Category of intelligence

Software

News about applications, operating systems and software development

Stories published: 150 Showing up 9 articles per page

Software

May 17, 2026 4 min de lectura 35

Grafana: Code filtration exposes risks in repositories and pipelines and the urgency of shielding the software supply chain

Grafana has confirmed that an unauthorized actor obtained a token that allowed him to access his environment in GitHub and download part of the company's source code. According to…

Pwn2Own Berlin 2026: 15 unpublished vulnerabilities, $385,750 and the new IA vector that raises operational risk

Software

May 15, 2026 3 min de lectura 36

Pwn2Own Berlin 2026: 15 unpublished vulnerabilities, $385,750 and the new IA vector that raises operational risk

The second day of Pwn2Own Berlin 2026 made it clear that business security and artificial intelligence are at the centre of modern risk: 15 unpublished vulnerabilities awarded wit…

Critical Vulnerability in Cisco Catalyst SD WAN Open Door to Remote Access and Administrative Control

Software

May 14, 2026 3 min de lectura 50

Critical Vulnerability in Cisco Catalyst SD WAN Open Door to Remote Access and Administrative Control

Cisco has published urgent patches to correct a maximum gravity vulnerability on its Catalyst SD-WAN controller (CVE-2026-20182) that has already been exploited in a limited way i…

CVE-2026-42945 alert in NGINX: the memory overflow that could cause DoS and remote code execution

Software

May 14, 2026 4 min de lectura 46

CVE-2026-42945 alert in NGINX: the memory overflow that could cause DoS and remote code execution

A critical memory failure in NGINX, identified as CVE-2026-42945 again shows that even massively deployed software projects can drag historical defects with current impact. Vulner…

When a Jenkins plugin becomes a back door, the Checkmark case exposes credentials and supply chain security

Software

May 11, 2026 4 min de lectura 50

When a Jenkins plugin becomes a back door, the Checkmark case exposes credentials and supply chain security

During the weekend Checkmarx confirmed that a malicious version of his Jenkins plugin for Application Security Testing (AST) was published in the Jenkins Market, in addition to a …

Urgent warning about Ivanti EPMM on premises CVE 2026 6973 and four critical failures require immediate patch

Software

May 7, 2026 4 min de lectura 74

Urgent warning about Ivanti EPMM on premises CVE 2026 6973 and four critical failures require immediate patch

Ivanti has published an urgent notice about a new security failure in its on-premises mobile device manager, Endpoint Manager Mobile (EPMM), identified as CVE-2026-6973 with a CVS…

Operational preparation transforms a retainer into effective response in the first few hours

Software

May 7, 2026 5 min de lectura 58

Operational preparation transforms a retainer into effective response in the first few hours

Having a retainer with an incident response team or a pre-approved external signature does not amount to being ready. Operational preparation is the difference between someone tak…

Critical vulnerabilities in vm2 break the sandbox and expose your infrastructure

Software

May 7, 2026 4 min de lectura 103

Critical vulnerabilities in vm2 break the sandbox and expose your infrastructure

A dozen critical vulnerabilities have replaced the focus on vm2, the Node.js library most used to run unreliable JavaScript code within a "sandbox." The failures allow from escape…

DoS alert without authentication in Cisco NSO and CNC could leave critical networks out of service

Software

May 6, 2026 3 min de lectura 110

DoS alert without authentication in Cisco NSO and CNC could leave critical networks out of service

Cisco has published patches for a vulnerability of denial of service in its network orchestration and control suite that can leave key systems unanswered until they are manually r…

Explore RadarBytes

Software

Grafana: Code filtration exposes risks in repositories and pipelines and the urgency of shielding the software supply chain

Pwn2Own Berlin 2026: 15 unpublished vulnerabilities, $385,750 and the new IA vector that raises operational risk

Critical Vulnerability in Cisco Catalyst SD WAN Open Door to Remote Access and Administrative Control

CVE-2026-42945 alert in NGINX: the memory overflow that could cause DoS and remote code execution

When a Jenkins plugin becomes a back door, the Checkmark case exposes credentials and supply chain security

Urgent warning about Ivanti EPMM on premises CVE 2026 6973 and four critical failures require immediate patch

Operational preparation transforms a retainer into effective response in the first few hours

Critical vulnerabilities in vm2 break the sandbox and expose your infrastructure

DoS alert without authentication in Cisco NSO and CNC could leave critical networks out of service

Disable your ad blocker

Software

Manage your cookies