
Ubuntu has released USN-8497-1 to patch multiple Linux kernel (Low Latency) vulnerabilities, including local privilege escalation, possible container escape, information disclosure, and AppArmor-related memory safety issues.
Tag archive

Ubuntu has released USN-8497-1 to patch multiple Linux kernel (Low Latency) vulnerabilities, including local privilege escalation, possible container escape, information disclosure, and AppArmor-related memory safety issues.

Ubuntu has released USN-8499-1 to address multiple Linux kernel (Xilinx) vulnerabilities, including local privilege escalation, possible container escape, information disclosure, denial-of-service, and AppArmor-related memory safety issues.

Cisco has patched a medium-severity privilege escalation vulnerability in Umbrella Virtual Appliance that could allow an authenticated local attacker with vmadmin access to gain root privileges.

Ubuntu has released USN-8433-1 to address multiple OpenStack Keystone vulnerabilities that could enable privilege escalation, authentication bypass, token abuse, and cross-project credential issues in affected deployments.

Ubuntu has released USN-8426-1 to address multiple Linux kernel (Azure) vulnerabilities, including flaws that could let a local attacker escalate privileges or possibly escape a container. Teams running Ubuntu workloads on Azure should prioritize patching and validation.

Palo Alto Networks has published CVE-2026-0272, a medium-severity privilege escalation vulnerability affecting the PAN-OS command line interface. Security teams should review the advisory, identify affected systems, and plan remediation.

Cisco has disclosed a high-severity authenticated privilege escalation vulnerability in Catalyst SD-WAN Controller, Manager, and Validator that can allow arbitrary command execution as root under specific conditions.

Cisco has disclosed a high-severity privilege escalation flaw in Cisco Catalyst SD-WAN Manager that could let an authenticated local attacker with netadmin privileges execute commands as root. Organizations should preserve logs, collect admin-tech files, upgrade to fixed software, and verify edge device configurations.

Red Hat guidance around sudo-related CVE-2025-32462 is a reminder that host-based trust assumptions can turn into escalation debt over time. This alert covers shared admin systems, validation steps, and privilege-boundary hygiene.

cPanel's 2025 Team Manager API advisory shows how local privilege escalation inside a hosting control environment can still become serious quickly. This alert covers delegated access, role review, and practical remediation.