Microsoft

Active attack: Dirty Frag Linux vulnerability expands post-compromise risk

Dirty Frag is a newly disclosed Linux local privilege escalation vulnerability affecting kernel networking and ...
The Hacker News

Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE

The Apache Software Foundation (ASF) has released security updates to address several security vulnerabilities in the HTTP ...
The Hacker News

MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks

MetInfo CMS flaw CVE-2026-29014 exploited after April 7 patch, enabling remote code execution and targeting 2,000 instances.
SecurityWeek

Cisco Patches High-Severity Vulnerabilities in Enterprise Products

Cisco has released patches for several high-severity vulnerabilities that could lead to code execution, SSRF attacks, and DoS ...

All Linux distros are affected by the new “Dirty Frag” vulnerability.

Similar to the “Copy Fail” exploit revealed a week ago, the two “Dirty Frag” exploits (CVE-2026-43284) also allow a local user to give themselves root privileges on nearly any Linux distribution. The ...
Morning Overview on MSN

CPanel’s CVE-2026-41940 is now being weaponized by a state-backed threat actor targeting government networks in Southeast Asia and North America

A high-severity vulnerability in cPanel, the control panel software that underpins web hosting for millions of servers ...