[02/04/2026 09:36] Sem EUA, Reino Unido reúne 40 países para discutir bloqueio do Estreito de Ormuz e diz que Irã faz 'economia global refém' - G1

[02/04/2026 15:25] Sidônio alerta Lula sobre 'Pix' em evento na Bahia - CNN Brasil

[02/04/2026 00:13] Trump diz que EUA têm petróleo da Venezuela e não precisam de Ormuz - Poder360

[02/04/2026 14:21] Trump demite procuradora-geral dos Estados Unidos, diz fonte - CNN Brasil

[01/04/2026 23:00] Grandes distribuidoras de combustíveis decidem ficar fora de programa de subvenção ao diesel - Folha de S.Paulo

[02/04/2026 06:51] Irã promete ataques ‘devastadores’ contra EUA e Israel após ameaças de Trump - CartaCapital

[02/04/2026 14:30] 'Será?': Cleitinho quebra o silêncio sobre eleições em Minas - Estado de Minas

[02/04/2026 15:33] No Paraná, pesquisa AtlasIntel aponta que Lula (PT) perde para Flávio (PL) no 2º turno - R7

[02/04/2026 10:02] Governo Lula decide enviar ao Congresso projeto para acabar com escala 6x1 - Folha de S.Paulo

[02/04/2026 11:26] Tenente-coronel réu por feminicídio tem aposentadoria concedida pela PM e receberá cerca de R$ 20 mil por mês - O Globo

[CVE-2024-32641] [Modified: 05-12-2025] [Analyzed] [V3.1 S9.8:CRITICAL] Masa CMS is an open source Enterprise Content Management platform. Masa CMS versions prior to 7.2.8, 7.3.13, and 7.4.6 are vulnerable to remote code execution. The vulnerability exists in the addParam function, which accepts user input via the criteria parameter. This input is subsequently evaluated by setDynamicContent, allowing an unauthenticated attacker to execute arbitrary code via the m tag. The vulnerability is patched in versions 7.2.8, 7.3.13, and 7.4.6.

[CVE-2024-32642] [Modified: 05-12-2025] [Analyzed] [V3.1 S8.8:HIGH] Masa CMS is an open source Enterprise Content Management platform. Prior to 7.2.8, 7.3.13, and 7.4.6, there is vulnerable to host header poisoning which allows account takeover via password reset email. This vulnerability is fixed in 7.2.8, 7.3.13, and 7.4.6.

[CVE-2024-32643] [Modified: 05-12-2025] [Analyzed] [V3.1 S7.5:HIGH] Masa CMS is an open source Enterprise Content Management platform. Prior to 7.2.8, 7.3.13, and 7.4.6, if the URL to the page is modified to include a /tag/ declaration, the CMS will render the page regardless of group restrictions. This vulnerability is fixed in 7.2.8, 7.3.13, and 7.4.6.

[CVE-2025-13492] [Modified: 05-12-2025] [Analyzed] [V3.1 S7.0:HIGH] A potential security vulnerability has been identified in HP Image Assistant for versions prior to 5.3.3. The vulnerability could potentially allow a local attacker to escalate privileges via a race condition when installing packages.

[CVE-2025-13751] [Modified: 30-01-2026] [Analyzed] [V3.1 S5.5:MEDIUM] Interactive service agent in OpenVPN version 2.5.0 through 2.6.16 and 2.7_alpha1 through 2.7_rc2 on Windows allows a local authenticated user to connect to the service and trigger an error causing a local denial of service.

[CVE-2025-20382] [Modified: 05-12-2025] [Analyzed] [V3.1 S3.5:LOW] In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform versions below 10.1.2507.10, 10.0.2503.8, and 9.3.2411.120, a low-privileged user that does not hold the "admin" or "power" Splunk roles could create a views dashboard with a custom background using the `data:image/png;base64` protocol that could potentially lead to an unvalidated redirect. This behavior circumvents the Splunk external URL warning mechanism by using a specially crafted URL, allowing for a redirection to an external malicious site. The vulnerability requires the attacker to phish the victim by tricking them into initiating a request within their browser. The authenticated user should not be able to exploit the vulnerability at will.

[CVE-2025-20383] [Modified: 05-12-2025] [Analyzed] [V3.1 S4.3:MEDIUM] In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and below 3.9.10, 3.8.58, and 3.7.28 of Splunk Secure Gateway app in Splunk Cloud Platform, a low-privileged user that does not hold the "admin" or "power" Splunk roles and subscribes to mobile push notifications could receive notifications that disclose the title and description of the report or alert even if they do not have access to view the report or alert.

[CVE-2025-20384] [Modified: 05-12-2025] [Analyzed] [V3.1 S5.3:MEDIUM] In Splunk Enterprise versions below 10.0.1, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform versions below 10.1.2507.4, 10.0.2503.6, and 9.3.2411.117.125, an unauthenticated attacker can inject American National Standards Institute (ANSI) escape codes into Splunk log files due to improper validation at the /en-US/static/ web endpoint. This may allow them to poison, forge, or obfuscate sensitive log data through specially crafted HTTP requests, potentially impacting log integrity and detection capabilities.

