In early March, GitHub patched a critical remote code execution vulnerability (CVE-2026-3854) that could have allowed ...
CVE-2026-3854 (CVSS 8.7) enabled GitHub RCE via git push, risking cross-tenant access to millions of repositories.
GitHub’s engineering team developed a fix and deployed it just over an hour after identifying the root cause, protecting both ...
Wiz discovered a critical remote code execution vulnerability in GitHub that exposed millions of repositories.
Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...
The now‑patched flaw allowed authenticated users to execute arbitrary code via crafted git push requests, affecting ...
A flaw in Cursor’s AI agent lets malicious repositories trigger arbitrary code execution through routine Git operations, now ...
Microsoft's partial patching in February 2026 of a zero-day vulnerability abused by Russian state-sponsored threat group ...
Cisco patches four CVEs up to CVSS 9.9 in ISE and Webex, preventing code execution and user impersonation risks.
Hackers have been unsuccessfully targeting CVE-2023-33538, a vulnerability in discontinued TP-Link routers, for a year.
CISA orders urgent patching of a Windows Shell flaw actively exploited in zero-click attacks. Federal agencies must update by ...
When 500,000 Findings Hide 14 Real Threats Modern enterprises ingest vulnerability data from dozens of sources: endpoint ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results