Vulnerabilities - The Secure Truth

Breaking

Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621 Hackers Hide Credit Card Stealer in Pixel-Sized SVG Images Targeting Magento Stores Microsoft Suspends Developer Accounts for High-Profile Open Source Projects European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack Ransomware Attacks Surge in 2026: Healthcare and Finance Most Targeted Google Chrome Zero-Day Vulnerability Actively Exploited – Update Immediately Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621 Hackers Hide Credit Card Stealer in Pixel-Sized SVG Images Targeting Magento Stores Microsoft Suspends Developer Accounts for High-Profile Open Source Projects European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack Ransomware Attacks Surge in 2026: Healthcare and Finance Most Targeted Google Chrome Zero-Day Vulnerability Actively Exploited – Update Immediately

3996 CVEs This Month

6 Actively Exploited

2 Ransomware Activity

18 Breaches YTD

Threat Investigation Portal

Investigate an IOC in the live graph workspace.

Investigate IOC

Vulnerabilities

Home ->

Vulnerabilities

New Windows ‘MiniPlasma’ Zero-Day Exploit Enables SYSTEM Privilege Escalation

A newly disclosed Windows zero-day privilege escalation vulnerability, called MiniPlasma, allows attackers to gain SYSTEM-level access on fully...

Thirumala Rao Padilam May 18, 2026

Vulnerabilities

Researchers Earn Over $1.2 Million for Exploiting 47 Zero-Days at Pwn2Own Berlin 2026

The Pwn2Own Berlin 2026 contest ended with hackers exploiting 47 zero-day vulnerabilities, earning a total of $1,298,250 in...

Thirumala Rao Padilam May 18, 2026

Vulnerabilities

Proof-of-Concept Exploit Released for DirtyDecrypt Linux Kernel Local Privilege Escalation Flaw

A local privilege escalation vulnerability in the Linux kernel's rxgk module has been patched, but a proof-of-concept exploit...

Thirumala Rao Padilam May 18, 2026

Vulnerabilities

Active Exploitation of Microsoft Exchange Server Vulnerability CVE-2026-42897 Reported

Microsoft has alerted users of an actively exploited spoofing vulnerability in on-premises Exchange Server, urging attention to CVE-2026-42897.

Thirumala Rao Padilam May 15, 2026

Vulnerabilities

New Windows Zero-Day Vulnerabilities Include BitLocker Bypass and Privilege Escalation

Two new Windows zero-day vulnerabilities have been disclosed involving a BitLocker bypass and a privilege escalation in the...

Thirumala Rao Padilam May 14, 2026

Threat Intelligence

Threat Actors Target PraisonAI CVE-2026-44338 Authentication Bypass Within Hours of Disclosure

Shortly after its public disclosure, attackers began exploiting CVE-2026-44338, an authentication bypass vulnerability in PraisonAI that exposes sensitive...

Thirumala Rao Padilam May 14, 2026

Vulnerabilities

Microsoft Patch Tuesday Delivers 137 Fixes Without Zero-Day Vulnerabilities

Microsoft's latest Patch Tuesday includes 137 security updates, marking the first time in two years without a zero-day...

Thirumala Rao Padilam May 13, 2026

Vulnerabilities

Google Introduces Intrusion Logging Feature for Enhanced Android Spyware Forensics

Google has introduced Intrusion Logging as a new opt-in feature on Android devices to support forensic analysis of...

Thirumala Rao Padilam May 13, 2026

Vulnerabilities

Critical Out-of-Bounds Read Vulnerability in Ollama Exposes Process Memory

A critical vulnerability in Ollama allows remote attackers to leak process memory through an out-of-bounds read flaw, potentially...

Thirumala Rao Padilam May 10, 2026

Cybersecurity News

RansomHouse Claims Responsibility for Trellix Source Code Repository Breach

The RansomHouse group has claimed responsibility for the breach of Trellix's source code repository, releasing images as proof...

Thirumala Rao Padilam May 8, 2026

1 2 3 … 5 Next »

error: Content is protected !!