The Hacker News

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE

CVE-2026-32746 exposes telnetd via pre-auth flaw (CVSS 9.8), enabling root RCE through port 23, risking full system takeover.
Infosecurity Magazine

New Ubuntu Flaw Enables Local Attackers to Gain Root Access

A newly identified local privilege escalation (LPE) vulnerability has been discovered affecting default installations of Ubuntu Desktop 24.04 and later, allowing attackers to gain full root access.
The Hacker News

Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit

Ubuntu CVE-2026-3888 flaw exploits cleanup timing in snap-confine to gain root access, risking full system compromise.
SecurityWeek

CISA Flags Year-Old Wing FTP Vulnerability as Exploited

CISA warns that a Wing FTP vulnerability leading to the disclosure of the full local installation path has been exploited in attacks.
Infosecurity Magazine

CrackArmor Flaws Expose Linux Systems to Privilege Escalation

A set of newly identified vulnerabilities in the Linux security module AppArmor could allow attackers to gain root access, ...
CSO Online

Nine critical vulnerabilities in Linux AppArmor put over 12M enterprise systems at risk

Qualys researchers expose ‘CrackArmor’ flaws that allow unprivileged users to escalate privileges to root, break container isolation, and crash systems, with no CVE identifiers yet assigned.
IEEE

Toward Automatic Heap Exploit Generation by Using Heap Layout Constraints on Binary Programs

Abstract: Automatic exploit generation (AEG) is widely recognized as one of the most effective methods for assessing the risk level of vulnerabilities. To exploit heap-related vulnerabilities, it is ...