X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - SECURITYAFFAIRS.CO - A La Une - 07/Jan 21:15

Ni8mare flaw gives unauthenticated control of n8n instances

A critical n8n flaw (CVE-2026-21858, CVSS 10.0), dubbed Ni8mare, allows unauthenticated attackers to fully take over vulnerable instances. Researchers uncovered a maximum severity n8n vulnerability, tracked as CVE-2026-21858 (CVSS score of 10.0). The flaw, dubbed Ni8mare by Cyera researchers who discovered the vulnerability, lets unauthenticated attackers fully compromise affected instances. n8n is a workflow automation […]

Articles similaires

Sorry! Image not available at this time

New sandbox escape flaw exposes n8n instances to RCE attacks

bleepingcomputer.com - 28/Jan 17:46

Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and...

Sorry! Image not available at this time

New sandbox escape flaw exposes n8n instances to RCE attacks

bleepingcomputer.com - 28/Jan 17:46

Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and...

Sorry! Image not available at this time

Ingress-NGINX Flaw Enables Arbitrary Code Execution Attacks

itsecuritynews.info - 04/Feb 07:02

A high-severity vulnerability has been discovered in the Kubernetes ingress-nginx controller, allowing attackers to execute arbitrary code and...

Sorry! Image not available at this time

Critical sandbox escape flaw found in popular vm2 NodeJS library

bleepingcomputer.com - 27/Jan 16:35

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary...

Sorry! Image not available at this time

Critical sandbox escape flaw found in popular vm2 NodeJS library

bleepingcomputer.com - 27/Jan 16:35

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary...

Sorry! Image not available at this time

Cisco Meeting Management Vulnerability Let Remote Attacker Upload Arbitrary Files

itsecuritynews.info - 05/Feb 10:36

A high-severity security advisory has been issued for a critical vulnerability in Meeting Management software. This vulnerability allows authenticated...

Sorry! Image not available at this time

Cisco Meeting Management Vulnerability Let Remote Attacker Upload Arbitrary Files

itsecuritynews.info - 05/Feb 10:36

A high-severity security advisory has been issued for a critical vulnerability in Meeting Management software. This vulnerability allows authenticated...

Sorry! Image not available at this time

Imperva Customers Protected Against CVE-2026-21962 in Oracle HTTP and WebLogic

itsecuritynews.info - 26/Jan 20:31

What Is CVE-2026-21962? CVE-2026-21962 is a critical (CVSS 10.0) vulnerability in the Oracle HTTP Server and the WebLogic Server Proxy Plug-in for...

Sorry! Image not available at this time

Imperva Customers Protected Against CVE-2026-21962 in Oracle HTTP and WebLogic

itsecuritynews.info - 26/Jan 20:31

What Is CVE-2026-21962? CVE-2026-21962 is a critical (CVSS 10.0) vulnerability in the Oracle HTTP Server and the WebLogic Server Proxy Plug-in for...

Sorry! Image not available at this time

Microsoft Office Zero-Day (CVE-2026-21509) – Emergency Patch Issued for Active Exploitation

itsecuritynews.info - 27/Jan 09:15

Microsoft on Monday issued out-of-band security patches for a high-severity Microsoft Office zero-day vulnerability exploited in attacks. The...

Les derniers communiqués