Dell BIOS Passwords: Weak XOR Encryption Allows Recovery from SPI Flash (CVE-2026-40639)
A password cipher that leaks it’s own key.
Read ArticleA password cipher that leaks it’s own key.
Read ArticleHidden exclusions in Entra ID Conditional Access policies let attackers bypass MFA and use an overly scoped Graph token to enumerate tenant data.
Read ArticleExploiting NSIS installer bugs to escalate privileges in Zscaler Client Connector
Read ArticleA bypass of the CVE-2025-0309 fix allowed enrolment to a rogue server via unauthenticated Netskope reverse-proxy routes.
Read ArticleSummary Ok, so there’s no MSI this time but our last Delinea post was titled ‘MSI Strikes Back’ so we thought we’d stay on …
Read ArticleCheck Point Harmony Local Privilege Escalation (CVE-2025-9142)
Read Article