#cve articles | Hashnode

NDNAS Digitalnasdigital.hashnode.dev1d ago · 5 min read

There's a Second, Worse Semantic Kernel CVE, and It's Part of a Pattern

I wrote about CVE-2026-25592, the CVSS 10 prompt injection bug in Microsoft's Semantic Kernel that let a malicious prompt reach code execution. At the time I treated it as a single, severe, but isolat

0

JSJacob Strixegnworks.hashnode.dev3d ago · 6 min read

CVE-2026-33017 Unauthenticated RCE in Langflow and the 20 Hour Exploit

Originally published on Egnworks. Langflow versions before 1.9.0 expose an unauthenticated remote code execution flaw in the public flow build endpoint. An attacker who sends a single crafted POST re

0

DWDaniel Westgaardriftmap.hashnode.devJun 15 · 11 min read

A CVE just hit your base image. Your scanner won't tell you which repos to fix.

In January 2026, CVE-2026-0861 landed in glibc. An integer overflow in the memalign family, rated high, present in every glibc from 2.30 to 2.42. Which is to say: present in debian:bookworm-slim, and

0

JJebitoksharonjebitok.comJun 4 · 37 min read

Metasploit: Scanning and Exploitation (TryHackMe)

Link to the Walkthrough/Challenge on TryHackMe: Metasploit: Scanning and Exploitation Introduction In the previous room, you learned how to navigate the Metasploit Framework: searching for modules, co

0

JJebitoksharonjebitok.comJun 4 · 38 min read

Metasploit: The Basics (TryHackMe)

Link to the Walkthrough on TryHackMe: Metasploit: The Basics Introduction to the Metasploit Framework Imagine you have just been brought onto a penetration testing engagement for Stratford Systems, a

0

JJebitoksharonjebitok.comJun 2 · 13 min read

Understanding Vulnerability Databases (TryHackMe)

Link to the Challenge on TryHackMe: Understanding Vulnerability Databases Introduction Vulnerability databases are centralised repositories that collect, organise, and publish information about known

0

TTuannqblogs.night-wolf.ioMay 21 · 11 min read

From Privilege Escalation to RCE in Wiki.js

I was poking around Wiki.js 2.5.312 one afternoon — as one does — when I found two vulnerabilities that chain together beautifully to turn a wiki moderator into a root shell. One report got accepted.

0

PBPushpendra Bblog.overflowbyte.cloudMay 11 · 20 min read

How a 732-Byte Python Script Can Escape Your Kubernetes Cluster — Copy Fail, Explained

This is a deep-dive standalone post. If you first heard about Copy Fail in our OverflowByte Weekly — Cloud Broke, Kernels Got Exploited, and AI Took Over the Pipeline (May 4–10, 2026), this is where w

0

PBPushpendra Bblog.overflowbyte.cloudMay 10 · 10 min read

OverflowByte Weekly: Cloud Broke, Kernels Got Exploited, and AI Took Over the Pipeline — May 4–10, 2026

Every week I track what actually matters in Cloud, DevOps, Linux, and AI infrastructure so you don't have to doomscroll through a hundred changelog posts. This is OverflowByte Weekly. This wasn't a q

0

MEMustafa ERBAYmustafaerbay.hashnode.devMay 10 · 7 min read

VPS Swap Fire: A Nightmare Started by a Kernel CVE Patch

Last week, precisely on a Monday morning, the "Critical Alert" notifications on my monitor struck fear into my eyes. The systems running on my own VPS, especially my Docker containers, had suddenly started to slow down. Even SSH connections were lagg...

0

#cve

Search Hashnode