Fileless RCE on stock Android (~2.5B devices). Reported to Google VRP, confirmed by their own engineering team, closed as NSBC anyway.

Full writeup:
https://www.researchgate.net/publication/407433163_Fileless_Code_Execution_via_Semantic_Gap_in_Android_WebView_Bridge_Architecture_A_Case_Study_in_Platform_Security_Boundary_Ambiguity

#AndroidSecurity #infosec #Android #MobileSecurity #VulnerabilityResearch #RCE #BugBounty #VRP #ResponsibleDisclosure #AppSec #ThreatIntel #WebView #ZeroDay #CVE

🚨 New Vulnerability Analysis: CVE-2026-47670 🚨

In my latest technical deep dive, I break down a critical authenticated Remote Code Execution (RCE) vulnerability in DbGate (v7.1.8). Discover why relying on pseudo-sandboxing like require = null fails inherently inside Node.js environments when confronted with native, unblockable dynamic import() constructs.

👉 https://denizhalil.com/2026/06/15/cve-2026-47670-dbgate-rce-bypass/

#Cybersecurity #Infosec #NodeJS #VulnerabilityResearch #ApplicationSecurity #RCE

🆕 Team82 research published today by Amir Zaltzman and Vera Mens looks at critical vulnerabilities in cooling controllers and uninterruptible power system network cards prevalent in data center environments. The respective vendors, Trane and Vertiv, have published updates addressing the security issues. ⚠️

🎤 Amir, meanwhile, presented the research today at the SANS ICS Security Summit & Training 2026 in Orlando.

Check out the great work from Amir and Vera:
🔖 https://claroty.com/team82/research/turning-up-the-heat-hacking-trane-hvac-controllers
🔖 https://claroty.com/team82/research/attacking-ups-network-cards-to-take-down-data-centers

#Team82 #DataCenters #DataCenterSecurity #VulnerabilityResearch #CriticalInfrastructure

A $1,000 AI agent found 21 zero-days in FFmpeg, some 23 years old

https://www.martincid.com/technology-sv/ai-agent-21-zero-days-ffmpeg-2/

#VulnerabilityResearch #Chrome #Ffmpeg

Microsoft Softens Stance After Public Feud with 0-Day Researcher

Microsoft has backpedaled in its public feud with a 0-day researcher, easing tensions with the security community after facing criticism for its aggressive stance. The tech giant now explicitly assures that vulnerability hunters are not in its legal crosshairs.

https://osintsights.com/microsoft-softens-stance-after-public-feud-with-0-day-researcher?utm_source=mastodon&utm_medium=social

#ZeroDay #VulnerabilityResearch #Microsoft #Redmond #EmergingThreats

FreeBSD 15.1-RC1 is out — and one detail stands out: the release notes mention AI-discovered security issues being patched.

AI-assisted fuzzing and vulnerability discovery is quietly becoming part of the release pipeline. Worth watching how this shifts the baseline for what gets caught before shipping.

#FreeBSD #infosec #VulnerabilityResearch
https://www.phoronix.com/news/FreeBSD-15.1-RC1

Security Researchers Uncover 47 Zero-Days at Pwn2Own Berlin

In a thrilling three-day competition, security researchers at Pwn2Own Berlin uncovered a staggering 47 zero-day vulnerabilities, raking in nearly $1.3 million in prize money, with the Devcore Research Team taking home a whopping $505,000. The top prizes included a $200,000 award for a VMware ESXi exploit and a $100,000 prize for a…

https://osintsights.com/security-researchers-uncover-47-zero-days-at-pwn2own-berlin?utm_source=mastodon&utm_medium=social

#ZeroDay #Pwn2ownBerlin #VulnerabilityResearch #ExploitDevelopment #Trendai

Security Flaws Exposed in Popular Database Projects' MCP Servers

Critical security flaws have been uncovered in MCP servers used by popular analytics databases, leaving them vulnerable to risks like SQL injection and full database takeover due to faulty validation and authentication processes. These defects, discovered by Akamai security analyst Tomer Peled, highlight a…

https://osintsights.com/security-flaws-exposed-in-popular-database-projects-mcp-servers?utm_source=mastodon&utm_medium=social

#VulnerabilityResearch #McpServers #DatabaseSecurity #AiApplications #ModelContextProtocol

Day 5 — CSRF Token Bypass using GET Request
This article discusses a Cross-Site Request Forgery (CSRF) vulnerability where an attacker can bypass CSRF tokens by manipulating GET requests. The root cause is inconsistent validation of CSRF tokens across HTTP methods, particularly on GET requests. In this case, the application incorrectly validated CSRF tokens for GET requests but did so correctly for POST requests. By modifying a legitimate request to use the GET method and moving parameters into the URL, the researcher discovered that the server did not validate the CSRF token. The attack involves creating an HTML PoC (proof-of-concept) with JavaScript to automatically submit the modified request, exploiting the victim without their interaction. This vulnerability emphasizes the importance of consistent validation for CSRF tokens across all HTTP methods. Key lesson: Validate CSRF tokens consistently regardless of HTTP method to maintain security. #BugBounty #WebSecurity #CSRF #VulnerabilityResearch

https://smartpicks4u.medium.com/day-5-csrf-token-bypass-using-get-request-791cba29812d?source=rss