Olivia
Online
SecAlerts
@SecAlertsCo
Real-time vulnerability alerts for all your software to all your teams.
Joined June 2017
2K Following
826 Followers
1.2K Posts
Critical 10.0: CVE-2026-49185 hits FieldX MDM with unauthenticated OS command injection. Unverified adb payloads go straight into Runtime.exec(). No auth, no interaction, full system compromise. https://t.co/lcS1Zp31Gd
CVE-2026-41283: Critical 9.9 in OpenStack Mistral through 22.0.0. Policy enforcement bypass enables RCE via exposed API endpoints, leading to service credential exfiltration. If Mistral is in your stack, treat this as urgent. https://t.co/rnKKY85O1u
Who to follow
CybersecInsider
@Cybersecinsider
Official Twitter Handle for https://t.co/NzYNXeh06q
Envision Technology Advisors, LLC
@envisiontech
Nationally Recognized Business & Technology Consulting Services Company: #digitaltransformation, #cybersecurity, #cloud, #managedservices, #webdevelopment
Srinivas Batchu
@SrinivasBatchu_
Adversarial AI & Research (AI Red Team)
CVE-2026-44887: Critical (9.8) unauthenticated RCE in Pi.Alert. Attackers can inject arbitrary Python code via the web config editor, no credentials needed. If you're running Pi.Alert, update immediately. #NetworkSecurity #RCE
https://t.co/ScZTrD7vXs
CVSS 9.2 vulnerability affecting multiple HP Poly Voice VoIP phone models can be exploited.
Info, incl. fix info, at vulnerability alert service, #SecAlerts:
CVE-2026-0826: https://t.co/okp70i8b8w
#ciso #cio #cto #vulnerabilities #cybersecurity #msp #mssp #CVE20260826 #HP
Actively exploited in the wild. CVE-2025-48595 is an integer overflow in Android Framework enabling local privilege escalation - no privileges needed. CVSS 8.4, now on CISA KEV. Patch now. https://t.co/n7vnaOEzt7
Actively exploited CVSS 9.8 Windows Netlogon vulnerability could lead to RCE.
Info, incl. fix info, at vulnerability alert service, #SecAlerts:
CVE-2026-41089: https://t.co/ucA8fqSaXC
#ciso #cio #cto #vulnerabilities #cybersecurity #msp #mssp #CVE202641089 #Netlogon #Microsoft
β±οΈ Attackers are exploiting vulnerabilities faster than many organizations can identify and patch them.
π‘οΈ @SecAlertsCo explains how faster vulnerability alerts can help reduce exposure and improve response times.
β‘οΈ https://t.co/dDcXhS3f0z
#cybersecurity #sponsored
If you use an in-house vulnerability alert service or one that solely relies on NVD, you need to read this. Even if you don't, you'll learn something new.
#ciso #cio #cto #vulnerabilities #cybersecurity #secalerts #msp #mssp #zeroday
β±οΈ Attackers are exploiting vulnerabilities faster than many organizations can identify and patch them.
π‘οΈ @SecAlertsCo explains how faster vulnerability alerts can help reduce exposure and improve response times.
β‘οΈ https://t.co/dDcXhS3f0z
#cybersecurity #sponsored
Critical: Apache Solr 9.4.0-9.10.1 & 10.0.0 ships hardcoded credentials via bin/solr auth enable, handing remote attackers full admin access. No auth, no interaction needed. CVE-2026-44825 β patch or migrate now. https://t.co/9kZk1msJDm
CVE-2026-10187: Totolink N300RH 6.1c.1353 has a stack-based buffer overflow in setWiFiBasicConfig (https://t.co/dUNkMF6ohq). Unauthenticated, network-exploitable. CVSS 8.9 high. Check your routers. #infosec https://t.co/seE7kUOdvW
CVSS 10.0 critical: CVE-2026-49197 hits the Acer Predator Connect W6x. Broken auth on web endpoints lets anyone bypass the HTTP Authorization header check entirely. Update to firmware W6x_GBL_2.00.000008 now. #NetworkSecurity https://t.co/b39Hx02Yxx
CVE-2026-49201: Acer Wave 7 router has a hardcoded AES key in upload.cgi. Anyone can decrypt, tamper, and re-encrypt your backups. CVSS 10 critical, no auth required. If this router is in your stack, act now. https://t.co/2Rsl1WSnmn
CVE-2026-49200: Critical severity on the Acer Wave 7 router. No auth needed to read acer_cgi.log, which exposes cleartext web + Telnet credentials. Full system compromise, no friction. Check your network gear. #CriticalVuln #InfoSec https://t.co/wmyilNCLiy
CVSS 10 critical in npm/vm2 (GHSA-v6mx-mf47-r5wg): sandbox escape via prototype manipulation using Buffer internals. No auth, no interaction, full host compromise possible. Patch to v3.11.4 if you run vm2. https://t.co/HrZl8rg776
GHSA-m4wx-m65x-ghrr: vm2 sandbox escape, CVSS 10. A previous fix for CVE-2023-37903 was bypassed via a strict equality check flaw in nodevm.js. Network-exploitable, no auth needed, full RCE scope. Update vm2 now. https://t.co/Ly0xGUIdpu
Last Seen Users on Sotwe
ΰΊ«ΰΊ₯ΰ»ΰΊ² (ΰΈ«ΰΈ₯ΰΉΰΈ²)
ΩΩΩΩΩΩΩΩΩΨ― %
Zevkine
Seen from Turkey
spitfetish
Seen from Netherlands
Quetta rich bull
Seen from Pakistan
ΰΈΰΈΰΈΰΈͺΰΈ²ΰΈ§ΰΈΰΉΰΈ§ΰΈΰΈΰΈ§ΰΈ
Seen from Thailand
βππππ§π ππππ§πβ 
Seen from Germany
naurachan
Seen from Indonesia
The Pinoy Thera Hunter
Seen from Thailand
Momo_family
Seen from Thailand
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers