24h | 7d | 30d

CVE-2026-21385

Overview

  • Qualcomm, Inc.
  • Snapdragon
02 Mar 2026
Published
04 Mar 2026
Updated
CVSS v3.1
HIGH (7.8)
EPSS
0.65%
KEV

Description

Memory corruption while using alignments for memory allocation.

Statistics

  • 9 Posts
  • 2 Interactions
Last activity: 5 hours ago

Fediverse

Profile picture fallback
Osma A 🇫🇮🇺🇦 @osma

Google notifying Android user of high-severity vuln CVE-2026-21385 and March 2026 security update might work better if that link the "AI Mode" #slopgenerator did not link to December 2025 bulletin.

  • 0
  • 2
  • 0
  • 6h ago
Profile picture fallback
Jeff Hall - PCIGuru :verified: @jbhall56

The exploitation activity against CVE-2026-21385, a high-severity memory corruption flaw, could be tied to commercial spyware or nation-state threat groups. darkreading.com/threat-intelli

  • 0
  • 0
  • 1
  • 7h ago
Profile picture fallback
Zhuowei Zhang @zhuowei

Project Zero’s “0-day in the Wild” spreadsheet just added CVE-2026-21385, an issue in the Qualcomm graphics driver: https://docs.qualcomm.com/securitybulletin/march-2026-bulletin.html#_cve-2026-21385

  • 0
  • 0
  • 0
  • 5h ago

Bluesky

Profile picture fallback
Packet Storm News @packetstorm.bsky.social
Google Confirms CVE-2026-21385 in Qualcomm Android Component Exploited https://packetstorm.news/news/view/40625 #news
  • 0
  • 0
  • 0
  • 21h ago
Profile picture fallback
Calimeg @calimegai.bsky.social
Google confirme la faille CVE-2026-21385 dans un composant Android Qualcomm, exploitée en conditions réelles. Problème de dépassement mémoire (score 7.8) lié au Graphics. #Qualcomm #CyberSecurity #Android 📱
  • 0
  • 0
  • 0
  • 13h ago
Profile picture fallback
CyberHub @cyberhub.blog
📌 CVE-2026-21385 - Memory corruption while using alignments for memory allocation. https://www.cyberhub.blog/cves/CVE-2026-21385
  • 0
  • 0
  • 0
  • 6h ago
Profile picture fallback
Sami Laiho @samilaiho.com
Google Confirms CVE-2026-21385 in Qualcomm Android Component Exploited thehackernews.com/2026/03/goog...
  • 0
  • 0
  • 0
  • 6h ago
Profile picture fallback
キタきつね @kitafox.bsky.social
CISAが2つの既知の脆弱性をカタログに追加 CISA Adds Two Known Exploited Vulnerabilities to Catalog #CISA (Mar 3) CVE-2026-21385 Qualcomm の複数のチップセットにおけるメモリ破損の脆弱性 CVE-2026-22719 Broadcom VMware Aria Operations コマンドインジェクション脆弱性 www.cisa.gov/news-events/...
  • 0
  • 0
  • 0
  • 17h ago

CVE-2026-22719

Overview

  • VMware
  • Aria Operations
  • vmware-aria-operations
25 Feb 2026
Published
04 Mar 2026
Updated
CVSS v3.1
HIGH (8.1)
EPSS
10.76%
KEV

Description

VMware Aria Operations contains a command injection vulnerability. A malicious unauthenticated actor may exploit this issue to execute arbitrary commands which may lead to remote code execution in VMware Aria Operations while support-assisted product migration is in progress.  To remediate CVE-2026-22719, apply the patches listed in the 'Fixed Version' column of the ' Response Matrix https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947 ' in VMSA-2026-0001  Workarounds for CVE-2026-22719 are documented in the 'Workarounds' column of the ' Response Matrix https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947 ' in VMSA-2026-0001

Statistics

  • 11 Posts
  • 5 Interactions
Last activity: 4 hours ago

Fediverse

Profile picture fallback
Jeff Hall - PCIGuru :verified: @jbhall56

The recently patched CVE-2026-22719 can be exploited by an unauthenticated attacker for remote code execution. securityweek.com/vmware-aria-o

