Cyber Security

Articles on SystemTek’s website that relate to cyber security.

NewsSecurity Vulnerabilities

WordPress Modular DS Plugin 2.5.2 is vulnerable to a high priority Privilege Escalation (CVE-2026-23800)

CVE number = CVE-2026-23800 This could allow a malicious actor to escalate their low privileged account to something with higher

Read More
Uncategorized

Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability (CVE-2026-20076)

– A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface.

Read More
NewsSecurity Vulnerabilities

Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager

– On December 10th 2025 Cisco became aware of a new cyberattack campaign targeting a limited subset of appliances with certain ports open to the internet that are running Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Email and Web Manager.

Read More
NewsSecurity Vulnerabilities

Microsoft Windows Desktop Window Manager Use-After-Free Local Privilege Escalation Vulnerability (CVE-2026-20871)

– This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows.

Read More
NewsSecurity Vulnerabilities

Multiple Cisco Products Snort 3 Distributed Computing Environment/Remote Procedure Call Vulnerabilities

CVE number CVE-2026-20026 and CVE-2026-20027 Multiple Cisco products are affected by vulnerabilities in the processing of Distributed Computing Environment Remote

Read More
NewsSecurity Vulnerabilities

Katana Network Development Starter Kit executeCommand Command Injection Remote Code Execution Vulnerability (CVE-2026-0759)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Katana Network Development Starter Kit.

Read More
NewsSecurity Vulnerabilities

gemini-mcp-tool execAsync Command Injection Remote Code Execution Vulnerability (CVE-2026-0755)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of gemini-mcp-tool.

Read More
NewsSecurity Vulnerabilities

Cisco Identity Services Engine Information Disclosure Vulnerability (CVE-2026-20029)

CVE number = CVE-2026-20029 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Cisco Identity Services

Read More
NewsSecurity Vulnerabilities

Panda3d Uncontrolled Format String Allows Stack Memory Disclosure (CVE-2026-22190)

CVE number = CVE-2026-22190 Panda3D versions up to and including 1.10.16 egg-mkfont contains an uncontrolled format string vulnerability. The -gp

Read More
NewsSecurity Vulnerabilities

Ubiquiti UniFi Connect EV Station Lite WiFi AutoLink Improper Access Control Vulnerability (CVE-2026-21635)

CVE number = CVE-2026-21635 An Improper Access Control could allow a malicious actor in Wi-Fi range to the EV Station

Read More