VulnHub

SonicWall has released urgent firmware updates to address three vulnerabilities found in its SonicOS software, which affects Gen 6, Gen 7, and Gen 8 firewalls. These flaws could potentially allow attackers to bypass security controls and gain unauthorized access to restricted services. Users of these firewall models are strongly advised to apply the patches immediately to protect their systems from possible exploitation. The vulnerabilities underscore the importance of keeping security software up to date, as failure to patch could leave networks open to attacks. Companies relying on these firewalls should prioritize this update to safeguard their network environments.

A serious vulnerability has been discovered in cPanel and WebHost Manager (WHM) that allows unauthorized users to access the control panel without proper authentication. This flaw affects all versions except the most recent ones, putting many web hosting services at risk. Attackers could exploit this weakness to gain control over web hosting environments, which could lead to data breaches or service disruptions. Users of cPanel and WHM are strongly advised to update their systems immediately to the latest versions to mitigate this risk. The urgency of this situation highlights the importance of keeping software up to date to protect against potential exploits.

A significant vulnerability, identified as CVE-2026-3854, has been discovered in GitHub.com and GitHub Enterprise Server, potentially allowing remote code execution. This flaw poses a risk to millions of repositories hosted on these platforms, which are widely used by developers and organizations for version control and collaboration. If exploited, attackers could execute arbitrary code, leading to unauthorized access and manipulation of sensitive codebases. The discovery emphasizes the need for users to remain vigilant and update their systems promptly to mitigate potential risks. GitHub has urged users to apply the latest patches to safeguard their repositories against this vulnerability.

Vimeo has confirmed that user data was accessed without authorization due to a breach at Anodot, a company specializing in data anomaly detection. This incident has raised concerns as it potentially exposes sensitive information of Vimeo customers. While Vimeo has not disclosed the exact nature of the data accessed, users need to be cautious and monitor their accounts for any suspicious activity. This breach is significant as it underscores the vulnerabilities that can arise when companies share data with third-party services. Users are advised to update their passwords and enable two-factor authentication if they haven't already.

Researchers have discovered a serious vulnerability in PackageKit, a package management tool used across various Linux distributions. This flaw, dubbed Pack2TheRoot, allows attackers to gain full root access, potentially compromising the security of affected systems. Linux distributions that utilize PackageKit, which includes many popular versions, are at risk. This vulnerability is particularly concerning because it has been present for over a decade, raising questions about the security practices in place for maintaining open-source software. Users and system administrators are urged to update their systems and apply any available patches to mitigate the risk of exploitation.

A flaw in Microsoft Entra's Agent ID allowed for privilege escalation, which could lead to a complete tenant takeover through the misuse of Service Principals. This vulnerability posed a significant risk to organizations using Microsoft Entra, as it could enable attackers to gain unauthorized access to sensitive data and systems. Microsoft has since released a patch to address this issue, ensuring that affected users can secure their environments. It is crucial for companies to apply this update promptly to mitigate potential risks and protect their assets from exploitation. Regular monitoring and security practices should also be reinforced to prevent similar vulnerabilities in the future.

The latest Security Affairs Malware newsletter highlights several emerging cybersecurity threats. One notable mention is Morpheus, a new spyware linked to IPS Intelligence, which poses risks to user privacy and data security. Additionally, the newsletter discusses DarkSword and Coruna, which are targeting vulnerabilities in iPhones, suggesting that even this previously secure platform is now at risk. Another significant threat is the Lotus Wiper, aimed at the energy and utilities sector, indicating a growing trend of cyberattacks on critical infrastructure. Lastly, a new variant of NGate has been reported, showcasing the ever-evolving landscape of malware. These developments emphasize the need for companies and individuals to stay vigilant and update their security measures.

Apple has addressed a significant flaw in iOS that allowed deleted notifications to linger and expose message content. This vulnerability could potentially let others view sensitive information even after users thought they had deleted it. Affected users include anyone running iOS versions prior to the fix, which was rolled out in a recent update. The issue raises concerns about privacy, as it could lead to unintended sharing of personal messages. Apple has encouraged users to update their devices to ensure their information remains secure.

The latest update for Firefox, version 150, addresses a significant number of security vulnerabilities—271 in total. This update improves features like split view and tab sharing while also reinforcing the browser's security. Users are strongly encouraged to update to this version to protect themselves against potential exploitation of these vulnerabilities. The involvement of Claude Mythos suggests collaboration in identifying and fixing these issues. It's essential for users to stay updated to avoid risks associated with unpatched software.