Archive snapshot

Thu, Jun 11 · 06:00 PM CDT

Archived briefing content rendered inside the ACSP site experience.

Back to archive

Archived briefing

Snapshot overview

Generated Thu, Jun 11 · 06:00 PM CDTWindow last 6 hours

Top line

Coverage now updates on a rolling 6-hour window, while NVD entries come from the live API using a last-24-hours modified window and are sorted by severity.

Fast take

News stays on the current 6-hour slice, videos now use the last 24 hours, and NVD uses the API instead of the traditional feed to better match the live site behavior.

Top stories

5

Worth skimming

5

Tracked videos

0

NVD vulnerabilities

25

Top stories

Fri, 12 Jun 2026 01:59:23 +0530

ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities

9.8/10 · Must read/watch

The Hacker Newsvulnai

Summary
The ShinyHunters extortion crew exploited an unpatched flaw in Oracle PeopleSoft to break into enterprise systems, steal data, and demand payment to keep it private. The campaign hit universities hardest. Google's Mandiant attributes it to the group it tracks

Open article ↗

Thu, Jun 11 · 06:00 PM CDT

Cybercriminals Use Fake AI Guides and Dev Tools to Spread AsyncRAT Malware

9.4/10 · Must read/watch

Infosecurity Magazinemalwareai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, 11 Jun 2026 23:13:52 +0530

New GreatXML Exploit Bypasses Windows BitLocker via Recovery Partition XML Files

9.3/10 · Must read/watch

The Hacker Newsvuln

Summary
Security researcher Chaotic Eclipse (aka Nightmare-Eclipse and MSNightmare) has released a new Windows BitLocker bypass dubbed GreatXML, a day after they published an exploit for Microsoft Defender. "This was an accidental discovery, it took a total of 4 hours

Open article ↗

Thu, Jun 11 · 06:00 PM CDT

Interpol Dismantles SniperDz Phishing-as-a-Service Platform

9.0/10 · Must read/watch

Infosecurity Magazinegeneral

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, 11 Jun 2026 23:16:32 +0530

New Attacks Trick OpenClaw AI Agent Into Running Code and Leaking Secrets

9.0/10 · Must read/watch

The Hacker Newsai

Summary
Two security teams have shown, in separate research published this week, that OpenClaw, the popular self-hosted AI agent, can be driven to run attacker-controlled code or hand over sensitive data through ordinary-looking inputs. Imperva buried instructions ins

Open article ↗

Worth skimming

Thu, Jun 11 · 06:00 PM CDT

Extortion-Only Attacks Increase, With Data Theft Dominating Ransomware Claims

8.9/10 · Worth your time

Infosecurity Magazinemalwareai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, Jun 11 · 06:00 PM CDT

CISA Orders Agencies to Patch by Risk, Not Severity

8.4/10 · Worth your time

Infosecurity Magazinevuln

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, Jun 11 · 06:00 PM CDT

New “Agentjacking” Attacks Could Hijack AI Coding Agents

8.2/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, Jun 11 · 06:00 PM CDT

Most Cybersecurity Teams Struggle to Find Time for Training on New Cyber Threats

8.2/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, Jun 11 · 03:00 PM CDT

Shall we play a game? – LLMs use tactical nukes in 95% of simulations

8.2/10 · Worth your time

Hacker Newsai

Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 3 hours ago.

Open article ↗

Videos worth watching

Nothing surfaced yet.

NVD vulnerabilities

Fri, May 08 · 05:16 PM CDT

CVE-2026-38360

9.8/10 · Must read/watch

NVDvuln

Summary
Directory Traversal vulnerability in fohrloop dash-uploader v.0.1.0 through v.0.7.0a2 allows a remote attacker to execute arbitrary code via the dash_uploader/httprequesthandler.py, BaseHttpRequestHandler.get_temp_root(), BaseHttpRequestHandler._post() components.

