mitre-t1190
5257 articles with this tag
HIGH
CRITICAL
HIGH
MEDIUM
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
HIGH
MEDIUM
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
LOW
LOW
MEDIUM
MEDIUM
MEDIUM
MEDIUM
HIGH
CRITICAL
HIGH
HIGH
HIGH
HIGH
HIGH
MEDIUM
MEDIUM
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
CRITICAL
MEDIUM
MEDIUM
MEDIUM
HIGH
MEDIUM
MEDIUM
HIGH
HIGH
CRITICAL
HIGH
MEDIUM
HIGH
MEDIUM
HIGH
HIGH
HIGH
HIGH
HIGH
CRITICAL
CRITICAL
HIGH
CRITICAL
HIGH
MEDIUM
CRITICAL
HIGH
HIGH
CRITICAL
CRITICAL
HIGH
MEDIUM
MEDIUM
HIGH
HIGH
HIGH
MEDIUM
HIGH
HIGH
CRITICAL
MEDIUM
MEDIUM
CRITICAL
HIGH
HIGH
HIGH
CRITICAL
HIGH
HIGH
LOW
HIGH
CRITICAL
HIGH
CRITICAL
CRITICAL
CRITICAL
CRITICAL
CRITICAL
Fake ChatGPT download site infects Windows and Mac users with malware
[NEU] [hoch] Webmin: Mehrere Schwachstellen
[NEU] [mittel] Mattermost Server und Plugins: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff
[NEU] [mittel] Jabra Direct: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff
[NEU] [hoch] Jenkins Plugins: Mehrere Schwachstellen
[NEU] [UNGEPATCHT] [mittel] Keycloak: Mehrere Schwachstellen
[NEU] [hoch] Drupal AlternativeCommerce (Basket): Schwachstelle ermöglicht Codeausführung
[NEU] [hoch] SolarWinds Web Help Desk: Schwachstelle ermöglicht Denial of Service
[NEU] [hoch] GitLab: Mehrere Schwachstellen
JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware
[NEU] [mittel] HP ScanJet: Schwachstelle ermöglicht Offenlegung von Informationen
[NEU] [mittel] IBM i: Schwachstelle ermöglicht Denial of Service
[NEU] [hoch] Notepad++: Schwachstelle ermöglicht Codeausführung
[NEU] [hoch] AMD Chipsätze: Mehrere Schwachstellen
[NEU] [hoch] Gladinet Triofox: Mehrere Schwachstellen
[NEU] [hoch] Red Hat Enterprise Linux (Cockpit): Schwachstelle ermöglicht Codeausführung
[NEU] [hoch] Linux Kernel: Mehrere Schwachstellen
[UPDATE] [mittel] VMware Tanzu Spring Framework: Schwachstelle ermöglicht Denial of Service
[UPDATE] [niedrig] Keycloak: Schwachstelle ermöglicht Offenlegung von Informationen
What scanners are actually trying against AI infrastructure
Police arrest suspect in Ajax football club hack that exposed 300,000 fan records
Pirates in the crosshairs: how one cybercrime gang has been infecting book, movie, and TV show fans for years
Check Point Products Denial of Service Vulnerability
Employees are unknowingly inviting tech support impersonators into firms, says FBI
FBI warns law firms of in-person data theft by Silent Ransom Group
High-severity Starlette vulnerability 'BadHost' could expose sensitive data
GPU mining malware spreads via SEO poisoning, AI chatbots
FBI warns US-based law firms to be on the lookout for cybercrime group that steals data in person
USN-8326-1: Foomuuri vulnerabilities
CrowdStrike, Google shatter Glassworm botnet
USN-8322-1: Apache Commons BeanUtils vulnerability
USN-8324-1: Apache Tika vulnerabilities
USN-8325-1: tgt vulnerability
BTMOB Android RAT poses significant threat with easy-to-use builder
Latin American Cybercriminals Hoover Up Government Data
Malicious npm Package Stole Files From Claude AI User Directory via GitHub
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users
New Phishing Technique - Vaultjacking: One Captured PIN, the Entire Google Password Manager Vault
FastAPI-based AI tools exposed to authentication bypass by flaw in Starlette framework
Vulnerability in Popular Conference Software Granted Attackers a 100% Talk Acceptance Rate
MediaArea heap-based buffer overflow vulnerabilities
USN-8321-1: Papers vulnerability
Veikleikar í Drupal, Cisco, Ubiquity og LiteSpeed cPanel viðbót
