| unknown |
MacOS Native Tools Enable Stealthy Enterprise Attacks |
news |
general-news |
|
|
2026-04-22 |
| high |
npm Packages Hit with TeamPCP-Style CanisterWorm Malware |
threat-intel |
otx |
c19c4574d09e6063… |
self-propagating, worm, icp canister, pypi, canisterworm, credential theft, npm, supply chain attack, supply-chain |
2026-04-22 |
| medium |
CVE-2026-30139 — A reflected cross-site scripting (XSS) vulnerability in the AdvancedSearch functionality of Silverpe… |
vulnerability |
nvd |
CVE-2026-30139 |
|
2026-04-22 |
| medium |
CVE-2025-58922 — Cross-Site Request Forgery (CSRF) vulnerability in ThemeFusion Avada allows Cross Site Request Forge… |
vulnerability |
nvd |
CVE-2025-58922 |
|
2026-04-22 |
| unknown |
NCSC flags widening gap between cyber threats and national resilience, urges action as AI fuels rise in disruptive attacks |
advisory |
vendor-blogs |
|
|
2026-04-22 |
| critical |
ZeroFox data shows ransomware stabilizing at scale, with manufacturing absorbing nearly one in five attacks |
advisory |
vendor-blogs |
|
ransomware |
2026-04-22 |
| unknown |
BRIDGE:BREAK reveals 22 vulnerabilities in serial-to-IP converters enabling disruption and lateral movement across OT |
advisory |
vendor-blogs |
|
|
2026-04-22 |
| high |
Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API |
news |
general-news |
|
botnet |
2026-04-22 |
| high |
CVE-2026-35548 — An issue was discovered in guardsix (formerly Logpoint) ODBC Enrichment Plugins before 5.2.1 (5.2.1… |
vulnerability |
nvd |
CVE-2026-35548 |
|
2026-04-22 |
| unknown |
NCSC Unveils SilentGlass, a Plug-In Device to Protect Monitors from Cyber-Attacks |
news |
general-news |
|
|
2026-04-22 |
| unknown |
DPRK Fake Job Scams Self-Propagate in 'Contagious Interview' |
news |
general-news |
|
|
2026-04-22 |
| unknown |
Electricity Is a Growing Area of Cyber Risk |
news |
general-news |
|
|
2026-04-22 |
| medium |
CVE-2026-6862 — A flaw was found in libefiboot, a component of efivar. The device path node parser in libefiboot fai… |
vulnerability |
nvd |
CVE-2026-6862 |
|
2026-04-22 |
| medium |
CVE-2026-6861 — A flaw was found in GNU Emacs. This vulnerability, a memory corruption issue, occurs when Emacs proc… |
vulnerability |
nvd |
CVE-2026-6861 |
|
2026-04-22 |
| high |
CVE-2026-6859 — A flaw was found in InstructLab. The `linux_train.py` script hardcodes `trust_remote_code=True` when… |
vulnerability |
nvd |
CVE-2026-6859 |
|
2026-04-22 |
| critical |
CVE-2026-6356 — A vulnerability in the web application allows standard users to escalate their privileges to those o… |
vulnerability |
nvd |
CVE-2026-6356 |
|
2026-04-22 |
| medium |
CVE-2026-6355 — A vulnerability in the web application allows unauthorized users to access and manipulate sensitive… |
vulnerability |
nvd |
CVE-2026-6355 |
|
2026-04-22 |
| unknown |
CVE-2026-5750 — An insecure direct object reference (IDOR) vulnerability in the Fullstep V5 registration process all… |
vulnerability |
nvd |
CVE-2026-5750 |
|
2026-04-22 |
| unknown |
CVE-2026-5749 — Inadequate access control in the registration process in Fullstep V5, which could allow unauthentica… |
vulnerability |
nvd |
CVE-2026-5749 |
|
2026-04-22 |
| high |
CVE-2026-41651 — PackageKit is a a D-Bus abstraction layer that allows the user to manage packages in a secure way us… |
vulnerability |
nvd |
CVE-2026-41651 |
|
2026-04-22 |
| medium |
CVE-2026-33611 — An operator allowed to use the REST API can cause the Authoritative server to produce invalid HTTPS… |
vulnerability |
nvd |
CVE-2026-33611 |
|
2026-04-22 |
| medium |
CVE-2026-33610 — A rogue primary server may cause file descriptor exhaustion and eventually a denial of service, when… |
vulnerability |
nvd |
CVE-2026-33610 |
|
2026-04-22 |
| medium |
CVE-2026-33609 — Incomplete escaping of LDAP queries when running with 8bit-dns enabled allows users to perform queri… |
vulnerability |
nvd |
CVE-2026-33609 |
|
2026-04-22 |
| high |
CVE-2026-33608 — An attacker can send a notify request that causes a new secondary domain to be added to the bind bac… |
vulnerability |
nvd |
CVE-2026-33608 |
|
2026-04-22 |
| medium |
CVE-2026-33602 — A rogue backend can send a crafted UDP response with a query ID off by one related to the maximum co… |
vulnerability |
nvd |
CVE-2026-33602 |
|
2026-04-22 |
| low |
CVE-2026-33599 — A rogue backend can send a crafted SVCB response to a Discovery of Designated Resolvers request, whe… |
