authentication – Wolfinisoftware.de

security

Patch Now: Critical Flaw in OT Robot OS Gives Attackers Control

20.05.2026

An unauthenticated attacker can exploit the command injection vulnerability to gain remote access to robotic systems, causing significant disruption to the environment.

Mehr lesen →

security

Microsoft Authenticator: Kritische Sicherheitslücke ermöglicht Token-DiebstahlAlertheise Security

18.05.2026

Microsoft Authenticator: Kritische Sicherheitslücke ermöglicht Token-DiebstahlAlertheise Security Quelle: Heise Security Ticker

Mehr lesen →

soc

CVE-2026-20182: Critical Authentication Bypass in Cisco SD-WAN Can Grant Admin Access

15.05.2026

A vulnerability affecting Cisco Catalyst SD-WAN Controller has drawn urgent attention after Cisco, Rapid7, and CISA confirmed active exploitation. CVE-2026-Adresse geschuetzt 10.0 score and can let an unauthenticated remote attacker gain administrative privileges on an affected […] The post CVE-2026-20182: Critical Authentication Bypass in Cisco SD-WAN Can Grant Admin Access appeared first on SOC Prime.

Mehr lesen →

soc

CVE-2026-42945: 18-Year-Old NGINX Rewrite Flaw May Enable Unauthenticated RCE

14.05.2026

Web infrastructure bugs remain especially dangerous when they sit in widely deployed request-handling logic for years without detection. Among the latest vulnerabilities impacting NGINX Plus and NGINX Open, the CVE-2026-Adresse geschuetzt 18-year-old heap buffer overflow in ngx_http_rewrite_module that can be reached by an unauthenticated attacker through crafted HTTP requests and may […] The post CVE-2026-42945: […]

Mehr lesen →

security

Critical cPanel and WHM bug exploited as a zero-day, PoC now available

30.04.2026

The critical CVE-2026-Adresse geschuetzt, WHM, and WP Squared is being actively exploited in the wild and has been leveraged in attempts since late February. […]

Mehr lesen →

security

Critical cPanel & WHM Vulnerability Exploited as Zero-Day for Months

30.04.2026

The authentication bypass flaw allows attackers to gain administrative access to vulnerable servers. The post Critical cPanel & WHM Vulnerability Exploited as Zero-Day for Months appeared first on SecurityWeek.

Mehr lesen →

security

Hackers exploit RCE flaws in Qinglong task scheduler for cryptomining

29.04.2026

Hackers are exploiting two authentication bypass vulnerabilities in the Qinglong open-source task scheduling tool to deploy cryptominers on developers‘ servers. […]

Mehr lesen →

security

Two-Factor Authentication Breaks Free from the Desktop

16.04.2026

Threat actors know how to bypass security systems outside of traditional IT environments. Implementing 2FA could provide a needed extra security barrier in the physical world.

Mehr lesen →

security

Critical Marimo pre-auth RCE flaw now under active exploitation

12.04.2026

A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged for credential theft. […]

Mehr lesen →

security

When attackers already have the keys, MFA is just another door to open

09.04.2026

Stolen credentials turn authentication systems into the attack surface. Token shows how wearable biometric authentication verifies the user—not the session—blocking phishing relays and MFA bypass. […]

Mehr lesen →

Tag: authentication