Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

224 New today

65,462 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

175

Jun 25

Critical

High

Medium

Low

Latest

CVE CVSS 5.3

LibreChat: 2FA Re-enrollment Allows Full Account 2FA Takeover Without OTP Verification_CVE-2026-54036

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, the GET /api/auth/2fa/enable endpoint can be called by an authenticated user (or attacker with a stolen session) even when 2FA is already fully enabled on the account. This endpoint...

CVE-2026-54036 danny-avila LibreChat < 0.8.4-rc1

Jun 25, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.7	CVE-2026-4522	CVE-2026-4522_CVE-2026-4522 Missing authentication for critical function vulnerability in HYPR Passwordless on Windows allows Credentials Interception. This issue affects HYP...	HYPR	Passwordless	Jun 25, 2026	CVE
HIGH 7.5	616C2155-98D5-	Exploit for Classic Buffer Overflow in Qualcomm Apq8097_Firmware_616C2155-98D5-5316-BB35-BF924B098C71 Katana A BootROM exploit for Qualcomm devices released within 2016 til 2019. Brief Explanation of the Exploit With the MSM8998 Nazgul SoC, the comm...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
NONE	HACKREAD:30D641...	Suspected Cyberattack Sends Fake Emergency Alert to Phones Across Brazil_HACKREAD:30D64137BBAEF523BEACA95B9C593977 Brazil’s alert system was taken offline after a fake emergency alert reached phones, with officials investigating a suspected cyberattack and secur...	N/A	N/A	Jun 25, 2026	HACKREAD
NONE	AKAMAIBLOG:897F...	Linode Interfaces and Default Firewall Now Generally Available_AKAMAIBLOG:897F576B3A37AEC3F67BFBDDBAA22474 {“lastseen”:”2026-06-25T13:36:50″,”description”:””,”published”:”2026-06-25T12:00:...	N/A	N/A	Jun 25, 2026	AKAMAIBLOG
NONE	AKAMAIBLOG:86E7...	Your AI Cost Model Stops at the Token Price. The Bill Doesn’t._AKAMAIBLOG:86E718C1FDCAE676A8C175C07AA31106 Your AI cost model stops at the token price, but the bill doesn't. Discover why almost 80% of production AI spend sits in inference and how to opti...	N/A	N/A	Jun 25, 2026	AKAMAIBLOG
NONE	THN:1613ADFA6FD...	Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability_THN:1613ADFA6FDBFEBD884E352668BB4595 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhqtdBDQ0Y38i0JZmDwU6XKiZ1R6HJ0KHe59012E0krnPubG5pJgiTg6IUg4fHEzoW5jm7QyEk8fXOL9swj7F...	N/A	N/A	Jun 25, 2026	THN
MEDIUM 5.5	8FA4E1EF-9BCF-	Exploit for CVE-2025-61155_8FA4E1EF-9BCF-5027-85E0-2F420F5171B6 CVE-2025-61155 — Arbitrary Process Termination in GameDriverX64.sys A signed kernel-mode anti-cheat driver — GameDriverX64.sys, shipped with Tower ...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
NONE	THN:3365FE334D2...	ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories_THN:3365FE334D2647D032BFF59430956DD2 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhO1f6pZmhVaPQd2FjrrAG-IbL0vMk7zHVZ6BqjzkzJS8qd7HlAtIJ-7chRUbqR7tZHPNqdZFbm0QL9O03mkW...	N/A	N/A	Jun 25, 2026	THN
NONE	WIRED:E5004160E...	British Police Built a Sprawling Crime-Prediction Machine. Some Results Couldn’t Be Trusted_WIRED:E5004160E4B8D1DE1356BED5F3D428ED As UK police embrace the AI revolution, a WIRED investigation reveals the messy inside story of one region’s experiment with predictive analytics.	N/A	N/A	Jun 25, 2026	WIRED

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

LibreChat: 2FA Re-enrollment Allows Full Account 2FA Takeover Without OTP Verification_CVE-2026-54036

Recent Advisories

CVE-2026-4522_CVE-2026-4522

Exploit for Classic Buffer Overflow in Qualcomm Apq8097_Firmware_616C2155-98D5-5316-BB35-BF924B098C71

Suspected Cyberattack Sends Fake Emergency Alert to Phones Across Brazil_HACKREAD:30D64137BBAEF523BEACA95B9C593977

Linode Interfaces and Default Firewall Now Generally Available_AKAMAIBLOG:897F576B3A37AEC3F67BFBDDBAA22474

Your AI Cost Model Stops at the Token Price. The Bill Doesn’t._AKAMAIBLOG:86E718C1FDCAE676A8C175C07AA31106

Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability_THN:1613ADFA6FDBFEBD884E352668BB4595

Exploit for CVE-2025-61155_8FA4E1EF-9BCF-5027-85E0-2F420F5171B6

ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories_THN:3365FE334D2647D032BFF59430956DD2

British Police Built a Sprawling Crime-Prediction Machine. Some Results Couldn’t Be Trusted_WIRED:E5004160E4B8D1DE1356BED5F3D428ED

Protect Your Attack Surface with RedGem

Security Intelligence
Feed