📰 DAILY THREAT BRIEFING
Monday, July 13, 2026
12 News Items
HN · BleepingComputer · Krebs · Dark Reading · SANS · THN Intel · Unit 42 · Security.com

📰 Cybersecurity News Headlines

Top stories from leading cybersecurity publications as of July 13, 2026.

  1. Claude Fable 5 stays free for paid users until July 19 as Anthropic buys more time
    — Bleeping Computer

    Anthropic has just extended access to Claude Fable 5 for paid subscribers until July 19, giving you another week to keep using the most powe…
  2. RedHook Android malware now uses Wireless ADB for shell access
    — Bleeping Computer

    A new version of the RedHook Android malware abuses the Android Wireless Debugging (Wireless ADB) mechanism in a novel way to gain shell-lev…
  3. Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer During Install
    — The Hacker News

    The jscrambler npm package was compromised, and simply installing its 8.14.0 release runs an infostealer on your machine. Published on Jul…
  4. Hackers Weaponize Balochistan Police Portal in Multi-Group Espionage Campaigns
    — The Hacker News

    Cybersecurity researchers have disclosed details of sustained cyber espionage activity against several Pakistani law enforcement organizatio…
  5. Australia warns of global campaign targeting vulnerable CMS platforms
    — Bleeping Computer

    The Australian Cyber Security Centre (ACSC) issued an alert about a global exploitation campaign targeting vulnerable content management sys…
  6. Wireshark 4.6.7 Released, (Sat, Jul 11th)
    — SANS ISC

    Wireshark release 4.6.7 fixes 12 vulnerabilities and 16 bugs.
  7. Critical Zimbra Flaw Could Let Crafted Emails Run Malicious Code in User Sessions
    — The Hacker News

    Zimbra is urging customers to apply updates to address a critical security vulnerability impacting the Classic Web Client that could result …
  8. No Manners Here: The Ruthless Rise of The Gentlemen Ransomware
    — Unit 42

    Unit 42 explores The Gentlemen ransomware operations, revealing the affiliate model driving its rapid growth. Learn more here. The post No M…
  9. Jen Ellis: Connecting Cyber Community With Political Machinery
    — Dark Reading

    Security Pro File: On the heels of her recent honors as a Member of the Order of the British Empire (MBE), we take a look back at the events…
  10. Cybercriminals Flock to Healthcare Businesses as Attacks Surge
    — Dark Reading

    While cyberattacks against hospitals and clinics grew modestly in the first half of 2026, attacks on service providers and other healthcare …
  11. My Stack Simulator, (Wed, Jul 8th)
    — SANS ISC

    The stack is a memory region where a program stores temporary data - like local variables and retur…
  12. Fresh ATM Crypto Software Bugs: Jackpot or Bust?
    — Dark Reading

    Organizations, and possibly ATMs, are at risk of compromise, thanks to holes in a Microsoft BitLocker security wrapper.

🪲 NVD — Last 20 Scored Vulnerabilities

Latest scored CVEs from the National Vulnerability Database (7122 in last 30 days).
Critical: 1 · High: 7 · Medium: 10 · Low: 2. View full dashboard →

  1. CVE-2026-15514
    — CVSS 7.3 (HIGH)

    A weakness has been identified in Metasoft 美特软件 MetaCRM up to 6.4.0 Beta06. This vulnerability affects the function RPCService.query of the file /customizemt/xkq/rpc.jsp of the component PHPRPC Remote Call Interf…
  2. CVE-2026-15513
    — CVSS 6.3 (MEDIUM)

    A security flaw has been discovered in Wavlink WL-NU516U1 260515. This affects the function wlink_uci_set_value of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument lan_ip results in os command injecti…
  3. CVE-2026-15512
    — CVSS 6.3 (MEDIUM)

    A vulnerability was identified in pig-mesh Pig up to 3.9.2. Affected by this issue is some unknown functionality of the file pig-masterpig-visualpig-codegensrcmainjavacompig4cloudpigcodegenserviceimplGenerat…
  4. CVE-2026-15511
    — CVSS 9.8 (CRITICAL)

    A vulnerability was determined in Comfast CF-WR631AX V3 up to 2.7.0.8. Affected by this vulnerability is the function system_wl_upload_pic_file of the file /usr/bin/webmgnt of the component FastCGI Backend. This manipula…
  5. CVE-2026-15510
    — CVSS 6.3 (MEDIUM)

    A vulnerability was found in Leantime up to 3.8.0. Affected is the function Setting::saveSetting of the component API. The manipulation results in improper authorization. The attack may be performed from remote. The expl…
  6. CVE-2026-15509
    — CVSS 6.3 (MEDIUM)

