Recent Advisories

Severity ID Title Vendor Product Date Type
NONE THN:B2122E08A29...

What the Numbers Say About FIFA 2026 Cyber Risk_THN:B2122E08A297EDF9158A122D018B4FAD

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhEZt1Yxw3eiMzyzPpblDGru8JlEmw-Rr1Lgn8hG9YCvxeCNDpKOCyn5_Evvmc_lB9tKDpcmBLfH3a6mHGkZB...

N/A N/A THN
NONE H1:3831345

curl: CURLSHOPT_UNSHARE race can cause UAF in shared SSL session cache during HTTPS transfer_H1:3831345

## Summary `CURLSHOPT_UNSHARE` can free a shared SSL session cache while another thread is starting a normal HTTPS transfer with the same share ha...

N/A N/A HACKERONE
CRITICAL 10 THN:92496BE41BB...

Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer_THN:92496BE41BBB472864D9FF3429DE96A7

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgEid1CxvsX2dPrKoA1VzJ6PUhwrXxvSC4ehRmgyaRRCJlP_MFSeOxvwrT2ODJSbQx3E-7bBwBG4YpP3CQGLz...

N/A N/A THN
NONE THN:7F75382DA65...

AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks_THN:7F75382DA651A5ECDEF282D4E511FDDF

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhCyrr25-wXst4kOLIEi1-Q1d5XMVDCvWqUacEoSRsLn6C5CbKoXGLb4nzTB-DVr9cLOkyuIT5wyMrQICAVhQ...

N/A N/A THN
NONE THN:27E06C2F7B7...

New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials_THN:27E06C2F7B7D18B0ABBE148809FF4D82

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEitNDarGF3uRKXTWC12cbM97uJW3DxiLuQwmplVLHEqdrUZJdzbkMz6Wc524z5Xu2GGSyNYhMT_m9kGqqGjRm...

N/A N/A THN
NONE H1:3832393

curl: libcurl upload read callbacks miss recursive API guard, allowing prohibited multi API reentry and ASAN-confirmed UAF_H1:3832393

## Summary: Several libcurl upload read callback paths invoke the application-provided CURLOPT_READFUNCTION without marking the easy handle as bein...

N/A N/A HACKERONE
HIGH 8.8 THN:9247B208C4F...

Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs_THN:9247B208C4FFADCDFC198B9F5D16121C

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjgEWbrJH-z_uAL6GFaOqplYF1ewSOBvFpaKD24W74VEBaSO-pW3sy0I0e57Bmc9yBKV4vb6zWYaVjd-oTSy2...

N/A N/A THN
NONE WIRED:9AB3DD2ED...

Meta Contractors Posed as Teens to Prompt Rival Chatbots About Suicide, Sex, and Drugs_WIRED:9AB3DD2ED75ACDEE876552BBEA9C220C

Hundreds of contractors working on a project for Meta pretended to be kids in order to see how other chatbots like Gemini and ChatGPT would respond...

N/A N/A WIRED
NONE TRENDMICROBLOG:...

TONResolver RAT Abuses TON Blockchain to Target Japan’s Hotel Industry_TRENDMICROBLOG:1687EF9DF6B2AEFD4185295934D5FDC8

In this blog entry, TrendAI™ Research examines a wave of phishing emails observed in May 2026 that targeted Japanese accommodation facilities using...

N/A N/A TRENDMICROBLOG
NONE HACKREAD:6CDCF7...

212 New Venezuela Earthquake Domains Prompt Donation Scam Warnings_HACKREAD:6CDCF7B154C60DEF8886FE077587FBA7

Researchers spotted 212 new domains registered after Venezuela's earthquake, warning donors of donation scam risks and urging them to verify relief...

N/A N/A HACKREAD