CVE-2022-49042
The vulnerability allows local users to execute arbitrary code on backup management systems, compromising the integrity of backup infrastructure.
Comparing 3 June 2026 with the previous day 2 June 2026.
The vulnerability allows local users to execute arbitrary code on backup management systems, compromising the integrity of backup infrastructure.
Local code execution vulnerability in Synology Active Backup for Business requires patching to version 2.5.0-2081 or later to mitigate risks from local attackers.
New Atlas RAT malware demonstrates targeted adaptation by Chinese APT groups toward European infrastructure and signals escalation of DACH-region targeting.
The vulnerability exploits URI handler mechanisms to force network authentication, enabling passive capture of NTLMv2 hashes without requiring user interaction.
A debugging error in Microsoft 365 Android apps (Excel, Word, PowerPoint, OneNote, Loop, Copilot) disabled a critical security setting for token protection validation in production releases, allowing attackers to steal authentication tokens and take over accounts.
A large-scale npm supply chain attack compromises 32 packages under the @redhat-cloud-services scope via CI/CD pipeline infiltration, where attackers abused legitimate GitHub Actions OIDC workflows to publish trojanized packages with authentic signatures.
A path-traversal vulnerability in Synology Hyper Backup before version 4.1.2-4036 allows authenticated users to write arbitrary files and potentially compromise the integrity of backup systems.
Path-traversal vulnerability in Hyper Backup allows authenticated administrators to write non-sensitive files via unspecified vectors , requires admin privileges and is already fixed in version 4.1.2-4036.
Three of the patched vulnerabilities are already being actively exploited for remote code execution; immediate updates required.
BSI warns of multiple vulnerabilities in Microsoft Defender and Malware Protection Engine that enable attackers to achieve local privilege escalation, code execution, and denial of service.
The vulnerability affects HTTP/2 default configurations across multiple web server vendors and enables unauthenticated remote DoS , a newly discovered classification issue, not merely a patch.
A novel attack combination exploits HTTP/2 compression bombs and Slowloris-style techniques to incapacitate web servers without requiring specific patches.
An authenticated user can inject persistent JavaScript into a customer record and compromise every POS operator in the organization who retrieves that record.
Attackers are using AI-driven automation to systematically test and refine evasion techniques against EDR solutions , signaling a professionalization of attack preparation workflows.
A zero-day vulnerability in VS Code enables attackers to exfiltrate GitHub tokens with minimal user interaction, potentially compromising access to code repositories and CI/CD pipelines.
BSI advisory on Intel processor vulnerabilities without CVE identifiers; specific versions and affected processor generations must be retrieved from the complete BSI publication.
No changes in this category.
No changes in this category.
CVE-2022-0492 has been known since 2022 and is already catalogued in the CISA KEV; this alert repeats an established patching obligation without new exploit data or contextual information.
Gamaredon employs a multi-stage exploitation chain leveraging the WinRAR vulnerability to establish system fingerprinting and remote payload delivery, indicating escalation of Russian APT activity targeting Eastern Europe.
A memory corruption vulnerability in Windows drivers can be triggered via malformed trusted application requests, potentially enabling local privilege escalation.
Organized Chinese-speaking cybercriminals operate BadIIS as a Malware-as-a-Service since at least 2021 with continuous evasion updates targeting security products such as Norton,a systemic threat to Windows Server environments in European manufacturing firms.
AI-driven ransomware toolkits with automated EDR evasion and AD reconnaissance represent a new class of threats capable of rendering traditional defenses obsolete through machine-learning-based evasion techniques.
BSI alerts to an RCE vulnerability in Microsoft SharePoint Server; as no CVE is specified, this may be a not-yet-publicly-disclosed or aggregated advisory.
An npm-based infostealer with over 100,000 downloads demonstrates active supply-chain risk through manipulated open-source packages that exfiltrate credentials and environment data from developers.
Kali365 operators have expanded their attack capabilities from pure Microsoft 365 phishing to AWS, Okta, and Russian platforms, using device-code phishing to bypass MFA.
BSI warns of a kernel vulnerability with local exploitability and potential arbitrary code execution that poses a risk to systems with uncontrolled local access.