  • 0
  • 0
  • 1
  • 7h ago

Bluesky

Profile picture fallback
BleepingComputer @bleepingcomputer.com
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a VMware Aria Operations vulnerability tracked as CVE-2026-22719 to its Known Exploited Vulnerabilities catalog, flagging the flaw as exploited in attacks.
  • 0
  • 5
  • 0
  • 20h ago
Profile picture fallback
Information Security Briefly @infosecbriefly.bsky.social
CISA added CVE-2026-22719, a high-severity command injection vulnerability in Broadcom VMware Aria Operations, to its Known Exploited Vulnerabilities catalog due to active exploitation in the wild.
  • 0
  • 0
  • 2
  • 14h ago
Profile picture fallback
Ninja Owl @ninjaowl.ai
CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV Catalog #cybersecurity #hacking #news #infosec #security #technology #privacy thehackernews.com/20...
  • 0
  • 0
  • 0
  • 14h ago
Profile picture fallback
BaseFortify.eu @basefortify.bsky.social
🛡️ How can you know if you're exposed? BaseFortify maps your installed software to known vulnerabilities like CVE-2026-22719 and provides attack scenarios, mitigation guidance, plus a security Q&A and AI assistant. Explore the platform 👇 basefortify.eu #CyberSecurity #VulnerabilityManagement
  • 0
  • 0
  • 0
  • 6h ago
Profile picture fallback
BaseFortify.eu @basefortify.bsky.social
🔍 Details: CVE-2026-22719 is a command injection flaw Attackers can execute arbitrary commands in VMware Aria Operations during support-assisted migrations, potentially leading to remote code execution & infrastructure access. ⚠️ Patch to 8.18.6 or 9.0.2. #CyberDefense #VMwareSecurity #Infosec
  • 0
  • 0
  • 0
  • 6h ago
Profile picture fallback
CyberHub @cyberhub.blog
📌 CVE-2026-22719 - VMware Aria Operations contains a command injection vulnerability. A malicious unauthenticated actor may exploit this issue to execute arbitrary comma... https://www.cyberhub.blog/cves/CVE-2026-22719
  • 0
  • 0
  • 0
  • 4h ago
Profile picture fallback
キタきつね @kitafox.bsky.social
CISAが2つの既知の脆弱性をカタログに追加 CISA Adds Two Known Exploited Vulnerabilities to Catalog #CISA (Mar 3) CVE-2026-21385 Qualcomm の複数のチップセットにおけるメモリ破損の脆弱性 CVE-2026-22719 Broadcom VMware Aria Operations コマンドインジェクション脆弱性 www.cisa.gov/news-events/...
  • 0
  • 0
  • 0
  • 17h ago

CVE-2024-30085

Overview

  • Microsoft
  • Windows 11 version 21H2
11 Jun 2024
Published
17 Dec 2025
Updated
CVSS v3.1
HIGH (7.8)
EPSS
52.31%
KEV

Description

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

Statistics

  • 2 Posts
  • 5 Interactions
Last activity: 2 hours ago

Fediverse

Profile picture fallback
Alexandre Borges @alexandreborges

Exploiting Reversing (ER) series: article 07 | Exploitation Techniques | CVE-2024-30085 (part 01)

I am excited to release the seventh article in the Exploiting Reversing Series (ERS). Titled “Exploitation Techniques | CVE-2024-30085 (part 01)” this 119-page technical guide offers a comprehensive roadmap for vulnerability exploitation:

exploitreversing.com/2026/03/0

Key features of this edition:

[+] Dual Exploit Strategies: Two distinct exploit versions using Token Stealing and I/O Ring techniques.
[+] Exploit ALPC + PreviousMode Flip + Token Stealing: elevation of privilege of a regular user to SYSTEM.
[+] Exploit ALPC + Pipes + I/O Ring: elevation of privilege of a regular user to SYSTEM.
[+] Solid Reliability: Two complete working and stable exploits, including an improved cleanup stage.
[+] Optimized Exploit Logic: Significant refinements to the codebase and technical execution for better stability and predictability.

The article guides you through the two distinct techniques for exploiting the CVE-2024-30085 Heap Buffer Overflow vulnerability.

