CSOonline

Open source vulnerability scanner found with a serious vulnerability in its own code

The flaw could allow attackers to bypass Nuclei’s template signature verification process to inject malicious codes into host systems. A widely popular open-source tool, Nuclei, used for scanning ...
The Hacker News

Claude Opus 4.6 Finds 500+ High-Severity Flaws Across Major Open-Source Libraries

Anthropic’s Claude Opus 4.6 identified 500+ unknown high-severity flaws in open-source projects, advancing AI-driven vulnerability detection.
WGN Radio

Aqua Security Expands Open Source Trivy to Create the First Unified Scanner for Cloud Native Security

Trivy is now one tool for all cloud native scanning needs including source code, repositories, images, artifact registries, Infrastructure as Code (IaC) templates and Kubernetes environments. With ...
SC Media

Google launches new tool to identify open source vulnerabilities

Google has released a new free tool that allows open-source developers to more easily access vulnerability information relevant to their projects. The Go-based tool — called OSV-Scanner — provides an ...
Bleeping Computer

Latest CVE-2024-43405 news

A now-fixed vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious code into templates that execute ...
Bleeping Computer

Latest Vulnerability Scanner news

Dozens of Gigabyte motherboard models run on UEFI firmware vulnerable to security issues that allow planting bootkit malware that is invisible to the operating system and can survive reinstalls. A now ...