Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 8.8 MS:CVE-2026-11092

Chromium: CVE-2026-11092 Insufficient policy enforcement in DevTools_MS:CVE-2026-11092

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...

N/A N/A MSCVE
MEDIUM 6.5 MS:CVE-2026-11039

Chromium: CVE-2026-11039 Uninitialized Use in Skia_MS:CVE-2026-11039

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...

N/A N/A MSCVE
MEDIUM 5.7 MS:CVE-2026-11199

Chromium: CVE-2026-11199 Insufficient validation of untrusted input in WebRTC_MS:CVE-2026-11199

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...

N/A N/A MSCVE
HIGH 8.8 MS:CVE-2026-11147

Chromium: CVE-2026-11147 Use after free in WebML_MS:CVE-2026-11147

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...

N/A N/A MSCVE
NONE HACKREAD:8FCB67...

Miasma Malware Hits 32 Red Hat Packages via Compromised GitHub Account_HACKREAD:8FCB67E5B8DC94B34C1007AED8D877F6

32 Red Hat npm packages compromised by Miasma malware expose cloud tokens, CI/CD secrets and developer credentials in supply chain attack.

N/A N/A HACKREAD
NONE MSSECURE:E1EAFC...

Securing CI/CD in an agentic world: Claude Code Github action case_MSSECURE:E1EAFCDAA5DF186F9FDB99A1F9C2ED1C

Microsoft Threat Intelligence discovered that Anthropic's Claude Code GitHub Action could expose CI/CD workflow secrets when AI agents process untr...

N/A N/A MSSECURE
NONE HACKREAD:1FC85E...

Atlas Menu Data Breach Exposes 64,000 GTA V and CS2 Cheat Service Users_HACKREAD:1FC85EA1FE1F8DE63B49601B3A576F6F

Atlas Menu Data Breach exposes 64,000 GTA V and CS2 cheat service users, leaking emails, IPs, support tickets and hashed passwords.

N/A N/A HACKREAD
NONE THN:4D2A4B53EC1...

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks_THN:4D2A4B53EC1F983BEA9EEC8241B5079D

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjFimSGBOnvlCj_r6fiLdzK6V8DLTIQYjROKxHgQH8QxyRVIL3NDpQe9lBISjqCSjcZNl6VPhHVFtdJ8gPe2F...

N/A N/A THN
HIGH 7.5 H1:3784125

curl: GnuTLS OCSP stapling accepts unrelated SingleResponse (no cert-ID binding)_H1:3784125

## Summary This report describes a **variant** of the publicly disclosed curl vulnerability **CVE-2020-8286** (OCSP stapling verification bypass),...

N/A N/A HACKERONE
NONE THN:A8BF8FBEF42...

Android Spyware Asin Targets Arabic Users via Fake News, PDF and War Map Apps_THN:A8BF8FBEF4274F3EC8D5CB9EE11940A3

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEimTj2SdhVr1jj9e2RqrAOW9dIsBmuMZJsqWGt6weL0DOfhwYQF_6Hp5B-sYt6ZZEGQB_YPTOW6Xb2x5Jygle...

N/A N/A THN