Tag: command injection
28 articles

Ubiquiti Fixes Flaws in UniFi Ecosystem
Ubiquiti has patched a critical vulnerability in its UniFi ecosystem, specifically a command injection flaw with a perfect 10.0 CVSS score, that could let hackers take control of your device. The update fixes issues across UniFi products, shielding you from potential attacks that could escalate privileges or make unauthorized changes.

Ubiquiti Discloses Max-Severity UniFi OS Vulnerability
Ubiquiti has urgently patched a critical vulnerability in its UniFi OS, warning customers of a maximum-severity flaw that could allow malicious actors to inject commands on host devices - and it's crucial to upgrade to version 3.4.20 or later to stay safe.

Mandiant Exposes Cisco SD-WAN Zero-Day Attacks' Root Access Methods
Cisco's SD-WAN system was exploited in active attacks using a high-severity flaw, allowing hackers to create a rogue root account and take full control of targeted devices. This vulnerability, tracked as CVE-2026-20245, was triggered through a simple tenant-upload feature in the command-line interface.

Cisco SD-WANs Hit by Seventh Zero-Day Exploit This Year
Cisco SD-WANs have been hit by a seventh zero-day exploit this year, with the latest vulnerability, CVE-2026-20245, already being actively exploited by attackers. A security patch is currently in the works, but no workaround is available to mitigate the issue in the meantime.

LiteLLM Flaw Exploited in Wild, Enables Unauthenticated RCE
A high-severity flaw in BerriAI's LiteLLM, known as CVE-2026-42271, has been actively exploited, allowing unauthenticated users to execute commands remotely. This critical vulnerability affects LiteLLM versions 1.74.2 to 1.83.7 and has been deemed a major security risk.

Cisco SD-WAN Manager Flaw Actively Exploited
Cisco is warning of a high-severity vulnerability in its Catalyst SD-WAN Manager that allows attackers to execute commands as root, and it's already being exploited by hackers. This flaw, rated 7.8 on the CVSS scale, could give attackers control over your system if they're able to upload a malicious file.

GitHub Flaw Exposes Remote Code Execution to Authenticated Users
A single git push command was all it took to exploit a flaw in GitHub's internal protocol, allowing authenticated users to execute code on backend infrastructure. This shocking vulnerability, tracked as CVE-2026-3854, highlights the potential for devastating remote code execution attacks.

SGLang Flaw Enables Remote Code Execution via Malicious Model Files
A single malicious file can become a powerful gateway for attackers to run arbitrary commands on vulnerable machines - and a newly disclosed flaw in SGLang, CVE-2026-5760, reveals just how easily this can happen through specially crafted GGUF model files. This highly severe vulnerability, scoring 9.8 out of 10.0, enables remote code execution on systems that trust it.

Mirai Botnet Targets TP-Link Routers via CVE-2023-33538 Exploits
Your home router could be a ticking time bomb, vulnerable to exploitation by malicious actors - in fact, a known weakness (CVE-2023-33538) in TP-Link routers has already been targeted by the notorious Mirai botnet. Is your small but mighty box at risk of becoming a launchpad for someone else's agenda?

Fortinet Sandbox Flaws Allow Attackers to Bypass Authentication, Execute Commands
Two critical flaws in Fortinet's sandbox could let attackers skip login and run malicious commands, putting your system at risk - so don't wait, patch now! A recent report urges administrators to act fast, as these vulnerabilities could be exploited by unauthenticated attackers over HTTP.

PHP Composer Flaws Expose Code Execution Risk, Prompting Patches
Critical flaws in PHP Composer, a popular package manager, leave countless websites vulnerable to code execution attacks - but fortunately, patches have been released to swiftly mitigate this risk. If exploited, these high-severity vulnerabilities could allow hackers to execute arbitrary commands, putting entire systems at risk.

Claude Desktop Extensions Exclusive: Critical Prompt Risk
Claude Desktop extensions make assistants truly useful — but when they execute local actions, attackers can turn innocent prompts into harmful commands. The recent command‑injection flaws in three extensions, now patched by Anthropic, are a reminder that convenience brings new security risks.

Libraesva ESG Urgent Patch: Critical Risk Exposed
A newly patched command-injection flaw in Libraesva’s Email Security Gateway was reportedly exploited by state-sponsored actors, putting email perimeters at risk of lateral movement and data theft. If you run ESG, update immediately, segment management interfaces, and hunt for signs of compromise.

Secure Firewall Management Center: Critical Must-Have Patch
Cisco just released emergency patches after a rare CVSS 10.0 remote code execution in Secure Firewall Management Center that lets unauthenticated attackers run shell commands — if you manage FMC, inventory, patch or isolate it now to avoid full-blown compromise. This flaw lets attackers alter firewall rules and pivot into networks, so prioritize updates and tight access controls immediately.

FortiSIEM vulnerability: Critical, Urgent Must-Fix
A critical FortiSIEM vulnerability now has working exploit code circulating, and defenders are seeing a sharp spike in automated scanning and brute‑force attacks against exposed devices. If you manage FortiSIEM, patch or apply Fortinet’s mitigations immediately, isolate internet‑facing appliances, and rotate credentials to stay ahead of opportunistic attackers.

FortiSIEM CVE-2025-25256 Exclusive Critical Alert
Heads up: FortiSIEM CVE-2025-25256 is a critical 9.8-rated OS command injection with exploit code already in the wild, meaning exposed or unpatched instances can let attackers run commands, pivot, and erase evidence. Patch immediately, isolate affected systems, and hunt for indicators of compromise to avoid a catastrophic breach.

TP-Link Router CVE-2023-33538: Active Exploitation Triggers Urgent CISA Alert
TP-Link Router CVE-2023-33538 exploitation triggers an urgent CISA alert. Learn details on risks and how to secure your network from these targeted threats.

PTZOptics and Other Pan-Tilt-Zoom Cameras
Explore PTZOptics and other pan-tilt-zoom cameras delivering precise remote control, live streaming, and video conferencing for professional broadcasts.

Mirai Botnet Variant Exploits DVR Flaw to Build Swarm
Mirai Botnet variant exploits a critical DVR flaw to build a massive swarm, raising cybersecurity alarms and urging prompt defensive measures.

Malicious Code Discovered in Popular NPM Packages with 1 Million Weekly Downloads
Malicious code found in popular NPM packages (1M+ weekly downloads). Secure your dependencies now to prevent potential security risks.

Mirai Botnet Exploits Command Injection Vulnerability to Target TBK DVR Systems
Mirai Botnet uses a command injection flaw to target TBK DVR systems, exposing critical vulnerabilities and posing serious cybersecurity threats.

Siemens OZW Web Servers
Siemens OZW Web Servers provide secure, efficient automation and robust connectivity for streamlined industrial operations and seamless IoT integration.

CISA Catalogs Latest Exploited Vulnerability
CISA catalogs the latest exploited vulnerability, offering crucial insights and guidelines to bolster cybersecurity and safeguard your digital assets.

ALBEDO Telecom Net.Time – PTP/NTP Clock
Achieve high-precision network time sync with ALBEDO Telecom Net.Time PTP/NTP Clock for reliable, seamless telecom operations.