The Hacker News

Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push

CVE-2026-3854 (CVSS 8.7) enabled GitHub RCE via git push, risking cross-tenant access to millions of repositories.
Dark Reading

Reverse Engineering With AI Unearths High-Severity GitHub Bug

Wiz used an AI reverse-engineering tool to pinpoint a vulnerability that previously would have been too costly and ...
The Hacker News

Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign

Bitwarden CLI 2026.4.0 was compromised via GitHub Actions in Checkmarx campaign, exposing secrets and distributing malicious ...
PhoneWorld

Notepad++ Vulnerability Can Crash App and Leak Memory Data

However, this new vulnerability can crash Notepad++ and leak memory data.The flaw is identified as CVE-2026-3008 ...
Technobezz

GitHub Vulnerability CVE-2026-3854 Exposed Millions of Repositories to Hijack Risk

GitHub fixed a critical flaw allowing attackers to hijack millions of repositories via a single git push command, but most ...