home.social

#qualys — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #qualys, aggregated by home.social.

  1. Researchers disclosed CVE-2026-46333, a Linux kernel flaw present since 2016 that enables local users to access sensitive files and execute commands as root. 🐧
    Qualys said Debian, Fedora and Ubuntu default installs are affected, while admins are urged to patch kernels and rotate exposed SSH keys. 🔑

    🔗 thehackernews.com/2026/05/9-ye

    #TechNews #Linux #Kernel #CVE202646333 #CVE #Cybersecurity #Qualys #Ubuntu #Debian #Fedora #OpenSource #FOSS #Security #Exploit #Infosec #SysAdmin #Privacy #SSH #Admin

  2. Researchers disclosed CVE-2026-46333, a Linux kernel flaw present since 2016 that enables local users to access sensitive files and execute commands as root. 🐧
    Qualys said Debian, Fedora and Ubuntu default installs are affected, while admins are urged to patch kernels and rotate exposed SSH keys. 🔑

    🔗 thehackernews.com/2026/05/9-ye

    #TechNews #Linux #Kernel #CVE202646333 #CVE #Cybersecurity #Qualys #Ubuntu #Debian #Fedora #OpenSource #FOSS #Security #Exploit #Infosec #SysAdmin #Privacy #SSH #Admin

  3. Researchers disclosed CVE-2026-46333, a Linux kernel flaw present since 2016 that enables local users to access sensitive files and execute commands as root. 🐧
    Qualys said Debian, Fedora and Ubuntu default installs are affected, while admins are urged to patch kernels and rotate exposed SSH keys. 🔑

    🔗 thehackernews.com/2026/05/9-ye

    #TechNews #Linux #Kernel #CVE202646333 #CVE #Cybersecurity #Qualys #Ubuntu #Debian #Fedora #OpenSource #FOSS #Security #Exploit #Infosec #SysAdmin #Privacy #SSH #Admin

  4. Researchers disclosed CVE-2026-46333, a Linux kernel flaw present since 2016 that enables local users to access sensitive files and execute commands as root. 🐧
    Qualys said Debian, Fedora and Ubuntu default installs are affected, while admins are urged to patch kernels and rotate exposed SSH keys. 🔑

    🔗 thehackernews.com/2026/05/9-ye

    #TechNews #Linux #Kernel #CVE202646333 #CVE #Cybersecurity #Qualys #Ubuntu #Debian #Fedora #OpenSource #FOSS #Security #Exploit #Infosec #SysAdmin #Privacy #SSH #Admin

  5. Researchers disclosed CVE-2026-46333, a Linux kernel flaw present since 2016 that enables local users to access sensitive files and execute commands as root. 🐧
    Qualys said Debian, Fedora and Ubuntu default installs are affected, while admins are urged to patch kernels and rotate exposed SSH keys. 🔑

    🔗 thehackernews.com/2026/05/9-ye

    #TechNews #Linux #Kernel #CVE202646333 #CVE #Cybersecurity #Qualys #Ubuntu #Debian #Fedora #OpenSource #FOSS #Security #Exploit #Infosec #SysAdmin #Privacy #SSH #Admin

  6. Linux Flaw Exposes SSH Keys, Password Hashes

    A critical nine-year-old flaw in the Linux kernel, known as CVE-2026-46333, allows everyday users to access highly sensitive data, including SSH private keys and system password hashes, on popular Linux distributions. Fortunately, patches and updates are available to fix this vulnerability.

    osintsights.com/linux-flaw-exp

    #LinuxFlaw #SshKeys #Cve202646333 #Qualys #LinuxKernel

  7. Linux Flaw Exposes SSH Keys, Password Hashes

    A critical nine-year-old flaw in the Linux kernel, known as CVE-2026-46333, allows everyday users to access highly sensitive data, including SSH private keys and system password hashes, on popular Linux distributions. Fortunately, patches and updates are available to fix this vulnerability.

    osintsights.com/linux-flaw-exp

    #LinuxFlaw #SshKeys #Cve202646333 #Qualys #LinuxKernel

  8. A serious Ubuntu vulnerability (CVE-2026-3888) allows local users to gain full root access. If you run Ubuntu 24.04 or later, you should update your system right now.

