CVE-2026-2739 This affects versions of the package bn.js before 5.2.3. Calling maskn(0) on any BN instance corrupts the internal state, causing toString(), divmod(), and other methods to enter an infinite loop, hanging the process indefinitely.
CVE-2026-21620 TFTP Path Traversal
Information published. Continue reading CVE-2026-21620 TFTP Path Traversal
CVE-2026-27211 Cloud Hypervisor: Host File Exfiltration via QCOW Backing File Abuse
CVE-2023-53543 vdpa: Add max vqp attr to vdpa_nl_policy for nlattr length check
CVE-2026-27199 Werkzeug safe_join() allows Windows special device names
Information published. Continue reading CVE-2026-27199 Werkzeug safe_join() allows Windows special device names
Scaling security operations with Microsoft Defender autonomous defense and expert-led services
AI-powered cyberattacks outpace aging SOC tools. This new guide explains why manual defense fails and how autonomous, expert-led security transforms modern protection.
The post Scaling security operations with Microsoft Defender autonomous defense and expert-led services appeared first on Microsoft Security Blog.
CVE-2025-71133 RDMA/irdma: avoid invalid read in irdma_net_event
Information published. Continue reading CVE-2025-71133 RDMA/irdma: avoid invalid read in irdma_net_event