Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions
RedSide Security May 27, 2026 CVE 119 views
PCAPGraph is an open-source network investigation and threat hunting tool that transforms packet cap...
RedSide Security has open-sourced NETMAPPER, a network discovery and visualization tool designed to ...
When an incident unfolds and all you have left are Windows event logs, understanding attacker moveme...
RedSide Security May 27, 2026 CVE 119 views
RedSide Security May 20, 2026 Vulnerability 90 views
A public proof-of-concept (PoC) exploit has been released for **CVE-2026-2005**, a critical remote code execution vulnerability in PostgreSQL’s **pgcrypto extension**. The flaw stems from a long-standing heap-based buffer overflow in PGP session key parsing and can allow attackers to escalate privileges to PostgreSQL superuser and execute operating system commands under certain conditions.
RedSide Security May 17, 2026 CVE 90 views
A critical NGINX vulnerability tracked as CVE-2026-42945 is now being actively exploited in the wild, just days after public disclosure. The flaw allows attackers to crash NGINX worker processes and potentially achieve remote code execution under specific conditions. At the same time, threat actors have also begun weaponizing multiple critical vulnerabilities in openDCIM to deploy PHP web shells and gain remote access to exposed systems.
RedSide Security May 17, 2026 Vulnerability 201 views
Security researchers have reportedly developed the first public macOS kernel exploit targeting Apple’s new M5 silicon, successfully bypassing the company’s hardware-based Memory Integrity Enforcement (MIE) protections. The exploit chain achieves full root access on macOS 26.4.1 using only standard system calls from an unprivileged local account, highlighting the growing impact of AI-assisted offensive security research.