Archive snapshot

Tue, Jun 09 · 12:00 PM CDT

Archived briefing content rendered inside the ACSP site experience.

Back to archive

Archived briefing

Snapshot overview

Generated Tue, Jun 09 · 12:00 PM CDTWindow last 6 hours

Top line

Coverage now updates on a rolling 6-hour window, while NVD entries come from the live API using a last-24-hours modified window and are sorted by severity.

Fast take

News stays on the current 6-hour slice, videos now use the last 24 hours, and NVD uses the API instead of the traditional feed to better match the live site behavior.

Top stories

5

Worth skimming

5

Tracked videos

0

NVD vulnerabilities

25

Top stories

Tue, 09 Jun 2026 17:56:10 +0530

WinRAR Flaw Exploited by Russia-Aligned Groups to Deploy Stealers in Ukraine

9.8/10 · Must read/watch

The Hacker Newsvulnai

Summary
Two Russia-aligned cyber attack campaigns have continued to exploit a security flaw in WinRAR to target Ukrainian organisations, almost a year after patches for the vulnerability were released. The activity has been attributed by Trend Micro to Earth Dahu (aka

Open article ↗

Tue, 09 Jun 2026 17:28:49 +0530

Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild - Patch Now

9.8/10 · Must read/watch

The Hacker Newsvuln

Summary
Google has released security updates to address 74 vulnerabilities, including one that has come under active exploitation in the wild. The high-severity vulnerability, tracked as CVE-2026-11645 (CVSS score: 8.8), has been described as an out-of-bounds memory a

Open article ↗

Tue, Jun 09 · 12:00 PM CDT

Google Releases Patch for Chrome Vulnerability Exploited in the Wild

9.4/10 · Must read/watch

Infosecurity Magazinevuln

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Tue, Jun 09 · 12:00 PM CDT

WhatsApp Discovers NSO Group-Linked Spearphishing Attempts

9.4/10 · Must read/watch

Infosecurity Magazinegeneral

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Tue, Jun 09 · 12:00 PM CDT

Check Point Warns Critical Auth Bypass Bug Exploited in the Wild

9.0/10 · Must read/watch

Infosecurity Magazinevulnidentity

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Worth skimming

Tue, 09 Jun 2026 22:04:52 +0530

Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues

8.9/10 · Worth your time

The Hacker Newssupply-chain

Summary
Microsoft on Monday confirmed that it temporarily removed some GitHub repositories in response to a recent security incident that led to 73 of its open-source projects being compromised to inject an information stealer into the code. "Our priority is to protec

Open article ↗

Tue, 09 Jun 2026 17:29:03 +0530

Researchers Build Self-Replicating AI Worm That Operates Entirely on Local, Open-Weight Models

8.9/10 · Worth your time

The Hacker Newsai

Summary
University of Toronto researchers have built and tested a proof-of-concept AI-driven computer worm that uses a locally hosted open-weight large language model to reason its way through a network, generate tailored attack strategies for each target it encounter

Open article ↗

Tue, Jun 09 · 12:00 PM CDT

AI Coding Adoption Hits 97% but Governance Lags Behind

8.7/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Tue, Jun 09 · 10:00 AM CDT

Unified Controllable and Faithful Text-to-CAD Generation with LLMs

8.7/10 · Worth your time

Hacker Newsai

Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 2 hours ago.

Open article ↗

Tue, 09 Jun 2026 15:12:43 +0000

High-severity vulnerability in Linux caused by a single errant character

8.3/10 · Worth your time

Ars Technicavuln

Summary
Use-after-free bug can be exploited to evade sandbox defenses.

Open article ↗

Videos worth watching

Nothing surfaced yet.

