Archive snapshot

Tue, Jun 02 · 06:00 PM CDT

Archived briefing content rendered inside the ACSP site experience.

Back to archive

Archived briefing

Snapshot overview

Generated Tue, Jun 02 · 06:00 PM CDTWindow last 6 hours

Top line

Coverage now updates on a rolling 6-hour window, while NVD entries come from the live API using a last-24-hours modified window and are sorted by severity.

Fast take

News stays on the current 6-hour slice, videos now use the last 24 hours, and NVD uses the API instead of the traditional feed to better match the live site behavior.

Top stories

5

Worth skimming

5

Tracked videos

1

NVD vulnerabilities

25

Top stories

Wed, 03 Jun 2026 00:16:00 +0530

Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited

9.8/10 · Must read/watch

The Hacker Newsvuln

Summary
Google on Monday released patches for 124 security vulnerabilities impacting its Android operating system for the month of June 2026, including one high-severity flaw in the Framework component that has come under active exploitation. Tracked as CVE-2025-48595

Open article ↗

Tue, 02 Jun 2026 23:51:49 +0530

Gamaredon Exploits WinRAR to Deliver GammaWorm and GammaSteel Against Ukraine

9.8/10 · Must read/watch

The Hacker Newsvulnmalwareai

Summary
The Russian hacking group known as Gamaredon has been attributed to the continued exploitation of a WinRAR vulnerability to deliver multiple malware families aimed at data theft and propagation. Per Sekoia, the activity involves the weaponization of CVE-2025-8

Open article ↗

Tue, 02 Jun 2026 23:44:42 +0530

Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation

9.8/10 · Must read/watch

The Hacker Newsvulnpolicy

Summary
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security flaw impacting Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. The vulnerability, C

Open article ↗

Tue, Jun 02 · 04:00 PM CDT

RSS is back. AI agents are reading it

8.5/10 · Worth your time

Hacker Newsai

Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 2 hours ago.

Open article ↗

Tue, Jun 02 · 06:00 PM CDT

Attackers Hijack Red Hat npm Scope to Steal Cloud Secrets

8.4/10 · Worth your time

Infosecurity Magazinesupply-chain

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Worth skimming

Tue, Jun 02 · 06:00 PM CDT

Infosecurity Europe: NCSC Urges Immediate Action to Boost Resilience as Uncertainty Persists

8.2/10 · Worth your time

Infosecurity Magazineaipolicy

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Tue, Jun 02 · 06:00 PM CDT

Infosecurity Europe: Cybersecurity Teams Which Don’t Leverage AI are "Doomed to Fail"

8.2/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Tue, Jun 02 · 06:00 PM CDT

Infosecurity Europe: Bayer Reinvents Security Awareness Training to Counter AI Threats

8.2/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Tue, Jun 02 · 02:00 PM CDT

MAI-Code-1-Flash

8.1/10 · Worth your time

Hacker Newsai

Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 4 hours ago.

Open article ↗

Tue, Jun 02 · 03:00 PM CDT

Gmail thinks I'm stupid, so I left

8.1/10 · Worth your time

Hacker Newsai

Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 3 hours ago.

Open article ↗

Videos worth watching

Tue, Jun 02 · 08:00 AM CDT

A Hacker's Way of Thinking (with Ted Harrington)

7.6/10 · Worth your time

YouTube / John Hammondgeneral

Why it matters
Recent creator upload with some page-level evidence. Better than raw feed discovery, but still not a full content review.

Worth watching?Maybe — good candidate if the title matches your interests, but confidence is still moderate.

Confidencelow

Open article ↗

NVD vulnerabilities

Fri, Feb 14 · 01:15 PM CST

CVE-2024-13152

10.0/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in BSS Software Mobuy Online Machinery Monitoring Panel allows SQL Injection. This issue affects Mobuy Online Machinery Monitoring Panel: before 2.0.

CVECVE-2024-13152

SeverityCRITICAL

TypeUPDATED

PublishedFri, Feb 14 · 01:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Wed, Dec 25 · 01:15 PM CST

CVE-2024-8950

9.9/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Arne Informatics Piramit Automation allows Blind SQL Injection. This issue affects Piramit Automation: before 27.09.2024.

CVECVE-2024-8950

SeverityCRITICAL

TypeUPDATED

PublishedWed, Dec 25 · 01:15 PM CST

ModifiedTue, Jun 02 · 09:16 AM CDT

Open article ↗

Mon, Mar 06 · 08:15 AM CST

CVE-2023-0839

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Protection for Outbound Error Messages and Alert Signals vulnerability in ProMIS Process Co. InSCADA allows Account Footprinting. This issue affects inSCADA: before 20230115-1.

