Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

3 headlines in this view

Showing 3 most recent headlines Filtered view

Bleeping Computer 1 month ago

GitHub fixes RCE flaw that gave access to millions of private repos

In early March, GitHub patched a critical remote code execution vulnerability (CVE-2026-3854) that could have allowed attackers to access millions of private repositories. [...]

More from Bleeping Computer 30 Apr 2026, 12:41 a.m. Incident · 2 stories CVE-2026-3854 CVE Critical Flaw Github Patch Remote Code Execution Vulnerability

The Hacker News 1 month ago

Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push

Cybersecurity researchers have disclosed details of a critical security vulnerability impacting GitHub.com and GitHub Enterprise Server that could allow an authenticated user to obtain remote code execution with a single "git push" command

More from The Hacker News 29 Apr 2026, 6:19 a.m. Incident · 2 stories CVE-2026-3854 CVE Critical Disclosure Flaw Github Remote Code Execution Research Vulnerability

Bleeping Computer 2 years ago

GitHub warns of SAML auth bypass flaw in Enterprise Server

GitHub has fixed a maximum severity (CVSS v4 score: 10.0) authentication bypass vulnerability tracked as CVE-2024-4986, which impacts GitHub Enterprise Server (GHES) instances using SAML single sign-on (SSO) authentication. [...]

More from Bleeping Computer 22 May 2024, 3:01 a.m. CVE-2024-4986 Authentication Bypass CVE Fixed Flaw Github SSO Vulnerability Warning

Latest cybersecurity reporting from selected sources.

Refine the feed

Volume over time

Fresh headlines available

GitHub fixes RCE flaw that gave access to millions of private repos

Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push

GitHub warns of SAML auth bypass flaw in Enterprise Server