Archive snapshot

Thu, Jun 11 · 12:00 PM CDT

Archived briefing content rendered inside the ACSP site experience.

Back to archive

Archived briefing

Snapshot overview

Generated Thu, Jun 11 · 12:00 PM CDTWindow last 6 hours

Top line

Coverage now updates on a rolling 6-hour window, while NVD entries come from the live API using a last-24-hours modified window and are sorted by severity.

Fast take

News stays on the current 6-hour slice, videos now use the last 24 hours, and NVD uses the API instead of the traditional feed to better match the live site behavior.

Top stories

5

Worth skimming

5

Tracked videos

0

NVD vulnerabilities

25

Top stories

Thu, Jun 11 · 12:00 PM CDT

Cybercriminals Use Fake AI Guides and Dev Tools to Spread AsyncRAT Malware

9.8/10 · Must read/watch

Infosecurity Magazinemalwareai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, 11 Jun 2026 22:20:47 +0530

The Gentlemen Ransomware Claims 478 Victims, Can Spread Like a Worm

9.8/10 · Must read/watch

The Hacker Newsmalwareai

Summary
A new analysis of The Gentlemen operation has revealed that the financially motivated threat group initially operated as an affiliate responsible for conducting double extortion attacks, while leveraging resources from various ransomware-as-a-service (RaaS) sc

Open article ↗

Thu, 11 Jun 2026 17:00:00 +0530

AI Broke Vulnerability Management. That's Why CISOs Are Moving Budget to BAS.

9.7/10 · Must read/watch

The Hacker Newsvulnai

Summary
For thirty years, vulnerability management ran on a buffer: the months between when a vulnerability was found and when someone could figure out how to weaponize it. The solution was straightforward enough; triage by severity, schedule the fix, validate, and mo

Open article ↗

Thu, 11 Jun 2026 18:50:41 +0530

ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories

9.6/10 · Must read/watch

The Hacker Newsvulnmalwaresupply-chainai

Summary
It's been one of those weeks. You expect the usual noise: recycled malware, sloppy attacks, another easy target getting hit. Instead, there's a supply chain attack kit in a public repo, a $5,000-a-month RAT that clones browsers, and research showing AI agents

Open article ↗

Thu, Jun 11 · 12:00 PM CDT

Extortion-Only Attacks Increase, With Data Theft Dominating Ransomware Claims

9.4/10 · Must read/watch

Infosecurity Magazinemalwareai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Worth skimming

Thu, Jun 11 · 12:00 PM CDT

Interpol Dismantles SniperDz Phishing-as-a-Service Platform

9.4/10 · Must read/watch

Infosecurity Magazinegeneral

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, Jun 11 · 11:00 AM CDT

Anthropic apologizes for invisible Claude Fable guardrails

8.9/10 · Worth your time

Hacker Newsai

Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 1 hour ago.

Open article ↗

Thu, Jun 11 · 12:00 PM CDT

CISA Orders Agencies to Patch by Risk, Not Severity

8.8/10 · Worth your time

Infosecurity Magazinevuln

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, Jun 11 · 12:00 PM CDT

New “Agentjacking” Attacks Could Hijack AI Coding Agents

8.7/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, Jun 11 · 12:00 PM CDT

Most Cybersecurity Teams Struggle to Find Time for Training on New Cyber Threats

8.7/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Videos worth watching

Nothing surfaced yet.

NVD vulnerabilities

Fri, May 08 · 05:16 PM CDT

CVE-2026-38360

9.8/10 · Must read/watch

NVDvuln

Summary
Directory Traversal vulnerability in fohrloop dash-uploader v.0.1.0 through v.0.7.0a2 allows a remote attacker to execute arbitrary code via the dash_uploader/httprequesthandler.py, BaseHttpRequestHandler.get_temp_root(), BaseHttpRequestHandler._post() components.