[CVE-2025-20385] [Modified: 05-12-2025] [Analyzed] [V3.1 S2.4:LOW] In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform versions below 10.1.2507.6, 10.0.2503.7, and 9.3.2411.117, a user who holds a role with a high privilege capability `admin_all_objects` could craft a malicious payload through the href attribute of an anchor tag within a collection in the navigation bar, which could result in execution of unauthorized JavaScript code in the browser of a user.

[CVE-2025-20386] [Modified: 05-12-2025] [Analyzed] [V3.1 S8.0:HIGH] In Splunk Enterprise for Windows versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, a new installation of or an upgrade to an affected version can result in incorrect permissions assignment in the Splunk Enterprise for Windows Installation directory. This lets non-administrator users on the machine access the directory and all its contents.

[CVE-2025-20387] [Modified: 05-12-2025] [Analyzed] [V3.1 S8.0:HIGH] In Splunk Universal Forwarder for Windows versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, a new installation of or an upgrade to an affected version can result in incorrect permissions assignment in the Universal Forwarder for Windows Installation directory. This lets non-administrator users on the machine access the directory and all its contents.

[CVE-2025-20388] [Modified: 05-12-2025] [Analyzed] [V3.1 S2.7:LOW] In Splunk Enterprise versions below 10.0.1, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform versions below 10.1.2507.4, 10.0.2503.7, and 9.3.2411.116, a user who holds a role that contains the high privilege capability `change_authentication` could enumerate internal IP addresses and network ports when adding new search peers to a Splunk search head in a distributed environment.

[CVE-2025-20389] [Modified: 05-12-2025] [Analyzed] [V3.1 S4.3:MEDIUM] In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and versions below 3.9.10, 3.8.58 and 3.7.28 of the Splunk Secure Gateway app on Splunk Cloud Platform, a low-privileged user that does not hold the "admin" or "power" Splunk roles could craft a malicious payload through the `label` column field after adding a new device in the Splunk Secure Gateway app. This could potentially lead to a client-side denial of service (DoS).

[CVE-2025-53965] [Modified: 05-12-2025] [Analyzed] [V3.1 S5.3:MEDIUM] An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. The function used to decode the SOR transparent container lacks bounds checking, which can cause a fatal error.

[CVE-2025-54326] [Modified: 05-12-2025] [Analyzed] [V3.1 S7.5:HIGH] An issue was discovered in Camera in Samsung Mobile Processor Exynos 1280 and 2200. Unnecessary registration of a hardware IP address in the Camera device driver can lead to a NULL pointer dereference, resulting in a denial of service.

[CVE-2025-55076] [Modified: 18-12-2025] [Analyzed] [V3.1 S6.2:MEDIUM] A local privilege escalation vulnerability exists in the InstallationHelper service included with Plugin Alliance Installation Manager v1.4.0 for macOS. The service accepts unauthenticated XPC connections and executes input via system(), which may allow a local user to execute arbitrary commands with root privileges.

[CVE-2025-62686] [Modified: 18-12-2025] [Analyzed] [V3.1 S6.2:MEDIUM] A local privilege escalation vulnerability exists in the Plugin Alliance InstallationHelper service included with Plugin Alliance Installation Manager v1.4.0 on macOS. Due to the absence of a hardened runtime and a __RESTRICT segment, a local user may exploit the DYLD_INSERT_LIBRARIES environment variable to inject a dynamic library, potentially resulting in code execution with elevated privileges.

[CVE-2025-65841] [Modified: 18-12-2025] [Analyzed] [V3.1 S6.2:MEDIUM] Aquarius Desktop 3.0.069 for macOS stores user authentication credentials in the local file ~/Library/Application Support/Aquarius/aquarius.settings using a weak obfuscation scheme. The password is "encrypted" through predictable byte-substitution that can be trivially reversed, allowing immediate recovery of the plaintext value. Any attacker who can read this settings file can fully compromise the victim's Aquarius account by importing the stolen configuration into their own client or login through the vendor website. This results in complete account takeover, unauthorized access to cloud-synchronized data, and the ability to perform authenticated actions as the user.

[CVE-2025-65842] [Modified: 18-12-2025] [Analyzed] [V3.1 S5.1:MEDIUM] The Aquarius HelperTool (1.0.003) privileged XPC service on macOS contains multiple flaws that allow local privilege escalation. The service accepts XPC connections from any local process without validating the client's identity, and its authorization logic incorrectly calls AuthorizationCopyRights with a NULL reference, causing all authorization checks to succeed. The executeCommand:authorization:withReply: method then interpolates attacker-controlled input into NSTask and executes it with root privileges. A local attacker can exploit these weaknesses to run arbitrary commands as root, create persistent backdoors, or obtain a fully interactive root shell.

[CVE-2025-65843] [Modified: 18-12-2025] [Analyzed] [V3.1 S7.7:HIGH] Aquarius Desktop 3.0.069 for macOS contains an insecure file handling vulnerability in its support data archive generation feature. The application follows symbolic links placed inside the ~/Library/Logs/Aquarius directory and treats them as regular files. When building the support ZIP, Aquarius recursively enumerates logs using a JUCE directory iterator configured to follow symlinks, and later writes file data without validating whether the target is a symbolic link. A local attacker can exploit this behavior by planting symlinks to arbitrary filesystem locations, resulting in unauthorized disclosure or modification of arbitrary files. When chained with the associated HelperTool privilege escalation issue, root-owned files may also be exposed.