A vulnerability classified as critical has been found in omec-project amf up to 2.1.1 . Affected by this issue is the function PDUSessionResourceModifyIndication of the file /go/src/amf/ngap/handler.g…
cyberintel.kalymoon.com · 33470 articles · updated every 4 hours · grows forever
A vulnerability classified as critical has been found in omec-project amf up to 2.1.1 . Affected by this issue is the function PDUSessionResourceModifyIndication of the file /go/src/amf/ngap/handler.g…
A vulnerability classified as critical was found in omec-project amf up to 2.1.1 . This affects an unknown part of the component NGSetupRequest Handler . Such manipulation leads to memory corruption. …
A vulnerability, which was classified as critical , has been found in omec-project amf up to 2.1.1 . This vulnerability affects unknown code of the component NGReset Message Handler . Performing a man…
A vulnerability, which was classified as critical , was found in 546669204 vps-inventory-monitoring up to 98c00b370668c96ae75e91c15548d9ea113652d9 . This issue affects the function eval of the file ap…
A vulnerability has been found in calcom cal.diy up to 4.9.4 and classified as problematic . Impacted is an unknown function. The manipulation leads to cross-site request forgery. This vulnerability i…
A vulnerability was found in calcom cal.diy up to 4.9.4 and classified as critical . The affected element is the function validateUrlForSSRF of the file apps/web/app/api/logo/route.ts of the component…
A vulnerability was found in QuantumNous new-api up to 0.12.1 . It has been classified as critical . The impacted element is the function SearchUserTopUps/SearchAllTopUps of the file model/topup.go of…
A vulnerability was found in QuantumNous new-api up to 0.12.1 . It has been declared as problematic . This affects the function RelayMidjourneyImage/GetByOnlyMJId of the file router/relay-router.go of…
A vulnerability was found in Ruby up to 4.0.4 . It has been rated as problematic . This impacts the function rb_getaddrinfo of the file ext/socket/raddrinfo.c of the component Authoritative Handler . …
A vulnerability categorized as problematic has been discovered in baptisteArno typebot.io up to 3.15.x . Affected is an unknown function of the file packages/embeds/js . Executing a manipulation can l…
A vulnerability identified as critical has been detected in baptisteArno typebot.io up to 3.15.x . Affected by this vulnerability is the function validateHttpReqUrl of the component HTTP Request Handl…
A vulnerability labeled as problematic has been found in Arm ArmNN up to 2026-03-27 . Affected by this issue is the function TensorShape::GetNumElements of the file armnn/Tensor.cpp of the component T…
How Frontier firms secure AI at scale: read how Microsoft customers embed governance, identity, and cloud security to make protection an enabler of AI growth. The post Microsoft Security success stori…
A multi-stage attack on Linux devices began with an exposed F5 BIG-IP edge appliance and pivoted to an internal Confluence server for credential theft and identity compromise. Learn how the threat act…
Microsoft has been recognized as a Leader in The Forrester Wave™: Workforce Identity Security Platforms, Q2 2026, receiving the highest scores in both the current offering and strategy categories. The…
Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intention…
DOJ Says KimWolf Powered Massive DDoS-for-Hire Operations U.S. prosecutors charged a Canadian man accused of operating the KimWolf botnet, alleging the DDoS-for-hire platform compromised nearly two mi…
The Package Is Either Not Yet Ready or Bumping Up Against American Objections Europe for the third time delayed presenting its long-awaited Tech Sovereignty Package, legislation aimed at weaning the c…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two critical Microsoft Defender vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, warning organizations o…
A newly disclosed issue with Google Cloud API keys reveals that deleted credentials may remain usable for up to 23 minutes, exposing projects to potential abuse even after revocation. The finding rais…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Langflow vulnerability, tracked as CVE-2025-34291, to its Known Exploited Vulnerabilities (KEV) Catalog, signaling…
LiteSpeed has disclosed and patched a critical 0‑day privilege escalation flaw in its user-end cPanel plugin that is already being actively exploited to gain root access on Linux hosting servers. The …
Ubiquiti Networks has released urgent security updates to address a series of highly critical vulnerabilities affecting its UniFi OS platform. These severe flaws could allow unauthenticated, remote at…
European authorities have cracked down on a VPN that has been used for various criminal activities. The operation, led by investigators in France and the Netherlands with help from Europol and Eurojus…