The Hacker News

SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files

CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...

NIST prioritizes severity scoring for high-priority vulnerabilities amid record growth

NIST can't keep up with vulnerability submissions.
The Hacker News

Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain

The cybersecurity company said the systemic vulnerability is baked into Anthropic's official MCP software development kit ...
ExecutiveGov

NIST Revamps Vulnerability Database Prioritization to Manage CVE Surge

NIST is focusing on enriching cybersecurity vulnerabilities and exposures that appear in CISA’s Known Exploited ...

NIST limits vulnerability analysis as CVE backlog swells

The National Institute of Standards and Technology is changing how it analyzes newly disclosed vulnerabilities as it faces a ...
SecurityWeek

Recent Apache ActiveMQ Vulnerability Exploited in the Wild

Organizations are warned that a recently patched vulnerability affecting Apache ActiveMQ Classic is being exploited in the ...

NIST shifts National Vulnerability Database to risk-based triage as CVE submissions hit record levels

NIST shifts National Vulnerability Database to risk-based triage as CVE submissions hit record levels - SiliconANGLE ...
Infosecurity Magazine

FIRST CEO Calls for Global CVE Collaboration amid AI Vulnerability Tsunami

FIRST CEO Chris Gibson urged global CVE collaboration and integrating AI companies to combat automated cyber threats ...
SecurityWeek

Exploited Vulnerability Exposes Nginx Servers to Hacking

A critical Nginx UI vulnerability that allows attackers to take full control of servers has been exploited in the wild.
CSO Online

NIST cuts down CVE analysis amid vulnerability overload

The agency will only add enrichment details to CVEs in limited cases going forward, prioritizing known exploited flaws and ...
Security Boulevard

National Vulnerability Database (NVD) Shifts to Selective Enrichment as CVE Volume Surges

Under a new model announced by the National Institute of Standards and Technology, NVD will no longer enrich every CVE.