I hope this serves as a definitive resource for your research. If you find it helpful, please feel free to share it or reach out with your feedback!

Enjoy your reading and have an excellent day.

  • 2
  • 1
  • 0
  • 2h ago

Bluesky

Profile picture fallback
Alexandre Borges @alexandreborges.bsky.social
Exploiting Reversing (ER) series: article 07 | Exploitation Techniques | CVE-2024-30085 (part 01) exploitreversing.com/2026/03/04/e... Enjoy your reading and have an excellent day. #exploit #vulnerability #cve #exploitation #infosec #informationsecurity #windows
  • 1
  • 1
  • 0
  • 2h ago

CVE-2026-3485

Overview

  • D-Link
  • DIR-868L
03 Mar 2026
Published
03 Mar 2026
Updated
CVSS v4.0
CRITICAL (9.3)
EPSS
0.08%
KEV

Description

A flaw has been found in D-Link DIR-868L 110b03. This affects the function sub_1BF84 of the component SSDP Service. This manipulation of the argument ST causes os command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

Statistics

  • 2 Posts
Last activity: 5 hours ago

Fediverse

Profile picture fallback
Offensive Sequence @offseq

⚠️ CRITICAL: CVE-2026-3485 enables remote OS command injection in D-Link DIR-868L (110b03) via SSDP (UPnP). Exploit is public, no patch. Replace or isolate device ASAP — block SSDP, monitor traffic. radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 0
  • 19h ago

Bluesky

Profile picture fallback
CyberHub @cyberhub.blog
📌 CVE-2026-3485 - A flaw has been found in D-Link DIR-868L 110b03. This affects the function sub_1BF84 of the component SSDP Service. This manipulation of the argument ... https://www.cyberhub.blog/cves/CVE-2026-3485
  • 0
  • 0
  • 0
  • 5h ago

CVE-2026-20079

Overview

  • Cisco
  • Cisco Secure Firewall Management Center (FMC)
04 Mar 2026
Published
04 Mar 2026
Updated
CVSS v3.1
CRITICAL (10.0)
EPSS
Pending
KEV

Description

A vulnerability in the web interface of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to bypass authentication and execute script files on an affected device to obtain root access to the underlying operating system. This vulnerability is due to an improper system process that is created at boot time. An attacker could exploit this vulnerability by sending crafted HTTP requests to an affected device. A successful exploit could allow the attacker to execute a variety of scripts and commands that allow root access to the device.

Statistics

  • 2 Posts
  • 7 Interactions
Last activity: 2 hours ago

Fediverse

Profile picture fallback
Taggart @mttaggart

2 perfect 10s from Cisco today! First up, CVE-2026-20079, auth bypass in Cisco Secure Firewall Management, by way of a...rogue process launched at boot?

sec.cloudapps.cisco.com/securi

  • 2
  • 5
  • 1
  • 2h ago

CVE-2026-20131

Overview

  • Cisco
  • Cisco Secure Firewall Management Center (FMC)
04 Mar 2026
Published
04 Mar 2026
Updated
CVSS v3.1
CRITICAL (10.0)
EPSS
Pending
KEV

Description

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to execute arbitrary Java code as root on an affected device. This vulnerability is due to insecure deserialization of a user-supplied Java byte stream. An attacker could exploit this vulnerability by sending a crafted serialized Java object to the web-based management interface of an affected device. A successful exploit could allow the attacker to execute arbitrary code on the device and elevate privileges to root. Note: If the FMC management interface does not have public internet access, the attack surface that is associated with this vulnerability is reduced.

Statistics

  • 2 Posts
  • 6 Interactions
Last activity: 2 hours ago

Fediverse

Profile picture fallback
Taggart @mttaggart

Second is CVE-2026-20131: remote code execution in the same product by way of, aww yiss, Java deserialization.

sec.cloudapps.cisco.com/securi

  • 2
  • 4
  • 1
  • 2h ago

CVE-2022-1040

Overview

  • Sophos
  • Sophos Firewall
25 Mar 2022
Published
21 Oct 2025
Updated
CVSS v3.1
CRITICAL (9.8)
EPSS
97.46%
KEV

Description

An authentication bypass vulnerability in the User Portal and Webadmin allows a remote attacker to execute code in Sophos Firewall version v18.5 MR3 and older.

