talosblog - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	TALOSBLOG:4FE4A...	Less panic patching, more precision_TALOSBLOG:4FE4A1E5153F51581C603B5FCEB8D657 ![Less panic patching, more precision](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2026/05/threat_source-3...	N/A	N/A	May 28, 2026	TALOSBLOG
NONE	TALOSBLOG:95533...	DICOM, Pydicom, GDCM, and Orthanc: A technical tour of what really happens in the heap_TALOSBLOG:9553310FF79DF18D707992EB067AB9BC ![DICOM, Pydicom, GDCM, and Orthanc: A technical tour of what really happens in the heap](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-...	N/A	N/A	May 28, 2026	TALOSBLOG
HIGH 7.8	TALOSBLOG:3CE3E...	MediaArea heap-based buffer overflow vulnerabilities_TALOSBLOG:3CE3EFD6D6C12FCADA2BE088C9F13B22 ![MediaArea heap-based buffer overflow vulnerabilities](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2026/0...	N/A	N/A	May 27, 2026	TALOSBLOG
NONE	TALOSBLOG:6A040...	Introducing EvidenceForge: Synthetic security logs that don’t look (as) fake_TALOSBLOG:6A040758F74A635D30A2B36B9A3B15B3 * Security teams need high-quality, labeled datasets to train threat hunters and incident responders, validate detection logic, and develop robust ...	N/A	N/A	May 27, 2026	TALOSBLOG
NONE	TALOSBLOG:8A230...	The art of being ungovernable_TALOSBLOG:8A230343CA41CDA991DD2BFA3873D7AA ![The art of being ungovernable](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2026/05/threat_source-2.jpg) ...	N/A	N/A	May 21, 2026	TALOSBLOG
HIGH 8.8	TALOSBLOG:DEFD3...	TP-Link, Photoshop, OpenVPN, Norton VPN vulnerabilities_TALOSBLOG:DEFD304B65DC1819E89A52C252EE300F ![TP-Link, Photoshop, OpenVPN, Norton VPN vulnerabilities](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/202...	N/A	N/A	May 19, 2026	TALOSBLOG
NONE	TALOSBLOG:6B4FF...	From PDB strings to MaaS: Tracking a commodity BadIIS ecosystem used by Chinese-speaking threat_TALOSBLOG:6B4FFB94F1626887BB38BFAFA7668A87 * Cisco Talos has uncovered a BadIIS variant -- identifiable by its embedded "demo.pdb" strings -- that functions as commodity malware. This varian...	N/A	N/A	May 19, 2026	TALOSBLOG
NONE	TALOSBLOG:57890...	The time of much patching is coming_TALOSBLOG:5789026EF53D30E3F9C3E6C8927FC37B ![The time of much patching is coming](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2026/05/threat_source-1...	N/A	N/A	May 14, 2026	TALOSBLOG
CRITICAL 10	TALOSBLOG:51F51...	Ongoing exploitation of Cisco Catalyst SD-WAN vulnerabilities_TALOSBLOG:51F5173F108B01EE2E227083EBCF7F20 * Cisco Talos is tracking the active exploitation of CVE-2026-20182, an authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller, fo...	N/A	N/A	May 14, 2026	TALOSBLOG
NONE	TALOSBLOG:D24FC...	Breaking things to keep them safe with Philippe Laulheret_TALOSBLOG:D24FCD0640C07B256B43BFBC1EBBC862 ![Breaking things to keep them safe with Philippe Laulheret](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2...	N/A	N/A	May 13, 2026	TALOSBLOG