Bug

Vulnerabilities

CVE disclosures, zero-days, and vulnerability management

HTTP Requests with X-Vercel-Set-Bypass-Cookie Header, (Tue, Apr 28th)

This weekend, we saw a few requests to our honeypot that included an "X-Vercel-Set-Bypass-Cookie" header. A sample request:

SANS ISCApr 28, 20261m1

Vulnerabilities

NSA GRASSMARLIN

CISA Alerts

Vulnerabilities

NSA GRASSMARLIN

View CSAF

CISA AlertsApr 28, 20263m1

Vulnerabilities

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA Alerts

Vulnerabilities

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

CISA AlertsApr 28, 20261m1

Vulnerabilities

ISC Stormcast For Tuesday, April 28th, 2026 https://isc.sans.edu/podcastdetail/9908, (Tue, Apr 28th)

SANS ISC

Vulnerabilities

ISC Stormcast For Tuesday, April 28th, 2026 https://isc.sans.edu/podcastdetail/9908, (Tue, Apr 28th)

No description available.

SANS ISCApr 28, 20261m1

Vulnerabilities

TeamPCP Supply Chain Campaign: Update 008 - 26-Day Pause Ends with Three Concurrent Compromises (Checkmarx KICS, Bitwarden CLI Cascade, xinference PyPI), CanisterSprawl npm Worm Identified, and Tier 1 Coverage Returns, (Mon, Apr 27th)

SANS ISC

Vulnerabilities

TeamPCP Supply Chain Campaign: Update 008 - 26-Day Pause Ends with Three Concurrent Compromises (Checkmarx KICS, Bitwarden CLI Cascade, xinference PyPI), CanisterSprawl npm Worm Identified, and Tier 1 Coverage Returns, (Mon, Apr 27th)

This update succeeds&#;x26;#;xc2;&#;x26;#;xa0;TeamPCP Supply Chain Campaign Update 007, published April 8, 2026, which left the campaign in credential-monetization mode following the Cisco source code theft via Trivy-linked credentials, Google GTIG&#;x26;#;39;s formal designation of the operators...

SANS ISCApr 27, 20261m1

Vulnerabilities

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA Alerts

Vulnerabilities

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

CISA AlertsApr 24, 20261m1

Vulnerabilities

ISC Stormcast For Friday, April 24th, 2026 https://isc.sans.edu/podcastdetail/9906, (Fri, Apr 24th)

SANS ISC

Vulnerabilities

ISC Stormcast For Friday, April 24th, 2026 https://isc.sans.edu/podcastdetail/9906, (Fri, Apr 24th)

No description available.

SANS ISCApr 24, 20261m1

Vulnerabilities

Milesight Cameras

CISA Alerts

Vulnerabilities

Milesight Cameras

View CSAF

CISA AlertsApr 23, 20263m2

Vulnerabilities

Intrado 911 Emergency Gateway (EGW)

CISA Alerts

Vulnerabilities

Intrado 911 Emergency Gateway (EGW)

View CSAF

CISA AlertsApr 23, 20263m2

Vulnerabilities

FIRESTARTER Backdoor

CISA Alerts

Vulnerabilities

FIRESTARTER Backdoor

The Cybersecurity and Infrastructure Security Agency (CISA) analyzed a sample of FIRESTARTER malware obtained from a forensic investigation. CISA and the United Kingdom National Cyber Security Centre (NCSC) assess advanced persistent threat (APT) actors are using FIRESTARTER malware for persisten...

CISA AlertsApr 23, 202619m2

Vulnerabilities

Hangzhou Xiongmai Technology Co., Ltd XM530 IP Camera

CISA Alerts

Vulnerabilities

Hangzhou Xiongmai Technology Co., Ltd XM530 IP Camera

View CSAF

CISA AlertsApr 23, 20263m2

Vulnerabilities

Defending Against China-Nexus Covert Networks of Compromised Devices

CISA Alerts

Vulnerabilities

Defending Against China-Nexus Covert Networks of Compromised Devices

Explaining the widespread shift in tactics, techniques and procedures (TTPs) towards networks of compromised infrastructure, and how to defend against it

CISA AlertsApr 23, 202611m2