Vulnerabilities
-
Microsoft patches critical ASP.NET Core flaw that could enable privilege escalation
Microsoft has issued an out-of-band fix for a critical ASP.NET Core vulnerability, CVE-2026-40372, that could let attackers elevate privileges and forge protected payloads under specific conditions.
-
Cohere AI Terrarium sandbox flaw can let attackers run code as root
A critical flaw in Cohere AI’s Terrarium Python sandbox could allow arbitrary code execution as root, with CERT/CC warning that the bug may let attackers escape the sandbox and reach host or container resources.
-
Flaws in Lantronix and Silex converters put thousands of devices at risk
Researchers found 22 vulnerabilities in Lantronix and Silex serial-to-IP converters, with nearly 20,000 exposed online. The flaws could allow remote code execution, device takeover and tampering with industrial data.
-
Google patches Antigravity IDE flaw that could enable code execution
Google has patched a flaw in its Antigravity agentic IDE that researchers said could allow code execution through a file-search tool and a bypass of the app’s Strict Mode security controls.
-
CISA adds eight exploited flaws to KEV catalog, including Cisco SD-WAN bugs
CISA added eight exploited vulnerabilities to its catalog, including three Cisco Catalyst SD-WAN Manager flaws. The list spans enterprise software from PaperCut and TeamCity to Quest KACE and Zimbra, with federal agencies given patch deadlines.
-
Google patched Antigravity sandbox escape bug after prompt injection research
Google fixed an Antigravity vulnerability after researchers said prompt injection could combine with a file-creation capability to bypass secure mode and enable remote code execution in the AI developer tool.
-
Critical SGLang flaw can enable remote code execution
A critical flaw in SGLang, tracked as CVE-2026-5760 and rated 9.8, could allow remote code execution through a crafted model file and the /v1/rerank endpoint, according to a CERT/CC advisory.
-
Researchers flag MCP design flaw that could enable remote code execution
Researchers said a design flaw in Anthropic’s Model Context Protocol could allow remote code execution across thousands of servers and packages, exposing sensitive data and widening AI supply chain risk.
-
Critical protobuf.js flaw enables JavaScript code execution
A critical flaw in protobuf.js can let attackers execute JavaScript code through malicious schemas, with a proof-of-concept now public. The issue affects versions 8.0.0 and 7.5.4 and earlier, and patched releases are available.
-
Mirai variant Nexcorium targets TBK DVRs and outdated TP-Link routers
Threat actors are exploiting flaws in TBK DVR devices and unsupported TP-Link routers to spread a Mirai variant called Nexcorium, according to a Fortinet technical analysis and a Unit 42 disclosure. The malware adds persistence, brute-force and DDoS functions.
