Palo Alto Networks Advisories
CVE-2025-4615 PAN-OS: Improper Neutralization of Input in the Management Web Interface (Severity: MEDIUM)
Ingen sammanfattning.
Senaste 1h
Senaste 6h
Senaste 24h
Senaste 7d
Senaste 30d
Endast lokalt
Analys/ledare
Endast följda källor
Snabbfilter
- 1 källor använder cache
Toppnyheter
Säkerhet
Poster
110
Källor
11
Senast uppdaterad
2026-04-20 16:29
NVD (National Vulnerability Database)10
SecurityWeek Vulnerabilities10
CERT-SE10
CISA KEV-katalog10
Microsoft MSRC10
Cisco PSIRT10
CVE-toppar
CVE-2024-37212
CVE-2009-02381
CVE-2012-18541
CVE-2017-201871
CVE-2017-72521
Senaste CVE
CVE-2026-4786
CVE-2026-4786 Incomplete mitigation of CVE-2026-4519, %action expansion for command injection to webbrowser.open()
CVE-2026-6100
CVE-2026-6100 Use-after-free in lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile after re-use under memory pressure
CVE-2026-5160
CVE-2026-5160
CVE-2026-33056
CVE-2026-33056 tar-rs: unpack_in can chmod arbitrary directories by following symlinks
CVE-2026-33055
CVE-2026-33055 tar-rs incorrectly ignores PAX size headers if header size is nonzero
Fel per källa
NVD (National Vulnerability Database)NVD (National Vulnerability Database): 404, message='Not Found', url='https://nvd.nist.gov/feeds/xml/cve/misc/nvd-rss.xml'
Säkerhet
7 artiklar
SecurityWeek Vulnerabilities
The machine emulator has been abused in at least two different campaigns distributing ransomware and remote access tools. The post Hackers Abuse QEMU for Defense Evasion appeared first on SecurityWeek.
The Hacker News
Google this week announced a new set of Play policy updates to strengthen user privacy and protect businesses against fraud, even as it revealed it blocked or removed over 8.3 billion ads globally and suspended 24.9...
Dark Reading
A benign looking update Dragon Boss pushed out in March 2025 established persistence via scheduled tasks and arranged for future payloads to be excluded from Windows Defender.
Dark Reading
While enterprises breaches make more headlines, smaller incidents tend to be under-reported, if at all, allowing campaigns to last longer with less disruption.
CISA KEV-katalog
Microsoft Windows contains a link following vulnerability that allows for privilege escalation | Åtgärd: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or...
Palo Alto Networks Advisories
Ingen sammanfattning.
Threatpost
Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system.