Statistics

  • 1 Post
  • 3 Interactions
Last activity: Last hour

Fediverse

Profile picture fallback
GreyNoise @greynoise

Here's a taste of what GreyNoise customers got in this week's At The Edge intelligence brief.

268M sessions. 540K unique IPs. Four findings that matter.

→ Sophos CVE-2022-1040 surged 435% — second consecutive week
→ 9.1M RDP sessions from two IPs, one JA4T fingerprint
→ VPN siege Week 6 — vendors rotating after our published analysis
→ Scanning landscape collapsed. Enterprise campaigns didn't.

Full brief: IOCs, attribution, recommendations.

🔗 greynoise.io/resources/at-the-

greynoise.io/contact

  • 1
  • 2
  • 0
  • Last hour

CVE-2025-55315

Overview

  • Microsoft
  • ASP.NET Core 2.3
14 Oct 2025
Published
22 Feb 2026
Updated
CVSS v3.1
CRITICAL (9.9)
EPSS
0.36%
KEV

Description

Inconsistent interpretation of http requests ('http request/response smuggling') in ASP.NET Core allows an authorized attacker to bypass a security feature over a network.

Statistics

  • 1 Post
  • 2 Interactions
Last activity: 11 hours ago

Fediverse

Profile picture fallback
CERT@VDE @certvde

VDE-2026-001
METTLER TOLEDO: ASP.NET core vulnerability in LabX

LabX 21.2.12 (formerly known as LabX Cloud 1.2.12) is affected by the ASP.NET core vulnerability CVE-2025-55315.
CVE-2025-55315

certvde.com/en/advisories/vde-

mettler-toledo.csaf-tp.certvde

  • 1
  • 1
  • 0
  • 11h ago

CVE-2026-27971

Overview

  • QwikDev
  • qwik
03 Mar 2026
Published
04 Mar 2026
Updated
CVSS v4.0
CRITICAL (9.2)
EPSS
0.06%
KEV

Description

Qwik is a performance focused javascript framework. qwik <=1.19.0 is vulnerable to RCE due to an unsafe deserialization vulnerability in the server$ RPC mechanism that allows any unauthenticated user to execute arbitrary code on the server with a single HTTP request. Affects any deployment where require() is available at runtime. This vulnerability is fixed in 1.19.1.

Statistics

  • 1 Post
  • 1 Interaction
Last activity: 16 hours ago

Fediverse

Profile picture fallback
Offensive Sequence @offseq

⚠️ CVE-2026-27971: QwikDev qwik <1.19.1 has a CRITICAL RCE flaw via unsafe deserialization in server-side RPC. No auth needed — patch to 1.19.1+ now! Exploits are trivial if require() is exposed. radar.offseq.com/threat/cve-20

  • 0
  • 1
  • 0
  • 16h ago

CVE-2025-38617

Overview

  • Linux
  • Linux
22 Aug 2025
Published
03 Nov 2025
Updated
CVSS
Pending
EPSS
0.00%
KEV

Description

In the Linux kernel, the following vulnerability has been resolved: net/packet: fix a race in packet_set_ring() and packet_notifier() When packet_set_ring() releases po->bind_lock, another thread can run packet_notifier() and process an NETDEV_UP event. This race and the fix are both similar to that of commit 15fe076edea7 ("net/packet: fix a race in packet_bind() and packet_notifier()"). There too the packet_notifier NETDEV_UP event managed to run while a po->bind_lock critical section had to be temporarily released. And the fix was similarly to temporarily set po->num to zero to keep the socket unhooked until the lock is retaken. The po->bind_lock in packet_set_ring and packet_notifier precede the introduction of git history.

Statistics

  • 2 Posts
  • 1 Interaction
Last activity: 14 hours ago

Fediverse

Profile picture fallback
benzogaga33 :verified: @benzogaga33

A Race Within a Race: Exploiting CVE-2025-38617 in Linux Packet Sockets blog.calif.io/p/a-race-within-

  • 0
  • 1
  • 1
  • 14h ago
Showing 1 to 10 of 70 CVEs