CVE-2025-65482 & CVE-2025-64087: From Malicious Documents to Full Server Takeover via XDocReport RCE Vulnerabilities AegironJanuary 21, 2026January 21, 20269 mins0 XDocReport – Product & Risk Overview XDocReport is a Java-based document generation library widely used to merge…continue reading..
CVE-2025-11043: Improper TLS Certificate Validation Exposes Industrial Automation Traffic to Interception Vulnerabilities AegironJanuary 21, 2026January 21, 202611 mins0 CVE-2025-11043 — B&R Automation / Automation Studio CVE: CVE-2025-11043Name: Improper TLS Certificate Validation in OPC-UA & ANSL…continue reading..
CVE-2026-22844: Critical Zoom Node MMR Command Injection Enables Remote Code Execution Vulnerabilities AegironJanuary 21, 2026January 21, 202612 mins0 CVE-2026-22844 — Zoom Node Multimedia Router (MMR) Type: Command Injection → Remote Code Execution (RCE)CVSS v3.1 Score:…continue reading..
CVE-2025-53912: Critical Arbitrary File Read Flaw Exposes MedDream PACS Systems Vulnerabilities AegironJanuary 21, 2026January 21, 20269 mins0 Vulnerability Overview CVE ID: CVE-2025-53912Affected Product: MedDream PACS PremiumAffected Version: 7.3.6.870Vulnerability Type: Arbitrary File ReadSeverity: CriticalCVSS v3.1…continue reading..
CVE-2026-1181: Critical Stored XSS Leading to Full Altium 365 Workspace Takeover Vulnerabilities AegironJanuary 21, 2026January 21, 20267 mins0 CVE Information CVE ID: CVE-2026-1181Vulnerability Type: Stored Cross-Site Scripting (XSS)Affected Product: Altium 365 – Forum ComponentSeverity: CriticalCVSS…continue reading..
CVE-2026-1162: Unauthenticated Remote Code Execution via Password Buffer Overflow in UTT HiPER 810 Vulnerabilities AegironJanuary 21, 2026January 21, 202611 mins0 CVE-2026-1162 — UTT HiPER 810 Remote Buffer Overflow Leading to RCE CVE: CVE-2026-1162Product: UTT HiPER 810Vulnerability: Buffer…continue reading..
Fake LastPass Emails Exploit Urgent Vault Backup Alerts to Steal User Credentials CyberSecurity News CyberDefenderJanuary 21, 2026January 21, 20267 mins0 Security researchers and security teams at LastPass are warning users about a new phishing campaign that is…continue reading..
Tesla Hacked at Pwn2Own Automotive 2026 CyberSecurity News CyberDefenderJanuary 21, 2026January 21, 20264 mins0 Security researchers successfully hacked the Tesla Infotainment System on the first day of Pwn2Own Automotive 2026, demonstrating…continue reading..
GitLab Patches High-Severity 2FA Bypass and Multiple DoS Flaws in CE and EE Releases CyberSecurity News CyberDefenderJanuary 21, 2026January 21, 20263 mins0 GitLab has released patches for a high-severity vulnerability that allowed attackers to bypass two-factor authentication (2FA) on…continue reading..
RansomHub Ransomware Group Claims Breach of Luxshare, Key Apple Manufacturing Partner CyberSecurity News CyberDefenderJanuary 21, 2026January 21, 20266 mins0 The ransomware group RansomHub has publicly claimed responsibility for an alleged cyberattack against Luxshare Precision Industry Co.…continue reading..
