Vulnerability Summary for the Week of January 26, 2026

2026-02-02 16:02

High Vulnerabilities

Primary Vendor — Product	Description	Published	CVSS Score	Source Info	Patch Info
10-Strike Software–Bandwidth Monitor	10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerability that allows attackers to bypass SafeSEH, ASLR, and DEP protections through carefully crafted input. Attackers can exploit the vulnerability by sending a malicious payload to the application’s registration key input, enabling remote code execution and launching arbitrary system commands.	2026-01-30	9.8	CVE-2020-37043	ExploitDB-48570 Product Webpage VulnCheck Advisory: 10-Strike Bandwidth Monitor 3.9 – Buffer Overflow
10-Strike Software–Network Inventory Explorer	10-Strike Network Inventory Explorer 8.65 contains a buffer overflow vulnerability in exception handling that allows remote attackers to execute arbitrary code. Attackers can craft a malicious file with 209 bytes of padding and a specially constructed Structured Exception Handler to trigger code execution.	2026-01-28	9.8	CVE-2020-36961	ExploitDB-49134 10-Strike Network Inventory Explorer Vendor Homepage VulnCheck Advisory: […] Content was cut in order to protect the source.Please visit the source for the rest of the article. This article has been indexed from Bulletins Read the original article: Vulnerability Summary for the Week of January 26, 2026 Share this: Facebook X LinkedIn Like this: Like Loading... Related Tags: Bulletins EN Post navigation ← Malwarebytes in ChatGPT delivers AI-powered protection against scams Open VSX Publisher Account Hijacked in Fresh GlassWorm Attack → Search for: Pages Advertising Contact Legal and Contact information Opt-out preferences Privacy Policy Social Media Apps Telegram Channel Recent Posts Notepad++ Updates Delivered Malware After Hosting Provider Breach February 2, 2026 Fake Clawdbot VS Code Extension Deploys ScreenConnect RAT February 2, 2026 ShinyHunters escalates tactics in extortion campaign linked to Okta environments February 2, 2026 McDonald’s is not lovin’ your bigmac, happymeal, and mcnuggets passwords February 2, 2026 Please Don’t Feed the Scattered Lapsus ShinyHunters February 2, 2026 ShinyHunters Leads Surge in Vishing Attacks to Steal SaaS Data February 2, 2026 FCC urges telecoms to boost cybersecurity amid growing ransomware threat February 2, 2026 IT Security News Hourly Summary 2026-02-02 18h : 13 posts February 2, 2026 Please Don’t Feed the Scattered Lapsus Shiny Hunters February 2, 2026 Notepad++ Update Servers Hijacked in Targeted Supply Chain Attack February 2, 2026 NationStates Suffers Databreach – Game site Temporarily Offline February 2, 2026 21,000+ OpenClaw AI Instances With Personal Configurations Exposed Online February 2, 2026 New Punishing Owl Hacker Group Targeting Networks of Russian Government Security Agency February 2, 2026 ShinyHunters flip the script on MFA in new data theft attacks February 2, 2026 Microsoft Begins NTLM Phase-Out With Three-Stage Plan to Move Windows to Kerberos February 2, 2026 NSA Publishes New Zero Trust Implementation Guidelines February 2, 2026 Hugging Face Repositories Abused in New Android Malware Campaign February 2, 2026 WhatsApp Launches High-Security Mode for Ultimate User Protection February 2, 2026 Apple’s New Feature Will Help Users Restrict Location Data February 2, 2026 ShinyHunters Claims Match Group Data Breach Exposing 10 Million Records February 2, 2026 Copyright © 2026 IT Security News. All Rights Reserved. The Magazine Basic Theme by bavotasan.com. Manage Consent To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions. Functional Functional Always active The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network. Preferences Preferences The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user. Statistics Statistics The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you. Marketing Marketing The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes. Manage options Manage services Manage {vendor_count} vendors Read more about these purposes View preferences {title} {title} {title}