CVECVE-2026-38360

SeverityCRITICAL

TypeUPDATED

PublishedFri, May 08 · 05:16 PM CDT

ModifiedWed, Jun 10 · 04:17 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46195

9.8/10 · Must read/watch

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before building DACL pointers parse_sec_desc(), build_sec_desc(), and the chown path in id_mode_to_cifs_acl() all add the server-supplied dacloffset to pntsd before proving a DACL header fits inside the returned securit

CVECVE-2026-46195

SeverityCRITICAL

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 07:18 PM CDT

Open article ↗

Mon, May 11 · 06:16 PM CDT

CVE-2026-7210

9.8/10 · Must read/watch

NVDvuln

Summary
`xml.parsers.expat` and `xml.etree.ElementTree` use insufficient entropy for Expat hash-flooding protection, which allows a crafted XML document to trigger hash flooding.\r\n\r\nFully mitigating this vulnerability requires both updating libexpat to 2.8.0 or later and applying this patch.

CVECVE-2026-7210

SeverityCRITICAL

TypeUPDATED

PublishedMon, May 11 · 06:16 PM CDT

ModifiedWed, Jun 10 · 07:16 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46185

9.1/10 · Must read/watch

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlink_data() Since smb2_check_message() returns success without length validation for the symlink error response, in symlink_data() it is possible for iov->iov_len to be smaller than sizeof(struct smb2_err_rsp).

CVECVE-2026-46185

SeverityCRITICAL

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedThu, Jun 11 · 03:02 AM CDT

Open article ↗

Thu, May 28 · 09:16 AM CDT

CVE-2026-4408

9.0/10 · Must read/watch

NVDvuln

Summary
A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic domain controllers that use the "check password script" feature. If this script is configured with the %u substitution character, the client-controlled username is passed without proper escaping of shell meta-c

CVECVE-2026-4408

SeverityCRITICAL

TypeUPDATED

PublishedThu, May 28 · 09:16 AM CDT

ModifiedWed, Jun 10 · 04:17 PM CDT

Open article ↗

Tue, May 26 · 03:16 PM CDT

CVE-2026-4480

9.0/10 · Must read/watch

NVDvuln

Summary
A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by sending a specially cra

CVECVE-2026-4480

SeverityCRITICAL

TypeUPDATED

PublishedTue, May 26 · 03:16 PM CDT

ModifiedWed, Jun 10 · 04:17 PM CDT

Open article ↗

Mon, Jul 26 · 08:15 PM CDT

CVE-2020-18171

8.8/10 · Worth your time

NVDvuln

Summary
TechSmith Snagit 19.1.0.2653 uses Object Linking and Embedding (OLE) which can allow attackers to obfuscate and embed crafted files used to escalate privileges. NOTE: This implies that Snagit's use of OLE is a security vulnerability unto itself and it is not. See reference document for more details.

CVECVE-2020-18171

SeverityHIGH

TypeUPDATED

PublishedMon, Jul 26 · 08:15 PM CDT

ModifiedWed, Jun 10 · 04:16 PM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24187

8.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24187

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:56 AM CDT

Open article ↗

Fri, Mar 20 · 02:16 AM CDT

CVE-2026-4447

8.8/10 · Worth your time

NVDvuln

Summary
Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

CVECVE-2026-4447

SeverityHIGH

TypeUPDATED

PublishedFri, Mar 20 · 02:16 AM CDT

ModifiedWed, Jun 10 · 08:17 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46166

8.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: use safe list iteration in radar detect work The call to ieee80211_dfs_cac_cancel can cause the iterated chanctx to be freed and removed from the list. Guard against this to avoid a slab-use-after-free error.

CVECVE-2026-46166

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 09:14 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46174

8.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache Make sure resources are not improperly shared in the op cache and cause instruction corruption this way.

CVECVE-2026-46174

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 09:08 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46198

8.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix integer overflow on buff_pos Fixing an integer overflow present in batadv_iv_ogm_send_to_if. The size check is done using the int type in batadv_iv_ogm_aggr_packet whereas the buff_pos variable uses the s16 type. This could lead to an o

CVECVE-2026-46198

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 05:09 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46212

8.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: prevent use-after-free when deleting claims When batadv_bla_del_backbone_claims() removes all claims for a backbone, it does this by dropping the link entry in the hash list. This list entry itself was one of the references which need

