Security News

Cybersecurity news aggregator

← Back to News Browse all tags

cve-2026-33032

56 articles with this tag

AI summary Loading…
CRITICAL
April 2026 CVE Landscape
Recorded Future • May 15, 2026
 CRITICAL
SAP npm Packages Compromised by “Mini Shai-Hulud” Credential-Stealing Malware
The Hacker News • Apr 29, 2026
 CRITICAL
What to Look for in an Exposure Management Platform (And What Most of Them Get Wrong)
The Hacker News • Apr 29, 2026
 CRITICAL
Critical cPanel Authentication Vulnerability Identified — Update Your Server Immediately
The Hacker News • Apr 29, 2026
 CRITICAL
CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV
The Hacker News • Apr 29, 2026
 CRITICAL
LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure
The Hacker News • Apr 29, 2026
 CRITICAL
Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push
The Hacker News • Apr 28, 2026
 CRITICAL
Brazilian LofyGang Resurfaces After Three Years With Minecraft LofyStealer Campaign
The Hacker News • Apr 28, 2026
 CRITICAL
VECT 2.0 Ransomware Irreversibly Destroys Files Over 131KB on Windows, Linux, ESXi
The Hacker News • Apr 28, 2026
 CRITICAL
Why Secure Data Movement Is the Zero Trust Bottleneck Nobody Talks About
The Hacker News • Apr 28, 2026
 CRITICAL
Critical Unpatched Flaw Leaves Hugging Face LeRobot Open to Unauthenticated RCE
The Hacker News • Apr 28, 2026
 CRITICAL
After Mythos: New Playbooks For a Zero-Window Era
The Hacker News • Apr 28, 2026
 CRITICAL
Chinese Silk Typhoon Hacker Extradited to U.S. Over COVID Research Cyberattacks
The Hacker News • Apr 28, 2026
 CRITICAL
Microsoft Confirms Active Exploitation of Windows Shell CVE-2026-32202
The Hacker News • Apr 28, 2026
 CRITICAL
Microsoft Patches Entra ID Role Flaw That Enabled Service Principal Takeover
The Hacker News • Apr 28, 2026
 CRITICAL
Checkmarx Confirms GitHub Repository Data Posted on Dark Web After March 23 Attack
The Hacker News • Apr 27, 2026
 CRITICAL
Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware
The Hacker News • Apr 27, 2026
 CRITICAL
PhantomCore Exploits TrueConf Vulnerabilities to Breach Russian Networks
The Hacker News • Apr 27, 2026
 CRITICAL
Mythos Changed the Math on Vulnerability Discovery. Most Teams Aren't Ready for the Remediation Side
The Hacker News • Apr 27, 2026
 CRITICAL
Fake CAPTCHA IRSF Scam and 120 Keitaro Campaigns Drive Global SMS, Crypto Fraud
The Hacker News • Apr 27, 2026
 CRITICAL
Researchers Uncover Pre-Stuxnet ‘fast16’ Malware Targeting Engineering Software
The Hacker News • Apr 25, 2026
 CRITICAL
CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal Deadline
The Hacker News • Apr 25, 2026
 CRITICAL
FIRESTARTER Backdoor Hit Federal Cisco Firepower Device, Survives Security Patches
The Hacker News • Apr 24, 2026
 CRITICAL
NASA Employees Duped in Chinese Phishing Scheme Targeting U.S. Defense Software
The Hacker News • Apr 24, 2026
 CRITICAL
26 FakeWallet Apps Found on Apple App Store Targeting Crypto Seed Phrases
The Hacker News • Apr 24, 2026
 CRITICAL
Bridging the AI Agent Authority Gap: Continuous Observability as the Decision Engine
The Hacker News • Apr 24, 2026
 CRITICAL
Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2
The Hacker News • Apr 24, 2026
 CRITICAL
LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure
The Hacker News • Apr 24, 2026
 CRITICAL
UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware
The Hacker News • Apr 23, 2026
 CRITICAL
Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign
The Hacker News • Apr 23, 2026
 CRITICAL
Vercel Finds More Compromised Accounts in Context.ai-Linked Breach
The Hacker News • Apr 23, 2026
 CRITICAL
China-Linked GopherWhisper Infects 12 Mongolian Government Systems with Go Backdoors
The Hacker News • Apr 23, 2026
 CRITICAL
Apple Patches iOS Flaw That Stored Deleted Signal Notifications in FBI Forensic Case
The Hacker News • Apr 23, 2026
 CRITICAL
Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain
The Hacker News • Apr 22, 2026
 CRITICAL
Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens
The Hacker News • Apr 22, 2026
 CRITICAL
Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API
The Hacker News • Apr 22, 2026
 CRITICAL
Toxic Combinations: When Cross-App Permissions Stack into Risk
The Hacker News • Apr 22, 2026
 CRITICAL
Lotus Wiper Malware Targets Venezuelan Energy Systems in Destructive Attack
The Hacker News • Apr 22, 2026
 CRITICAL
Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug
The Hacker News • Apr 22, 2026
 CRITICAL
Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape
The Hacker News • Apr 22, 2026
 CRITICAL
Mustang Panda’s New LOTUSLITE Variant Targets India Banks, South Korea Policy Circles
The Hacker News • Apr 22, 2026
 CRITICAL
SystemBC C2 Server Reveals 1,570+ Victims in The Gentlemen Ransomware Operation
The Hacker News • Apr 21, 2026
 CRITICAL
22 BRIDGE:BREAK Flaws Expose 20,000 Lantronix and Silex Serial-to-IP Converters
The Hacker News • Apr 21, 2026
 CRITICAL
Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks in 2023
The Hacker News • Apr 21, 2026
 CRITICAL
5 Places where Mature SOCs Keep MTTR Fast and Others Waste Time
The Hacker News • Apr 21, 2026
 CRITICAL
NGate Campaign Targets Brazil, Trojanizes HandyPay to Steal NFC Data and PINs
The Hacker News • Apr 21, 2026
 CRITICAL
No Exploit Needed: How Attackers Walk Through the Front Door via Identity-Based Attacks
The Hacker News • Apr 21, 2026
 CRITICAL
CISA Adds 8 Exploited Flaws to KEV, Sets April-May 2026 Federal Deadlines
The Hacker News • Apr 21, 2026
 CRITICAL
SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files
The Hacker News • Apr 20, 2026
 CRITICAL
CVE-2026-33032: Nginx UI Missing MCP Authentication
Rapid7 Research • Apr 16, 2026
 CRITICAL
Critical Nginx UI auth bypass flaw now actively exploited in the wild
BleepingComputer • Apr 15, 2026
 CRITICAL
Critical nginx UI tool vulnerability opens web servers to full compromise
CSO Online • Apr 15, 2026
 CRITICAL
Exploited Vulnerability Exposes Nginx Servers to Hacking
SecurityWeek • Apr 15, 2026
 CRITICAL
Critical Nginx-ui MCP Flaw Actively Exploited in the Wild
Infosecurity Magazine • Apr 15, 2026
 CRITICAL
Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover
The Hacker News • Apr 15, 2026
 CRITICAL
March 2026 CVE Landscape: 31 High-Impact Vulnerabilities Identified, Interlock Ransomware Group Exploits Cisco FMC Zero-Day
Recorded Future • Apr 13, 2026