vulnerability |
nvd |
CVE-2026-33599 |
|
2026-04-22 |
| medium |
CVE-2026-33598 — A cached crafted response can cause an out-of-bounds read if custom Lua code calls getDomainListByAd… |
vulnerability |
nvd |
CVE-2026-33598 |
|
2026-04-22 |
| low |
CVE-2026-33597 — PRSD detection denial of service |
vulnerability |
nvd |
CVE-2026-33597 |
|
2026-04-22 |
| low |
CVE-2026-33596 — A client might theoretically be able to cause a mismatch between queries sent to a backend and the r… |
vulnerability |
nvd |
CVE-2026-33596 |
|
2026-04-22 |
| medium |
CVE-2026-33595 — A client can trigger excessive memory allocation by generating a lot of errors responses over a sing… |
vulnerability |
nvd |
CVE-2026-33595 |
|
2026-04-22 |
| medium |
CVE-2026-33594 — A client can trigger excessive memory allocation by generating a lot of queries that are routed to a… |
vulnerability |
nvd |
CVE-2026-33594 |
|
2026-04-22 |
| high |
CVE-2026-33593 — A client can trigger a divide by zero error leading to crash by sending a crafted DNSCrypt query. |
vulnerability |
nvd |
CVE-2026-33593 |
|
2026-04-22 |
| medium |
CVE-2026-33254 — An attacker can create a large number of concurrent DoQ or DoH3 connections, causing unlimited memor… |
vulnerability |
nvd |
CVE-2026-33254 |
|
2026-04-22 |
| unknown |
CVE-2026-31530 — In the Linux kernel, the following vulnerability has been resolved: cxl/port: Fix use after free of… |
vulnerability |
nvd |
CVE-2026-31530 |
|
2026-04-22 |
| unknown |
CVE-2026-31529 — In the Linux kernel, the following vulnerability has been resolved: cxl/region: Fix leakage in __con… |
vulnerability |
nvd |
CVE-2026-31529 |
|
2026-04-22 |
| unknown |
CVE-2026-31528 — In the Linux kernel, the following vulnerability has been resolved: perf: Make sure to use pmu_ctx->… |
vulnerability |
nvd |
CVE-2026-31528 |
|
2026-04-22 |
| unknown |
CVE-2026-31527 — In the Linux kernel, the following vulnerability has been resolved: driver core: platform: use gener… |
vulnerability |
nvd |
CVE-2026-31527 |
|
2026-04-22 |
| unknown |
CVE-2026-31526 — In the Linux kernel, the following vulnerability has been resolved: bpf: Fix exception exit lock che… |
vulnerability |
nvd |
CVE-2026-31526 |
|
2026-04-22 |
| unknown |
CVE-2026-31525 — In the Linux kernel, the following vulnerability has been resolved: bpf: Fix undefined behavior in i… |
vulnerability |
nvd |
CVE-2026-31525 |
|
2026-04-22 |
| unknown |
CVE-2026-31524 — In the Linux kernel, the following vulnerability has been resolved: HID: asus: avoid memory leak in… |
vulnerability |
nvd |
CVE-2026-31524 |
|
2026-04-22 |
| unknown |
CVE-2026-31523 — In the Linux kernel, the following vulnerability has been resolved: nvme-pci: ensure we're polling a… |
vulnerability |
nvd |
CVE-2026-31523 |
|
2026-04-22 |
| unknown |
CVE-2026-31522 — In the Linux kernel, the following vulnerability has been resolved: HID: magicmouse: avoid memory le… |
vulnerability |
nvd |
CVE-2026-31522 |
|
2026-04-22 |
| unknown |
CVE-2026-31521 — In the Linux kernel, the following vulnerability has been resolved: module: Fix kernel panic when a… |
vulnerability |
nvd |
CVE-2026-31521 |
|
2026-04-22 |
| unknown |
CVE-2026-31520 — In the Linux kernel, the following vulnerability has been resolved: HID: apple: avoid memory leak in… |
vulnerability |
nvd |
CVE-2026-31520 |
|
2026-04-22 |
| unknown |
CVE-2026-31519 — In the Linux kernel, the following vulnerability has been resolved: btrfs: set BTRFS_ROOT_ORPHAN_CLE… |
vulnerability |
nvd |
CVE-2026-31519 |
|
2026-04-22 |
| unknown |
CVE-2026-31518 — In the Linux kernel, the following vulnerability has been resolved: esp: fix skb leak with espintcp… |
vulnerability |
nvd |
CVE-2026-31518 |
|
2026-04-22 |
| unknown |
CVE-2026-31517 — In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix skb_put() panic… |
vulnerability |
nvd |
CVE-2026-31517 |
|
2026-04-22 |
| unknown |
CVE-2026-31516 — In the Linux kernel, the following vulnerability has been resolved: xfrm: prevent policy_hthresh.wor… |
vulnerability |
nvd |
CVE-2026-31516 |
|
2026-04-22 |
| unknown |
CVE-2026-31515 — In the Linux kernel, the following vulnerability has been resolved: af_key: validate families in pfk… |
vulnerability |
nvd |
CVE-2026-31515 |
|
2026-04-22 |
| unknown |
CVE-2026-31514 — In the Linux kernel, the following vulnerability has been resolved: erofs: set fileio bio failed in… |
vulnerability |
nvd |
CVE-2026-31514 |
|
2026-04-22 |