Breaking News – Cyber Threats (last 6h)
Generated: 2026-03-18 03:00 PDT
- Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit
The Hacker News • 2026-03-18 01:08 • thehackernews.com
A high-severity security flaw affecting default installations of Ubuntu Desktop versions 24.04 and later could be exploited to escalate privileges to the root level.
Tracked as CVE-2026-3888 (CVSS score: 7.8), the issue could allow an attacker to seize control of a susceptible system.
“This flaw (CVE-2026-3888) allows an unprivileged local attacker to escalate privileges to full root access
https://thehackernews.com/2026/03/ubuntu-cve-2026-3888-bug-lets-attackers.html - Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS
The Hacker News • 2026-03-17 23:31 • thehackernews.com
Apple on Tuesday released its first round of Background Security Improvements to address a security flaw in WebKit that affects iOS, iPadOS, and macOS.
The vulnerability, tracked as CVE-2026-20643 (CVSS score: N/A), has been described as a cross-origin issue in WebKit’s Navigation API that could be exploited to bypass the same-origin policy when processing maliciously crafted web content.
The
https://thehackernews.com/2026/03/apple-fixes-webkit-vulnerability.html - Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23
The Hacker News • 2026-03-17 22:06 • thehackernews.com
Cybersecurity researchers have disclosed a critical security flaw impacting the GNU InetUtils telnet daemon (telnetd) that could be exploited by an unauthenticated remote attacker to execute arbitrary code with elevated privileges.
The vulnerability, tracked as CVE-2026-32746, carries a CVSS score of 9.8 out of 10.0. It has been described as a case of out-of-bounds write in the LINEMODE Set
https://thehackernews.com/2026/03/critical-telnetd-flaw-cve-2026-32746.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
