Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 7.8 MS:CVE-2026-41054

Missing exit out of permission check in haveged could lead to root exploit_MS:CVE-2026-41054

{“lastseen”:”2026-05-24T09:15:35″,”description”:””,”published”:”2026-05-23T08:02:...

N/A N/A MSCVE
NONE THN:1F5DB06F0A1...

npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks_THN:1F5DB06F0A1CBAE3C17369D47934772C

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi4rnMZgOYbsYr65UN9AZ3oFzcAwqXSYqgRfjUGpeaQeyP-0OAaqJ9aceXPAiujRKwyGQMa_4ShcSvtOWPb9T...

N/A N/A THN
NONE THN:125E85C26B1...

Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware_THN:125E85C26B191619421AFF33782F588B

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiQ5LyRYJIkEVUSrrBV-_qvrXIKC-B4h0JAxyV4IalzuiEzXi6KeCnZNTUWIIld3oeC5kDx85xppqYm9tG_UB...

N/A N/A THN
NONE HACKREAD:D8678F...

RondoDox Botnet Exploits Critical 2018 Vulnerability to Hijack ASUS Routers_HACKREAD:D8678FA7FECB09EEC072D6D2AC211CEA

Cybersecurity firm VulnCheck reveals hackers are using a critical 2018 vulnerability to bypass authentication and hack over a million ASUS routers.

N/A N/A HACKREAD
NONE WIRED:19F6DF013...

The FBI Wants ‘Near Real-Time’ Access to US License Plate Readers_WIRED:19F6DF0137B1A6CDEDF4CD03F67D79AD

Plus: Google publishes a live exploit for an unpatched flaw, the feds arrest two men accused of creating thousands of nonconsensual deepfake nudes,...

N/A N/A WIRED
CRITICAL 9.3 THN:F3DF0F1FAAD...

Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software_THN:F3DF0F1FAAD5F0559EB7E7FFF600C23D

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjOPcHXcMRS-BJNvy9aeoCz5H2Mmdh6mO6Kl3kM-l216B-3Wc0Iy5wayPkxJ79KtkHx2CGBwDVPMMeuB9E3jQ...

N/A N/A THN
NONE THN:E1615BDF4B6...

Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer_THN:E1615BDF4B62CB1432BC9279BE9C0DE7

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgkqwlAgmL-HrE2pSx8xqfY4-AyYZ59wK4x5AWtnCXSHRoBO1wcYTpWw42Fe6VRoAT77e914MSqZW56fKX95I...

N/A N/A THN
CRITICAL 10 THN:E2766B13B3B...

LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root_THN:E2766B13B3BBC0B8100BFD2FE1780857

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjM0W1UqsbcZ-8IV_n8ov3V24MQ74VaKe3auGFWNunDUfubEBeKEGREuFjC9-i7H_fLfSwFQQ5wqe8bhVWvAU...

N/A N/A THN
CRITICAL 9.8 THN:090748905BC...

Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV_THN:090748905BCD2E05CB2679EBE28F1EAD

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhKqQ4Uk8lGWwF7f6lrmP6dRHkEmQTJsqFs8xvJ5256xUcHTeWMNVMkPguALNqLPpJWneU9XWIEzi4jSUVTiS...

N/A N/A THN
HIGH 7.5 MS:CVE-2026-3039

BIND 9 server memory exhaustion during GSS-API TKEY negotiation_MS:CVE-2026-3039

{“lastseen”:”2026-05-23T07:16:22″,”description”:””,”published”:”2026-05-23T08:01:...

N/A N/A MSCVE