PARA CORREGIR ZERO-DAY EXPLOTADO EN EL CAMPO

Google ha lanzado parches de emergencia para cerrar una vulnerabilidad zero-day en el navegador Chrome, la quinta detectada en lo que va del año. Esta falla ha sido utilizada en ataques reales, poniendo en riesgo la navegación segura y los datos de millones de usuarios. Actualiza tu navegador cuanto antes para protegerte. Más información y descarga 👉 djar.co/N0cg6H

🔐 REPOSITORIOS DE MICROSOFT EN GITHUB HACKED PARA ROBAR CONTRASEÑAS DE DESARROLLADORES AI

Una brecha en herramientas de código abierto de Microsoft relacionadas con Azure y proyectos de inteligencia artificial permitió a hackers comprometer las contraseñas de desarrolladores clave. La empresa clausuró varios repositorios para contener el incidente, que evidencia la necesidad de reforzar la seguridad en entornos colaborativos de desarrollo. Descubre el alcance y recomendaciones 👉 djar.co/iQsVr

  • 0
  • 0
  • 0
  • 5h ago

Bluesky

Profile picture fallback
Information Security Briefly @infosecbriefly.bsky.social
CVE-2026-23111 enables unprivileged local users to escalate to root and escape containers via a Linux nf_tables use-after-free.
  • 0
  • 0
  • 0
  • 19h ago
Profile picture fallback
Bitnewsbot @bitnewsbot.bsky.social
A critical Linux kernel vulnerability (CVE-2026-23111) allows local attackers to gain root access and break out of containers. The flaw […]
  • 0
  • 0
  • 0
  • 18h ago
Profile picture fallback
Cybersecurity News Everyday @hendryadrian.bsky.social
CVE-2026-23111, a Linux kernel nf_tables use-after-free, now has a public exploit that can let a local user gain root and escape containers. #CVE202623111 #LinuxKernel #nf_tables
  • 0
  • 0
  • 0
  • 17h ago
Profile picture fallback
Eyal Estrin ☁️ @eyalestrin.bsky.social
Linux Kernel Vulnerability CVE-2026-23111 Analysis and Public Exploits #patchmanagement
  • 0
  • 0
  • 0
  • 10h ago
Profile picture fallback
CyberVeille @cyberveille-ch.bsky.social
📢 CVE-2026-23111 : Use-after-free dans nftables du noyau Linux exploité en LPE 📝 📅 **Source** : Blog Exodus Intelligence, publié le 8 juin 2026. https://cyberveille.ch/posts/2026-06-09-cve-2026-23111-use-after-free-dans-nftables-du-noyau-linux-exploite-en-lpe/ #CVE_2026_23111 #Cyberveille
  • 0
  • 0
  • 0
  • 6h ago

CVE-2025-8088

Overview

  • win.rar GmbH
  • WinRAR
08 Aug 2025
Published
26 Feb 2026
Updated
CVSS v4.0
HIGH (8.4)
EPSS
11.60%
KEV

Description

A path traversal vulnerability affecting the Windows version of WinRAR allows the attackers to execute arbitrary code by crafting malicious archive files. This vulnerability was exploited in the wild and was discovered by Anton Cherepanov, Peter Košinár, and Peter Strýček from ESET.

Statistics

  • 5 Posts
Last activity: 3 hours ago

Bluesky

Profile picture fallback
boredchilada @boredchilada.bsky.social
~Trendmicro~ Threat actors SHADOW-EARTH-066 and Earth Dahu are exploiting WinRAR flaw CVE-2025-8088 to target Ukraine with GIFTEDCROOK stealer and espionage tools. - IOCs: 166[. ]0[. ]132[. ]237, 136[. ]0[. ]141[. ]41, 136[. ]0[. ]141[. ]138 - ...
  • 0
  • 0
  • 0
  • 20h ago
Profile picture fallback
Undercode Testing @undercode.bsky.social
CVE-2025-8088: The WinRAR Path Traversal That Won’t Die – APT Groups Still Weaponizing After 1 Year + Video Introduction: Nearly a year after WinRAR patched CVE-2025-8088, Russia-aligned intrusion sets including SHADOW-EARTH-066 (UAC-0226) and Earth Dahu (Gamaredon) continue to weaponize the path…
  • 0
  • 0
  • 0
  • 19h ago
Profile picture fallback
r/blueteamsec bot @r-blueteamsec.bsky.social
Old WinRAR Flaw Fuels Attacks on Ukraine: Two separate Russia-aligned campaigns are still exploiting the WinRAR flaw CVE-2025-8088 against Ukrainian organizations nearly a year after it was patched,
  • 0
  • 0
  • 0
  • 12h ago
Profile picture fallback
Virus Bulletin @virusbtn.bsky.social
Trend Micro researchers Hiroyuki Kakara & Feike Hacquebord examine two separate campaigns that exploit WinRAR CVE-2025-8088 against Ukrainian targets. SHADOW-EARTH-066 & Earth Dahu (Gamaredon) use different tooling & infrastructure, but share the same entry point. www.trendmicro.com/en_us/resear...
  • 0
  • 0
  • 0
  • 7h ago
Profile picture fallback
Bitnewsbot @bitnewsbot.bsky.social
Two Russian-aligned hacking groups continue to exploit a patched WinRAR vulnerability to target Ukrainian organizations. The flaw, CVE-2025-8088, allows attackers […]
  • 0
  • 0
  • 0
  • 3h ago

