CVE Recipes

Why per-CVE. The generic remediation workflows cover the bulk of advisories. But some CVEs are special: load-bearing across the industry, with quirks the generic workflow won’t catch (“just bumping isn’t enough — you also have to remove JndiLookup.class”). For those, a targeted recipe is more reliable than a generic one. This section is where those recipes live.

What a CVE recipe contains

Every recipe follows the same outline:

  • Frontmattercve or ghsa, known_as, kev flag (CISA Known Exploited Vulnerability), severity, ecosystem, dates.
  • Summary — what the CVE is and what it lets an attacker do. Plain language.
  • Affected versions — the canonical version range, with a note if vendor advisories disagree.
  • Indicator-of-exposure — how to know whether your code is actually exposed (vs. just having the package installed).
  • Remediation strategy — the right fix. When the right fix is “upgrade,” the recipe says so plainly. When upgrade isn’t possible, the recipe gives a documented mitigation.
  • The prompt — agent-runnable, with explicit boundaries.
  • Stop conditions — when the agent must triage instead of fixing.
  • Verification — how the agent (and the reviewer) confirm the CVE is gone after the fix.
  • Watch for — common failure shapes (partial fixes, new CVEs introduced by the upgrade, behaviour regressions).

Source freshness and review standard

SecurityRecipes treats new GitHub Advisory Database entries as intake signals, not as final copy. A CVE recipe should only land when the remediation path is specific enough for a production reviewer to trust an agent-authored PR.

For high and critical advisories, that means each prompt must include:

  • the model context used to generate it, currently GPT 5.5 Extra High reasoning;
  • the exact affected surface and the version, configuration, or runtime signal that proves exposure;
  • the safest default fix and a documented containment path when upgrade is blocked;
  • explicit stop conditions that produce TRIAGE.md instead of an unsafe patch;
  • verification a reviewer can run without exposing secrets, tenant data, customer content, or exploit payloads;
  • source links back to GHAD, NVD/CVE, vendor advisories, or release evidence.

Before remediation: intake the signal

When a CVE, GHSA, OSV, vendor bulletin, scanner row, or ticket is incomplete, run the CVE intelligence intake gate before asking an agent to patch.

The intake gate turns the advisory signal into one of five outcomes: remediation, containment, not-exposed suppression, human triage, or rejected unverified signal. It is backed by the local policy file data/intelligence/cve-intelligence-intake-gates.json and documented in CVE Intelligence Intake.

How to use a CVE recipe

The same pattern as any other prompt on this site:

  1. Read the Summary and Affected versions to confirm the recipe is for the CVE you’re looking at — vendor advisories sometimes ship multiple CVE IDs for the same underlying bug, and not every one has its own recipe.
  2. Read the Indicator-of-exposure. If your codebase isn’t actually exposed (the vulnerable code path isn’t reached), the right action might be a documented suppression, not a bump. The recipe says when that’s appropriate.
  3. Copy the prompt block into the agent of your choice.
  4. Review the PR or the triage note the agent produces. The recipe’s Verification section tells the reviewer what to look for.

When to use these instead of the generic workflows

  • The CVE is named and high-blast-radius — Log4Shell, Heartbleed, Spring4Shell, regreSSHion, xz-utils, the headline CVE of the month.
  • The naive fix is wrong or insufficient — for example, Log4Shell’s first published CVE had a follow-up CVE (CVE-2021-45046) because the first patch was incomplete. The recipe knows that; the generic workflow doesn’t.
  • The CVE has a known mitigation that’s faster to deploy than the upgrade (formatMsgNoLookups for Log4Shell, removing cups-browsed for the CUPS RCE chain, disabling the affected feature flag for Spring4Shell). The recipe captures the mitigation alongside the upgrade.

When not to use these

CVE Recipes

The catalogue below is auto-generated from the recipe files in this section, grouped by ecosystem and sorted by disclosure date. Drop a new cve-XXXX-YYYYY-<short-name>.md file with the frontmatter fields below, and it will appear here on the next build — no edits to this hub or to site config required.

c/c++68 recipes

CVE-2026-54919 - cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library

high

High remediation recipe for cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54919disclosed 2026-07-10a.k.a. cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library

CVE-2026-11404 - Cesanta Mongoose before 7.22 contains an out-of-bounds read in the built-in TLS server function mg_tls_server_

high

High remediation recipe for Cesanta Mongoose before 7.22 contains an out-of-bounds read in the built-in TLS server function mg_tls_server_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-11404disclosed 2026-07-09a.k.a. Cesanta Mongoose before 7.22 contains an out-of-bounds read in the built-in TLS server function mg_tls_server_

CVE-2026-31985 - When the upstream Guardian or CMC was configured in the Remote Collector via n2os-tui, the generated configura

high

High remediation recipe for When the upstream Guardian or CMC was configured in the Remote Collector via n2os-tui, the generated configura. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-31985disclosed 2026-07-09a.k.a. When the upstream Guardian or CMC was configured in the Remote Collector via n2os-tui, the generated configura

CVE-2026-47828 - During bosh create-env and bosh delete-env, the CLI uploads compiled CPI packages and rendered job templates t

high

High remediation recipe for During bosh create-env and bosh delete-env, the CLI uploads compiled CPI packages and rendered job templates t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-47828disclosed 2026-07-09a.k.a. During bosh create-env and bosh delete-env, the CLI uploads compiled CPI packages and rendered job templates t

