vulnerability

7 articles tagged “vulnerability”.

May 27, 2026

Your ASUS Router May Be Part of a Cyberweapon Right Now: RondoDox Is Exploiting an 8-Year-Old Flaw

On May 17, 2026, a botnet called RondoDox began exploiting CVE-2018-5999 — a critical unauthenticated vulnerability in ASUS routers that was patched i...

Apr 28, 2026

Another Router Brand, Another CVE Flood: Totolink's Command Injection Wave Hits the A8000RU and A3300R

A wave of critical CVSS 9.8 command injection vulnerabilities hit Totolink routers in late April 2026, with exploits publicly available for the A8000R...

Apr 27, 2026

Your Security Camera Is Broadcasting Its Own Password: CVE-2026-42363 in GeoVision Devices

A critical flaw in GeoVision's IP camera management software broadcasts admin credentials over UDP — and includes the decryption key in the same packe...

Apr 23, 2026

The Encryption Library in 5 Billion Devices Just Broke: CVE-2026-5194 and the wolfSSL Certificate Forgery Flaw

A critical flaw in wolfSSL — the most widely deployed embedded TLS library on the planet — allowed attackers to forge digital certificates and imperso...

Apr 15, 2026

Three Microsoft Defender Zero-Days Are Being Actively Exploited — Two Still Don't Have Patches

Attackers are actively exploiting three zero-day vulnerabilities in Microsoft Defender. Two of the three remain unpatched as of mid-April 2026. If you...

Mar 9, 2026

March 2026 Router CVE Avalanche: Wavlink, Tenda, Totolink, and H3C Under Attack

10+ critical CVEs hit consumer routers this week—stack buffer overflows and command injection flaws affecting Wavlink, Tenda, Totolink, and H3C device...

Mar 6, 2026

The Router Vulnerability Wave of 2026: 8 CVEs Hit Tenda & D-Link

Eight critical vulnerabilities across Tenda and D-Link routers expose millions to buffer overflow and command injection attacks. Understand what's at ...

← All topics