home.social

#vulnerabilityexploitation — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #vulnerabilityexploitation, aggregated by home.social.

  1. Exploiting Windows Drivers Without Hardware: The BYOVD Perspective

    Discover how attackers can exploit Windows drivers without hardware, turning kernel-mode driver bugs into powerful tools to bypass security controls. The Atos Threat Research Center reveals a game-changing method to manipulate reachability from userland on Windows 11 23H2.

    osintsights.com/exploiting-win

    #Byovd #Windows #KernelDrivers #VulnerabilityExploitation #Windows11

  2. Vulnerability Exploitation Surges in Data Breaches

    Vulnerability exploitation is now the top attack vector, responsible for a staggering one-third of all data breaches. This alarming trend highlights the urgent need for robust patch management and cybersecurity measures to stay ahead of threats.

    osintsights.com/vulnerability-

    #VulnerabilityExploitation #DataBreaches #VerizonDbir #CredentialAbuse #Phishing

  3. NGINX Flaw CVE-2026-42945 Actively Exploited, Threatens Worker Crashes and RCE

    A newly discovered NGINX flaw, CVE-2026-42945, is being actively exploited, posing a significant threat of worker crashes and remote code execution (RCE) through specially crafted HTTP requests. This high-severity vulnerability, with a CVSS score of 9.2, has been lurking in NGINX versions since 2008,…

    osintsights.com/nginx-flaw-cve

    #Nginx #Cve202642945 #RemoteCodeExecution #HeapBufferOverflow #VulnerabilityExploitation

  4. NGINX Flaw CVE-2026-42945 Actively Exploited, Threatens Worker Crashes and RCE

    A newly discovered NGINX flaw, CVE-2026-42945, is being actively exploited, posing a significant threat of worker crashes and remote code execution (RCE) through specially crafted HTTP requests. This high-severity vulnerability, with a CVSS score of 9.2, has been lurking in NGINX versions since 2008,…

    osintsights.com/nginx-flaw-cve

    #Nginx #Cve202642945 #RemoteCodeExecution #HeapBufferOverflow #VulnerabilityExploitation

  5. NGINX Flaw CVE-2026-42945 Actively Exploited, Threatens Worker Crashes and RCE

    A newly discovered NGINX flaw, CVE-2026-42945, is being actively exploited, posing a significant threat of worker crashes and remote code execution (RCE) through specially crafted HTTP requests. This high-severity vulnerability, with a CVSS score of 9.2, has been lurking in NGINX versions since 2008,…

    osintsights.com/nginx-flaw-cve

    #Nginx #Cve202642945 #RemoteCodeExecution #HeapBufferOverflow #VulnerabilityExploitation

  6. NGINX Flaw CVE-2026-42945 Actively Exploited, Threatens Worker Crashes and RCE

    A newly discovered NGINX flaw, CVE-2026-42945, is being actively exploited, posing a significant threat of worker crashes and remote code execution (RCE) through specially crafted HTTP requests. This high-severity vulnerability, with a CVSS score of 9.2, has been lurking in NGINX versions since 2008,…

    osintsights.com/nginx-flaw-cve

    #Nginx #Cve202642945 #RemoteCodeExecution #HeapBufferOverflow #VulnerabilityExploitation

  7. NGINX Flaw CVE-2026-42945 Actively Exploited, Threatens Worker Crashes and RCE

    A newly discovered NGINX flaw, CVE-2026-42945, is being actively exploited, posing a significant threat of worker crashes and remote code execution (RCE) through specially crafted HTTP requests. This high-severity vulnerability, with a CVSS score of 9.2, has been lurking in NGINX versions since 2008,…

    osintsights.com/nginx-flaw-cve

    #Nginx #Cve202642945 #RemoteCodeExecution #HeapBufferOverflow #VulnerabilityExploitation

  8. US Cyber Officials Tighten Patching Deadlines Amid AI-Driven Threats

    US cyber officials are considering a drastic reduction in patching deadlines, from two weeks to just three days, as AI-driven threats rapidly escalate and attackers gain unprecedented speed in discovering and exploiting vulnerabilities. This proposed shift reflects a urgent response to the evolving threat…

    osintsights.com/us-cyber-offic

    #AidrivenThreats #PatchManagement #VulnerabilityExploitation #EmergingThreats #ZeroDay

  9. MetInfo CMS Flaw Exploited for Remote Code Execution Attacks

    A critical flaw in the MetInfo content management system, CVE-2026-29014, allows remote attackers to execute arbitrary code with a CVSS score of 9.8, putting your site at risk of full takeover. This unauthenticated PHP code-injection vulnerability affects versions 7.9, 8.0, and 8.1, and can be exploited with crafted…

    osintsights.com/metinfo-cms-fl

    #RemoteCodeExecution #Cve202629014 #MetinfoCms #PhpCodeInjection #VulnerabilityExploitation