CVE-2026-47840 - A network attacker positioned between UAA and its LDAP directory can impersonate the directory using any certi

high

High remediation recipe for A network attacker positioned between UAA and its LDAP directory can impersonate the directory using any certi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-47840disclosed 2026-07-09a.k.a. A network attacker positioned between UAA and its LDAP directory can impersonate the directory using any certi

CVE-2026-59692 - A stack buffer overflow vulnerability was found in GStreamer's DTLS plugin

high

High remediation recipe for A stack buffer overflow vulnerability was found in GStreamer's DTLS plugin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-59692disclosed 2026-07-09a.k.a. A stack buffer overflow vulnerability was found in GStreamer's DTLS plugin

CVE-2026-13698 - A memory leak in OpenVPN version 2.5.0 through 2.5.11, 2.6.0 through 2.6.20 and 2.7_alpha1 through 2.7.4 allow

high

High remediation recipe for A memory leak in OpenVPN version 2.5.0 through 2.5.11, 2.6.0 through 2.6.20 and 2.7_alpha1 through 2.7.4 allow. Upgrade to version 2.5.0 through 2.5.11 and remove the vulnerable dos pattern.

cve CVE-2026-13698disclosed 2026-07-06a.k.a. A memory leak in OpenVPN version 2.5.0 through 2.5.11, 2.6.0 through 2.6.20 and 2.7_alpha1 through 2.7.4 allow

CVE-2026-55952 - The Erlang/OTP ssl application does not validate that the PSK identity list and binder list carried in a TLS 1

high

High remediation recipe for The Erlang/OTP ssl application does not validate that the PSK identity list and binder list carried in a TLS 1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-55952disclosed 2026-07-02a.k.a. The Erlang/OTP ssl application does not validate that the PSK identity list and binder list carried in a TLS 1

CVE-2026-7830 - UltraVNC through 1.8.2.2 uses inadequate cryptography in the MS-Logon II authentication scheme (rfbUltraVNC_Ms

high

High remediation recipe for UltraVNC through 1.8.2.2 uses inadequate cryptography in the MS-Logon II authentication scheme (rfbUltraVNC_Ms. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-7830disclosed 2026-07-01a.k.a. UltraVNC through 1.8.2.2 uses inadequate cryptography in the MS-Logon II authentication scheme (rfbUltraVNC_Ms

CVE-2026-8023 - Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STAT

high

High remediation recipe for Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STAT. Upgrade to patched to the handler and and remove the vulnerable command-injection pattern.

cve CVE-2026-8023disclosed 2026-06-29a.k.a. Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STAT

CVE-2026-58049 - FFmpeg RASC DLTA decoder out-of-bounds heap write

high

High remediation recipe for FFmpeg RASC DLTA decoder out-of-bounds heap write. Apply vendor-patched FFmpeg build; disable RASC decoding until fixed packages land and remove the vulnerable memory-safety pattern.

cve CVE-2026-58049disclosed 2026-06-28a.k.a. FFmpeg RASC DLTA decoder out-of-bounds heap write

CVE-2026-58050 - libssh2 publickey attribute count integer overflow

high

High remediation recipe for libssh2 publickey attribute count integer overflow. Apply upstream commit/release after 1.11.1 that bounds attribute allocation; disable publickey listing against untrusted servers until patched and remove the vulnerable memory-safety pattern.

cve CVE-2026-58050disclosed 2026-06-28a.k.a. libssh2 publickey attribute count integer overflow

CVE-2026-10097 - wolfSSL's AVX2-optimized ML-KEM implementation (mlkem_cmp_avx2) compares only 1536 of the 1568 ciphertext byte

high

High remediation recipe for wolfSSL's AVX2-optimized ML-KEM implementation (mlkem_cmp_avx2) compares only 1536 of the 1568 ciphertext byte. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-10097disclosed 2026-06-25a.k.a. wolfSSL's AVX2-optimized ML-KEM implementation (mlkem_cmp_avx2) compares only 1536 of the 1568 ciphertext byte

CVE-2026-10512 - The X25519 x86_64 assembly implementation fails to clear the most significant bit during the final modular red

high

High remediation recipe for The X25519 x86_64 assembly implementation fails to clear the most significant bit during the final modular red. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-10512disclosed 2026-06-25a.k.a. The X25519 x86_64 assembly implementation fails to clear the most significant bit during the final modular red

CVE-2026-11310 - X.509 trust-chain bypass in the OpenSSL compatibility certificate verifier (wolfSSL_X509_verify_cert())

high

High remediation recipe for X.509 trust-chain bypass in the OpenSSL compatibility certificate verifier (wolfSSL_X509_verify_cert()). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-11310disclosed 2026-06-25a.k.a. X.509 trust-chain bypass in the OpenSSL compatibility certificate verifier (wolfSSL_X509_verify_cert())

CVE-2026-11703 - wolfSSL SNI/ALPN session resumption binding bypass

high

High remediation recipe for wolfSSL SNI/ALPN session resumption binding bypass. Apply wolfSSL 5.9.2 or PR 10489 and remove the vulnerable tls-auth pattern.

cve CVE-2026-11703disclosed 2026-06-25a.k.a. wolfSSL SNI/ALPN session resumption binding bypass

