[04/03/2026 05:42] Governistas pedem retirada de maioridade penal da PEC da Segurança, que pode ser votada nesta quarta - Terra

[04/03/2026 14:23] 'Hora de partir': super-ricos de Dubai pagam fortunas para fugir da guerra - G1

[04/03/2026 12:46] Prints revelam que PM acessava redes da esposa que foi encontrada morta - CNN Brasil

[04/03/2026 10:30] Mariana Sanches: Antes de atacar Irã, Trump ouviu de genro que só teria 'acordo tipo Obama' - UOL Notícias

[04/03/2026 10:19] Legendários brasileiros ficam presos em Dubai: ‘Estourou a guerra’ - Estado de Minas

[04/03/2026 06:36] Irã descarta negociação com EUA e está preparado para ‘continuar a guerra’ - Jovem Pan

[04/03/2026 13:12] Vorcaro planejou 'assalto’ para 'prejudicar violentamente’ jornalista Lauro Jardim - O Globo

[04/03/2026 01:37] Lula quer regras específicas de jornada de trabalho para alguns setores - Poder360

[03/03/2026 22:55] Janja: 'Fui assediada duas vezes sendo primeira-dama' - Correio Braziliense

[04/03/2026 13:58] José Fucs: Ato na Paulista mostra que chance de a direita vencer Lula é cada vez maior - UOL Notícias

[CVE-2025-54323] [Modified: 07-11-2025] [Analyzed] [V3.1 S7.5:HIGH] An issue was discovered in the camera in Samsung Mobile Processor Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, and 1580. Improper debug printing leads to information leakage.

[CVE-2025-54329] [Modified: 07-11-2025] [Analyzed] [V3.1 S7.5:HIGH] An issue was discovered in NAS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. The function used to send a multiple-payloads message (including an SMS message) lacks bounds checking, which can lead to a heap overflow.

[CVE-2025-54330] [Modified: 07-11-2025] [Analyzed] [V3.1 S5.3:MEDIUM] An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Out-of-bounds Read of q->bufs[] in the __is_done_for_me function.

[CVE-2025-54331] [Modified: 07-11-2025] [Analyzed] [V3.1 S5.3:MEDIUM] An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Untrusted Pointer Dereference of src_hdr in the copy_ncp_header function.

[CVE-2025-54332] [Modified: 07-11-2025] [Analyzed] [V3.1 S7.5:HIGH] An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is a NULL Pointer Dereference of profiler.node in the npu_vertex_profileoff function.

[CVE-2025-54863] [Modified: 12-11-2025] [Analyzed] [V3.1 S10.0:CRITICAL] Radiometrics VizAir is vulnerable to exposure of the system's REST API key through a publicly accessible configuration file. This allows attackers to remotely alter weather data and configurations, automate attacks against multiple instances, and extract sensitive meteorological data, which could potentially compromise airport operations. Additionally, attackers could flood the system with false alerts, leading to a denial-of-service condition and significant disruption to airport operations. Unauthorized remote control over aviation weather monitoring and data manipulation could result in incorrect flight planning and hazardous takeoff and landing conditions.

[CVE-2025-60925] [Modified: 04-02-2026] [Analyzed] [V3.1 S5.3:MEDIUM] codeshare v1.0.0 was discovered to contain an information leakage vulnerability.

[CVE-2025-61945] [Modified: 12-11-2025] [Analyzed] [V3.1 S10.0:CRITICAL] Radiometrics VizAir is vulnerable to any remote attacker via access to the admin panel of the VizAir system without authentication. Once inside, the attacker can modify critical weather parameters such as wind shear alerts, inversion depth, and CAPE values, which are essential for accurate weather forecasting and flight safety. This unauthorized access could result in the disabling of vital alerts, causing hazardous conditions for aircraft, and manipulating runway assignments, which could result in mid-air conflicts or runway incursions.

[CVE-2025-61956] [Modified: 12-11-2025] [Analyzed] [V3.1 S10.0:CRITICAL] Radiometrics VizAir is vulnerable to a lack of authentication mechanisms for critical functions, such as admin access and API requests. Attackers can modify configurations without authentication, potentially manipulating active runway settings and misleading air traffic control (ATC) and pilots. Additionally, manipulated meteorological data could mislead forecasters and ATC, causing inaccurate flight planning.

[CVE-2025-54325] [Modified: 07-11-2025] [Analyzed] [V3.1 S5.3:MEDIUM] An issue was discovered in VTS in Samsung Mobile Processor and Wearable Processor Exynos 1080, 1280, 2200, 1380, 1480, 2400, 1580, 2500, W920, W930, W1000. A race condition in the VTS driver results in an out-of-bounds read, leading to an information leak.

[CVE-2025-54333] [Modified: 07-11-2025] [Analyzed] [V3.1 S5.3:MEDIUM] An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Invalid Pointer Dereference of node in the get_vs4l_profiler_node function.

[CVE-2025-10875] [Modified: 04-02-2026] [Analyzed] [V3.1 S6.5:MEDIUM] Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Mulesoft Anypoint Code Builder allows Code Injection.This issue affects Mulesoft Anypoint Code Builder: before 1.11.6.

[CVE-2025-52512] [Modified: 07-11-2025] [Analyzed] [V3.1 S7.5:HIGH] An issue was discovered in Samsung Mobile Processor Exynos 2400, 1580, 2500. A race condition in the HTS driver results in out-of-bounds memory access, leading to a denial of service.

[CVE-2025-52513] [Modified: 07-11-2025] [Analyzed] [V3.1 S7.5:HIGH] An issue was discovered in Samsung Mobile Processor Exynos 2400, 1580, 2500. A race condition in the HTS driver results in an out-of-bounds write, leading to a denial of service.

[CVE-2025-54334] [Modified: 07-11-2025] [Analyzed] [V3.1 S7.5:HIGH] An issue was discovered in the NPU driver in Samsung Mobile Processor Exynos 1280, 2200, 1380, 1480, 2400, 1580, 2500. There is a NULL Pointer Dereference of hdev in the __npu_vertex_bootup function.

[CVE-2025-64318] [Modified: 04-02-2026] [Analyzed] [V3.1 S5.3:MEDIUM] Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Mulesoft Anypoint Code Builder allows Manipulating Writeable Configuration Files.This issue affects Mulesoft Anypoint Code Builder: before 1.12.1.

[CVE-2025-64319] [Modified: 04-02-2026] [Analyzed] [V3.1 S5.3:MEDIUM] Incorrect Permission Assignment for Critical Resource vulnerability in Salesforce Mulesoft Anypoint Code Builder allows Manipulating Writeable Configuration Files.This issue affects Mulesoft Anypoint Code Builder: before 1.12.1

[CVE-2025-64320] [Modified: 04-02-2026] [Analyzed] [V3.1 S6.5:MEDIUM] Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Code Injection.This issue affects Agentforce Vibes Extension: before 3.2.0.

[CVE-2025-64321] [Modified: 04-02-2026] [Analyzed] [V3.1 S5.3:MEDIUM] Improper Neutralization of Input Used for LLM Prompting vulnerability in Salesforce Agentforce Vibes Extension allows Manipulating Writeable Configuration Files.This issue affects Agentforce Vibes Extension: before 3.3.0.

[CVE-2025-64322] [Modified: 04-02-2026] [Analyzed] [V3.1 S5.3:MEDIUM] Incorrect Permission Assignment for Critical Resource vulnerability in Salesforce Agentforce Vibes Extension allows Manipulating Writeable Configuration Files.This issue affects Agentforce Vibes Extension: before 3.3.0.