“Fragnesia”: Next Privilege Escalation Vulnerability in Linux Kernel
Microsoft warns of “Fragnesia,” a new Linux kernel vulnerability (CVE-2026-46300, CVSS 9.9) that represents a variant of the Dirty Frag flaw; it affects the XFRM-ESP subsystem in IPsec and allows attackers to gain root privileges, discovered by William Bowling using an AI-powered tool, with exploit code and patches alr
F5 BIG-IP: Quarterly Security Update Closes Multiple Vulnerabilities
F5 has published its quarterly security update closing vulnerabilities in BIG-IP, BIG-IQ Centralized Management, NGINX Plus and NGINX Open Source, with a particularly critical flaw in NGINX allowing unauthenticated code execution via crafted HTTP requests that could enable DoS, privilege escalation and access to protec
Ivanti EPM: Security Vulnerabilities Enable SQL Injection and Privilege Escalation
Ivanti warns of three security vulnerabilities in Endpoint Manager (EPM): an SQL injection flaw in the web console allows authenticated attackers to inject malicious code, improper privilege assignment enables local privilege escalation, and a core server error threatens credentials; all three vulnerabilities reported
Update Closes 79 Security Vulnerabilities in Google Chrome
Google’s weekly Chrome update patches a total of 79 security vulnerabilities, including 14 critical ones; eight of the critical flaws are use-after-free bugs, while others involve integer overflows, buffer overflows, and a race condition in the Payments component, and Google confirms that none have been actively exploi











