⚠️ Critical Web Exploit Unleashed: Remote OS Command Injection Holes Found in Totolink N300RH Devices, Public Exploit Rel

#CVE2026 #OSCommandInjection #RemoteExecution #TotolinkVulnerability #WebManagementInterfaceExploit #cve #cybersecurity #iso27001

I finally got around to writing a blog post that doesn't just say "Maybe I'll write some blog posts one day".

Read about a fun little #CI experiment I've been working on called Cicada, a tool which aims to provide instantaneous CI using sandboxed remote execution and caching (a la Bazel).

https://sotk.co.uk/posts/2026/cicada.html

#cicd #forgejo #remoteexecution

Spyder 6.0 comes with a very cool tech preview: it allows you to easily connect to remote servers and run code on them! 🖥️

Continue reading to find out how to start using it 🧵 (1/4)

#Spyder #Python #SSH #RemoteDevelopment #RemoteExecution

Update SaltStack

Also, don't leave your request server open to the Internet

https://labs.f-secure.com/advisories/saltstack-authorization-bypass

#InfoSec #CVE #RemoteExecution #CVE-2020-11651 #CVE-2020-11652

some Cisco switches allow root shell, they have a default SSH key pair that can be exploited over IPv6

Cisco Nexus 9000 Series Application Centric Infrastructure (ACI)

no workaround, update available

<voice person="Oprah">You get a root shell and you get a root shell and you get a root shell</voice>

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1804

#InfoSec #CVE-2019-1804 #RemoteExecution