CVE-2026-11999 - X.509 trust-chain bypass (path-depth exhaustion) in the OpenSSL compatibility certificate verifier (wolfSSL_X5

high

High remediation recipe for X.509 trust-chain bypass (path-depth exhaustion) in the OpenSSL compatibility certificate verifier (wolfSSL_X5. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-11999disclosed 2026-06-25a.k.a. X.509 trust-chain bypass (path-depth exhaustion) in the OpenSSL compatibility certificate verifier (wolfSSL_X5

CVE-2026-12245 - NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing a crash of

high

High remediation recipe for NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing a crash of. Upgrade to version 4.13.0 has a heap use-after-free bug in logging errors on TL and remove the vulnerable dos pattern.

cve CVE-2026-12245disclosed 2026-06-25a.k.a. NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing a crash of

CVE-2026-12340 - Out-of-bounds heap read during SM2/SM3 certificate signature verification

high

High remediation recipe for Out-of-bounds heap read during SM2/SM3 certificate signature verification. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-12340disclosed 2026-06-25a.k.a. Out-of-bounds heap read during SM2/SM3 certificate signature verification

CVE-2026-12490 - When a provide-xfr is given with a tls-auth-name, a secondary requesting a transfer should provide a client ce

high

High remediation recipe for When a provide-xfr is given with a tls-auth-name, a secondary requesting a transfer should provide a client ce. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-12490disclosed 2026-06-25a.k.a. When a provide-xfr is given with a tls-auth-name, a secondary requesting a transfer should provide a client ce

CVE-2026-53192 - In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Fix UAF at snd_timer_user_par

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Fix UAF at snd_timer_user_par. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53192disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Fix UAF at snd_timer_user_par

CVE-2026-53262 - In the Linux kernel, the following vulnerability has been resolved: l2tp: pppol2tp: hold reference to session

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: l2tp: pppol2tp: hold reference to session. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-53262disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: l2tp: pppol2tp: hold reference to session

CVE-2026-53268 - In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack_irc: fix possible out

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack_irc: fix possible out. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53268disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack_irc: fix possible out

CVE-2026-55958 - Out-of-bounds write in the Renesas TSIP TLS 1.3 transcript buffer

high

High remediation recipe for Out-of-bounds write in the Renesas TSIP TLS 1.3 transcript buffer. Upgrade to fixed message bag and remove the vulnerable cert-validation pattern.

cve CVE-2026-55958disclosed 2026-06-25a.k.a. Out-of-bounds write in the Renesas TSIP TLS 1.3 transcript buffer

CVE-2026-55961 - wolfSSL_PKCS7_verify() returning success for a degenerate (certs-only) PKCS#7 object that contains no signer

high

High remediation recipe for wolfSSL_PKCS7_verify() returning success for a degenerate (certs-only) PKCS#7 object that contains no signer. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-55961disclosed 2026-06-25a.k.a. wolfSSL_PKCS7_verify() returning success for a degenerate (certs-only) PKCS#7 object that contains no signer

CVE-2026-6331 - HMAC zero-length tag forgery in EVP_DigestVerifyFinal, where a zero-length tag could be accepted as valid duri

high

High remediation recipe for HMAC zero-length tag forgery in EVP_DigestVerifyFinal, where a zero-length tag could be accepted as valid duri. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-6331disclosed 2026-06-25a.k.a. HMAC zero-length tag forgery in EVP_DigestVerifyFinal, where a zero-length tag could be accepted as valid duri

CVE-2026-6679 - wolfSSL DTLS 1.3 ACK serialization heap overflow

high

High remediation recipe for wolfSSL DTLS 1.3 ACK serialization heap overflow. Apply wolfSSL 5.9.1 or later and remove the vulnerable memory-safety pattern.

cve CVE-2026-6679disclosed 2026-06-25a.k.a. wolfSSL DTLS 1.3 ACK serialization heap overflow

CVE-2026-6731 - wolfSSL X.509 name-constraints common-name bypass

high

High remediation recipe for wolfSSL X.509 name-constraints common-name bypass. Apply wolfSSL 5.9.2 or later, or vendor patch for name-constraint CN handling and remove the vulnerable cert-validation pattern.

cve CVE-2026-6731disclosed 2026-06-25a.k.a. wolfSSL X.509 name-constraints common-name bypass

CVE-2026-7531 - Use-after-free in PQC hybrid key-share handling

critical

Critical remediation recipe for Use-after-free in PQC hybrid key-share handling. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-7531disclosed 2026-06-25a.k.a. Use-after-free in PQC hybrid key-share handling

CVE-2026-7532 - iPAddress name constraints bypass when WOLFSSL_IP_ALT_NAME is not defined

high

High remediation recipe for iPAddress name constraints bypass when WOLFSSL_IP_ALT_NAME is not defined. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-7532disclosed 2026-06-25a.k.a. iPAddress name constraints bypass when WOLFSSL_IP_ALT_NAME is not defined

CVE-2026-8720 - wc_Blake2bHmacFinal and wc_Blake2sHmacFinal discard the message when the key length exceeds the block size, pr

high

High remediation recipe for wc_Blake2bHmacFinal and wc_Blake2sHmacFinal discard the message when the key length exceeds the block size, pr. Upgrade to version 5.9.0. and remove the vulnerable authz pattern.

cve CVE-2026-8720disclosed 2026-06-25a.k.a. wc_Blake2bHmacFinal and wc_Blake2sHmacFinal discard the message when the key length exceeds the block size, pr