CVECVE-2026-46212

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 07:16 PM CDT

Open article ↗

Fri, Mar 27 · 05:16 PM CDT

CVE-2026-28367

8.7/10 · Worth your time

NVDvuln

Summary
A flaw was found in Undertow. A remote attacker can exploit this vulnerability by sending `\r\r\r` as a header block terminator. This can be used for request smuggling with certain proxy servers, such as older versions of Apache Traffic Server and Google Cloud Classic Application Load Balancer, potentially leading to u

CVECVE-2026-28367

SeverityHIGH

TypeUPDATED

PublishedFri, Mar 27 · 05:16 PM CDT

ModifiedWed, Jun 10 · 10:16 PM CDT

Open article ↗

Fri, Mar 27 · 05:16 PM CDT

CVE-2026-28368

8.7/10 · Worth your time

NVDvuln

Summary
A flaw was found in Undertow. This vulnerability allows a remote attacker to construct specially crafted requests where header names are parsed differently by Undertow compared to upstream proxies. This discrepancy in header interpretation can be exploited to launch request smuggling attacks, potentially bypassing secu

CVECVE-2026-28368

SeverityHIGH

TypeUPDATED

PublishedFri, Mar 27 · 05:16 PM CDT

ModifiedWed, Jun 10 · 10:16 PM CDT

Open article ↗

Fri, Mar 27 · 05:16 PM CDT

CVE-2026-28369

8.7/10 · Worth your time

NVDvuln

Summary
A flaw was found in Undertow. When Undertow receives an HTTP request where the first header line starts with one or more spaces, it incorrectly processes the request by stripping these leading spaces. This behavior, which violates HTTP standards, can be exploited by a remote attacker to perform request smuggling. Reque

CVECVE-2026-28369

SeverityHIGH

TypeUPDATED

PublishedFri, Mar 27 · 05:16 PM CDT

ModifiedWed, Jun 10 · 10:16 PM CDT

Open article ↗

Wed, May 27 · 11:16 AM CDT

CVE-2026-3012

8.0/10 · Worth your time

NVDvuln

Summary
A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and install it into the local trust store without proper verification. An attacker with the ability to intercept or redirect

CVECVE-2026-3012

SeverityHIGH

TypeUPDATED

PublishedWed, May 27 · 11:16 AM CDT

ModifiedWed, Jun 10 · 04:17 PM CDT

Open article ↗

Mon, Jul 26 · 08:15 PM CDT

CVE-2020-18169

7.8/10 · Worth your time

NVDvuln

Summary
A vulnerability in the Windows installer XML (WiX) toolset of TechSmith Snagit 19.1.1.2860 allows attackers to escalate privileges. NOTE: Exploit of the Snagit installer would require the end user to ignore other safety mechanisms provided by the Host OS. See reference document for more details.

CVECVE-2020-18169

SeverityHIGH

TypeUPDATED

PublishedMon, Jul 26 · 08:15 PM CDT

ModifiedWed, Jun 10 · 04:16 PM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24190

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user could cause improper access to GPU resources. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24190

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:56 AM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24191

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Windows contains a vulnerability where an attacker could cause a time-of-check time-of-use issue. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24191

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:57 AM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24192

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause an incorrect conversion between numeric types, leading to a heap buffer overflow. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code

CVECVE-2026-24192

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:57 AM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24193

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker could cause an out-of-bounds write. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24193

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:57 AM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24194

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Linux contains a vulnerability in a kernel mode layer handler, where a user could cause improper permission handling. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24194

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:57 AM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46145

7.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Validate rx_hash_key_len Sashiko points out that rx_hash_key_len comes from a uAPI structure and is blindly passed to memcpy, allowing the userspace to trash kernel memory. Bounds check it so the memcpy cannot overflow.

CVECVE-2026-46145

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 09:17 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46162

7.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: ice: fix double free in ice_sf_eth_activate() error path When auxiliary_device_add() fails, ice_sf_eth_activate() jumps to aux_dev_uninit and calls auxiliary_device_uninit(&sf_dev->adev). The device release callback ice_sf_dev_release() frees sf_dev, b

CVECVE-2026-46162

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 09:13 PM CDT

Open article ↗

Ignore today

Generic low-detail roundups without primary reporting.
HN items that are interesting but not clearly security or AI relevant.
Creator videos that look more like promotion, podcast chatter, or evergreen content than time-sensitive signal outside the rolling window.