    More details here: ostechnix.com/ubuntu-snapd-pri

    #Ubuntu #Snapd #CVE20263888 #Security #Qualys #Linux

  9. A serious Ubuntu vulnerability (CVE-2026-3888) allows local users to gain full root access. If you run Ubuntu 24.04 or later, you should update your system right now.

    More details here: ostechnix.com/ubuntu-snapd-pri

    #Ubuntu #Snapd #CVE20263888 #Security #Qualys #Linux

  10. A serious Ubuntu vulnerability (CVE-2026-3888) allows local users to gain full root access. If you run Ubuntu 24.04 or later, you should update your system right now.

    More details here: ostechnix.com/ubuntu-snapd-pri

    #Ubuntu #Snapd #CVE20263888 #Security #Qualys #Linux

  11. A serious Ubuntu vulnerability (CVE-2026-3888) allows local users to gain full root access. If you run Ubuntu 24.04 or later, you should update your system right now.

    More details here: ostechnix.com/ubuntu-snapd-pri

    #Ubuntu #Snapd #CVE20263888 #Security #Qualys #Linux

  12. A serious Ubuntu vulnerability (CVE-2026-3888) allows local users to gain full root access. If you run Ubuntu 24.04 or later, you should update your system right now.

    More details here: ostechnix.com/ubuntu-snapd-pri

    #Ubuntu #Snapd #CVE20263888 #Security #Qualys #Linux

  13. CrackArmor: Multiple vulnerabilities in #AppArmor "Bypassing Ubuntu's user-namespace restrictions
    AppArmor + Sudo + Postfix = root
    Kernel vulnerabilities". seclists.org/oss-sec/2026/q1/3 #infosec #qualys

  14. #CrackArmor: Multiple vulnerabilities in #AppArmor

    Blogpost: blog.qualys.com/vulnerabilitie

    Advisory: cdn2.qualys.com/advisory/2026/

    These vulnerabilities allow a local attacker to bypass the security normally provided by AppArmor. Also, in some situations, it allows privilege escalation to root by selectively blocking specific syscalls.

    #infosec #cybersecurity #qualys

  15. Instead of building navigation with icons, Qualys thought it'd be a great idea to use boxes, each containing an acronym which can stand for any number of things.

    If you are thinking that CSAM is for Child Sexual Abuse Material, that PM is for Project Management and PS is for Photoshop, well, you'd be wrong on all counts.

    Can you guess why some buttons are different colors but the different colors are not all grouped together? Me neither.

    #qualys #infosec #cybersecurity #design #softwaregore

  16. Kolejne podatności w sudo, tym razem moduły uwierzytelniania PAM

    O tym, że sudo (czytane su-du) to krytyczny komponent systemu operacyjnego, z punktu widzenia nie tylko użyteczności ale przede wszystkim – bezpieczeństwa, przekonywaliśmy nie raz. Ostatnio opisywaliśmy ciekawe podatności dotyczące przełączników –host oraz –chroot. Tym razem, przyjrzymy się dwóm podatnościom z kategorii błędów logicznych – CVE-2025-6018 oraz CVE-2025-6019. Luki zostały...

    #WBiegu #Linux #Opensuse #Qualys #Security #Sudo

    sekurak.pl/kolejne-podatnosci-

  17. #Patches kommen:

    Zwei Lücken verleihen #Angreifern #Root-Rechte unter #Linux

    Durch Verkettung der beiden Lücken lassen sich #Linux-Systeme vollständig kompromittieren. Admins sollten so bald wie möglich patchen.