CVECVE-2023-0839

SeverityCRITICAL

TypeUPDATED

PublishedMon, Mar 06 · 08:15 AM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Thu, Feb 23 · 08:15 AM CST

CVE-2023-0939

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NTN Information Technologies Online Services Software allows SQL Injection. This issue affects Online Services Software: before 1.17.

CVECVE-2023-0939

SeverityCRITICAL

TypeUPDATED

PublishedThu, Feb 23 · 08:15 AM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Mon, Mar 06 · 03:15 PM CST

CVE-2023-0979

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in MedData MedDataPACS allows SQL Injection. This issue affects MedDataPACS : before 2023-03-03.

CVECVE-2023-0979

SeverityCRITICAL

TypeUPDATED

PublishedMon, Mar 06 · 03:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Thu, Mar 23 · 07:15 AM CDT

CVE-2023-1050

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in As Koc Energy Web Report System allows SQL Injection. This issue affects Web Report System: before 23.03.10.

CVECVE-2023-1050

SeverityCRITICAL

TypeUPDATED

PublishedThu, Mar 23 · 07:15 AM CDT

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Wed, Mar 01 · 01:15 PM CST

CVE-2023-1064

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Uzay Baskul Weighbridge Automation Software allows SQL Injection. This issue affects Weighbridge Automation Software: before 1.1.

CVECVE-2023-1064

SeverityCRITICAL

TypeUPDATED

PublishedWed, Mar 01 · 01:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Fri, Mar 10 · 08:15 AM CST

CVE-2023-1091

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Alpata Licensed Warehousing Automation System allows Command Line Execution through SQL Injection. This issue affects Licensed Warehousing Automation System: through 2023.1.01.

CVECVE-2023-1091

SeverityCRITICAL

TypeUPDATED

PublishedFri, Mar 10 · 08:15 AM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Wed, Mar 01 · 01:15 PM CST

CVE-2023-1114

9.8/10 · Must read/watch

NVDvuln

Summary
Missing Authorization vulnerability in Eskom e-Belediye allows Information Elicitation. This issue affects e-Belediye: from 1.0.0.95 before 1.0.0.100.

CVECVE-2023-1114

SeverityCRITICAL

TypeUPDATED

PublishedWed, Mar 01 · 01:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Fri, Mar 17 · 09:15 AM CDT

CVE-2023-1152

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Utarit Information Technologies Persolus allows SQL Injection. This issue affects Persolus: before 2.03.93.

CVECVE-2023-1152

SeverityCRITICAL

TypeUPDATED

PublishedFri, Mar 17 · 09:15 AM CDT

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Tue, Mar 21 · 12:15 PM CDT

CVE-2023-1153

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Pacsrapor allows SQL Injection, Command Line Execution through SQL Injection. This issue affects Pacsrapor: before 1.22.

CVECVE-2023-1153

SeverityCRITICAL

TypeUPDATED

PublishedTue, Mar 21 · 12:15 PM CDT

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Fri, Mar 10 · 09:15 PM CST

CVE-2023-1198

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saysis Starcities allows SQL Injection. This issue affects Starcities: through 1.3.

CVECVE-2023-1198

SeverityCRITICAL

TypeUPDATED

PublishedFri, Mar 10 · 09:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Thu, Mar 09 · 08:15 AM CST

CVE-2023-1251

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Akinsoft Wolvox. This issue affects Wolvox: before 8.02.03.

CVECVE-2023-1251

SeverityCRITICAL

TypeUPDATED

PublishedThu, Mar 09 · 08:15 AM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Wed, Mar 08 · 12:15 PM CST

CVE-2023-1267

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Ulkem Company PtteM Kart. This issue affects PtteM Kart: before 2.1.

CVECVE-2023-1267

SeverityCRITICAL

TypeUPDATED

PublishedWed, Mar 08 · 12:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Tue, May 23 · 09:15 PM CDT

CVE-2023-1508

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Adam Retail Automation Systems Mobilmen Terminal Software allows SQL Injection. This issue affects Mobilmen Terminal Software: before 3.

CVECVE-2023-1508

SeverityCRITICAL

TypeUPDATED

PublishedTue, May 23 · 09:15 PM CDT

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Thu, Jul 13 · 08:15 AM CDT

CVE-2023-1547

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Elra Parkmatik allows SQL Injection through SOAP Parameter Tampering, Command Line Execution through SQL Injection. This issue affects Parkmatik: before 02.01-a51.

