SentinelaTI

Threat Intelligence OSINT · pt-PT

Filtros
174 resultados

Ameaças Recentes

174 itens correspondem aos filtros
CríticoVulnerabilidadeCVSS 9.9NVD · 6d

CVE-2026-0284 — CVSS 9.9

An XML injection vulnerability in the Large Scale VPN (LSVPN) functionality of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker with network access to inject malicious XML content, potentially leading to information disclosure or corruption of internal LSVPN satellite data. Panorama, Cloud NGFW, and Prisma® Access are not impacted by this vulnerability.

CVE-2026-0284
CríticoGeralCVSS 9.8NVD · 3h

CVE-2023-49899 — CVSS 9.8

An unauthenticated remote attacker can execute any command on the affected device due to not correctly verifying the origin of a communication channel.

CVE-2023-49899
CríticoVulnerabilidadeCVSS 9.8NVD · 1d

CVE-2026-46634 — CVSS 9.8

Twig is a template language for PHP. From 3.9.0 until 3.26.0, template_from_string() compiles an inner template under a synthesized __string_template__<hash> name that can fall outside a SourcePolicyInterface sandbox decision, allowing a sandboxed template that can call template_from_string and include to render an inner template without security policy enforcement. This issue is fixed in version

CVE-2026-46634
CríticoGeralCVSS 9.8NVD · 1d

CVE-2026-46633 — CVSS 9.8

Twig is a template language for PHP. Prior to 3.26.0, Compiler::string() does not escape single quotes when a template name from a {% use %} tag is placed inside a PHP single-quoted string literal, allowing a crafted template name to terminate the string and inject arbitrary PHP expressions into the compiled cache file. This issue is fixed in version 3.26.0.

CVE-2026-46633
CríticoVulnerabilidadeCVSS 9.8NVD · 1d

CVE-2026-47767 — CVSS 9.8

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. From 5.4.46 until 5.4.52, 6.4.40, 7.4.12, and 8.0.12, the CVE-2024-50340 fix gated runtime argv parsing on empty($_GET), but parse_str() and the web SAPI can disagree, allowing a crafted query string to leave $_GET empty while $_SERVER['argv'] still carries attacker-controlled --env or --no-debug flag

CVE-2026-47767
CríticoGeralCVSS 9.8NVD · 1d

CVE-2026-58644 — CVSS 9.8

Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code over a network.

CVE-2026-58644
CríticoVulnerabilidadeCVSS 9.8NVD · 2d

CVE-2026-62392 — CVSS 9.8

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Apache Kylin. A backend API may bring job config parameters to OS command line. This issue affects Apache Kylin: from 4 through 5.0.3. Users are recommended to upgrade to version 5.0.4, which fixes the issue.

CVE-2026-62392
CríticoMalwareCVSS 9.8NVD · 2d

CVE-2026-62390 — CVSS 9.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache Kylin. A backend API refreshing table catalog may cause the injection to the generated SQL. This issue affects Apache Kylin: from 4 through 5.0.3. Users are recommended to upgrade to version 5.0.4, which fixes the issue.

CVE-2026-62390
CríticoGeralCVSS 9.8NVD · 5d

CVE-2026-57156 — CVSS 9.8

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.28.0 on 32-bit builds, FreeRDP clients contain an integer overflow in update_read_delta_points in libfreerdp/core/orders.c when multiplying an attacker-controlled point count by sizeof(DELTA_POINT), allowing a malicious RDP peer to allocate an undersized heap buffer and then write beyond it during initialization. This issu

CVE-2026-57156
CríticoGeralCVSS 9.6NVD · 5d

CVE-2026-59792 — CVSS 9.6

In JetBrains IntelliJ IDEA before 2026.1.4, 2026.2 code execution via path traversal in project workspace ID handling was possible

CVE-2026-59792
CríticoGeralCVSS 9.1NVD · 1d

CVE-2026-45069 — CVSS 9.1

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Prior to 6.4.40, 7.4.12, and 8.0.12, OidcTokenHandler::verifyClaims() registered audience (aud), issuer (iss), and expiry (exp) checkers but did not pass the mandatory claims list to ClaimCheckerManager::check(), so a validly signed JWT that omitted those claims could pass verification. This issue is

