Crowdfense

Some takeaways from our Director of Research on the usage of AI for Vulnerability Research

The following vulnerabilities have been added to our feed: - CVE-2026-21509: Microsoft Office Word RCE - CVE-2025-38352: Linux Kernel LPE - 0DAY-2026-0004: SmarterMail LPE https://t.co/Nw6eZdt4CA

The following vulnerabilities have been added to our feed: - 0DAY-2026-2: Microsoft Buffer Over-read DoS - 0DAY-2026-3: Microsoft Unvalidated Pointer Deref. LPE - CVE-2026-21385: Qualcomm GPU Signed Integer Extension LPE To discover more about it, visit https://t.co/Nw6eZdtCs8

The following weaponized vulnerabilities have been added to our n-day feed: - CVE-2025-61882: Oracle EBS - RCE - CVE-2026-24423: SmarterMail - RCE - CVE-2026-20941: Host Process - LPE - 0DAY-2026-0001: Visual Studio - Info Disclosure https://t.co/Nw6eZdtCs8

The following vulnerabilities have been added to our feed: - CVE-2025-49113: Roundcube PHP Object Deserialization RCE - CVE-2025-52691: SmarterMail Arbitrary File Upload RCE - CVE-2026-23760: SmarterMail Authentication Bypass RCE https://t.co/Nw6eZdt4CA

The following vulnerabilities have been added to our feed: - CVE-2025-64446: Fortinet Fortiweb Command Injection RCE - CVE-2025-62221: Microsoft Cloud Files Mini Filter Driver UAF LPE - CVE-2025-26666: Windows Media Heap-based Buffer Overflow DoS https://t.co/Nw6eZdt4CA

The following vulnerabilities have been added to our feed: CVE-2025-53136: NT OS KASLR Bypass CVE-2025-30397: Internet Explorer/Edge Chakra Engine RCE CVE-2025-59287: Windows Server Update RCE CVE-2025-24893: XWiki Groovy Injection RCE https://t.co/Nw6eZdtCs8

The following vulnerabilities have been added to our feed: CVE-2024-51324: Baidu Antivirus PPL CVE-2025-25257: FortiWeb SQL Injection and Command Injection CVE-2025-8088: WinRAR Directory Traversal ZDI-CAN-26372: Windows Theme File Parsing NTLM Leak https://t.co/av7UZS4SWf

Plot twist: today’s blog is NOT about vulns. We took a short break from breaking things and decided to build something instead. If you're curious about running powerful LLMs locally without selling your kidney for a GPU, here you go: https://t.co/gJ6hKzO3wQ

https://t.co/8GiM1IwUxb ← Call for articles & art for issue #8 of this technical IT zine is open! As usual, we accept 1-page articles about everything interesting in IT and related fields (be it programming, cybersec, AI, demoscene, retro, electronics, etc).

The following vulnerabilities have been added to our feed: - CVE-2025-33053: Microsoft Windows Internet Shortcut Files RCE - CVE-2025-25257: Fortinet FortiWeb RCE - CVE-2025-50154: Microsoft Windows File Explorer NTLM Leak https://t.co/av7UZS4l6H

We just released a new batch of mobile and other high-value vulnerability bounties on our VRH platform. Targets include iOS, Android, and more. Now's the time to jump in! Register or log in to VRH and explore the opportunities: https://t.co/HvFB8YqZhm

We’ve seen a bunch of new faces lately. Welcome! 👋 If you want real-time updates and stay in the loop, make sure you're following our Telegram channel and you are registered to our VRH platform: https://t.co/wN2Xmgsk9N https://t.co/Txxm4hf6yv