CVE-2026-48491 - Traefik is an HTTP reverse proxy and load balancer

critical

Critical remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 3.7.3. and remove the vulnerable command-injection pattern.

cve CVE-2026-48491disclosed 2026-06-23a.k.a. Traefik is an HTTP reverse proxy and load balancer

CVE-2026-52844 - Caddy is an extensible server platform that uses TLS by default

high

High remediation recipe for Caddy is an extensible server platform that uses TLS by default. Upgrade to fixed in 2.11.4. and remove the vulnerable authz pattern.

cve CVE-2026-52844disclosed 2026-06-23a.k.a. Caddy is an extensible server platform that uses TLS by default

CVE-2026-53622 - Traefik is an HTTP reverse proxy and load balancer

critical

Critical remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 3.7.3. and remove the vulnerable command-injection pattern.

cve CVE-2026-53622disclosed 2026-06-23a.k.a. Traefik is an HTTP reverse proxy and load balancer

CVE-2026-9697 - Impact: undici's ProxyAgent silently drops the requestTls option when configured with a SOCKS5 proxy URI (sock

high

High remediation recipe for Impact: undici's ProxyAgent silently drops the requestTls option when configured with a SOCKS5 proxy URI (sock. Upgrade to Upgrade to undici v7.28.0 or v8.5.0. and remove the vulnerable cert-validation pattern.

cve CVE-2026-9697disclosed 2026-06-17a.k.a. Impact: undici's ProxyAgent silently drops the requestTls option when configured with a SOCKS5 proxy URI (sock

CVE-2026-45416 - Netty is a network application framework for development of protocol servers and clients

high

High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-45416disclosed 2026-06-12a.k.a. Netty is a network application framework for development of protocol servers and clients

CVE-2026-45447 - Issue summary: A specially crafted PKCS#7 or S/MIME signed message could trigger a use-after-free during PKCS#

high

High remediation recipe for Issue summary: A specially crafted PKCS#7 or S/MIME signed message could trigger a use-after-free during PKCS#. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-45447disclosed 2026-06-09a.k.a. Issue summary: A specially crafted PKCS#7 or S/MIME signed message could trigger a use-after-free during PKCS#

CVE-2026-46294 - In the Linux kernel, the following vulnerability has been resolved: dm: fix a buffer overflow in ioctl process

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dm: fix a buffer overflow in ioctl process. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46294disclosed 2026-06-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: dm: fix a buffer overflow in ioctl process

CVE-2026-44393 - An issue was discovered in OpenStack oslo.messaging 1.0.0 through 17.3.0

high

High remediation recipe for An issue was discovered in OpenStack oslo.messaging 1.0.0 through 17.3.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-44393disclosed 2026-06-04a.k.a. An issue was discovered in OpenStack oslo.messaging 1.0.0 through 17.3.0

CVE-2026-46250 - In the Linux kernel, the following vulnerability has been resolved: MIPS: Work around LLVM bug when gp is used

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: MIPS: Work around LLVM bug when gp is used. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-46250disclosed 2026-06-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: MIPS: Work around LLVM bug when gp is used

CVE-2026-46579 - A flaw was found in the OpenShift Router

high

High remediation recipe for A flaw was found in the OpenShift Router. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-46579disclosed 2026-05-29a.k.a. A flaw was found in the OpenShift Router

CVE-2026-42790 - Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_cert and public_key modules) al

high

High remediation recipe for Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_cert and public_key modules) al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-42790disclosed 2026-05-27a.k.a. Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_cert and public_key modules) al

CVE-2026-42012 - A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially craft

high

High remediation recipe for A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially craft. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-42012disclosed 2026-05-26a.k.a. A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially craft

CVE-2026-42013 - A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name (SAN) could ca

high

High remediation recipe for A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name (SAN) could ca. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-42013disclosed 2026-05-26a.k.a. A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name (SAN) could ca

CVE-2026-5260 - A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during an RSA

high

High remediation recipe for A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during an RSA. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-5260disclosed 2026-05-26a.k.a. A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during an RSA

CVE-2026-42009 - A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security

high

High remediation recipe for A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-42009disclosed 2026-05-18a.k.a. A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security

CVE-2026-42246 - Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby

high

High remediation recipe for Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Upgrade to patched in versions 0.3.10 and remove the vulnerable authz pattern.

cve CVE-2026-42246disclosed 2026-05-09a.k.a. Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby

CVE-2026-42010 - A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfull

high

High remediation recipe for A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfull. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-42010disclosed 2026-05-07a.k.a. A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfull

CVE-2026-42011 - A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly igno

high

High remediation recipe for A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly igno. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-42011disclosed 2026-05-07a.k.a. A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly igno

CVE-2026-33846 - A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS

high

High remediation recipe for A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-33846disclosed 2026-05-04a.k.a. A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS

CVE-2026-33845 - A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leadi

high

High remediation recipe for A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leadi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-33845disclosed 2026-04-30a.k.a. A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leadi

CVE-2026-5402 - TLS protocol dissector heap overflow in Wireshark 4.6.0 to 4.6.4 allows denial of service and possible code ex

high

High remediation recipe for TLS protocol dissector heap overflow in Wireshark 4.6.0 to 4.6.4 allows denial of service and possible code ex. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-5402disclosed 2026-04-30a.k.a. TLS protocol dissector heap overflow in Wireshark 4.6.0 to 4.6.4 allows denial of service and possible code ex