NVD vulnerabilities

Mon, Mar 16 · 02:17 PM CDT

CVE-2016-20024

9.8/10 · Must read/watch

NVDvuln

Summary
ZKTeco ZKTime.Net 3.0.1.6 contains an insecure file permissions vulnerability that allows unprivileged users to escalate privileges by modifying executable files. Attackers can exploit world-writable permissions on the ZKTimeNet3.0 directory and its contents to replace executable files with malicious binaries for privi

CVECVE-2016-20024

SeverityCRITICAL

TypeUPDATED

PublishedMon, Mar 16 · 02:17 PM CDT

ModifiedMon, Jun 08 · 04:16 PM CDT

Open article ↗

Mon, Mar 16 · 02:17 PM CDT

CVE-2016-20026

9.8/10 · Must read/watch

NVDvuln

Summary
ZKTeco ZKBioSecurity 3.0 contains hardcoded credentials in the bundled Apache Tomcat server that allow unauthenticated attackers to access the manager application. Attackers can authenticate with hardcoded credentials stored in tomcat-users.xml to upload malicious WAR archives containing JSP applications and execute ar

CVECVE-2016-20026

SeverityCRITICAL

TypeUPDATED

PublishedMon, Mar 16 · 02:17 PM CDT

ModifiedMon, Jun 08 · 04:16 PM CDT

Open article ↗

Mon, Mar 16 · 02:17 PM CDT

CVE-2016-20030

9.8/10 · Must read/watch

NVDvuln

Summary
ZKTeco ZKBioSecurity 3.0 contains a user enumeration vulnerability that allows unauthenticated attackers to discover valid usernames by submitting partial characters via the username parameter. Attackers can send requests to the authLoginAction!login.do script with varying username inputs to enumerate valid user accoun

CVECVE-2016-20030

SeverityCRITICAL

TypeUPDATED

PublishedMon, Mar 16 · 02:17 PM CDT

ModifiedMon, Jun 08 · 04:16 PM CDT

Open article ↗

Thu, May 02 · 08:29 PM CDT

CVE-2018-16988

9.8/10 · Must read/watch

NVDvuln

Summary
An issue was discovered in Open XDMoD through 7.5.0. An authentication bypass (account takeover) exists due to a weak password reset mechanism. A brute-force attack against an MD5 rid value requires only 600 guesses in the plausible situation where the attacker knows that the victim has started a password-reset process

CVECVE-2018-16988

SeverityCRITICAL

TypeUPDATED

PublishedThu, May 02 · 08:29 PM CDT

ModifiedMon, Jun 08 · 03:05 PM CDT

Open article ↗

Tue, Sep 09 · 09:15 AM CDT

CVE-2025-40795

9.8/10 · Must read/watch

NVDvuln

Summary
A vulnerability has been identified in SIMATIC PCS neo V4.1 (All versions), SIMATIC PCS neo V5.0 (All versions), SIMATIC PCS neo V6.0 (All versions < V6.0 SP1 Update 1), User Management Component (UMC) (All versions < V2.15.1.3). Affected products contain a stack-based buffer overflow vulnerability in the integrated UM

CVECVE-2025-40795

SeverityCRITICAL

TypeUPDATED

PublishedTue, Sep 09 · 09:15 AM CDT

ModifiedTue, Jun 09 · 10:16 AM CDT

Open article ↗

Tue, Dec 09 · 06:15 PM CST

CVE-2025-59718

9.8/10 · Must read/watch

NVDvuln

Summary
A improper verification of cryptographic signature vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0.0 through 7.0.17, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4.0 through 7.4.10, FortiProxy 7.2.0 through 7.2.14, FortiProxy 7.0.0 through 7.

CVECVE-2025-59718

SeverityCRITICAL

TypeUPDATED

PublishedTue, Dec 09 · 06:15 PM CST

ModifiedTue, Jun 09 · 10:16 AM CDT

Open article ↗

Tue, Dec 09 · 06:15 PM CST

CVE-2025-59719

9.8/10 · Must read/watch

NVDvuln

Summary
An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9 may allow an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML response message.

CVECVE-2025-59719

SeverityCRITICAL

TypeUPDATED

PublishedTue, Dec 09 · 06:15 PM CST

ModifiedTue, Jun 09 · 10:16 AM CDT

Open article ↗

Wed, Jun 03 · 01:16 PM CDT

CVE-2026-35075

9.8/10 · Must read/watch

NVDvuln

Summary
An unauthenticated remote attacker can recover a default, hard coded password from a firmware image and thus gain full access to all affected devices.

CVECVE-2026-35075

SeverityCRITICAL

TypeUPDATED

PublishedWed, Jun 03 · 01:16 PM CDT

ModifiedMon, Jun 08 · 05:17 PM CDT

Open article ↗

Fri, May 29 · 09:16 AM CDT

CVE-2026-49197

9.8/10 · Must read/watch

NVDvuln

Summary
Web endpoints intended for the Acer Connect app improperly validate the HTTP Authorization header, failing to block requests when Base64 decoding fails.

