📰 DAILY THREAT BRIEFING
Tuesday, May 12, 2026
12 News Items
HN · BleepingComputer · Krebs · Dark Reading · SANS · THN Intel · Unit 42 · Security.com

📰 Cybersecurity News Headlines

Top stories from leading cybersecurity publications as of May 12, 2026.

  1. GM agrees to $12.75M California settlement over sale of drivers’ data
    — Bleeping Computer

    California Attorney General Rob Bonta announced a proposed $12.75 million settlement agreement with General Motors (GM) over allegations tha…
  2. Apple Patches Everything, (Mon, May 11th)
    — SANS ISC

    Apple today released its typical feature update across it's operating systems (iOS, iPadOS, macOS, tvOS, watchOS, vision …
  3. Official CheckMarx Jenkins package compromised with infostealer
    — Bleeping Computer

    Checkmarx warned over the weekend that a rogue version of its Jenkins Application Security Testing (AST) plugin had been published on the Je…
  4. New GhostLock tool abuses Windows API to block file access
    — Bleeping Computer

    A security researcher has released a proof-of-concept tool named GhostLock that demonstrates how a legitimate Windows file API can be abus…
  5. Inside AD CS Escalation: Unpacking Advanced Misuse Techniques and Tools
    — Unit 42

    Unit 42 analyzes AD CS exploitation through template misconfigurations and shadow credential misuse while offering behavioral detection for …
  6. FCC Softens Ban on Foreign-Made Routers
    — Dark Reading

    The Federal Communications Commission eased some restrictions and pushed back deadlines for foreign router manufacturers, but the ban is sti…
  7. Tech Can't Stop These Threats — Your People Can
    — Dark Reading

    Security controls can do only so much. Here are four attacks where your employees are usually your first, and only, line of cyber defense.
  8. TeamPCP Compromises Checkmarx Jenkins AST Plugin Weeks After KICS Supply Chain Attack
    — The Hacker News

    Checkmarx has confirmed that a modified version of the Jenkins AST plugin was published to the Jenkins Marketplace. "If you are using Checkm…
  9. cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor
    — The Hacker News

    A threat actor named Mr_Rot13 has been attributed to the exploitation of a recently disclosed critical cPanel flaw to deploy a backdoor code…
  10. Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation
    — The Hacker News

    Google on Monday disclosed that it identified an unknown threat actor using a zero-day exploit that it said was likely developed with an art…
  11. 'Dirty Frag' Exploit Poised to Blow Up on Enterprise Linux Distros
    — Dark Reading

    The privilege escalation vulnerability, which is similar to other Linux flaws like Copy Fail and Dirty Pipe, may already be under limited ex…
  12. Why we use CAPTCHAs, (Mon, May 11th)
    — SANS ISC

    A few months ago, I implemented Cloudflare's Turnstile CAPTCHA on some pages. The reason for implementing these CAPTCHAs …

🪲 NVD — Last 20 Scored Vulnerabilities

Latest scored CVEs from the National Vulnerability Database (5844 in last 30 days).
Critical: 2 · High: 9 · Medium: 9 · Low: 0. View full dashboard →

  1. CVE-2026-8349
    — CVSS 4.3 (MEDIUM)

    A flaw has been found in omec-project amf up to 2.1.1. This vulnerability affects unknown code of the component NGAP Message Handler. Executing a manipulation can lead to memory corruption. The attack can be launched rem…
  2. CVE-2026-8346
    — CVSS 6.3 (MEDIUM)

    A vulnerability was detected in D-Link DIR-816 1.10CNB05_R1B011D88210. This affects the function portForward. Performing a manipulation of the argument ip_address results in command injection. The attack can be initiated…
  3. CVE-2026-8345
    — CVSS 6.3 (MEDIUM)

    A security vulnerability has been detected in D-Link DIR-816 1.10CNB05_R1B011D88210. Affected by this issue is the function sub_445E7C of the file /goform/singlePortForward. Such manipulation of the argument ip_address l…
  4. CVE-2026-43914
    — CVSS 7.3 (HIGH)

    Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.4, there is a security vulnerability in Vaultwarden that allows bypassing the login brute-force protection if email 2fa is enabled. If email 2fa…
  5. CVE-2026-43913
    — CVSS 8.1 (HIGH)

    Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.5, Vaultwarden allows an unconfirmed organization owner to purge the entire organization vault. The organization invite flow uses a two-step pro…
  6. CVE-2026-43912
    — CVSS 8.7 (HIGH)

    Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.5, Vaultwarden does not enforce that a groups_users.users_organizations_uuid entry belongs to the same organization as groups.groups_uuid, or a …
  7. CVE-2026-43911
    — CVSS 6.8 (MEDIUM)

    Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.5, refresh tokens are not invalidated when the user's security_stamp is rotated by some security-sensitive operations (password change, KDF chan…
  8. CVE-2026-43901
    — CVSS 6.8 (MEDIUM)

    Wireshark MCP is an MCP Server that turns tshark into a structured analysis interface, then layers in optional Wireshark suite utilities. In 1.1.5 and earlier, wireshark-mcp exposes a wireshark_export_objects MCP tool th…
  9. CVE-2026-43900
    — CVSS 9.3 (CRITICAL)

    DeepChat is an open-source artificial intelligence agent platform that unifies models, tools, and agents. Prior to v1.0.4-beta.1, a Cross-Site Scripting (XSS) vulnerability exists due to a discrepancy between the backend…
  10. CVE-2026-43899
    — CVSS 9.6 (CRITICAL)

    DeepChat is an open-source artificial intelligence agent platform that unifies models, tools, and agents. Prior to v1.0.4-beta.1, An incomplete mitigation for CVE-2025-55733 leaves DeepChat vulnerable to an arbitrary pro…
  11. CVE-2026-34963
    — CVSS 8.4 (HIGH)

    barebox version prior to 2026.04.0 contains multiple memory-safety vulnerabilities in the EFI PE loader in efi/loader/pe.c where integer overflow in virtual image size computation using 32-bit arithmetic on section Virtu…
  12. CVE-2026-34962
    — CVSS 6.2 (MEDIUM)

    barebox version prior to 2026.04.0 contains a denial-of-service vulnerability in ext4 directory parsing in fs/ext4/ext4_common.c where the ext4fs_iterate_dir() function fails to validate that directory entry length value…
  13. CVE-2026-8344
    — CVSS 6.3 (MEDIUM)

    A weakness has been identified in D-Link DIR-816 1.10CNB05_R1B011D88210. Affected by this vulnerability is the function sub_445E7C of the file /goform/formDMZ.cgi. This manipulation causes command injection. It is possib…
  14. CVE-2026-44695
    — CVSS 5.8 (MEDIUM)

    Outline is a service that allows for collaborative documentation. Prior to 1.7.1, the Slack integration callback for GET /auth/slack.post accepts an unsigned, session-independent OAuth state value. A third party who can …
  15. CVE-2026-43893
    — CVSS 8.2 (HIGH)

    exiftool-vendored provides cross-platform Node.js access to ExifTool. Prior to 35.19.0, exiftool-vendored starts ExifTool in -stay_open True -@ – mode, where arguments are read from stdin one per line. In affected versio…
  16. CVE-2026-43890
    — CVSS 7.7 (HIGH)

    Outline is a service that allows for collaborative documentation. From 0.84.0 to 1.7.0, the subscriptions.create API endpoint in server/routes/api/subscriptions/subscriptions.ts exhibits a broken authorization pattern. W…
  17. CVE-2026-43889
    — CVSS 6.5 (MEDIUM)

    Outline is a service that allows for collaborative documentation. Prior to 1.7.0, the shares.create API accepts both collectionId and documentId simultaneously and, when published=false, only verifies read access for eac…
  18. CVE-2026-43888
    — CVSS 8.7 (HIGH)

    Outline is a service that allows for collaborative documentation. Prior to 1.7.0, ZipHelper.extract computes the extraction path for each entry by passing a full filesystem path through trimFileAndExt, a filename helper …
  19. CVE-2026-43887
    — CVSS 7.3 (HIGH)

    Outline is a service that allows for collaborative documentation. From 0.84.0 to 1.6.1, the Outline comment section permits users to mention other users; however, the backend does not validate or sanitize the href attrib…
  20. CVE-2026-43886
    — CVSS 8.2 (HIGH)

    Outline is a service that allows for collaborative documentation. From 0.84.0 to 1.6.1, a logic error in OAuthInterface.validateScope() uses Array.some() to validate requested OAuth scopes, causing the function to accept…

Source: NVD CVE API 2.0

Generated by CryptXNet.ai Threat Intelligence Platform · May 12, 2026 · Sources: The Hacker News, Bleeping Computer, Krebs on Security, Dark Reading, SANS ISC, THN Threat Intel, Unit 42, Security.com