Vulnerability – NuclearCoffee

Hacker news

Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS

On Mar 18, 2026 7:37 am, by NuclearCoffee

Ravie LakshmananMar 18, 2026Vulnerability / Zero-Day Apple on Tuesday released its first round of Background Security Improvements to address a security flaw in WebKit that affects iOS, iPadOS,… Continue reading

Hacker news

CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths

On Mar 17, 2026 7:12 am, by NuclearCoffee

Ravie LakshmananMar 17, 2026Vulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a medium-severity security flaw impacting Wing FTP to its Known… Continue reading

Hacker news

New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel

On Mar 02, 2026 6:36 pm, by NuclearCoffee

Ravie LakshmananMar 02, 2026Vulnerability / Artificial Intelligence Cybersecurity researchers have disclosed details of a now-patched security flaw in Google Chrome that could have permitted attackers to escalate privileges… Continue reading

Hacker news

CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability

On Feb 25, 2026 6:27 am, by NuclearCoffee

Ravie LakshmananFeb 25, 2026Vulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently disclosed vulnerability in FileZen to its Known Exploited… Continue reading

Hacker news

Anthropic Launches Claude Code Security for AI-Powered Vulnerability Scanning

On Feb 21, 2026 8:52 am, by NuclearCoffee

Ravie LakshmananFeb 21, 2026Artificial Intelligence / DevSecOps Artificial intelligence (AI) company Anthropic has begun to roll out a new security feature for Claude Code that can scan a… Continue reading

Hacker news

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

On Feb 13, 2026 9:59 pm, by NuclearCoffee

Threat actors have started to exploit a recently disclosed critical security flaw impacting BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) products, according to watchTowr. “Overnight we… Continue reading

Hacker news

BeyondTrust Fixes Critical Pre-Auth RCE Vulnerability in Remote Support and PRA

On Feb 09, 2026 10:13 pm, by NuclearCoffee

Ravie LakshmananFeb 09, 2026Enterprise Security / Network Security BeyondTrust has released updates to address a critical security flaw impacting Remote Support (RS) and Privileged Remote Access (PRA) products… Continue reading

Hacker news

Google Warns of Active Exploitation of WinRAR Vulnerability CVE-2025-8088

On Jan 29, 2026 2:10 am, by NuclearCoffee

Ravie LakshmananJan 28, 2026Vulnerability / Threat Intelligence Google on Tuesday revealed that multiple threat actors, including nation-state adversaries and financially motivated groups, are exploiting a now-patched critical security… Continue reading

Hacker news

Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas

On Jan 27, 2026 5:28 pm, by NuclearCoffee

Ravie LakshmananJan 27, 2026Vulnerability / Cloud Security A critical security flaw has been disclosed in Grist‑Core, an open-source, self-hosted version of the Grist relational spreadsheet-database, that could result… Continue reading

Hacker news

Critical Node.js Vulnerability Can Cause Server Crashes via async_hooks Stack Overflow

On Jan 14, 2026 8:40 am, by NuclearCoffee

Jan 14, 2026Ravie LakshmananApplication Security / Vulnerability Node.js has released updates to fix what it described as a critical security issue impacting “virtually every production Node.js app” that,… Continue reading

Tag: Vulnerability

Stay Connected