[03/04/2026 19:38] Segundo caça americano é abatido no Irã, diz Exército iraniano; EUA resgatam piloto - BBC

[03/04/2026 15:25] VÍDEO: Veja como ficou restaurante onde avião caiu em Capão da Canoa (RS) - CNN Brasil

[03/04/2026 15:17] Navios japoneses, franceses e de Omã cruzam o Estreito de Ormuz - InfoMoney

[03/04/2026 11:50] Irã mobiliza população, reforça defesas e recruta menores de idade diante de risco de invasão dos EUA - O Globo

[03/04/2026 09:40] Irã ataca todo o Oriente Médio enquanto Israel e EUA bombardeiam Teerã - Valor Econômico

[03/04/2026 17:51] Pai de advogada ré por racismo faz gestos de macaco na Argentina - CNN Brasil

[03/04/2026 11:21] Flávio Bolsonaro nega que vai acabar com Pix se for eleito - Poder360

[03/04/2026 14:43] Saiba quem é o piloto do helicóptero que caiu na Barra da Tijuca, no Rio - CNN Brasil

[03/04/2026 14:27] Filha da PM Gisele aguarda pensão por morte de mãe; governo de SP diz que vai pagar em 8 de abril - G1

[03/04/2026 07:43] Vorcaro tenta acelerar delação em troca de prisão domiciliar - Brasil 247

[CVE-2025-12994] [Modified: 22-12-2025] [Analyzed] [V3.1 S5.3:MEDIUM] Medtronic CareLink Network allows an unauthenticated remote attacker to initiate a request for security questions to an API endpoint that could be used to determine a valid user account. This issue affects CareLink Network: before December 4, 2025.

[CVE-2025-12995] [Modified: 22-12-2025] [Analyzed] [V3.1 S8.1:HIGH] Medtronic CareLink Network allows an unauthenticated remote attacker to perform a brute force attack on an API endpoint that could be used to determine a valid password under certain circumstances. This issue affects CareLink Network: before December 4, 2025.

[CVE-2025-12996] [Modified: 22-12-2025] [Analyzed] [V3.1 S4.1:MEDIUM] Medtronic CareLink Network allows a local attacker with access to log files on an internal API server to view plaintext passwords from errors logged under certain circumstances. This issue affects CareLink Network: before December 4, 2025.

[CVE-2025-12997] [Modified: 22-12-2025] [Analyzed] [V3.1 S2.2:LOW] Insecure Direct Object Reference vulnerability in Medtronic CareLink Network which allows an authenticated attacker with access to specific device and user information to submit web requests to an API endpoint that would expose sensitive user information. This issue affects CareLink Network: before December 4, 2025.

[CVE-2025-29268] [Modified: 16-12-2025] [Analyzed] [V3.1 S9.8:CRITICAL] ALLNET ALL-RUT22GW v3.3.8 was discovered to store hardcoded credentials in the libicos.so library.

[CVE-2025-29269] [Modified: 16-12-2025] [Analyzed] [V3.1 S9.8:CRITICAL] ALLNET ALL-RUT22GW v3.3.8 was discovered to contain an OS command injection vulnerability via the command parameter in the popen.cgi endpoint.

[CVE-2025-63499] [Modified: 18-12-2025] [Analyzed] [V3.1 S6.1:MEDIUM] Alinto Sogo 5.12.3 is vulnerable to Cross Site Scripting (XSS) via the theme parameter.

[CVE-2025-65883] [Modified: 23-12-2025] [Analyzed] [V3.1 S8.4:HIGH] A vulnerability has been identified in Genexis Platinum P4410 router (Firmware P4410-V2–1.41) that allows a local network attacker to achieve Remote Code Execution (RCE) with root privileges. The issue occurs due to improper session invalidation after administrator logout. When an administrator logs out, the session token remains valid. An attacker on the local network can reuse this stale token to send crafted requests via the router’s diagnostic endpoint, resulting in command execution as root.

[CVE-2025-65958] [Modified: 10-12-2025] [Analyzed] [V3.1 S8.5:HIGH] Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.37, a Server-Side Request Forgery (SSRF) vulnerability in Open WebUI allows any authenticated user to force the server to make HTTP requests to arbitrary URLs. This can be exploited to access cloud metadata endpoints (AWS/GCP/Azure), scan internal networks, access internal services behind firewalls, and exfiltrate sensitive information. No special permissions beyond basic authentication are required. This vulnerability is fixed in 0.6.37.

