Daily Signal - page 4 | 0day.digest

Friday, May 22, 2026

BYOVD: Exploiting Vulnerable Windows Kernel Drivers Without Their Target Hardware

vulnerability · privilege-escalation

Grafana Codebase Stolen via TanStack Supply Chain Attack

supply-chain · github · data-breach

Thursday, May 21, 2026

Langflow CVE-2025-34291 (CVSS 9.4) Added to CISA KEV Under Active Exploitation

cve · vulnerability · llm · ai-safety

Cisco Patches CVSS 10.0 Flaw in Secure Workload REST API

cve · vulnerability · cloud-security

Wednesday, May 20, 2026

Discord Migrates All Users to End-to-End Encryption by Default

1Password and OpenAI Introduce Just-in-Time Credentials for AI Coding Agents

iam · llm · openai · appsec

Anthropic Silently Patches Claude Code Sandbox Bypass

anthropic · vulnerability · llm · appsec

CISA Adds 7 Known Exploited Vulnerabilities Including Active Microsoft Defender Flaws

cve · vulnerability · microsoft