Yasna | Cybersecurity news, filtered

The Hacker News 1 week, 4 days ago

LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root

A maximum-severity security vulnerability impacting LiteSpeed User-End cPanel Plugin has come under active exploitation in the wild

More from The Hacker News 23 May 2026, 7:35 p.m. Actively exploited CVE-2026-48172 Abuse CVE Compromise Flaw Root Vulnerability

Bleeping Computer 2 weeks, 6 days ago

New Fragnesia Linux flaw lets attackers gain root privileges

Linux distros are rolling out patches for a new high-severity kernel privilege escalation vulnerability (known as Fragnasia and tracked as CVE-2026-46300) that allows attackers to run malicious code as root. [...]

More from Bleeping Computer 14 May 2026, 7:34 p.m. Incident · 9 stories CVE-2026-46300 CVE Flaw Linux Malicious Code Patch Privilege Escalation Root Vulnerability

The Hacker News 1 month ago

CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a recently disclosed security flaw impacting various Linux distributions to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild

More from The Hacker News 3 May 2026, 6:26 p.m. Incident · 7 stories Actively exploited CVE-2026-31431 America CISA CVE Disclosure Flaw Linux Privilege Escalation Root Vulnerability

The Hacker News 2 months, 2 weeks ago

Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access

Amazon Threat Intelligence is warning of an active Interlock ransomware campaign that's exploiting a recently disclosed critical security flaw in Cisco Secure Firewall Management Center (FMC) Software

More from The Hacker News 19 Mar 2026, 5:00 a.m. Actively exploited CVE-2026-20131 0-Day Amazon CVE Cisco Critical Disclosure Exploit Firewalls Flaw Java Ransomware Root Unauthenticated Vulnerability Warning

Info Security Magazine 2 months, 2 weeks ago

New Ubuntu Flaw Enables Local Attackers to Gain Root Access

CVE-2026-3888 Ubuntu snap flaw lets local users escalate to root via timing-based exploit

More from Info Security Magazine 19 Mar 2026, 4:45 a.m. CVE-2026-3888 CVE Exploit Flaw Linux Root Ubuntu

The Hacker News 2 months, 2 weeks ago

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE

Cybersecurity researchers have disclosed a critical security flaw impacting the GNU InetUtils telnet daemon (telnetd) that could be exploited by an unauthenticated remote attacker to execute arbitrary code with elevated privileges

More from The Hacker News 19 Mar 2026, 1:30 a.m. CVE-2026-32746 CVE Critical Disclosure Flaw Remote Code Execution Research Root Unauthenticated Vulnerability

The Hacker News 2 months, 2 weeks ago

Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit

A high-severity security flaw affecting default installations of Ubuntu Desktop versions 24.04 and later could be exploited to escalate privileges to the root level

More from The Hacker News 18 Mar 2026, 9:08 p.m. CVE-2026-3888 CVE Exploit Flaw Linux Root Ubuntu

Bleeping Computer 8 months ago

CISA warns of critical Linux Sudo flaw exploited in attacks

Hackers are actively exploiting a critical vulnerability (CVE-2025-32463) in the sudo package that enables the execution of commands with root-level privileges on Linux operating systems. [...]

More from Bleeping Computer 1 Oct 2025, 2:42 a.m. Actively exploited CVE-2025-32463 CISA CVE Critical Flaw Linux Root Vulnerability Warning

The Hacker News 1 year ago

Cisco Patches CVE-2025-20188 (10.0 CVSS) in IOS XE That Enables Root Exploits via JWT

Cisco has released software fixes to address a maximum-severity security flaw in its IOS XE Wireless Controller that could enable an unauthenticated, remote attacker to upload arbitrary files to a susceptible system

More from The Hacker News 8 May 2025, 4:57 p.m. CVE-2025-20188 Apple CVE Cisco Exploit Flaw Patch Root Unauthenticated Vulnerability Wireless

The Hacker News 1 year, 4 months ago

Microsoft Uncovers macOS Vulnerability CVE-2024-44243 Allowing Rootkit Installation

Microsoft has shed light on a now-patched security flaw impacting Apple macOS that, if successfully exploited, could have allowed an attacker running as "root" to bypass the operating system's System Integrity Protection (SIP) and install malicious kernel drivers by loading third-party kernel extensions

More from The Hacker News 15 Jan 2025, 5:53 a.m. CVE-2024-44243 Apple Bypass CVE Flaw Microsoft Patch Root Rootkit Vulnerability macOS

Dark Reading 1 year, 11 months ago

'RegreSSHion' Bug Threatens Takeover of Millions of Linux Systems

The high-severity CVE-2024-6387 in OpenSSH is a reintroduction of a 2006 flaw, and it allows unauthenticated RCE as root.

More from Dark Reading 2 Jul 2024, 7:38 a.m. CVE-2024-6387 CVE Flaw Linux Remote Code Execution Root Unauthenticated

Latest cybersecurity reporting from selected sources.

Refine the feed

Volume over time

Fresh headlines available

LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root

New Fragnesia Linux flaw lets attackers gain root privileges

CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV

Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access

New Ubuntu Flaw Enables Local Attackers to Gain Root Access

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE

Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit

CISA warns of critical Linux Sudo flaw exploited in attacks

Cisco Patches CVE-2025-20188 (10.0 CVSS) in IOS XE That Enables Root Exploits via JWT

Microsoft Uncovers macOS Vulnerability CVE-2024-44243 Allowing Rootkit Installation

'RegreSSHion' Bug Threatens Takeover of Millions of Linux Systems