Everything you care about in one place
Follow feeds: blogs, news, RSS and more. An effortless way to read and digest content of your choice.
Get Feederkb.cert.org
CERT Recently Published Vulnerability Notes
Get the latest updates from CERT Recently Published Vulnerability Notes directly as they happen.
Follow now 134 followers
Latest posts
Last updated 5 days ago
VU#294418: Vigor routers running DrayOS are vulnerable to RCE via EasyVPN and LAN web administration interface
6 days ago
Overview A remote code execution (RCE) vulnerability was discovered through the EasyVPN...
VU#534320: NPM supply chain compromise exposes challenges to securing the ecosystem from credential theft and self-propagation
9 days ago
Overview A major npm supply chain compromise was disclosed by the software...
VU#780141: Cross-site scripting vulnerability in Lectora course navigation
16 days ago
Overview Lectora Desktop versions 21.0–21.3 and Lectora Online versions 7.1.6 and older...
VU#949137: Langchaingo supports jinja2 and gonja for syntax parsing, allowing for arbitrary file read
26 days ago
Overview LangChainGo, the Go implementation of LangChain, a large language model (LLM)...
VU#974249: Elevated Privileges and Arbitrary Code Execution issues in Sunshine for Windows v2025.122.141614
28 days ago
Overview Two local security vulnerabilities have been identified in Sunshine for Windows,...
VU#763183: Amp'ed RF BT-AP 111 Bluetooth access point lacks an authentication mechanism
29 days ago
Overview The Amp’ed RF BT-AP 111 Bluetooth Access Point exposes an HTTP-based...
VU#461364: Hiawatha open-source web server has multiple vulnerabilities
30 days ago
Overview Hiawatha is an open-source web server that supports Windows, MacOS X...
VU#706118: Workhorse Software Services, Inc. software prior to version 1.9.4.48019, default deployment is vulnerable to multiple issues.
about 2 months ago
Overview Workhorse Software Services, Inc municipal accounting software prior to version 1.9.4.48019...
VU#209095: SMM Memory Corruption Vulnerability in the AMI Aptio's SMM Module Across Multiple Devices
about 2 months ago
Overview System Management Mode (SMM) memory corruption vulnerabilities have been identified in...
VU#767506: HTTP/2 implementations are vulnerable to "MadeYouReset" DoS attack through HTTP/2 control frames
about 2 months ago
Overview A vulnerability has been discovered within many HTTP/2 implementations allowing for...
VU#317469: Partner Software/Partner Web uses does not sanitize Report files and Note content, allowing for XSS and RCE
2 months ago
Overview Partner Software and Partner Web, both products of their namesake company,...
VU#554637: TP-Link Archer C50 router is vulnerable to configuration-file decryption
2 months ago
Overview The TP-Link Archer C50 router, which has reached End-of-Life (EOL), contains...