CVECVE-2023-1547

SeverityCRITICAL

TypeUPDATED

PublishedThu, Jul 13 · 08:15 AM CDT

ModifiedMon, Jun 01 · 11:16 AM CDT

Open article ↗

Mon, Nov 04 · 12:16 PM CST

CVE-2024-10035

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Control of Generation of Code ('Code Injection'), Improper Neutralization of Special Elements used in a Command ('Command Injection'), Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in BG-TEK Informatics Security Technologies CoslatV3 allows Command Inj

CVECVE-2024-10035

SeverityCRITICAL

TypeUPDATED

PublishedMon, Nov 04 · 12:16 PM CST

ModifiedTue, Jun 02 · 09:16 AM CDT

Open article ↗

Thu, Dec 19 · 02:15 PM CST

CVE-2024-10244

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ISDO Software Web Software allows SQL Injection. This issue affects Web Software: before 3.6.

CVECVE-2024-10244

SeverityCRITICAL

TypeUPDATED

PublishedThu, Dec 19 · 02:15 PM CST

ModifiedTue, Jun 02 · 07:16 AM CDT

Open article ↗

Fri, Nov 15 · 11:15 AM CST

CVE-2024-10534

9.8/10 · Must read/watch

NVDvuln

Summary
Origin Validation Error vulnerability in Dataprom Informatics Personnel Attendance Control Systems (PACS) / Access Control Security Systems (ACSS) allows Traffic Injection. This issue affects Personnel Attendance Control Systems (PACS) / Access Control Security Systems (ACSS): before 2024.

CVECVE-2024-10534

SeverityCRITICAL

TypeUPDATED

PublishedFri, Nov 15 · 11:15 AM CST

ModifiedTue, Jun 02 · 07:16 AM CDT

Open article ↗

Wed, Mar 05 · 02:15 PM CST

CVE-2024-12097

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Boceksoft Informatics E-Travel allows SQL Injection. This issue affects E-Travel: before 15.12.2024.

CVECVE-2024-12097

SeverityCRITICAL

TypeUPDATED

PublishedWed, Mar 05 · 02:15 PM CST

ModifiedTue, Jun 02 · 07:16 AM CDT

Open article ↗

Thu, Mar 06 · 02:15 PM CST

CVE-2024-12144

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Finder Fire Safety Finder ERP/CRM (Old System) allows SQL Injection. This issue affects Finder ERP/CRM (Old System): before 18.12.2024.

CVECVE-2024-12144

SeverityCRITICAL

TypeUPDATED

PublishedThu, Mar 06 · 02:15 PM CST

ModifiedMon, Jun 01 · 03:16 PM CDT

Open article ↗

Wed, Mar 05 · 02:15 PM CST

CVE-2024-13147

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Merkur Software B2B Login Panel allows SQL Injection. This issue affects B2B Login Panel: before 15.01.2025.

CVECVE-2024-13147

SeverityCRITICAL

TypeUPDATED

PublishedWed, Mar 05 · 02:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Thu, Feb 27 · 03:15 PM CST

CVE-2024-13148

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Yukseloglu Filter B2B Login Platform allows SQL Injection. This issue affects B2B Login Platform: before 16.01.2025.

CVECVE-2024-13148

SeverityCRITICAL

TypeUPDATED

PublishedThu, Feb 27 · 03:15 PM CST

ModifiedMon, Jun 01 · 01:16 PM CDT

Open article ↗

Mon, Dec 09 · 02:15 PM CST

CVE-2024-8259

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eryaz Information Technologies NatraCar B2B Dealer Management Program allows SQL Injection. This issue affects NatraCar B2B Dealer Management Program: through 09.12.2024. NOTE: The vendor was contacted and it was learn

CVECVE-2024-8259

SeverityCRITICAL

TypeUPDATED

PublishedMon, Dec 09 · 02:15 PM CST

ModifiedTue, Jun 02 · 09:16 AM CDT

Open article ↗

Mon, Mar 03 · 03:15 PM CST

CVE-2024-8262

9.8/10 · Must read/watch

NVDvuln

Summary
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Proliz Software OBS allows Path Traversal. This issue affects OBS: before 24.0927.

CVECVE-2024-8262

SeverityCRITICAL

TypeUPDATED

PublishedMon, Mar 03 · 03:15 PM CST

ModifiedTue, Jun 02 · 09:16 AM CDT

Open article ↗

Ignore today

Generic low-detail roundups without primary reporting.
HN items that are interesting but not clearly security or AI relevant.
Creator videos that look more like promotion, podcast chatter, or evergreen content than time-sensitive signal outside the rolling window.