CVE-2026-33453 - Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Apache Camel C

critical

Critical remediation recipe for Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Apache Camel C. Upgrade to fixed with Camel and remove the vulnerable command-injection pattern.

cve CVE-2026-33453disclosed 2026-04-27a.k.a. Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Apache Camel C

CVE-2026-31533 - In the Linux kernel, the following vulnerability has been resolved: net/tls: fix use-after-free in -EBUSY erro

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/tls: fix use-after-free in -EBUSY erro. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-31533disclosed 2026-04-23a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/tls: fix use-after-free in -EBUSY erro

CVE-2026-39304 - Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Client, Apache ActiveMQ Broker, Apache Ac

high

High remediation recipe for Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Client, Apache ActiveMQ Broker, Apache Ac. Upgrade to fixed as well. and remove the vulnerable dos pattern.

cve CVE-2026-39304disclosed 2026-04-10a.k.a. Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Client, Apache ActiveMQ Broker, Apache Ac

CVE-2026-1584 - A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a spe

high

High remediation recipe for A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a spe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-1584disclosed 2026-04-09a.k.a. A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a spe

CVE-2026-32280 - During chain building, the amount of work that is done is not correctly limited when a large number of interme

high

High remediation recipe for During chain building, the amount of work that is done is not correctly limited when a large number of interme. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-32280disclosed 2026-04-08a.k.a. During chain building, the amount of work that is done is not correctly limited when a large number of interme

CVE-2026-32283 - If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the co

high

High remediation recipe for If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-32283disclosed 2026-04-08a.k.a. If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the co

CVE-2026-32144 - Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP design

high

High remediation recipe for Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP design. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-32144disclosed 2026-04-07a.k.a. Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP design

CVE-2026-34582 - Botan is a C++ cryptography library. Prior to version 3.11.1, the TLS 1.3 implementation allowed ApplicationDa

critical

Critical remediation recipe for Botan is a C++ cryptography library. Prior to version 3.11.1, the TLS 1.3 implementation allowed ApplicationDa. Upgrade to version 3.11.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-34582disclosed 2026-04-07a.k.a. Botan is a C++ cryptography library. Prior to version 3.11.1, the TLS 1.3 implementation allowed ApplicationDa

CVE-2026-26999 - Traefik is an HTTP reverse proxy and load balancer

high

High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to patched in versions 2.11.38 and 3.6.9. and remove the vulnerable authz pattern.

cve CVE-2026-26999disclosed 2026-03-05a.k.a. Traefik is an HTTP reverse proxy and load balancer

CVE-2026-27134 - Strimzi provides a way to run an Apache Kafka cluster on Kubernetes or OpenShift in various deployment configu

high

High remediation recipe for Strimzi provides a way to run an Apache Kafka cluster on Kubernetes or OpenShift in various deployment configu. Upgrade to fixed in version 0.50.1. To workaround this issue and remove the vulnerable cert-validation pattern.

cve CVE-2026-27134disclosed 2026-02-21a.k.a. Strimzi provides a way to run an Apache Kafka cluster on Kubernetes or OpenShift in various deployment configu

CVE-2026-25949 - Traefik is an HTTP reverse proxy and load balancer

high

High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 3.6.8. and remove the vulnerable dos pattern.

cve CVE-2026-25949disclosed 2026-02-12a.k.a. Traefik is an HTTP reverse proxy and load balancer

CVE-2026-1709 - A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transpo

critical

Critical remediation recipe for A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transpo. Upgrade to version 7.12.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-1709disclosed 2026-02-06a.k.a. A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transpo

CVE-2025-15467 - Issue summary: Parsing CMS AuthEnvelopedData or EnvelopedData message with maliciously crafted AEAD parameters

high

High remediation recipe for Issue summary: Parsing CMS AuthEnvelopedData or EnvelopedData message with maliciously crafted AEAD parameters. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-15467disclosed 2026-01-27a.k.a. Issue summary: Parsing CMS AuthEnvelopedData or EnvelopedData message with maliciously crafted AEAD parameters

CVE-2026-22771 - Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based applicati

high

High remediation recipe for Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based applicati. Upgrade to fixed in 1.5.7 and 1.6.2. and remove the vulnerable command-injection pattern.

cve CVE-2026-22771disclosed 2026-01-12a.k.a. Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based applicati

CVE-2025-5987 - A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library

high

High remediation recipe for A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-5987disclosed 2025-07-07a.k.a. A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library

CVE-2025-6032 - A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloadi

high

High remediation recipe for A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloadi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2025-6032disclosed 2025-06-24a.k.a. A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloadi

c/cpp18 recipes

CVE-2026-13606 - A flaw was found out-of-bounds write

high

High out-of-bounds write in A flaw was found. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13606disclosed 2026-06-28a.k.a. A flaw was found out-of-bounds write

CVE-2026-58049 - FFmpeg RASC decoder DLTA row out-of-bounds write

high

High-severity FFmpeg RASC decoder DLTA row out-of-bounds write. A crafted media file can corrupt memory in services that transcode or inspect user-supplied video.

cve CVE-2026-58049disclosed 2026-06-28

CVE-2026-58049 - FFmpeg s RASC video out-of-bounds read

high

High out-of-bounds read in FFmpeg s RASC video. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-58049disclosed 2026-06-28a.k.a. FFmpeg s RASC video out-of-bounds read