CVECVE-2026-49197

SeverityCRITICAL

TypeUPDATED

PublishedFri, May 29 · 09:16 AM CDT

ModifiedMon, Jun 08 · 12:33 PM CDT

Open article ↗

Fri, May 29 · 09:16 AM CDT

CVE-2026-49200

9.8/10 · Must read/watch

NVDvuln

Summary
The acer_cgi.log file in the device firmware is accessible without authentication via the web interface. This file contains cleartext login credentials (for web and Telnet), leading to unauthorized system access.

CVECVE-2026-49200

SeverityCRITICAL

TypeUPDATED

PublishedFri, May 29 · 09:16 AM CDT

ModifiedMon, Jun 08 · 12:27 PM CDT

Open article ↗

Fri, May 29 · 11:16 AM CDT

CVE-2026-49201

9.8/10 · Must read/watch

NVDvuln

Summary
The upload.cgi binary, responsible for processing device backups, contains a hardcoded AES encryption key. This allows an attacker to decrypt, modify, and re-encrypt system backups, facilitating persistent backdoor injection.

CVECVE-2026-49201

SeverityCRITICAL

TypeUPDATED

PublishedFri, May 29 · 11:16 AM CDT

ModifiedMon, Jun 08 · 12:34 PM CDT

Open article ↗

Thu, Jun 04 · 10:16 AM CDT

CVE-2026-50214

9.8/10 · Must read/watch

NVDvuln

Summary
The /v1/Plan service relies entirely on a shared global API token for full administrative management, allowing arbitrary creation of zero-cost network access plans.

CVECVE-2026-50214

SeverityCRITICAL

TypeUPDATED

PublishedThu, Jun 04 · 10:16 AM CDT

ModifiedMon, Jun 08 · 12:56 PM CDT

Open article ↗

Wed, May 13 · 07:17 PM CDT

CVE-2026-0257

9.1/10 · Must read/watch

NVDvuln

Summary
Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. Panorama and Cloud NGFW are not impacted by these issues.

CVECVE-2026-0257

SeverityCRITICAL

TypeUPDATED

PublishedWed, May 13 · 07:17 PM CDT

ModifiedTue, Jun 09 · 10:16 AM CDT

Open article ↗

Thu, Jun 04 · 10:16 AM CDT

CVE-2026-50225

9.1/10 · Must read/watch

NVDvuln

Summary
The registration path /v1/account/register provides no bot mitigation mechanisms, allowing malicious automated systems to flood the database.

CVECVE-2026-50225

SeverityCRITICAL

TypeUPDATED

PublishedThu, Jun 04 · 10:16 AM CDT

ModifiedMon, Jun 08 · 12:58 PM CDT

Open article ↗

Thu, May 28 · 09:16 AM CDT

CVE-2026-4408

9.0/10 · Must read/watch

NVDvuln

Summary
A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic domain controllers that use the "check password script" feature. If this script is configured with the %u substitution character, the client-controlled username is passed without proper escaping of shell meta-c

CVECVE-2026-4408

SeverityCRITICAL

TypeUPDATED

PublishedThu, May 28 · 09:16 AM CDT

ModifiedMon, Jun 08 · 03:28 PM CDT

Open article ↗

Mon, Mar 16 · 02:17 PM CDT

CVE-2016-20025

8.8/10 · Worth your time

NVDvuln

Summary
ZKTeco ZKAccess Professional 3.5.3 contains an insecure file permissions vulnerability that allows authenticated users to escalate privileges by modifying executable files. Attackers can leverage the Modify permission granted to the Authenticated Users group to replace executable binaries with malicious code for privil

CVECVE-2016-20025

SeverityHIGH

TypeUPDATED

PublishedMon, Mar 16 · 02:17 PM CDT

ModifiedMon, Jun 08 · 04:16 PM CDT

Open article ↗

Tue, Jan 27 · 04:16 PM CST

CVE-2025-15467

8.8/10 · Worth your time

NVDvuln

Summary
Issue summary: Parsing CMS AuthEnvelopedData or EnvelopedData message with maliciously crafted AEAD parameters can trigger a stack buffer overflow. Impact summary: A stack buffer overflow may lead to a crash, causing Denial of Service, or potentially remote code execution. When parsing CMS (Auth)EnvelopedData structure

