News
Flaw in Dracut, a Core Linux Boot Tool: A Rogue Device on Your Network Can Hijack the System at Boot, CVE-2026-6893
InfrastructureSecurityLinux
A flaw in Dracut, the tool that handles the boot entry point for much of the Linux world (CVE-2026-6893, CVSS 8.8): a rogue server on the same network can hijack a machine with root privileges the moment it boots, striking the defenseless earliest boot stage. It affects network-boot (PXE, etc.) setups. Apply each distro's update and isolate the network.
2026.06.114 views
News
Two Flaws in Splunk: Files Destroyed Without a Login, CVE-2026-20253 and CVE-2026-20251, Update Now
SecurityGlobal CompaniesInfrastructure
Two serious flaws in Splunk, the enterprise monitoring and log platform (CVE-2026-20253 and CVE-2026-20251, up to CVSS 9.8): files on the server can be created or destroyed with no login, and the server can be hijacked via arbitrary code execution from a low-privilege account. The company's watchtower becomes the target. Update Splunk Enterprise to 10.2.4 or 10.0.7 now.
2026.06.113 views
News
Six Critical Flaws in Red Hat's OpenShift Migration Advisor: vCenter and Kubernetes Credentials at Risk, CVE-2026-53474 and More
InfrastructureSecurityGlobal Companies
Six serious flaws in Red Hat's free OpenShift Migration Advisor (CVE-2026-53469–53476, up to CVSS 9.6): broken SaaS tenant isolation stealing other tenants' config and tokens and wiping all customer data, SQL injection via RVTools reading Kubernetes keys, and plaintext agent-to-vCenter traffic leaking admin creds. Update the agent and rotate credentials.
2026.06.113 views
News
Four Flaws in NSA's Ghidra: Opening a File Can Own Your Box, CVE-2026-52751 and More, Update to 12.1.2
SecurityDevelopment
Four serious flaws in NSA's free analysis tool Ghidra (CVE-2026-52751/49498/52754/52758, all CVSS 8.8). The worst, CVE-2026-52751, needs no auth: opening a crafted project file runs arbitrary code. The other three hit Ghidra Server with DB takeover and impersonation. Update to 12.1.2 now.
2026.06.115 views
News
Claude Fable 5 Goes Public: Why Engineers Cheered, Then Revolted
Global CompaniesAI
On June 9 Anthropic released Claude Fable 5, the safety-wrapped public version of Mythos—the 'too dangerous' top model that governments and Japan's Diet had fought over for a month. Engineers cheered an 80.3% SWE-Bench Pro score, then revolted over a term that silently degrades performance and over-eager censorship.
2026.06.104 views
News
Exploited Flaw in Cisco SD-WAN Manager (CVE-2026-20245) Can Seize Root
Global CompaniesSecurityInfrastructure
Cisco Catalyst SD-WAN Manager (formerly vManage), which manages an enterprise's whole network, has a flaw already confirmed in attacks (CVE-2026-20245). On success, attackers seize the device's highest privilege and can push unauthorized config changes to edge devices. Cisco has released the fix 20.18.3.1; there is no workaround, so updating is required. Here are the affected versions and what to do now.
2026.06.106 views
News
Exploited Chrome Zero-Day CVE-2026-11645, the 5th of 2026 — Update Chrome Now
SecurityMobileGlobal Companies
Google Chrome, the world's most-used browser, has a serious flaw already used in attacks (CVE-2026-11645), and an emergency fix is out. Opening a trap page alone can hand over your device, and this is the fifth such case in 2026. All Chrome users are affected, as are Edge and Brave. Update to 149.0.7827.103 now. Here's how to check and what's affected.
2026.06.107 views
News
Ivanti Sentry CVE-2026-10520 Exploited (KEV): Patch the 10.0 RCE Now
MobileSecurityInfrastructure
A flaw lets attackers remotely take over Ivanti Sentry — the gateway between staff phones and corporate email — with no password (CVE-2026-10520, severity 10.0). Paired with an authentication-bypass flaw that creates administrators at will (CVE-2026-10523), it requires an update to R10.5.2 / R10.6.2 / R10.7.1. The product has been attacked repeatedly before. Here are the affected versions and what to do now.
2026.06.1015 views
News Updated 4 days ago
Apache HTTP Server 2.4.68: 13 Vulnerabilities Fixed — HTTP/2 Bomb (CVE-2026-49975), CVE-2026-44119, CVE-2026-44185
InfrastructureSecurityAI
A flaw called the 'HTTP/2 Bomb' (CVE-2026-49975) lets even a single home PC take Apache and other major web servers offline in seconds. OpenAI's AI 'Codex' found it before humans did, a proof-of-concept is public, and Shodan shows 880,000+ servers exposed. Apache fixed it in 2.4.68, released June 8. Here are the affected versions and what to update now.
2026.06.0953 views
News Updated 4 days ago
Check Point VPN IKEv1 Auth Bypass (CVE-2026-50751, SK185033): Why Outdated IKEv1 Is a Risk, and How to Fix It
InfrastructureGlobal CompaniesSecurity
Check Point VPN gateways have a flaw (CVE-2026-50751) that lets attackers into corporate networks with no valid password, and a Qilin ransomware crew is already exploiting it. It affects setups using the legacy IKEv1 protocol. Apply the hotfix now.
2026.06.0966 views
News
LiteLLM Unauthenticated RCE via MCP: CVE-2026-42271 (Now in CISA KEV) — Upgrade to 1.83.7
AISecurityDevelopment
LiteLLM, the popular gateway fronting 100+ AI services, has a server-takeover flaw (CVE-2026-42271). Chained with a Starlette bug it enables unauthenticated remote code execution, exposing every stored API key. Patch to 1.83.7 now.
2026.06.0915 views
News
AI Component Guardrails AI Hit by a Poisoned Package: CVE-2026-45758, TeamPCP's New Target
AISecurity
The PyPI distribution of Guardrails AI, a popular OSS component for validating LLM I/O, was laced with a credential-stealing poisoned version 0.10.1. Tracked as CVE-2026-45758 (CVSS 9.6), it is part of a chain of supply-chain attacks by TeamPCP that spread 400+ poisoned versions across 170+ packages including TanStack and Mistral AI, expanding into AI development. Here are the safe versions and the steps to check and respond.
2026.06.0618 views