    A vulnerability has been found in Leantime up to 3.8.0. This impacts the function editUser/addUser of the component JSON-RPC Endpoint. The manipulation of the argument role leads to improper authorization. The attack is …
  7. CVE-2026-15508
    — CVSS 6.3 (MEDIUM)

    A flaw has been found in Helicone ai-gateway up to 0.2.0-beta.30. This affects the function build_target_url of the file ai-gateway/src/dispatcher/service.rs of the component AWS Metadata Service. Executing a manipulatio…
  8. CVE-2026-15507
    — CVSS 6.3 (MEDIUM)

    A vulnerability was detected in coollabsio Coolify up to 4.1.1. The impacted element is an unknown function of the file /app/Policies/ of the component Policy Handler. Performing a manipulation results in missing authori…
  9. CVE-2026-15506
    — CVSS 7.8 (HIGH)

    A security vulnerability has been detected in SecureAge CatchPulse up to 10.9.3. The affected element is an unknown function in the library saappctl.sys of the component Driver. Such manipulation leads to heap-based buff…
  10. CVE-2026-15505
    — CVSS 3.5 (LOW)

    A weakness has been identified in vnotex vnote up to 3.20.1. Impacted is an unknown function of the file /src/data/extra/web/js/markdownit.js of the component YAML Frontmatter. This manipulation of the argument p_metaDat…
  11. CVE-2026-10668
    — CVSS 2.4 (LOW)

    The Nuvoton NuMaker HSUSBD USB device-controller driver (drivers/usb/udc/udc_numaker.c) armed the control Data IN stage unconditionally (base->CEPTXCNT = len in numaker_hsusbd_ep_trigger). Because the HSUSBD hardware can…
  12. CVE-2026-10667
    — CVSS 7.8 (HIGH)

    Zephyr's dynamic kernel-object tracking (kernel/userspace/userspace.c, formerly kernel/userspace.c) maintains a doubly-linked list (obj_list) of dynamically allocated kernel objects. Iteration over this list in k_object_…
  13. CVE-2026-10666
    — CVSS 8.1 (HIGH)

    parse_ipv4() in subsys/net/ip/utils.c (reached via net_ipaddr_parse() for strings of the form "a.b.c.d:port") copies the port substring into a fixed 17-byte stack buffer (char ipaddr[NET_IPV4_ADDR_LEN + 1]) using a lengt…
  14. CVE-2026-10665
    — CVSS 7.4 (HIGH)

    In Zephyr's WireGuard subsystem (subsys/net/lib/wireguard), wg_process_data_message() in wg_crypto.c linearizes an inbound transport-data payload into a fixed pool buffer of CONFIG_WIREGUARD_BUF_LEN bytes before decrypti…
  15. CVE-2026-10664
    — CVSS 5.0 (MEDIUM)

    The nRF70 Wi-Fi driver's power-save event handler nrf_wifi_event_proc_get_power_save_info() in drivers/wifi/nrf_wifi/src/wifi_mgmt.c copied TWT (Target Wake Time) flow entries from an nrf_wifi_umac_event_power_save_info …
  16. CVE-2026-10663
    — CVSS 6.1 (MEDIUM)

    In Zephyr's experimental USB host stack (CONFIG_USB_HOST_STACK), usbh_device_disconnect() (subsys/usb/host/usbh_device.c) freed the root usb_device slab object without clearing the cached pointer ctx->root. The bus remov…
  17. CVE-2026-58596
    — CVSS 8.3 (HIGH)

    Untrusted pointer dereference in Microsoft Edge (Chromium-based) allows an unauthorized attacker to elevate privileges over a network.
  18. CVE-2026-15502
    — CVSS 6.3 (MEDIUM)

    A vulnerability was detected in AojiaoZero Antaris 1.0. This affects the function _rewardPurchase of the file /ipn.php of the component PayPal IPN Payment Handler. The manipulation of the argument item_number results in …
  19. CVE-2026-15501
    — CVSS 6.3 (MEDIUM)

    A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.25.2. Affected by this issue is the function ToolsRoute.test_mcp_connection of the file astrbot/dashboard/routes/tools.py of the component MCP Tes…
  20. CVE-2026-61876
    — CVSS 8.8 (HIGH)

    LuCI versions fail to properly encode DHCPv6 lease hostnames before rendering in status tables, allowing adjacent network attackers to inject HTML markup. Attackers can send a DHCPv6 Client FQDN containing script tags th…

Source: NVD CVE API 2.0


Generated by CryptXNet.ai Threat Intelligence Platform · July 13, 2026 · Sources: The Hacker News, Bleeping Computer, Krebs on Security, Dark Reading, SANS ISC, THN Threat Intel, Unit 42, Security.com