Skip to main content
RuntimeRebel

Coverage

Vulnerabilities

754 articles on vulnerability disclosures and exploits

Advertisement

VU
MEDIUM
Vulnerabilities

Open Redirects: Overlooked Vulnerability Impact & Analysis

An analysis of open redirect vulnerabilities, their historical context in OWASP, common exploitation vectors like phishing, and essential mitigation strategies.

Runtime Rebel Intel
4 min read·Feb 25, 2026
TH
CRITICAL
Threat Intel

UNC6201 Exploits Dell RecoverPoint Zero-Day CVE-2026-22769

Mandiant and GTIG detail UNC6201's exploitation of CVE-2026-22769 in Dell RecoverPoint for VMs, deploying GRIMBOLT backdoor and novel VMware TTPs.

Runtime Rebel Intel
6 min read·Feb 25, 2026
VU
CRITICAL
Vulnerabilities

CISA Alert: CVE-2026-25108 Soliton FileZen OS Command Injection Exploited

CISA adds CVE-2026-25108, a Soliton Systems FileZen OS Command Injection vulnerability, to KEV Catalog due to active exploitation. Immediate remediation advised.

Runtime Rebel Intel
4 min read·Feb 25, 2026
VU
CRITICAL
Vulnerabilities

Critical RCE Flaws in InSAT MasterSCADA BUK-TS Affect ICS

Two critical vulnerabilities (SQLi, OS Command Injection) in InSAT MasterSCADA BUK-TS lead to remote code execution, impacting critical infrastructure sectors globally.

Runtime Rebel Intel
4 min read·Feb 25, 2026
VU
HIGH
Vulnerabilities

VMware Aria Operations RCE Vulnerability Patched

Broadcom patched high-severity vulnerabilities in VMware Aria Operations, including an RCE flaw. Organizations must update immediately to mitigate risk.

Runtime Rebel Intel
4 min read·Feb 25, 2026
VU
CRITICAL
Vulnerabilities

Critical Flaws in PUSR USR-W610 Impact Critical Manufacturing

CISA identifies critical vulnerabilities in PUSR USR-W610 gateways, including authentication bypass and credential theft. No patches available for EOL hardware.

Runtime Rebel Intel
3 min read·Feb 24, 2026
VU
HIGH
Vulnerabilities

Valmet DNA Engineering Web Tools Vulnerable to Path Traversal

Unauthenticated attackers can exploit CVE-2025-15577 in Valmet DNA Engineering Web Tools to gain arbitrary file read access across critical infrastructure.

Runtime Rebel Intel
3 min read·Feb 24, 2026
VU
HIGH
Vulnerabilities

CISA Adds Roundcube Webmail Vulnerabilities to KEV Catalog

CISA adds CVE-2025-49113 and CVE-2025-68461 to its Known Exploited Vulnerabilities catalog, signaling active exploitation of Roundcube Webmail systems.

Runtime Rebel Intel
4 min read·Feb 24, 2026
VU
CRITICAL
Vulnerabilities

Chinese APTs Exploit CVE-2024-34351 in TeamT5 ThreatSonar

Taiwanese security firm TeamT5 confirms that a critical command injection flaw in ThreatSonar Anti-Ransomware has likely been exploited by Chinese APT groups.

Runtime Rebel Intel
4 min read·Feb 24, 2026
VU
LOW
Vulnerabilities

Microsoft Investigating Mouse Pointer Bug in Classic Outlook

Microsoft confirms a bug in classic Outlook causing the mouse cursor to disappear during email composition. Discover the technical details and mitigation steps.

Runtime Rebel Intel
4 min read·Feb 24, 2026
VU
HIGH
Vulnerabilities

Security Flaws in Android Mental Health Apps Affect 14.7M Users

Multiple Android mental health apps suffer from hardcoded credentials and insecure data storage, putting sensitive patient information at risk.

Runtime Rebel Intel
4 min read·Feb 24, 2026
ID
HIGH
Identity & Access

Cryptographic Flaws in Password Manager Zero-Knowledge Architectures

Technical analysis of Bitwarden, Dashlane, and LastPass reveals server-side attack vectors that bypass zero-knowledge encryption through account recovery and group sharing mechanisms.

Runtime Rebel Intel
2 min read·Feb 23, 2026