  10. MetInfo CMS Flaw Exploited for Remote Code Execution Attacks

    A critical flaw in the MetInfo content management system, CVE-2026-29014, allows remote attackers to execute arbitrary code with a CVSS score of 9.8, putting your site at risk of full takeover. This unauthenticated PHP code-injection vulnerability affects versions 7.9, 8.0, and 8.1, and can be exploited with crafted…

    osintsights.com/metinfo-cms-fl

    #RemoteCodeExecution #Cve202629014 #MetinfoCms #PhpCodeInjection #VulnerabilityExploitation

  11. cPanel vulnerability exploited in wild, CISA warns

    A critical cPanel vulnerability, CVE-2026-41940, with a near-perfect 9.8 CVSS score, is being exploited in the wild, putting roughly 1.5 million exposed instances at risk of being opened without a password. This flaw allows attackers to bypass authentication by cleverly manipulating the password field with hidden line breaks.

    osintsights.com/cpanel-vulnera

    #Cpanel #Cve202641940 #AuthenticationBypass #EmergingThreats #VulnerabilityExploitation

  12. cPanel vulnerability exploited in wild, CISA warns

    A critical cPanel vulnerability, CVE-2026-41940, with a near-perfect 9.8 CVSS score, is being exploited in the wild, putting roughly 1.5 million exposed instances at risk of being opened without a password. This flaw allows attackers to bypass authentication by cleverly manipulating the password field with hidden line breaks.

    osintsights.com/cpanel-vulnera

    #Cpanel #Cve202641940 #AuthenticationBypass #EmergingThreats #VulnerabilityExploitation

  13. Hackers exploit Qinglong flaws for cryptomining deployments

    Hackers are taking advantage of two major flaws in the Qinglong open-source task scheduler, CVE-2026-3965 and CVE-2026-4047, which can be combined to gain remote control of vulnerable systems. These authentication-bypass vulnerabilities affect Qinglong versions 2.20.1 and older, and have been exploited for cryptomining deployments.

    osintsights.com/hackers-exploi

    #Qinglong #Cve20263965 #Cve20264047 #Cryptomining #VulnerabilityExploitation

  14. LMDeploy Vulnerability Exploited Within 13 Hours of Disclosure

    A critical vulnerability in LMDeploy's vision-language module was exploited in the wild just 13 hours after its disclosure, allowing attackers to access sensitive resources and internal networks. This server-side request forgery flaw, tracked as CVE-2026-33626, affects all versions of the toolkit prior to 0.12.0.

    osintsights.com/lmdeploy-vulne

    #ServersideRequestForgery #Ssrf #Lmdeploy #Cve202633626 #VulnerabilityExploitation

  15. LMDeploy Vulnerability Exploited Within 13 Hours of Disclosure

    A critical vulnerability in LMDeploy's vision-language module was exploited in the wild just 13 hours after its disclosure, allowing attackers to access sensitive resources and internal networks. This server-side request forgery flaw, tracked as CVE-2026-33626, affects all versions of the toolkit prior to 0.12.0.

    osintsights.com/lmdeploy-vulne

    #ServersideRequestForgery #Ssrf #Lmdeploy #Cve202633626 #VulnerabilityExploitation

  16. CISA Warns of Active Exploitation of SD-WAN Flaw

    The Cybersecurity and Infrastructure Security Agency (CISA) has sounded the alarm on a newly discovered SD-WAN flaw that's already being exploited by attackers, giving US government agencies just four days to secure vulnerable systems. Time is of the essence in this urgent directive, which CISA has framed as an operational emergency.

    osintsights.com/cisa-warns-of-

    #Cisa #Sdwan #EmergingThreats #NetworkManager #VulnerabilityExploitation

  17. Kubernetes Environments Under Siege as Attacks Escalate

    Kubernetes environments are under attack like never before, with threat actors exploiting identities and critical vulnerabilities to compromise cloud infrastructure - so what can organizations do to protect themselves? The warning signs are clear: it's time to take action against escalating Kubernetes attacks.

    osintsights.com/kubernetes-env

    #Kubernetes #CloudSecurity #Unit42 #IdentityExploitation #VulnerabilityExploitation

  18. @cyentiainst has been working this week on the inaugural study of EPSS performance. Thought I'd share a pretty chart that we churned out yesterday.

    It addresses the question "What’s the typical pattern of exploitation activity?" As you may suspect, the answer depends on the vulnerability in question. Some vulns are continuously exploited for long periods of time. Some are just a flash in the pan. Exploits of others come in fits and starts.

    Some real-world examples of these patterns are demonstrated in the chart below, which depicts observed exploitation activity for five CVEs over the course of 2023.

    #vulnerabilitymanagement #vulnerabilities #vulnerabilityexploitation #cyberattacks