CVE-2026-45069
CríticoGeralCVSS 9.1NVD · 1d

CVE-2026-45063 — CVSS 9.1

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Prior to 5.4.52, 6.4.40, 7.4.12, and 8.0.12, X509Authenticator extracts the user identifier from $_SERVER['SSL_CLIENT_S_DN'] with an unanchored regex that matches emailAddress= anywhere in the distinguished name, allowing an attacker with a trusted certificate containing emailAddress=victim inside ano

CVE-2026-45063
CríticoGeralCVSS 9.1NVD · 2d

CVE-2026-13221 — CVSS 9.1

Perl versions through 5.43.9 produce silently incorrect regular expression matches when an alternation of more than 65535 fixed string branches is compiled into a trie in Perl_study_chunk. When such branches are combined into a trie, the delta between the first branch and the shared tail is stored in a 16-bit field. A branch count above 65535 overflows the field, and the trie's match decision tab

CVE-2026-13221
CríticoVulnerabilidadeCVSS 9.1NVD · 3d

CVE-2026-40469 — CVSS 9.1

Integer overflow vulnerability has been found in "builtin.c" program file of gawk (do_sub() routine). This issue could be used to overwrite gawk heap metadata and objects causing the program to crash. It affects 32-bit builds of gawk in versions 5.4.0 and below.

CVE-2026-40469
CríticoMalwareCVSS 9.1NVD · 3d

CVE-2026-40468 — CVSS 9.1

Integer overflow vulnerability has been found in "builtin.c" program file of gawk. This issue may lead to memory exhaustion on the hosting operating system and could be used to overwrite gawk heap metadata and objects with attacker-controlled bytes. It affects gawk in versions 5.4.0 and below.

CVE-2026-40468
CríticoVulnerabilidadeCVSS 9.1NVD · 3d

CVE-2026-57830 — CVSS 9.1

The Joomla extension Helix Ultimate is vulnerable to an unauthenticated arbitrary file deletion.

CVE-2026-57830
CríticoVulnerabilidadeCVSS 9.1NVD · 5d

CVE-2026-57158 — CVSS 9.1

FreeRDP is a free implementation of the Remote Desktop Protocol. From 3.21.0 before 3.28.0, FreeRDP clients using the GFX pipeline contain an incomplete fix for CVE-2026-23530 in planar_decompress_plane_rle_only in libfreerdp/codec/planar.c, allowing a malicious RDP server to send a truncated RDPGFX_CMDID_WIRETOSURFACE_1 planar payload that reads one byte past the input buffer. This issue is fixed

CVE-2026-57158
CríticoIA & CibersegurançaBleepingComputer · 1d

We built a vulnerability vending machine: AI tokens in, zero-days out - BleepingComputer

We built a vulnerability vending machine: AI tokens in, zero-days out BleepingComputer

CríticoVulnerabilidadeThe Register — Security · 1d

LegacyHive: 'Bone-shattering' zero-day from Microsoft's serial tormentor not the haymaker that was promised

Experts say it’s a useful post-compromise tool, for those with the brain cells required to put it together

CríticoVulnerabilidadeDark Reading · 1d

Records Are Made to Be Broken: Patch Tuesday Raises Triage Stakes

Three of the 622 CVEs for which Microsoft issued patches this week are zero-days; there are more than 60 critical vulnerabilities.

CríticoVulnerabilidadeBleepingComputer · 1d

Microsoft July 2026 Patch Tuesday fixes massive 570 flaws, 3 zero-days - BleepingComputer

Microsoft July 2026 Patch Tuesday fixes massive 570 flaws, 3 zero-days BleepingComputer

CríticoVulnerabilidadeBleepingComputer · 1d

Progress confirms ShareFile zero-day flaw behind Storage Zone shutdown - BleepingComputer

Progress confirms ShareFile zero-day flaw behind Storage Zone shutdown BleepingComputer

ImportanteGeralCVSS 8.1NVD · 1d

CVE-2026-50694 — CVSS 8.1

Use after free in Windows Secure Socket Tunneling Protocol (SSTP) allows an unauthorized attacker to execute code over a network.