CrowdStrike, Google Take Down Glassworm Botnet
[webapps] EspoCRM 9.3.3 - SSRF
[webapps] Casdoor 3.54.1 - Arbitrary File Write via Path Traversal
Glassworm botnet disrupted after resilient C2 infrastructure takedown
[webapps] OpenCATS 0.9.7.4 - SQL Injection
[local] Realtek rtl819x - Local Privilege
[hardware] MeiG Smart FORGE_SLT711 - OS Command Injection
[webapps] scramble - Remote Code Execution
Mitigating CVE-2026-31431 (“Copy Fail”) in Docker Engine
Fake ChatGPT and Claude installers on GitHub are dropping Deno RAT malware
Romanian Hacker Sentenced to Prison in US for Selling Access to State Network
How to guarantee a speaker gig: Hack the system. Literally
FBI warns of in-person data theft attacks from extortion gang
[NEU] [mittel] Autodesk 3ds Max: Mehrere Schwachstellen
[NEU] [hoch] Linux Kernel: Mehrere Schwachstellen
[NEU] [mittel] Snipe-IT: Mehrere Schwachstellen
Thousands of Fake FIFA Domains Target World Cup Fans
Gitea Vulnerability Exposes Private Container Images without Authentication
[NEU] [hoch] Samba: Mehrere Schwachstellen
[NEU] [hoch] IBM License Metric Tool: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff
[NEU] [mittel] Joomla: Mehrere Schwachstellen
[NEU] [hoch] ILIAS: Mehrere Schwachstellen
USN-8314-1: Ayttm vulnerabilities
GlassWorm Botnet Disrupted
CISA gives feds 4 days to patch actively exploited cPanel plugin flaw
USN-8313-1: XML-RPC for C and C++ vulnerabilities
[NEU] [hoch] Microsoft GitHub Enterprise: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen
[NEU] [hoch] IBM WebSphere Application Server: Mehrere Schwachstellen
[NEU] [hoch] IBM HTTP Server: Mehrere Schwachstellen
LA Metro Cyberattack Linked to Iranian State-Sponsored Hackers
Dutch police arrests suspect linked to Ajax football club hack
[NEU] [niedrig] IBM Tivoli Netcool/OMNIbus: Schwachstelle ermöglicht Offenlegung von Informationen
[NEU] [hoch] Notepad++: Mehrere Schwachstellen
[NEU] [hoch] 7-Zip: Schwachstelle ermöglicht Codeausführung
Fake Microsoft Teams download sites are being used to deliver ValleyRAT via DLL sideloading
RCE in Strix Agent(Sandbox): A practical guide to prompt injections with impact
[UPDATE] [hoch] Apple macOS Sequoia, Sonoma und Tahoe: Mehrere Schwachstellen
[UPDATE] [hoch] Insyde UEFI Firmware: Schwachstelle ermöglicht Codeausführung
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites
CVE-2026-8466 Unbounded buffer accumulation in multipart header parsing causes denial of service in cowboy
CVE-2026-39835 Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh
CISA Urges Immediate Patching of Exploited LiteSpeed cPanel Plugin Zero-Day
BTMOB: A stealthy RAT burrowing deep into Android devices
Nginx Remote Code Execution Vulnerability
Iranian-backed hackers linked to Los Angeles transit system breach
CVE-2026-45659 Microsoft SharePoint Remote Code Execution Vulnerability
From poisoned search results to GPU mining: A cryptojacking campaign abusing ScreenConnect and Microsoft .NET utilities
Listening, Drupal, TTE, KEV, Mythos, Megalodon, Badanov, MFA, Pope Leo, Aaran Leyland - SWN #584
USN-8167-2: xdg-dbus-proxy vulnerability
Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos
KnowledgeDeliver flaw exploited as a zero-day to install web shells
USN-8307-1: ONNX vulnerability
USN-8310-1: Linux kernel (Azure) vulnerabilities
USN-8278-2: Linux kernel (Azure) vulnerabilities
USN-8305-2: Linux kernel (Low Latency) vulnerabilities
USN-8280-3: Linux kernel (IoT) vulnerabilities
Millions of AI agents imperiled by critical vulnerability in open source package