Latest Cybersecurity Threats

Cyber Security Hero Image with binary code

Security Threats Are Everywhere

Cybersecurity threats are constantly evolving, putting businesses of all sizes at risk of data breaches, ransomware attacks, and operational disruptions. For organizations in Buffalo, New York, and surrounding areas, staying informed about these threats is not just important—it’s essential. Protecting your data means protecting your business, your clients, and your reputation.

Below you’ll find links to the latest security alerts and vulnerabilities that could impact your business. From newly discovered software exploits to ongoing phishing scams, these insights can help you understand the risks and take proactive measures. In today’s digital age, no organization can afford to overlook cybersecurity. Make sure your defenses are robust and up to date to ensure your data—and your business—stay safe.

View Recent Security Threats

CVE-2026-46527 - cpp-httplib: Malicious `X-Forwarded-For` Under Trusted-Proxy Configuration Triggers Empty `vector::front()`, Leading to Undefined Behavior and Server Crash
Source: New source Published on: 2026-05-29
CVE-2026-47266 - Formie: Unauthenticated front-end submission editing can overwrite existing submissions
Source: New source Published on: 2026-05-29
CVE-2026-48557 - Spatie Laravel Media Library < 11.23.0 File Upload Restriction Bypass via FileAdder.php
Source: New source Published on: 2026-05-29
CVE-2026-45697 - Formie: Pre-authenticated server-side template injection in Hidden fields
Source: New source Published on: 2026-05-29
CVE-2026-46384 - iskorotkov/avro: Integer Overflow in Avro Decoder
Source: New source Published on: 2026-05-29
CVE-2026-46385 - iskorotkov/avro: CPU Exhaustion in Avro Decoder
Source: New source Published on: 2026-05-29
CVE-2026-45372 - cpp-httplib: HTTP header value percent-decoding in server-side `parse_header` enables CRLF injection
Source: New source Published on: 2026-05-29
CVE-2026-44420 - FreeRDP cliprdr server heap-buffer-overflow via undersized capabilitySetLength in CB_CLIP_CAPS
Source: New source Published on: 2026-05-29
CVE-2026-44421 - FreeRDP RDPGFX CacheToSurface heap-buffer-overflow via clamped-rectangle validation bypass
Source: New source Published on: 2026-05-29
CVE-2026-9051 - Authentication Bypass Vulnerability in NI SystemLink Enterprise
Source: New source Published on: 2026-05-29
CVE-2026-49367 - JetBrains IntelliJ IDEA Command Execution Vulnerability
Source: New source Published on: 2026-05-29
CVE-2026-49368 - "JetBrains YouTrack Stored XSS Vulnerability in Project Notification Templates"
Source: New source Published on: 2026-05-29
CVE-2026-47744 - Shopper: Authorization bypass and RBAC privilege escalation in team settings
Source: New source Published on: 2026-05-29
CVE-2026-46372 - SillyTavern: SSRF in SearXNG Search Proxy via Unvalidated baseUrl
Source: New source Published on: 2026-05-29
CVE-2026-47740 - Shopper: Authorization bypass in multiple Livewire admin components
Source: New source Published on: 2026-05-29
Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-05-20
Multiple Vulnerabilities in NGINX Could Allow for Remote Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-05-18
A Vulnerability in Microsoft Exchange Server Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-05-15
Multiple Vulnerabilities in Fortinet Products Could Allow for Remote Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-05-12
Critical Patches Issued for Microsoft Products, May 12, 2026
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-05-12
Multiple Vulnerabilities in Apple Products Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-05-12
Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-05-12
Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-05-07
A Vulnerability in PAN-OS Could Allow for Remote Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-05-06
A Vulnerability in Apache HTTP Server Could Allow for Remote Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-05-06
A Vulnerability in WHM cPanel and WP Squared Could Allow for Remote Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-05-04
Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-28
Oracle Quarterly Critical Patches Issued April 21, 2026
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-28
A Vulnerability in OpenSSH Could Allow for Authentication Bypass
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-28
Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-21
Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-16
Critical Patches Issued for Microsoft Products, April 14, 2026
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-14
Multiple Vulnerabilities in Fortinet Products Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-14
Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-14
Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-07
A Vulnerability in Fortinet FortiClientEMS Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-04
Multiple Vulnerabilities in Progress ShareFile Could Allow for Remote Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-02
Multiple Vulnerabilities in Cisco Products Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-02
Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-01
Multiple Vulnerabilities in Apple Products Could Allow for Privilege Escalation
Source: Center for Internet Security (CIS) – Advisories feed Published on: 2026-04-01

Older posts

Secure Your Business Today!

Contact LACyber today to schedule a consultation and take the first step towards building a more secure, resilient digital infrastructure for your business.