CVE-2026-28318

Overview

  • SolarWinds
  • Serv-U
04 Jun 2026
Published
06 Jun 2026
Updated
CVSS v3.1
HIGH (7.5)
EPSS
6.68%
KEV

Description

SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U service without authentication using Content-Encoding: deflate. Mitigation steps are provided to secure customer environments in the SolarWinds Trust Center if you are unable to deploy the update

Statistics

  • 3 Posts
  • 5 Interactions
Last activity: 6 hours ago

Fediverse

Profile picture fallback
N_{Dario Fadda} @nuke

CISA Warns: SolarWinds Serv-U CVE-2026-28318 Actively Exploited — Zero-Auth DoS Attack Hits File Transfer Platform
#CyberSecurity
securebulletin.com/cisa-warns-

  • 5
  • 0
  • 0
  • 20h ago

Bluesky

Profile picture fallback
キタきつね @kitafox.bsky.social
CISA:パッチによりSolarWinds Serv-UのDoS脆弱性(CVE-2026-28318)が悪用されました CISA: Patch actively exploited SolarWinds Serv-U DoS vulnerability (CVE-2026-28318) #HelpNetSecurity (Jun 8) www.helpnetsecurity.com/2026/06/08/c...
  • 0
  • 0
  • 0
  • 16h ago
Profile picture fallback
CyberVeille @cyberveille-ch.bsky.social
📢 CVE-2026-28318 : vulnérabilité DoS dans SolarWinds Serv-U exploitée activement 📝 ## 🗓️ Contexte Source : SecurityWeek, publié le 8 juin 2026. https://cyberveille.ch/posts/2026-06-09-cve-2026-28318-vulnerabilite-dos-dans-solarwinds-serv-u-exploitee-activement/ #CISA_KEV #Cyberveille
  • 0
  • 0
  • 0
  • 6h ago

CVE-2026-49975

Overview

  • Apache Software Foundation
  • Apache HTTP Server
08 Jun 2026
Published
09 Jun 2026
Updated
CVSS
Pending
EPSS
0.02%
KEV

Description

Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http leads to denial of service via malicious HTTP requests. This issue affects Apache HTTP Server: from 2.4.17 through 2.4.67.

Statistics

  • 3 Posts
  • 13 Interactions
Last activity: Last hour

Fediverse

Profile picture fallback
Rolle Laukkarinen @rolle

Today, a regression caused dozens of web services to crash with a segfault because of Ubuntu.

"USN-8398-1 fixed a vulnerability in nginx. The update introduced a regression causing nginx to crash when being used with external modules.
This update reverts the fix for CVE-2026-49975 pending further investigation.

We apologize for the inconvenience."
ubuntu.com/security/notices/US

#Linux #SysOps #Servers #SysAdmin

  • 7
  • 5
  • 0
  • Last hour

Bluesky

Profile picture fallback
セキュリティ対策Lab @securitylab-jp.bsky.social
OpenAI Codexが「HTTP/2爆弾」を発見-1台のPCからDOS攻撃が可能に(CVE-2026-49975) rocket-boys.co.jp/security-mea... #セキュリティ対策Lab #security #securitynews #cyberattack
  • 0
  • 1
  • 0
  • 17h ago
Profile picture fallback
OMO @omo.bsky.social
SIOSセキュリティブログを更新しました。 Apacheの脆弱性(Moderate: CVE-2026-34355, CVE-2026-42535, CVE-2026-43951, CVE-2026-44119, CVE-2026-44186, CVE-2026-49975, Low:複数)と2.4.68リリース #sios_tech #security #vulnerability #セキュリティ #脆弱性 #apache security.sios.jp/vulnerabilit...
  • 0
  • 0
  • 0
  • 5h ago

