CVE CyberSecurity Database News (Page 10)

Feb 10, 2026 Windows Microsoft Mac Exploit

CVE-2026-21517 - Elevating Privileges with Link Following Flaw in Windows App for Mac

In early 2026, a serious vulnerability was uncovered in the Windows App for Mac, tracked as CVE-2026-21517. This bug falls under the category of "

Feb 9, 2026 API Exploit

CVE-2026-25639 - Axios MergeConfig Vulnerability Leads to Denial of Service

Axios is a top-tier HTTP client widely used in both front-end and back-end projects for JavaScript and Node.js. Its promise-based API, flexibility, and ease-of-use

Feb 9, 2026 JSON Web Token

CVE-2026-1529 - Escalating Access in Keycloak via Editable Invitation Tokens

Recently, a security flaw was discovered in Keycloak, the popular open-source Identity and Access Management solution. This vulnerability, tracked as CVE-2026-1529, could let an attacker

Feb 6, 2026 API Exploit

CVE-2026-1731 - Critical Pre-Auth Remote Code Execution in BeyondTrust Remote Support & PRA – Full Exploit Walkthrough

Remote support tools are everywhere now, and BeyondTrust Remote Support (formerly Bomgar) is a leader trusted by hospitals, banks, and even governments. But what if

Feb 5, 2026

CVE-2025-15341 - Exploiting Incorrect Default Permissions in Tanium Benchmark – Exploit Details, Code Snippet & Fixes

In February 2025, a new vulnerability was assigned the identifier CVE-2025-15341, which relates to incorrect default permissions in Tanium Benchmark. Tanium's Benchmark tool