CVECVE-2025-15467

SeverityHIGH

TypeUPDATED

PublishedTue, Jan 27 · 04:16 PM CST

ModifiedTue, Jun 09 · 10:16 AM CDT

Open article ↗

Tue, May 12 · 06:16 PM CDT

CVE-2025-53844

8.8/10 · Worth your time

NVDvuln

Summary
A out-of-bounds write vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11 allows attacker to execute unauthorized code or commands via specially crafted packets.

CVECVE-2025-53844

SeverityHIGH

TypeUPDATED

PublishedTue, May 12 · 06:16 PM CDT

ModifiedTue, Jun 09 · 10:16 AM CDT

Open article ↗

Tue, Jun 02 · 09:16 AM CDT

CVE-2026-1784

8.8/10 · Worth your time

NVDvuln

Summary
The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injection of the HAProxy configuration.

CVECVE-2026-1784

SeverityHIGH

TypeUPDATED

PublishedTue, Jun 02 · 09:16 AM CDT

ModifiedMon, Jun 08 · 02:36 PM CDT

Open article ↗

Tue, Feb 10 · 04:16 AM CST

CVE-2026-23687

8.8/10 · Worth your time

NVDvuln

Summary
SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated attacker with normal privileges to obtain a valid signed message and send modified signed XML documents to the verifier. This may result in acceptance of tampered identity information, unauthorized access to sensitive user data and potentia

CVECVE-2026-23687

SeverityHIGH

TypeUPDATED

PublishedTue, Feb 10 · 04:16 AM CST

ModifiedTue, Jun 09 · 08:16 AM CDT

Open article ↗

Wed, Jun 03 · 01:16 PM CDT

CVE-2026-35082

8.8/10 · Worth your time

NVDvuln

Summary
The ugw-logread method allows a remote attacker with user privileges to access arbitrary local files due to insufficient validation of user-supplied input.

CVECVE-2026-35082

SeverityHIGH

TypeUPDATED

PublishedWed, Jun 03 · 01:16 PM CDT

ModifiedMon, Jun 08 · 05:17 PM CDT

Open article ↗

Wed, Jun 03 · 01:16 PM CDT

CVE-2026-35083

8.8/10 · Worth your time

NVDvuln

Summary
A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as root.

CVECVE-2026-35083

SeverityHIGH

TypeUPDATED

PublishedWed, Jun 03 · 01:16 PM CDT

ModifiedMon, Jun 08 · 05:17 PM CDT

Open article ↗

Wed, Jun 03 · 01:16 PM CDT

CVE-2026-35084

8.8/10 · Worth your time

NVDvuln

Summary
A remote attacker with user privileges can exploit a stack buffer overflow in dali-devconfig to gain full system access as root.

CVECVE-2026-35084

SeverityHIGH

TypeUPDATED

PublishedWed, Jun 03 · 01:16 PM CDT

ModifiedMon, Jun 08 · 05:17 PM CDT

Open article ↗

Wed, Jun 03 · 01:16 PM CDT

CVE-2026-35085

8.8/10 · Worth your time

NVDvuln

Summary
A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root.

CVECVE-2026-35085

SeverityHIGH

TypeUPDATED

PublishedWed, Jun 03 · 01:16 PM CDT

ModifiedMon, Jun 08 · 05:16 PM CDT

Open article ↗

Fri, Mar 13 · 07:55 PM CDT

CVE-2026-3999

8.8/10 · Worth your time

NVDvuln

Summary
A broken access control may allow an authenticated user to perform a horizontal privilege escalation. The vulnerability only impacts specific configurations.

CVECVE-2026-3999

SeverityHIGH

TypeUPDATED

PublishedFri, Mar 13 · 07:55 PM CDT

ModifiedMon, Jun 08 · 02:31 PM CDT

Open article ↗

Ignore today

Generic low-detail roundups without primary reporting.
HN items that are interesting but not clearly security or AI relevant.
Creator videos that look more like promotion, podcast chatter, or evergreen content than time-sensitive signal outside the rolling window.