Google Threat Intelligence reports a sophisticated supply chain attack on axios NPM package versions 1.14.1 and 0.30.4 (March 31, 2026), where attackers injected malicious 'plain-crypto-js' dependency to deploy WAVESHAPER.V2 backdoor across Windows, macOS, and Linux platforms. Attribution to UNC1069 based on malware signatures, infrastructure overlaps, and operational patterns. Remediation guidance includes version pinning, dependency auditing, CI/CD pipeline security, and credential rotation.

This intelligence item is a copyrighted vulnerability database listing. It contains detailed vulnerability information including: critical RCE vulnerabilities in enterprise platforms (Chamilo LMS, Smart Slider 3, various WordPress plugins); supply chain attacks (axios npm compromise, Bruno CLI); privilege escalation in cloud/container systems (Kubernetes, OpenShift, LXD); cryptographic weaknesses (OpenSSL, multiple TLS/SSL issues); and memory corruption flaws in media processing libraries (LibRaw, OpenEXR). Multiple vulnerabilities enable unauthenticated remote code execution, with exploitation evidence documented in some cases dating to March-April 2026.