Cyber Security

Articles on SystemTek’s website that relate to cyber security.

NewsSecurity Vulnerabilities

Fortinet FortiWeb cat_cgi_paths Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2026-40688)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fortinet FortiWeb. Authentication is required to exploit this vulnerability.

Read More
NewsSecurity Vulnerabilities

Samsung MagicINFO 9 Server Incorrect Default Permissions Local Privilege Escalation Vulnerability (CVE-2026-25203)

CVE number = CVE-2026-25203 This vulnerability allows local attackers to escalate privileges on affected installations of Samsung MagicINFO 9 Server.

Read More
NewsSecurity Vulnerabilities

Critical severity vulnerability affecting CPython (CVE-2026-6100)

– Use-after-free (UAF) was possible in the `lzma.LZMADecompressor`, `bz2.BZ2Decompressor`, and `gzip.GzipFile` when a memory allocation fails with a `MemoryError` and the decompression instance is re-used.

Read More
NewsSecurity Vulnerabilities

Apache dolphinscheduler sensitive information disclosure (CVE-2023-48796)

– Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache DolphinScheduler.

Read More
NewsSecurity News

SOHO router compromise leads to DNS hijacking and adversary-in-the-middle attacks

– Forest Blizzard, a threat group associated with the Russian military, has been exploiting poorly secured home and small-office internet devices—such as routers—by taking control of them and altering their configurations.

Read More
NewsSecurity Vulnerabilities

Labcenter Electronics Proteus PDSPRJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2026-5495)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Labcenter Electronics Proteus.

Read More
NewsSecurity Vulnerabilities

Linux Kernel Analog Device Driver Improper Validation of Array Index Local Privilege Escalation Vulnerability (CVE-2026-23092)

CVE number = CVE-2026-23092 This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker

Read More
NewsSecurity Vulnerabilities

Mozilla Firefox IonMonkey Switch Statement Optimization Type Confusion Remote Code Execution Vulnerability (CVE-2026-4698)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Mozilla Firefox.

Read More
NewsSecurity Vulnerabilities

Microsoft Visual Studio Code mcp.json Command Injection Remote Code Execution Vulnerability (CVE-2026-21518)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Visual Studio Code.

Read More
NewsSecurity News

Hasbro hit by cyber attack

– On March 28th 2026, Hasbro, Inc identified unauthorized access to the Company’s network

Read More