CVE-2026-45447

Overview

  • OpenSSL
  • OpenSSL
09 Jun 2026
Published
09 Jun 2026
Updated
CVSS
Pending
EPSS
Pending
KEV

Description

Issue summary: A specially crafted PKCS#7 or S/MIME signed message could trigger a use-after-free during PKCS#7 signature verification. Impact summary: A use-after-free may result in process crashes, heap corruption, or potentially remote code execution. When processing a PKCS#7 or S/MIME signed message, if the SignedData digestAlgorithms field is present as an empty ASN.1 SET, OpenSSL may incorrectly free a caller-owned BIO during PKCS7_verify(). A subsequent use of the BIO by the calling application results in a use-after-free condition. In the common case this occurs when the application later calls BIO_free() on the BIO originally passed to PKCS7_verify(). Depending on allocator behavior and application-specific BIO usage patterns, this may result in a crash or other memory corruption. In some application contexts this may potentially be exploitable for remote code execution. Applications that process PKCS#7 or S/MIME signed messages using OpenSSL PKCS#7 APIs may be affected. Applications using the CMS APIs for this processing are not affected. The FIPS modules in 4.0, 3.6, 3.5, 3.4, and 3.0 are not affected by this issue, as the affected code is outside the OpenSSL FIPS module boundary.

Statistics

  • 3 Posts
  • 10 Interactions
Last activity: 1 hour ago

Fediverse

Profile picture fallback
Xe :verified: @cadey

"No way to prevent this" say users of only language where this regularly happens

xeiaso.net/shitposts/no-way-to

  • 2
  • 8
  • 1
  • 2h ago

Bluesky

Profile picture fallback
some-rss-feeds.bsky.social @some-rss-feeds.bsky.social
[some-subscribed-rss] New Post: "No way to prevent this" say users of only language where this regularly happens, by https://xeiaso.net/shitposts/no-way-to-prevent-this/memory-safety/CVE-2026-45447/
  • 0
  • 0
  • 0
  • 1h ago

CVE-2026-23687

Overview

  • SAP_SE
  • SAP NetWeaver AS ABAP and ABAP Platform
10 Feb 2026
Published
09 Jun 2026
Updated
CVSS v3.1
HIGH (8.8)
EPSS
0.02%
KEV

Description

SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated attacker with normal privileges to obtain a valid signed message and send modified signed XML documents to the verifier. This may result in acceptance of tampered identity information, unauthorized access to sensitive user data and potential disruption of normal system usage.

Statistics

  • 2 Posts
  • 1 Interaction
Last activity: 9 hours ago

Fediverse

Profile picture fallback
buherator @buherator
SAP NetWeaver SAML XML Signature Wrapping

https://seclists.org/fulldisclosure/2026/Jun/1

CVE-2026-23687
  • 0
  • 0
  • 0
  • 9h ago

Bluesky

Profile picture fallback
buherator @buherator.bsky.social
SAP NetWeaver SAML XML Signature Wrapping seclists.org -> CVE-2026-23687 Original->
  • 1
  • 0
  • 0
  • 9h ago

CVE-2026-27671

Overview

  • SAP_SE
  • SAP NetWeaver AS ABAP and ABAP Platform
09 Jun 2026
Published
09 Jun 2026
Updated
CVSS v3.1
CRITICAL (9.8)
EPSS
0.04%
KEV

Description

Due to improper RFC protocol validation in the SAP Kernel used by the Application Server ABAP of SAP NetWeaver and ABAP Platform, an unauthenticated attacker can send a crafted RFC request that exploits logical errors in memory management, leading to memory corruption. This could lead to a high impact on the confidentiality, integrity, and availability of the application.

Statistics

  • 2 Posts
Last activity: 2 hours ago

Fediverse

Profile picture fallback
OffSequence @offseq

🚨 CRITICAL: CVE-2026-27671 affects SAP NetWeaver & ABAP Platform (multiple versions). Stack-based buffer overflow via RFC, unauthenticated remote exploitation. No patch yet — restrict RFC access & monitor advisories. radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 0
  • 12h ago
Profile picture fallback
Hugo | DevOps | Cybersecurity @hugovalters

CVE-2026-27671 - Critical memory corruption in SAP NetWeaver/ABAP Platform via crafted RFC request. Unauthenticated RCE risk. CVSS 9.8. No patch yet. Isolate affected systems immediately. #CVE #SAP #infosec

valtersit.com/cve/CVE-2026-276

  • 0
  • 0
  • 0
  • 2h ago
Showing 1 to 10 of 87 CVEs