<br/> Possible exploit variant for CVE-2024-9042 (Kubernetes OS Command Injection)<br/> We observed HTTP requests with our honeypot that may be indicative of a new version of an exploit against an older vulnerability. Help us figure out what is going on.<br/> <a href="https://isc.sans.edu/diary/Possible%20exploit%20variant%20for%20CVE-2024-9042%20%28Kubernetes%20OS%20Command%20Injection%29/32554">https://isc.sans.edu/diary/Possible%20exploit%20variant%20for%20CVE-2024-9042%20%28Kubernetes%20OS%20Command%20Injection%29/32554</a><br/> React2Shell: Technical Deep-Dive & In-the-Wild Exploitation of CVE-2025-55182<br/> Wiz has a writeup with more background on the React2Shell vulnerability and current attacks<br/> <a href="https://www.wiz.io/blog/nextjs-cve-2025-55182-react2shell-deep-dive">https://www.wiz.io/blog/nextjs-cve-2025-55182-react2shell-deep-dive</a><br/> Notepad++ Update Hijacking<br/> Notepad++ s vulnerable update process was exploited <br/> <a href="https://notepad-plus-plus.org/news/v889-released/">https://notepad-plus-plus.org/news/v889-released/</a><br/> New macOS PackageKit Privilege Escalation<br/> A PoC was released for a new privilege escalation vulnerability in macOS. Currently, there is no patch.<br/> <a href="https://khronokernel.com/macos/2024/06/03/CVE-2024-27822.html">https://khronokernel.com/macos/2024/06/03/CVE-2024-27822.html</a><br/>