[CVE-2025-55948] [Modified: 23-12-2025] [Analyzed] [V3.1 S7.3:HIGH] This vulnerability fundamentally arises from yzcheng90 X-SpringBoot 6.0's implementation of role-based access control (RBAC) through dual dependency on frontend menu systems and backend permission tables, without enforcing atomic synchronization between these components. The critical flaw manifests when frontend menu updates (such as privilege revocation) fail to propagate to the backend permission table in real-time, creating a dangerous desynchronization. While users lose access to restricted functions through the web interface (as UI elements properly disappear), the stale permission records still validate unauthorized API requests when accessed directly through tools like Postman. Attackers exploiting this inconsistency can perform privileged operations including but not limited to: creating high-permission user accounts, accessing sensitive data beyond their clearance level, and executing admin-level commands.

[CVE-2025-65959] [Modified: 10-12-2025] [Analyzed] [V3.1 S8.7:HIGH] Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.37, a Stored XSS vulnerability was discovered in Open-WebUI's Notes PDF download functionality. An attacker can import a Markdown file containing malicious SVG tags into Notes, allowing them to execute arbitrary JavaScript code and steal session tokens when a victim downloads the note as PDF. This vulnerability can be exploited by any authenticated user, and unauthenticated external attackers can steal session tokens from users (both admin and regular users) by sharing specially crafted markdown files. This vulnerability is fixed in 0.6.37.

[CVE-2025-66573] [Modified: 23-12-2025] [Analyzed] [V3.1 S7.5:HIGH] Solstice Pod API (version 5.5, 6.2) contains an unauthenticated API endpoint (`/api/config`) that exposes sensitive information such as the session key, server version, product details, and display name. Unauthorized users can extract live session information by accessing this endpoint without authentication.

[CVE-2025-66574] [Modified: 19-12-2025] [Analyzed] [V3.1 S5.4:MEDIUM] TranzAxis 3.2.41.10.26 allows authenticated users to inject cross-site scripting via the `Open Object in Tree` endpoint, allowing attackers to steal session cookies and potentially escalate privileges.

[CVE-2025-66575] [Modified: 30-12-2025] [Analyzed] [V3.1 S7.8:HIGH] VeeVPN 1.6.1 contains an unquoted service path vulnerability in the VeePNService that allows remote attackers to execute code during startup or reboot with escalated privileges. Attackers can exploit this by providing a malicious service name, allowing them to inject commands and run as LocalSystem.

[CVE-2025-66576] [Modified: 17-12-2025] [Analyzed] [V3.1 S9.8:CRITICAL] Remote Keyboard Desktop 1.0.1 enables remote attackers to execute system commands via the rundll32.exe exported function export, allowing unauthenticated code execution.

[CVE-2025-12026] [Modified: 10-12-2025] [Analyzed] [V3.1 S7.2:HIGH] An Out-of-bounds Write vulnerability in WatchGuard Fireware OS’s certificate request command could allow an authenticated privileged user to execute arbitrary code via specially crafted CLI commands.This vulnerability affects Fireware OS 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.

[CVE-2025-12195] [Modified: 10-12-2025] [Analyzed] [V3.1 S7.2:HIGH] An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged user to execute arbitrary code via specially crafted IPSec configuration CLI commands.This vulnerability affects Fireware OS 11.0 up to and including 11.12.4+541730, 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.

[CVE-2025-12196] [Modified: 10-12-2025] [Analyzed] [V3.1 S7.2:HIGH] An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged user to execute arbitrary code via a specially crafted CLI command.This vulnerability affects Fireware OS 12.0 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.

[CVE-2025-13936] [Modified: 10-12-2025] [Analyzed] [V3.1 S6.1:MEDIUM] Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (Tigerpaw Technology Integration module) allows Stored XSS.This issue affects Fireware OS 12.4 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.

[CVE-2025-13937] [Modified: 10-12-2025] [Analyzed] [V3.1 S6.1:MEDIUM] Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (ConnectWise Technology Integration module) allows Stored XSS.This issue affects Fireware OS 12.4 up to and including 12.11.4, 12.5 up to and including 12.5.13, and 2025.1 up to and including 2025.1.2.