https://kkm-mako.com/en/blog/articles/gitlab-security-release-cve-2026-6552-account-takeover/まこちゃんの技術ジャーナルen2026-06-11T13:10:27+00:00GitLab Account-Takeover Flaw and 11 More: Self-Managed Servers Should Update Now (CVE-2026-6552)https://kkm-mako.com/blog/articles/gitlab-security-release-cve-2026-6552-account-takeover/まこちゃんの技術ジャーナルja2026-06-11T13:10:08+00:00GitLabにアカウント乗っ取りの脆弱性、社内設置は今すぐ更新 CVE-2026-6552https://kkm-mako.com/en/blog/articles/npm-v12-install-scripts-opt-in-no-auto-run/まこちゃんの技術ジャーナルen2026-06-11T06:53:09+00:00npm v12: Dependency Install Scripts No Longer Run Automaticallyhttps://kkm-mako.com/blog/articles/npm-v12-install-scripts-opt-in-no-auto-run/まこちゃんの技術ジャーナルja2026-06-11T06:52:50+00:00npm v12でnpm installが変わる、依存スクリプトの自動実行が止まるhttps://kkm-mako.com/en/blog/articles/oracle-peoplesoft-cve-2026-35273-unauth-rce-emergency/まこちゃんの技術ジャーナルen2026-06-11T05:11:42+00:00Emergency Flaw in Oracle's PeopleSoft HR System: Servers Can Be Taken Over Without a Login, CVE-2026-35273, Apply the Out-of-Cycle Patch Nowhttps://kkm-mako.com/blog/articles/oracle-peoplesoft-cve-2026-35273-unauth-rce-emergency/まこちゃんの技術ジャーナルja2026-06-11T05:11:24+00:00Oracleの人事給与システムPeopleSoftに緊急脆弱性、ログインなしでサーバー乗っ取りの恐れ CVE-2026-35273、定例外パッチを今すぐhttps://kkm-mako.com/en/blog/articles/mitsubishi-electric-appliances-cve-2025-49604-realtek-wifi-dos/まこちゃんの技術ジャーナルen2026-06-11T04:15:36+00:00Flaw in Mitsubishi Electric Home Appliances (AC, Fridge & More): Someone on Your Wi-Fi Can Knock Out Remote Control, CVE-2025-49604, Update the Firmwarehttps://kkm-mako.com/blog/articles/mitsubishi-electric-appliances-cve-2025-49604-realtek-wifi-dos/まこちゃんの技術ジャーナルja2026-06-11T04:15:17+00:00三菱電機のエアコンや冷蔵庫など家電に脆弱性、同じWi-Fiの第三者から遠隔操作を止められる恐れ CVE-2025-49604、修正版へ更新をhttps://kkm-mako.com/en/blog/articles/pi-hole-ftl-cve-2026-44693-session-hijack-race-condition/まこちゃんの技術ジャーナルen2026-06-11T00:10:11+00:00Flaw in Pi-hole, the Popular Ad Blocker: Someone on Your Network Can Hijack the Admin Panel Without a Password, CVE-2026-44693, Update to v6.6.1https://kkm-mako.com/blog/articles/pi-hole-ftl-cve-2026-44693-session-hijack-race-condition/まこちゃんの技術ジャーナルja2026-06-11T00:09:53+00:00広告ブロッカーPi-holeに脆弱性、同じネット上の第三者にパスワードなしで管理画面を乗っ取られる恐れ CVE-2026-44693、v6.6.1へ更新をhttps://kkm-mako.com/en/blog/articles/dracut-cve-2026-6893-dhcp-command-injection-boot/まこちゃんの技術ジャーナルen2026-06-10T21:09:39+00:00Flaw in Dracut, a Core Linux Boot Tool: A Rogue Device on Your Network Can Hijack the System at Boot, CVE-2026-6893https://kkm-mako.com/blog/articles/dracut-cve-2026-6893-dhcp-command-injection-boot/まこちゃんの技術ジャーナルja2026-06-10T21:09:21+00:00Linux起動ツールDracutに脆弱性、同じ回線につながれた偽の機器から乗っ取りの恐れ CVE-2026-6893、ネットワーク起動環境は要対策https://kkm-mako.com/en/blog/articles/splunk-cve-2026-20253-unauth-file-write-jsonpickle-rce/まこちゃんの技術ジャーナルen2026-06-10T19:11:26+00:00Two Flaws in Splunk: Files Destroyed Without a Login, CVE-2026-20253 and CVE-2026-20251, Update Nowhttps://kkm-mako.com/blog/articles/splunk-cve-2026-20253-unauth-file-write-jsonpickle-rce/まこちゃんの技術ジャーナルja2026-06-10T19:11:07+00:00監視ツールSplunkに脆弱性2件、ログインなしでサーバーのファイルを破壊も CVE-2026-20253ほか、最新版へ更新をhttps://kkm-mako.com/en/blog/articles/redhat-migration-advisor-cve-2026-53474-vcenter-kubernetes-creds/まこちゃんの技術ジャーナルen2026-06-10T16:10:28+00:00Six Critical Flaws in Red Hat's OpenShift Migration Advisor: vCenter and Kubernetes Credentials at Risk, CVE-2026-53474 and Morehttps://kkm-mako.com/blog/articles/redhat-migration-advisor-cve-2026-53474-vcenter-kubernetes-creds/まこちゃんの技術ジャーナルja2026-06-10T16:10:09+00:00Red HatのVMware移行ツールに脆弱性6件、vCenterの管理者情報やKubernetes鍵が漏れる恐れ CVE-2026-53474ほかhttps://kkm-mako.com/en/blog/articles/ghidra-cve-2026-52751-malicious-project-rce-server-quartet/まこちゃんの技術ジャーナルen2026-06-10T15:14:41+00:00Four Flaws in NSA's Ghidra: Opening a File Can Own Your Box, CVE-2026-52751 and More, Update to 12.1.2https://kkm-mako.com/blog/articles/ghidra-cve-2026-52751-malicious-project-rce-server-quartet/まこちゃんの技術ジャーナルja2026-06-10T15:14:23+00:00NSAの解析ツールGhidraに脆弱性4件、ファイルを開くだけで乗っ取りも CVE-2026-52751ほか、12.1.2へ更新をhttps://kkm-mako.com/en/blog/articles/kakaku-com-ai-driven-renewal-tech-choice/まこちゃんの技術ジャーナルen2026-06-10T09:00:25+00:00Rebuilding Kakaku.com's 30-Year-Old Code With 71 AI Agentshttps://kkm-mako.com/blog/articles/kakaku-com-ai-driven-renewal-tech-choice/まこちゃんの技術ジャーナルja2026-06-10T09:00:07+00:00価格.comの30年コードをAIが建て替える。選ばれなかった技術の話https://kkm-mako.com/en/blog/articles/anthropic-claude-fable-5-mythos-5-public-launch/まこちゃんの技術ジャーナルen2026-06-10T08:21:36+00:00Claude Fable 5 Goes Public: Why Engineers Cheered, Then Revoltedhttps://kkm-mako.com/blog/articles/anthropic-claude-fable-5-mythos-5-public-launch/まこちゃんの技術ジャーナルja2026-06-10T08:21:17+00:00Claude Fable 5公開、最強AIにエンジニアが沸いた理由と火種https://kkm-mako.com/en/blog/articles/cisco-sd-wan-manager-cve-2026-20245-root-privesc/まこちゃんの技術ジャーナルen2026-06-09T19:12:07+00:00Exploited Flaw in Cisco SD-WAN Manager (CVE-2026-20245) Can Seize Roothttps://kkm-mako.com/blog/articles/cisco-sd-wan-manager-cve-2026-20245-root-privesc/まこちゃんの技術ジャーナルja2026-06-09T19:11:48+00:00Cisco SD-WAN管理ソフトに悪用中のCVE-2026-20245、最高権限奪取の恐れhttps://kkm-mako.com/en/blog/articles/chrome-zero-day-cve-2026-11645-v8/まこちゃんの技術ジャーナルen2026-06-09T18:09:29+00:00Exploited Chrome Zero-Day CVE-2026-11645, the 5th of 2026 — Update Chrome Nowhttps://kkm-mako.com/blog/articles/chrome-zero-day-cve-2026-11645-v8/まこちゃんの技術ジャーナルja2026-06-09T18:09:11+00:00ChromeゼロデイCVE-2026-11645が攻撃悪用中、今年5件目、今すぐ更新を