🟠 New security advisory:

CVE-2026-4529 affects multiple systems.

• Impact: Significant security breach potential
• Risk: Unauthorized access or data exposure
• Mitigation: Apply patches within 24-48 hours

Full breakdown:
https://www.yazoul.net/advisory/cve/cve-2026-4529-d-link-dhp-1320-buffer-overflow-isolate-device

#CVE #ZeroDay #ThreatIntel

🔴 New security advisory:

CVE-2019-25568 affects multiple systems.

• Impact: Remote code execution or complete system compromise possible
• Risk: Attackers can gain full control of affected systems
• Mitigation: Patch immediately or isolate affected systems

Full breakdown:
https://www.yazoul.net/advisory/cve/cve-2019-25568-memu-play-privilege-escalation

#CVE #ZeroDay #ThreatIntel

🚨 New security advisory:

CVE-2026-33136 affects Wegia Wegia.

• Impact: Remote code execution or complete system compromise possible
• Risk: Attackers can gain full control of affected systems
• Mitigation: Patch immediately or isolate affected systems

Full breakdown:
https://www.yazoul.net/advisory/cve/cve-2026-33136-wegia-reflected-xss-vulnerability

#CVE #ZeroDay #ThreatIntel

🚨 New security advisory:

CVE-2026-33057 affects multiple systems.

• Impact: Remote code execution or complete system compromise possible
• Risk: Attackers can gain full control of affected systems
• Mitigation: Patch immediately or isolate affected systems

Full breakdown:
https://www.yazoul.net/advisory/cve/cve-2026-33057-mesop-framework-rce-vulnerability-update-now

#CVE #ZeroDay #ThreatIntel

⛔ New security advisory:

CVE-2026-32194 affects multiple systems.

• Impact: Remote code execution or complete system compromise possible
• Risk: Attackers can gain full control of affected systems
• Mitigation: Patch immediately or isolate affected systems

Full breakdown:
https://www.yazoul.net/advisory/cve/cve-2026-32194-microsoft-bing-images-command-injection

#CVE #ZeroDay #ThreatIntel

Google says 90 Zero-Days were exploited in Attacks last Year — 47 of them targeted End-User Platforms, and 43 targeted Enterprise Products.

The figure is a 15% increase compared to 2024, when 78 zero-days were exploited in the wild, but lower than the record 100 zero days tracked in 2023.

⁉️The type of exploited flaws includes remote code execution, privilege escalation, injection and deserialization flaws, authorization bypasses, and memory corruption [use-after-free] bugs. Google reports that memory safety issues accounted for 35% of all exploited zero-day vulnerabilities last year.⁉️

https://cloud.google.com/blog/topics/threat-intelligence/2025-zero-day-review

#google #zeroday #review2025 #it #security #privacy #engineer #media #infosec #tech #news

Darksword exploit kit chains 6 iOS flaws to achieve full device compromise.
• RCE → kernel access
• Used by multiple threat actors
• High-risk data exfiltration

Patch immediately 👇
https://www.technadu.com/darksword-exploit-kit-deploying-ios-spyware-on-iphones-adopted-by-multiple-threat-actors/623708/

#InfoSec #iOSSecurity #ZeroDay

Zero-Day-Lücke in Cisco-Firewall: Interlock-Ransomware nutzte Schwachstelle 36 Tage vor Bekanntgabe aus

Cisco-Schwachstelle CVE-2026-20131 – was steckt dahinter?

https://www.all-about-security.de/zero-day-luecke-in-cisco-firewall-interlock-ransomware-nutzte-schwachstelle-36-tage-vor-bekanntgabe-aus/

#cisco #firewall #zeroday #itsecurity

Interlock ransomware exploited Cisco firewall zero-day (CVE-2026-20131) before disclosure.
• Unauth RCE → root
• Memory webshells
• WebSocket C2
https://www.technadu.com/interlock-ransomware-campaign-exploited-cisco-firewall-vulnerability-cve-2026-20131-weeks-before-disclosure/623700/

#Cybersecurity #ZeroDay #Ransomware