    #Sicherheitsforscher von #Qualys haben zwei gefährliche #Sicherheitslücken aufgedeckt, mit denen Angreifer auf #Linux-Systemen einen #Root-Zugriff erlangen können.

    golem.de/news/patches-kommen-z

  18. Neue #Linux #Sicherheitslücken: #Race #Conditions bedrohen sensible Daten.

    Zwei neu entdeckte Schwachstellen gefährden aktuell bestimmte #Linux- #Distributionen. Die #Sicherheitsforscher von #Qualys haben Race Conditions in den Komponenten apport und systemd-coredump identifiziert. Sie wurden unter den CVE-Nummern CVE-2025-5054 und CVE-2025-4598 veröffentlicht und ermöglichen es lokalen Angreifern, auf Speicherabzüge privilegierter Prozesse zuzugreifen.

    fosstopia.de/sicherheitslucken

  19. Neue #Linux #Sicherheitslücken: #Race #Conditions bedrohen sensible Daten.

    Zwei neu entdeckte Schwachstellen gefährden aktuell bestimmte #Linux- #Distributionen. Die #Sicherheitsforscher von #Qualys haben Race Conditions in den Komponenten apport und systemd-coredump identifiziert. Sie wurden unter den CVE-Nummern CVE-2025-5054 und CVE-2025-4598 veröffentlicht und ermöglichen es lokalen Angreifern, auf Speicherabzüge privilegierter Prozesse zuzugreifen.

    fosstopia.de/sicherheitslucken

  20. Neue #Linux #Sicherheitslücken: #Race #Conditions bedrohen sensible Daten.

    Zwei neu entdeckte Schwachstellen gefährden aktuell bestimmte #Linux- #Distributionen. Die #Sicherheitsforscher von #Qualys haben Race Conditions in den Komponenten apport und systemd-coredump identifiziert. Sie wurden unter den CVE-Nummern CVE-2025-5054 und CVE-2025-4598 veröffentlicht und ermöglichen es lokalen Angreifern, auf Speicherabzüge privilegierter Prozesse zuzugreifen.

    fosstopia.de/sicherheitslucken

  21. Two information disclosure flaws have been identified in #apport and #systemd-coredump, the core dump handlers in #Ubuntu, #RedHat Enterprise #Linux, and #Fedora, according to the #Qualys Threat Research Unit (TRU).

    Tracked as CVE-2025-5054 and CVE-2025-4598, both #vulnerabilities are race condition bugs that could enable a local attacker to obtain access to access sensitive information. Tools like Apport and systemd-coredump are designed to handle crash reporting and core dumps in Linux systems.

    thehackernews.com/2025/05/new-

  22. 🎙️ Ready for a mindset shift? 🤯

    In this On Location Briefing from #RSAC2025, we catch up with one of the industry’s leading voices on risk-based security, Richard Seiersen, for an insightful discussion you won’t want to miss!

    🚀 New Briefing from #RSAC 2025: This Is What Happens When Security Stops Chasing Threats and Starts Managing Risk

    At RSA Conference 2025, Sean Martin, CISSP caught up with Rich Seiersen, Chief Risk Technology Officer at Qualys, to talk about why simply chasing threats isn’t enough — and why risk-based security is the future.

    🔐 How can organizations rethink their priorities to focus on what truly matters in cybersecurity?

    Find out how Qualys is helping companies shift from reactive defense to proactive, risk-driven security strategies.

    🎙️ Watch, listen, or read the full conversation here:
    👉 itspmagazine.com/their-stories

    📌 Learn more about Qualys’ work:
    👉 itspmagazine.com/directory/qua

    🛰️ See all our RSAC 2025 coverage:
    👉 itspmagazine.com/rsac25

    🌟 Discover more Brand Stories and Briefings from innovative companies:
    👉 itspmagazine.com/brand-story

    🎥🎙️ This is just one of the many incredible conversations we recorded On Location in San Francisco, as Sean Martin and Marco Ciappelli covered the event as official media partners for the 11th year in a row.

    Stay tuned for more Brand Stories, Briefings, and candid conversations from RSAC 2025!

    🎤 Looking ahead:
    If your company would like to share your story with our audiences On Location, we’re gearing up for Infosecurity Europe in June and Black Hat USA in August!

    ⚡ RSAC 2025 sold out fast — we expect the same for these next events.
    🎯 Reserve your full sponsorship or briefing now: itspmagazine.com/purchase-prog

    #cybersecurity #infosec #infosecurity #technology #tech #society #business #riskmanagement #riskbasedsecurity #securitystrategy #qualys