CVE-2026-58050 - libssh2 heap buffer overflow

high

High heap buffer overflow in libssh2. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-58050disclosed 2026-06-28a.k.a. libssh2 heap buffer overflow

CVE-2026-58050 - libssh2 publickey attribute count integer overflow

high

High-severity libssh2 publickey attribute count integer overflow. A malicious SSH server can corrupt memory in clients, deployment agents, or embedded devices that connect outbound.

cve CVE-2026-58050disclosed 2026-06-28

CVE-2026-11703 - wolfSSL TLS resumption SNI ALPN binding bypass

high

High-severity wolfSSL TLS resumption SNI ALPN binding bypass. Cached client-authentication state can cross virtual-host boundaries and bypass stricter authentication policy.

cve CVE-2026-11703disclosed 2026-06-25

CVE-2026-56788 - RTKLIB out-of-bounds read

high

High out-of-bounds read in RTKLIB. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-56788disclosed 2026-06-25a.k.a. RTKLIB out-of-bounds read

CVE-2026-6331 - HMAC zero-length tag forgery MAC verification bypass

high

High MAC verification bypass in HMAC zero-length tag forgery. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-6331disclosed 2026-06-25a.k.a. HMAC zero-length tag forgery MAC verification bypass

CVE-2026-6679 - the DTLS 1.3 ACK serialization path heap buffer overflow

high

High heap buffer overflow in the DTLS 1.3 ACK serialization path. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-6679disclosed 2026-06-25a.k.a. the DTLS 1.3 ACK serialization path heap buffer overflow

CVE-2026-6679 - wolfSSL DTLS 1.3 ACK serialization heap overflow

high

High-severity wolfSSL DTLS 1.3 ACK serialization heap overflow. Unauthenticated DTLS traffic can crash or corrupt memory in edge, IoT, and embedded services before peer authentication.

cve CVE-2026-6679disclosed 2026-06-25

CVE-2026-6731 - wolfSSL X.509 commonName name-constraint bypass

high

High-severity wolfSSL X.509 commonName name-constraint bypass. A constrained CA can issue a certificate whose commonName escapes intended DNS constraints and is still accepted by clients.

cve CVE-2026-6731disclosed 2026-06-25

CVE-2026-7532 - iPAddress name constraints bypass when WOLFSSL_IP_ALT_NAME certificate constraint bypass

high

High certificate constraint bypass in iPAddress name constraints bypass when WOLFSSL_IP_ALT_NAME. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-7532disclosed 2026-06-25a.k.a. iPAddress name constraints bypass when WOLFSSL_IP_ALT_NAME certificate constraint bypass

CVE-2026-8720 - wc_Blake2bHmacFinal and wc_Blake2sHmacFinal discard MAC verification bypass

high

High MAC verification bypass in wc_Blake2bHmacFinal and wc_Blake2sHmacFinal discard. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-8720disclosed 2026-06-25a.k.a. wc_Blake2bHmacFinal and wc_Blake2sHmacFinal discard MAC verification bypass

CVE-2026-55200 - libssh2 out-of-bounds write

critical

Critical out-of-bounds write in libssh2. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-55200disclosed 2026-06-17a.k.a. libssh2 out-of-bounds write

CVE-2026-42010 - gnutls authentication bypass

critical

Critical authentication bypass in gnutls. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-42010disclosed 2026-05-07a.k.a. gnutls authentication bypass

CVE-2026-33845 - A flaw in GnuTLS out-of-bounds read

critical

Critical out-of-bounds read in A flaw in GnuTLS. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-33845disclosed 2026-04-30a.k.a. A flaw in GnuTLS out-of-bounds read

CVE-2026-3833 - gnutls security control bypass

high

High security control bypass in gnutls. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-3833disclosed 2026-04-30a.k.a. gnutls security control bypass

CVE-2026-4878 - libcap privilege escalation

high

High privilege escalation in libcap. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-4878disclosed 2026-04-09a.k.a. libcap privilege escalation

embedded/iot9 recipes

CVE-2026-13515 - Tenda JD12L 16 stack buffer overflow

high

High stack buffer overflow in Tenda JD12L 16. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13515disclosed 2026-06-29a.k.a. Tenda JD12L 16 stack buffer overflow

CVE-2026-13516 - Tenda JD12L 16 stack buffer overflow

high

High stack buffer overflow in Tenda JD12L 16. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13516disclosed 2026-06-29a.k.a. Tenda JD12L 16 stack buffer overflow

CVE-2026-13517 - Tenda JD12L 16 stack buffer overflow

high

High stack buffer overflow in Tenda JD12L 16. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13517disclosed 2026-06-29a.k.a. Tenda JD12L 16 stack buffer overflow

CVE-2026-13518 - Tenda JD12L 16 stack buffer overflow

high

High stack buffer overflow in Tenda JD12L 16. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13518disclosed 2026-06-29a.k.a. Tenda JD12L 16 stack buffer overflow

CVE-2026-13539 - Wavlink WL-NU516U1-A M16U1_V240425 stack buffer overflow

high

High stack buffer overflow in Wavlink WL-NU516U1-A M16U1_V240425. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13539disclosed 2026-06-29a.k.a. Wavlink WL-NU516U1-A M16U1_V240425 stack buffer overflow

CVE-2026-13545 - D-Link DCS-935L 1 command injection

high

High command injection in D-Link DCS-935L 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13545disclosed 2026-06-29a.k.a. D-Link DCS-935L 1 command injection