CVECVE-2026-38360

SeverityCRITICAL

TypeUPDATED

PublishedFri, May 08 · 05:16 PM CDT

ModifiedWed, Jun 10 · 04:17 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46195

9.8/10 · Must read/watch

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before building DACL pointers parse_sec_desc(), build_sec_desc(), and the chown path in id_mode_to_cifs_acl() all add the server-supplied dacloffset to pntsd before proving a DACL header fits inside the returned securit

CVECVE-2026-46195

SeverityCRITICAL

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 07:18 PM CDT

Open article ↗

Mon, May 11 · 06:16 PM CDT

CVE-2026-7210

9.8/10 · Must read/watch

NVDvuln

Summary
`xml.parsers.expat` and `xml.etree.ElementTree` use insufficient entropy for Expat hash-flooding protection, which allows a crafted XML document to trigger hash flooding.\r\n\r\nFully mitigating this vulnerability requires both updating libexpat to 2.8.0 or later and applying this patch.

CVECVE-2026-7210

SeverityCRITICAL

TypeUPDATED

PublishedMon, May 11 · 06:16 PM CDT

ModifiedWed, Jun 10 · 07:16 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46185

9.1/10 · Must read/watch

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlink_data() Since smb2_check_message() returns success without length validation for the symlink error response, in symlink_data() it is possible for iov->iov_len to be smaller than sizeof(struct smb2_err_rsp).

CVECVE-2026-46185

SeverityCRITICAL

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedThu, Jun 11 · 03:02 AM CDT

Open article ↗

Thu, May 28 · 09:16 AM CDT

CVE-2026-4408

9.0/10 · Must read/watch

NVDvuln

Summary
A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic domain controllers that use the "check password script" feature. If this script is configured with the %u substitution character, the client-controlled username is passed without proper escaping of shell meta-c

CVECVE-2026-4408

SeverityCRITICAL

TypeUPDATED

PublishedThu, May 28 · 09:16 AM CDT

ModifiedWed, Jun 10 · 04:17 PM CDT

Open article ↗

Tue, May 26 · 03:16 PM CDT

CVE-2026-4480

9.0/10 · Must read/watch

NVDvuln

Summary
A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by sending a specially cra

CVECVE-2026-4480

SeverityCRITICAL

TypeUPDATED

PublishedTue, May 26 · 03:16 PM CDT

ModifiedWed, Jun 10 · 04:17 PM CDT

Open article ↗

Mon, Jul 26 · 08:15 PM CDT

CVE-2020-18171

8.8/10 · Worth your time

NVDvuln

Summary
TechSmith Snagit 19.1.0.2653 uses Object Linking and Embedding (OLE) which can allow attackers to obfuscate and embed crafted files used to escalate privileges. NOTE: This implies that Snagit's use of OLE is a security vulnerability unto itself and it is not. See reference document for more details.

CVECVE-2020-18171

SeverityHIGH

TypeUPDATED

PublishedMon, Jul 26 · 08:15 PM CDT

ModifiedWed, Jun 10 · 04:16 PM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24187

8.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24187

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:56 AM CDT

Open article ↗

Fri, Mar 20 · 02:16 AM CDT

CVE-2026-4447

8.8/10 · Worth your time

NVDvuln

Summary
Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

CVECVE-2026-4447

SeverityHIGH

TypeUPDATED

PublishedFri, Mar 20 · 02:16 AM CDT

ModifiedWed, Jun 10 · 08:17 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46166

8.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: use safe list iteration in radar detect work The call to ieee80211_dfs_cac_cancel can cause the iterated chanctx to be freed and removed from the list. Guard against this to avoid a slab-use-after-free error.

CVECVE-2026-46166

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 09:14 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46174

8.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache Make sure resources are not improperly shared in the op cache and cause instruction corruption this way.

CVECVE-2026-46174

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 09:08 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46198

8.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix integer overflow on buff_pos Fixing an integer overflow present in batadv_iv_ogm_send_to_if. The size check is done using the int type in batadv_iv_ogm_aggr_packet whereas the buff_pos variable uses the s16 type. This could lead to an o

CVECVE-2026-46198

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 05:09 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46212

8.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: prevent use-after-free when deleting claims When batadv_bla_del_backbone_claims() removes all claims for a backbone, it does this by dropping the link entry in the hash list. This list entry itself was one of the references which need

CVECVE-2026-46212

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 07:16 PM CDT

Open article ↗

Fri, Mar 27 · 05:16 PM CDT

CVE-2026-28367

8.7/10 · Worth your time

NVDvuln

Summary
A flaw was found in Undertow. A remote attacker can exploit this vulnerability by sending `\r\r\r` as a header block terminator. This can be used for request smuggling with certain proxy servers, such as older versions of Apache Traffic Server and Google Cloud Classic Application Load Balancer, potentially leading to u

CVECVE-2026-28367

SeverityHIGH

TypeUPDATED

PublishedFri, Mar 27 · 05:16 PM CDT

ModifiedWed, Jun 10 · 10:16 PM CDT

Open article ↗

Fri, Mar 27 · 05:16 PM CDT

CVE-2026-28368

8.7/10 · Worth your time

NVDvuln

Summary
A flaw was found in Undertow. This vulnerability allows a remote attacker to construct specially crafted requests where header names are parsed differently by Undertow compared to upstream proxies. This discrepancy in header interpretation can be exploited to launch request smuggling attacks, potentially bypassing secu

CVECVE-2026-28368

SeverityHIGH

TypeUPDATED

PublishedFri, Mar 27 · 05:16 PM CDT

ModifiedWed, Jun 10 · 10:16 PM CDT

Open article ↗

Fri, Mar 27 · 05:16 PM CDT

CVE-2026-28369

8.7/10 · Worth your time

NVDvuln

Summary
A flaw was found in Undertow. When Undertow receives an HTTP request where the first header line starts with one or more spaces, it incorrectly processes the request by stripping these leading spaces. This behavior, which violates HTTP standards, can be exploited by a remote attacker to perform request smuggling. Reque

CVECVE-2026-28369

SeverityHIGH

TypeUPDATED

PublishedFri, Mar 27 · 05:16 PM CDT

ModifiedWed, Jun 10 · 10:16 PM CDT

Open article ↗

Wed, May 27 · 11:16 AM CDT

CVE-2026-3012

8.0/10 · Worth your time

NVDvuln

Summary
A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and install it into the local trust store without proper verification. An attacker with the ability to intercept or redirect

CVECVE-2026-3012

SeverityHIGH

TypeUPDATED

PublishedWed, May 27 · 11:16 AM CDT

ModifiedWed, Jun 10 · 04:17 PM CDT

Open article ↗

Mon, Jul 26 · 08:15 PM CDT

CVE-2020-18169

7.8/10 · Worth your time

NVDvuln

Summary
A vulnerability in the Windows installer XML (WiX) toolset of TechSmith Snagit 19.1.1.2860 allows attackers to escalate privileges. NOTE: Exploit of the Snagit installer would require the end user to ignore other safety mechanisms provided by the Host OS. See reference document for more details.

CVECVE-2020-18169

SeverityHIGH

TypeUPDATED

PublishedMon, Jul 26 · 08:15 PM CDT

ModifiedWed, Jun 10 · 04:16 PM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24190

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user could cause improper access to GPU resources. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24190

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:56 AM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24191

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Windows contains a vulnerability where an attacker could cause a time-of-check time-of-use issue. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24191

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:57 AM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24192

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause an incorrect conversion between numeric types, leading to a heap buffer overflow. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code

CVECVE-2026-24192

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:57 AM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24193

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker could cause an out-of-bounds write. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24193

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:57 AM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24194

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Linux contains a vulnerability in a kernel mode layer handler, where a user could cause improper permission handling. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24194

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:57 AM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46145

7.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Validate rx_hash_key_len Sashiko points out that rx_hash_key_len comes from a uAPI structure and is blindly passed to memcpy, allowing the userspace to trash kernel memory. Bounds check it so the memcpy cannot overflow.

CVECVE-2026-46145

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 09:17 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46162

7.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: ice: fix double free in ice_sf_eth_activate() error path When auxiliary_device_add() fails, ice_sf_eth_activate() jumps to aux_dev_uninit and calls auxiliary_device_uninit(&sf_dev->adev). The device release callback ice_sf_dev_release() frees sf_dev, b

CVECVE-2026-46162

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 09:13 PM CDT

Open article ↗

Ignore today

Generic low-detail roundups without primary reporting.
HN items that are interesting but not clearly security or AI relevant.
Creator videos that look more like promotion, podcast chatter, or evergreen content than time-sensitive signal outside the rolling window.