CVE-2025-33253: Critical Remote Code Execution Flaw Discovered in NVIDIA NeMo Framework — Malicious AI Models Could Trigger System Takeover Vulnerabilities AegironFebruary 19, 2026February 19, 202611 mins0 CVE-2025-33253 — NVIDIA NeMo Framework Remote Code Execution CVE: CVE-2025-33253Product: NVIDIA NeMo Framework (all supported platforms)Severity: HighCVSS…continue reading..
CVE-2026-22860: Critical Rack Directory Traversal Flaw Exposes Sensitive Files Through Simple URL Manipulation Vulnerabilities AegironFebruary 19, 2026February 19, 20269 mins0 Rack Rack::Directory – Directory Traversal Vulnerability Field Value CVE ID CVE-2026-22860 Affected Component Rack – Rack::Directory middleware…continue reading..
CVE-2026-0874 & CVE-2026-0875: Critical Memory Corruption Flaws in Autodesk Shared Components Enabling Code Execution via Malicious Design Files Vulnerabilities AegironFebruary 19, 2026February 19, 20269 mins0 Product Details These vulnerabilities affect multiple Autodesk desktop products that rely on Autodesk Shared Components (version 2026.5…continue reading..
CVE-2025-1272: Fedora Kernel Lockdown Silently Disabled — Local Privilege Escalation Risk Exposed Vulnerabilities AegironFebruary 19, 2026February 19, 202610 mins0 CVE-2025-1272 CVE ID: CVE-2025-1272Affected Component: Fedora Linux KernelIssue: Kernel Lockdown Mode Disabled by Default (Regression)CVSS v3.1 Base…continue reading..
CVE-2026-1999: Critical Authorization Bypass in GitHub Enterprise Server Allows Unauthorized Auto-Merges Vulnerabilities AegironFebruary 19, 2026February 19, 202610 mins0 GitHub Enterprise Server – Authorization Bypass via Auto-Merge CVE ID: CVE-2026-1999Product: GitHub Enterprise Server (GHES)Vulnerability Type: Authorization…continue reading..
OpenClaw Critical Vulnerabilities: CVE-2026-27002, CVE-2026-27001 & CVE-2026-25474 — Container Escape, Prompt Injection & Webhook Authentication Bypass Vulnerabilities AegironFebruary 19, 2026February 19, 202614 mins0 OpenClaw — Product Overview OpenClaw is a locally hosted, tool-enabled AI assistant that can interact with the…continue reading..
CVE-2026-27013: Critical Stored XSS Flaw in Fabric.js SVG Export Exposes Applications to Remote Script Injection Vulnerabilities AegironFebruary 19, 2026February 19, 202611 mins0 Vulnerability Summary Field Value CVE ID CVE-2026-27013 Affected Product Fabric.js (npm package: fabric) Affected Versions All versions…continue reading..
CVE-2026-25926: Notepad++ Unsafe Search Path Flaw Enables Silent Code Execution via Explorer Hijack Vulnerabilities AegironFebruary 19, 2026February 19, 20269 mins0 Notepad++ – Unsafe Search Path Leading to Arbitrary Code Execution CVE ID: CVE-2026-25926Affected Product: Notepad++ (Windows)Vulnerability Type:…continue reading..
CVE-2026-1435: Critical Session Fixation Flaw in Graylog Web Interface Enables Silent Account Takeover Vulnerabilities AegironFebruary 19, 2026February 19, 20269 mins0 CVE-2026-1435 — Graylog Web Interface Field Value CVE ID CVE-2026-1435 Affected Product Graylog Web Interface (confirmed in…continue reading..
CVE-2026-26988 & CVE-2026-26990: Critical SQL Injection Flaws Rock LibreNMS — Public PoC Raises Urgent Upgrade Warning Vulnerabilities AegironFebruary 19, 2026February 19, 20269 mins0 LibreNMS — Product Overview Product: LibreNMSType: Open-source network monitoring systemTechnology Stack: PHP application with MySQL/MariaDB backendAffected Area:…continue reading..