CVE-2026-13562 - Edimax EW-7478APC 1 buffer overflow

high

High buffer overflow in Edimax EW-7478APC 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13562disclosed 2026-06-29a.k.a. Edimax EW-7478APC 1 buffer overflow

CVE-2026-13563 - Edimax EW-7478APC 1 stack buffer overflow

high

High stack buffer overflow in Edimax EW-7478APC 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13563disclosed 2026-06-29a.k.a. Edimax EW-7478APC 1 stack buffer overflow

CVE-2026-13564 - Edimax EW-7478APC 1 stack buffer overflow

high

High stack buffer overflow in Edimax EW-7478APC 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13564disclosed 2026-06-29a.k.a. Edimax EW-7478APC 1 stack buffer overflow

enterprise-app9 recipes

CVE-2026-2053 - The WSO2 API Manager security control bypass

critical

Critical security control bypass in The WSO2 API Manager. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-2053disclosed 2026-06-26a.k.a. The WSO2 API Manager security control bypass

CVE-2026-57921 - JetBrains YouTrack improper access control

high

High improper access control in JetBrains YouTrack. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-57921disclosed 2026-06-26a.k.a. JetBrains YouTrack improper access control

CVE-2026-57923 - JetBrains YouTrack security control bypass

high

High security control bypass in JetBrains YouTrack. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-57923disclosed 2026-06-26a.k.a. JetBrains YouTrack security control bypass

CVE-2026-57926 - JetBrains YouTrack prototype pollution

critical

Critical prototype pollution in JetBrains YouTrack. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-57926disclosed 2026-06-26a.k.a. JetBrains YouTrack prototype pollution

CVE-2026-57520 - Bitwarden Server before 2026.5.0 privilege escalation

high

High privilege escalation in Bitwarden Server before 2026.5.0. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-57520disclosed 2026-06-25a.k.a. Bitwarden Server before 2026.5.0 privilege escalation

CVE-2026-41045 - polkit authentication of qSnapper security control bypass

high

High security control bypass in polkit authentication of qSnapper. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-41045disclosed 2026-06-22a.k.a. polkit authentication of qSnapper security control bypass

CVE-2026-41046 - qSnapper path traversal

high

High path traversal in qSnapper. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-41046disclosed 2026-06-22a.k.a. qSnapper path traversal

CVE-2026-41048 - qSnapper security control bypass

high

High security control bypass in qSnapper. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-41048disclosed 2026-06-22a.k.a. qSnapper security control bypass

CVE-2026-41049 - Incorrect caching of authentication security control bypass

high

High security control bypass in Incorrect caching of authentication. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-41049disclosed 2026-06-22a.k.a. Incorrect caching of authentication security control bypass

general1988 recipes

CVE-2025-30007 - HestiaCP before 1.9.5 contains an authenticated OS command injection vulnerability that allows low-privilege a

high

High remediation recipe for HestiaCP before 1.9.5 contains an authenticated OS command injection vulnerability that allows low-privilege a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-30007disclosed 2026-07-10a.k.a. HestiaCP before 1.9.5 contains an authenticated OS command injection vulnerability that allows low-privilege a

CVE-2025-70796 - An unauthenticated path traversal vulnerability exists in the web management interface of WTI (Wireless Techno

high

High remediation recipe for An unauthenticated path traversal vulnerability exists in the web management interface of WTI (Wireless Techno. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2025-70796disclosed 2026-07-10a.k.a. An unauthenticated path traversal vulnerability exists in the web management interface of WTI (Wireless Techno

CVE-2026-11321 - The DataInjection plugin for GLPI 2.15.6 (GLPI 11 builds) concatenates user-supplied CSV field values directly

high

High remediation recipe for The DataInjection plugin for GLPI 2.15.6 (GLPI 11 builds) concatenates user-supplied CSV field values directly. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-11321disclosed 2026-07-10a.k.a. The DataInjection plugin for GLPI 2.15.6 (GLPI 11 builds) concatenates user-supplied CSV field values directly

CVE-2026-15143 - A flaw was found in the file_type content detector of guardrails-detectors

critical

Critical remediation recipe for A flaw was found in the file_type content detector of guardrails-detectors. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15143disclosed 2026-07-10a.k.a. A flaw was found in the file_type content detector of guardrails-detectors

CVE-2026-15378 - A flaw was found in the guardrails-detectors component

critical

Critical remediation recipe for A flaw was found in the guardrails-detectors component. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15378disclosed 2026-07-10a.k.a. A flaw was found in the guardrails-detectors component

CVE-2026-20744 - The charging station websocket endpoint accepts connections without proper authentication, which could lead to

critical

Critical remediation recipe for The charging station websocket endpoint accepts connections without proper authentication, which could lead to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20744disclosed 2026-07-10a.k.a. The charging station websocket endpoint accepts connections without proper authentication, which could lead to

CVE-2026-21042 - Out-of-bounds write in libsavsac.so prior to SMR Jul-2026 Release 1 allows local attackers to execute arbitrar

high

High remediation recipe for Out-of-bounds write in libsavsac.so prior to SMR Jul-2026 Release 1 allows local attackers to execute arbitrar. Upgrade to SMR Jul-2026 Release in Android 14, 15, 16 and remove the vulnerable memory-corruption pattern.

cve CVE-2026-21042disclosed 2026-07-10a.k.a. Out-of-bounds write in libsavsac.so prior to SMR Jul-2026 Release 1 allows local attackers to execute arbitrar

