24h | 7d | 30d

CVE-2026-2911

Overview

  • Tenda
  • FH451
22 Feb 2026
Published
23 Feb 2026
Updated
CVSS v4.0
HIGH (8.7)
EPSS
0.08%
KEV

Description

A vulnerability has been found in Tenda FH451 up to 1.0.0.9. This issue affects some unknown processing of the file /goform/GstDhcpSetSer. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Statistics

  • 1 Post
Last activity: 15 hours ago

Bluesky

Profile picture fallback
CyberHub @cyberhub.blog
📌 CVE-2026-2911 - A vulnerability has been found in Tenda FH451 up to 1.0.0.9. This issue affects some unknown processing of the file /goform/GstDhcpSetSer. The manipul... https://www.cyberhub.blog/cves/CVE-2026-2911
  • 0
  • 0
  • 0
  • 15h ago

CVE-2026-26278

Overview

  • NaturalIntelligence
  • fast-xml-parser
19 Feb 2026
Published
19 Feb 2026
Updated
CVSS v3.1
HIGH (7.5)
EPSS
0.05%
KEV

Description

fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C++ based libraries and no callback. In versions 4.1.3 through 5.3.5, the XML parser can be forced to do an unlimited amount of entity expansion. With a very small XML input, it’s possible to make the parser spend seconds or even minutes processing a single request, effectively freezing the application. Version 5.3.6 fixes the issue. As a workaround, avoid using DOCTYPE parsing by `processEntities: false` option.

Statistics

  • 1 Post
Last activity: 8 hours ago

Bluesky

Profile picture fallback
CyberHub @cyberhub.blog
📌 CVE-2026-26278 - fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C++ based libraries and no callback. In ve... https://www.cyberhub.blog/cves/CVE-2026-26278
  • 0
  • 0
  • 0
  • 8h ago

CVE-2026-1340

Overview

  • Ivanti
  • Endpoint Manager Mobile
29 Jan 2026
Published
30 Jan 2026
Updated
CVSS v3.1
CRITICAL (9.8)
EPSS
41.90%
KEV

Description

A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.

Statistics

  • 1 Post
  • 3 Interactions
Last activity: 2 hours ago

Fediverse

Profile picture fallback
Dr. Christopher Kunz @christopherkunz

@kantorkel Mit den Lücken, die u.a. für den Einbruch in den Niederlanden, Finnland und womöglich auch bei der EU genutzt wurden, kann man auf jeden Fall viel Spaß haben - und sei es beim Lesen des großartigen WatchTowr-Blogs labs.watchtowr.com/someone-kno (oder Hören unserer Passwort-Episode dazu, ab 17:08 cku.gt/2SFCN).

  • 1
  • 2
  • 0
  • 2h ago

CVE-2026-1281

Overview

  • Ivanti
  • Endpoint Manager Mobile
29 Jan 2026
Published
30 Jan 2026
Updated
CVSS v3.1
CRITICAL (9.8)
EPSS
57.41%
KEV

Description

A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.

Statistics

  • 1 Post
  • 3 Interactions
Last activity: 2 hours ago

Fediverse

Profile picture fallback
Dr. Christopher Kunz @christopherkunz

@kantorkel Mit den Lücken, die u.a. für den Einbruch in den Niederlanden, Finnland und womöglich auch bei der EU genutzt wurden, kann man auf jeden Fall viel Spaß haben - und sei es beim Lesen des großartigen WatchTowr-Blogs labs.watchtowr.com/someone-kno (oder Hören unserer Passwort-Episode dazu, ab 17:08 cku.gt/2SFCN).

  • 1
  • 2
  • 0
  • 2h ago

CVE-2025-65717

Overview

  • Pending
16 Feb 2026
Published
18 Feb 2026
Updated
CVSS
Pending
EPSS
0.03%
KEV

Description

An issue in Visual Studio Code Extensions Live Server v5.7.9 allows attackers to exfiltrate files via user interaction with a crafted HTML page.

Statistics

  • 1 Post
Last activity: 14 hours ago

Bluesky

Profile picture fallback
セキュリティ対策Lab @securitylab-jp.bsky.social
VS Codeの主要な拡張機能4件で危険性のある脆弱性-最大1.2億に影響(CVE-2025-65717,CVE-2025-65715,CVE-2025-65716) rocket-boys.co.jp/security-mea... #セキュリティ対策Lab #セキュリティ #Security #CybersecurityNews
  • 0
  • 0
  • 0
  • 14h ago

CVE-2025-65715

Overview

  • Pending
16 Feb 2026
Published
18 Feb 2026
Updated
CVSS
Pending
EPSS
0.02%
KEV

Description

An issue in the code-runner.executorMap setting of Visual Studio Code Extensions Code Runner v0.12.2 allows attackers to execute arbitrary code when opening a crafted workspace.

Statistics

  • 1 Post
Last activity: 14 hours ago

Bluesky

Profile picture fallback
セキュリティ対策Lab @securitylab-jp.bsky.social
VS Codeの主要な拡張機能4件で危険性のある脆弱性-最大1.2億に影響(CVE-2025-65717,CVE-2025-65715,CVE-2025-65716) rocket-boys.co.jp/security-mea... #セキュリティ対策Lab #セキュリティ #Security #CybersecurityNews
  • 0
  • 0
  • 0
  • 14h ago

CVE-2025-65716

Overview

  • Pending
16 Feb 2026
Published
17 Feb 2026
Updated
CVSS
Pending
EPSS
0.06%
KEV

Description

An issue in Visual Studio Code Extensions Markdown Preview Enhanced v0.8.18 allows attackers to execute arbitrary code via uploading a crafted .Md file.

Statistics

  • 1 Post
Last activity: 14 hours ago

Bluesky

Profile picture fallback
セキュリティ対策Lab @securitylab-jp.bsky.social
VS Codeの主要な拡張機能4件で危険性のある脆弱性-最大1.2億に影響(CVE-2025-65717,CVE-2025-65715,CVE-2025-65716) rocket-boys.co.jp/security-mea... #セキュリティ対策Lab #セキュリティ #Security #CybersecurityNews
  • 0
  • 0
  • 0
  • 14h ago
Showing 71 to 77 of 77 CVEs