CVE-2026-50694
ImportanteMalwareCVSS 7.8NVD · 6d

CVE-2026-58459 — CVSS 7.8

gpsd through release-3.27.5, fixed at commit 4c06658, contains a command injection vulnerability in gpsprof that allows attackers who control the GPS device subtype value to execute arbitrary shell commands by embedding backtick payloads in the gnuplot plot title without proper escaping. The subtype field sourced from a DEVICES JSON log entry or NMEA PGRMT sentence is written into a generated gnup

CVE-2026-58459
ImportanteIA & CibersegurançaCVSS 7.7IOC 1NVD · 6d

CVE-2026-59216 — CVSS 7.7

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Prior to 0.10.0, get_event_call delivered execute:python and execute:tool Socket.IO events to a client-supplied session_id after checking only that the session was connected, allowing authenticated users who learned another socket ID through ydoc:document:join to run code interpreter Python or tools in that user

CVE-2026-59216
ImportanteVulnerabilidadeCVSS 7.5NVD · 1d

CVE-2026-59836 — CVSS 7.5

A improper certificate validation vulnerability in Fortinet FortiClientEMS 7.4.3 through 7.4.5, FortiClientEMS 7.4.0 through 7.4.1, FortiClientEMS 7.2 all versions may allow attacker to information disclosure via <insert attack vector here>

CVE-2026-59836
ImportanteMalwareCVSS 7.3NVD · 6d

CVE-2026-53963 — CVSS 7.3

Discourse is an open-source discussion platform. Prior to 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5, a malicious second factor name on an attacker-controlled account was not escaped in the delete confirmation dialog, allowing stored cross-site scripting when an administrator impersonated that account. This issue is fixed in versions 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5.

CVE-2026-53963
ImportanteIA & CibersegurançaCVSS 7.3NVD · 6d

CVE-2026-59214 — CVSS 7.3

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Prior to 0.10.0, Open WebUI runs client-side Python with Pyodide in a same-origin web worker, allowing stored chat payloads that use pyodide.http.pyfetch or the js module fetch and XMLHttpRequest APIs to issue authenticated same-origin requests when a victim clicks Run, which can reach admin-only endpoints and ex

CVE-2026-59214
ImportanteSupply ChainBleepingComputer · 23h

AsyncAPI npm packages infected with credential-stealing malware - BleepingComputer

AsyncAPI npm packages infected with credential-stealing malware BleepingComputer

ImportanteSupply ChainThe Hacker News · 1d

Compromised AsyncAPI npm Packages Deliver Multi-Stage Botnet Malware

Four compromised npm packages in the @asyncapi namespace have been observed distributing a multi-stage botnet loader, according to findings from OX Security, SafeDep, Socket, and StepSecurity. The affected packages are listed below - @asyncapi/generator-helpers@1.1.1 @asyncapi/generator-components@0.7.1 @asyncapi/gener

ImportanteSupply ChainCisco Talos · 2d

The serpent’s tongue: Luring the Python out of its den

This blog examines the full lifecycle of a Python package, from hosting on repositories such as PyPI or custom web servers, through source and wheel distribution formats, to the final installation into virtual or system-wide Python environments.

InformativoGeralCVSS 6.8NVD · 5d

CVE-2026-57216 — CVSS 6.8

RabbitMQ is a messaging and streaming broker. Prior to 3.13.15, 4.0.20, 4.1.11, and 4.2.6, AMQP 0-9-1, AMQP 1.0, and Stream Protocol authentication can allow a loopback-restricted user such as guest to connect remotely when traffic is accepted through a trusted PROXY-protocol path and the backend listener is loopback-bound because the loopback check uses the listener-side socket address instead of

CVE-2026-57216
InformativoGeralCVSS 6.5NVD · 5d

CVE-2026-57211 — CVSS 6.5

RabbitMQ is a messaging and streaming broker. Prior to 4.1.11 and 4.2.6 on Windows, the RabbitMQ management plugin static file handler rabbit_mgmt_wm_static can pass URL-encoded backslashes to erl_prim_loader:read_file_info before path validation when multiple management extension plugins are enabled, causing outbound DNS and SMB requests to attacker-controlled UNC paths. This issue is fixed in ve

CVE-2026-57211
InformativoGeralCVSS 5.3NVD · 1d

CVE-2026-56164 — CVSS 5.3

Missing authentication for critical function in Microsoft Office SharePoint allows an unauthorized attacker to elevate privileges over a network.

CVE-2026-56164