OpenThreat

OpenThreat Place where Security and Servers collide We offer you a variety of solutions and ideas to grow up you company without any security concerns.

05/05/2026

ICYMI: 🚨 New High Impact CVE Detected! 🚨

CVE-2025-14320 affects Tegsoft Management and Information Services Trade Limited Company / Online Support Application

Details: Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Tegsoft Management and Information Services Trade Limited Company Online Support Application allow...

πŸ”— https://www.usom.gov.tr/bildirim/tr-26-0142

πŸ” Could this affect your systems?
🎯 We map threats to your infrastructure and help you respond smart and fast.
πŸ“© Let's talk: https://openthreat.ro

05/05/2026

🚨 New High Impact CVE Detected! 🚨

CVE-2026-42222 affects 0xJacky / nginx-ui

Details: Nginx UI is a web user interface for the Nginx web server. In version 2.3.5, an unauthenticated bootstrap takeover exists in nginx-ui during the initial installation window exposed by POST /api/instal...

πŸ”— https://github.com/0xJacky/nginx-ui/security/advisories/GHSA-mxqh-q9h6-v8pq

πŸ” Could this affect your systems?
🎯 We map threats to your infrastructure and help you respond smart and fast.
πŸ“© Let's talk: https://openthreat.ro

05/05/2026

🚨 New High Impact CVE Detected! 🚨

CVE-2026-42221 affects 0xJacky / nginx-ui

Details: Nginx UI is a web user interface for the Nginx web server. From version 2.0.0 to before version 2.3.8, an unauthenticated network attacker can claim the initial administrator account on a fresh nginx-...

πŸ”— https://github.com/0xJacky/nginx-ui/security/advisories/GHSA-h27v-ph7w-m9fp

πŸ” Could this affect your systems?
🎯 We map threats to your infrastructure and help you respond smart and fast.
πŸ“© Let's talk: https://openthreat.ro

05/05/2026

ICYMI: πŸ’₯ 44 new CVEs were published on 2026-05-03.
Most SMBs have no idea they’re exposed β€” until it’s too late.
πŸ” Top affected vendors:
– Edimax (4)
– Acrel Electrical (3)
– Wavlink (3)
– YunaiV (3)
– AV Stumpfl (2)

🚨 We map new CVEs to your actual infrastructure.
⏱️ Fast. Clear. Actionable.
🎯 Stop guessing. Know your risks.
πŸ‘‰ Get your FREE exposure check now: https://openthreat.ro

05/05/2026

πŸ’₯ 188 new CVEs were published on 2026-05-04.
Most SMBs have no idea they’re exposed β€” until it’s too late.
πŸ” Top affected vendors:
– Apache Software Foundation (17)
– n8n-io (12)
– GeoVision Inc. (10)
– Qualcomm, Inc. (10)
– Totolink (9)

Other notable affected vendors:
– Red Hat (2)
– prometheus (2)
– Amazon (1)
– Google (1)
– vda-linux (1)

🚨 We map new CVEs to your actual infrastructure.
⏱️ Fast. Clear. Actionable.
🎯 Stop guessing. Know your risks.
πŸ‘‰ Get your FREE exposure check now: https://openthreat.ro

05/05/2026

🚨 New High Impact CVE Detected! 🚨

CVE-2026-24118 affects patriksimek / vm2

Details: vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability. This allows attackers to write code which can escape from the VM2 sandbox and ...

πŸ”— https://github.com/patriksimek/vm2/security/advisories/GHSA-grj5-jjm8-h35p

πŸ” Could this affect your systems?
🎯 We map threats to your infrastructure and help you respond smart and fast.
πŸ“© Let's talk: https://openthreat.ro

05/05/2026

ICYMI: 🚨 New High Impact CVE Detected! 🚨

CVE-2026-42364 affects GeoVision Inc. / GV-LPC2011/LPC2211

Details: An os command injection vulnerability exists in the DdnsSetting.cgi functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted DDNS configuration can lead to arbitrary command ex*****on. An ...

πŸ”— https://www.geovision.com.tw/cyber_security.php

πŸ” Could this affect your systems?
🎯 We map threats to your infrastructure and help you respond smart and fast.
πŸ“© Let's talk: https://openthreat.ro

05/05/2026

ICYMI: 🚨 New High Impact CVE Detected! 🚨

CVE-2026-42365 affects GeoVision Inc. / GV-LPC2011/LPC2211

Details: A guessable session cookie vulnerability exists in the Web Interface functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted series of HTTP requests can lead to an authentication bypas. A...

πŸ”— https://www.geovision.com.tw/cyber_security.php

πŸ” Could this affect your systems?
🎯 We map threats to your infrastructure and help you respond smart and fast.
πŸ“© Let's talk: https://openthreat.ro

05/05/2026

ICYMI: 🚨 New High Impact CVE Detected! 🚨

CVE-2026-42368 affects GeoVision Inc. / GV-LPC2011/LPC2211

Details: A privilege escalation vulnerability exists in the Web Interface functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted HTTP request can lead to execute priviledged operation. An attacke...

πŸ”— https://www.geovision.com.tw/cyber_security.php

πŸ” Could this affect your systems?
🎯 We map threats to your infrastructure and help you respond smart and fast.
πŸ“© Let's talk: https://openthreat.ro

05/05/2026

ICYMI: 🚨 New High Impact CVE Detected! 🚨

CVE-2026-42369 affects GeoVision Inc. / GV-VMS V20.0.2

Details: GV-VMS V20 is a Video Monitoring Software used to gather the feeds of many surveillance cameras and manage other security devices. It is a native application accessed locally, but it is also possible ...

πŸ”— https://www.geovision.com.tw/cyber_security.php

πŸ” Could this affect your systems?
🎯 We map threats to your infrastructure and help you respond smart and fast.
πŸ“© Let's talk: https://openthreat.ro

05/05/2026

ICYMI: 🚨 New High Impact CVE Detected! 🚨

CVE-2026-7372 affects GeoVision Inc. / GV-VMS V20.0.2

Details: A stack overflow vulnerability exists in the We**am Server Login functionality of GeoVision GV-VMS V20 20.0.2. A specially crafted HTTP request can lead to an arbitrary code ex*****on. An attacker can...

πŸ”— https://www.geovision.com.tw/cyber_security.php

πŸ” Could this affect your systems?
🎯 We map threats to your infrastructure and help you respond smart and fast.
πŸ“© Let's talk: https://openthreat.ro

05/05/2026

ICYMI: 🚨 New High Impact CVE Detected! 🚨

CVE-2026-42370 affects GeoVision Inc. / GV-VMS V20.0.2

Details: A stack overflow vulnerability exists in the We**am Server Login functionality of GeoVision GV-VMS V20 20.0.2. A specially crafted HTTP request can lead to an arbitrary code ex*****on. An attacker can...

πŸ”— https://www.geovision.com.tw/cyber_security.php

πŸ” Could this affect your systems?
🎯 We map threats to your infrastructure and help you respond smart and fast.
πŸ“© Let's talk: https://openthreat.ro

Address

Strada Soldatului
Bragadiru

Website

Alerts

Be the first to know and let us send you an email when OpenThreat posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Shortcuts

Share

Category