CVE-2026-21045 - Out-of-bounds write in parsing TIFF format in libimagecodec.media.quram.so prior to SMR Jul-2026 Release 1 all

high

High remediation recipe for Out-of-bounds write in parsing TIFF format in libimagecodec.media.quram.so prior to SMR Jul-2026 Release 1 all. Upgrade to SMR Jul-2026 Release in Android 14, 15, 16 and remove the vulnerable memory-corruption pattern.

cve CVE-2026-21045disclosed 2026-07-10a.k.a. Out-of-bounds write in parsing TIFF format in libimagecodec.media.quram.so prior to SMR Jul-2026 Release 1 all

CVE-2026-21046 - Time-of-check time-of-use race condition in fabricKeymaster trustlet prior to SMR Jul-2026 Release 1 allows lo

high

High remediation recipe for Time-of-check time-of-use race condition in fabricKeymaster trustlet prior to SMR Jul-2026 Release 1 allows lo. Upgrade to SMR Jul-2026 Release in Android 14, 15, 16 and remove the vulnerable authz pattern.

cve CVE-2026-21046disclosed 2026-07-10a.k.a. Time-of-check time-of-use race condition in fabricKeymaster trustlet prior to SMR Jul-2026 Release 1 allows lo

CVE-2026-21048 - Out-of-bounds write in parsing DNG format in libimagecodec.media.quram.so prior to SMR Jul-2026 Release 1 allo

high

High remediation recipe for Out-of-bounds write in parsing DNG format in libimagecodec.media.quram.so prior to SMR Jul-2026 Release 1 allo. Upgrade to SMR Jul-2026 Release in Android 14, 15, 16 and remove the vulnerable memory-corruption pattern.

cve CVE-2026-21048disclosed 2026-07-10a.k.a. Out-of-bounds write in parsing DNG format in libimagecodec.media.quram.so prior to SMR Jul-2026 Release 1 allo

CVE-2026-21049 - Out-of-bounds write in libpadm.so library prior to SMR Jul-2026 Release 1 allows local attackers to execute ar

high

High remediation recipe for Out-of-bounds write in libpadm.so library prior to SMR Jul-2026 Release 1 allows local attackers to execute ar. Upgrade to SMR Jul-2026 Release in Android 14, 15, 16 and remove the vulnerable memory-corruption pattern.

cve CVE-2026-21049disclosed 2026-07-10a.k.a. Out-of-bounds write in libpadm.so library prior to SMR Jul-2026 Release 1 allows local attackers to execute ar

CVE-2026-21055 - Improper export of android application components in Bixby prior to version 4.0.70.8 allows local attackers to

high

High remediation recipe for Improper export of android application components in Bixby prior to version 4.0.70.8 allows local attackers to. Upgrade to 4.0.70.8 and remove the vulnerable authz pattern.

cve CVE-2026-21055disclosed 2026-07-10a.k.a. Improper export of android application components in Bixby prior to version 4.0.70.8 allows local attackers to

CVE-2026-22659 - FlaskBB through 2.2.0, fixed in commit acc88cf, contains an authorization bypass vulnerability that allows aut

high

High remediation recipe for FlaskBB through 2.2.0, fixed in commit acc88cf, contains an authorization bypass vulnerability that allows aut. Upgrade to fixed in commit acc88cf and remove the vulnerable authz pattern.

cve CVE-2026-22659disclosed 2026-07-10a.k.a. FlaskBB through 2.2.0, fixed in commit acc88cf, contains an authorization bypass vulnerability that allows aut

CVE-2026-22660 - FlaskBB through 2.2.0, fixed in commit a5da9a5, contains a logic flaw vulnerability that allows authenticated

high

High remediation recipe for FlaskBB through 2.2.0, fixed in commit a5da9a5, contains a logic flaw vulnerability that allows authenticated. Upgrade to https://github.com/flaskbb/flaskbb/commit/a5da9a52 and remove the vulnerable authz pattern.

cve CVE-2026-22660disclosed 2026-07-10a.k.a. FlaskBB through 2.2.0, fixed in commit a5da9a5, contains a logic flaw vulnerability that allows authenticated

CVE-2026-2397 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Adam Ret

critical

Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Adam Ret. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-2397disclosed 2026-07-10a.k.a. Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Adam Ret

CVE-2026-2398 - Authorization bypass through User-Controlled key vulnerability in Adam Retail Automation Ltd

high

High remediation recipe for Authorization bypass through User-Controlled key vulnerability in Adam Retail Automation Ltd. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2398disclosed 2026-07-10a.k.a. Authorization bypass through User-Controlled key vulnerability in Adam Retail Automation Ltd

CVE-2026-28564 - Insufficient Session Expiration, Authentication Bypass by Capture-replay vulnerability in Apache IoTDB

critical

Critical remediation recipe for Insufficient Session Expiration, Authentication Bypass by Capture-replay vulnerability in Apache IoTDB. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-28564disclosed 2026-07-10a.k.a. Insufficient Session Expiration, Authentication Bypass by Capture-replay vulnerability in Apache IoTDB

CVE-2026-33382 - Several Grafana API endpoints, some of them unauthenticated, do not limit the size of the request body before

high

High remediation recipe for Several Grafana API endpoints, some of them unauthenticated, do not limit the size of the request body before. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-33382disclosed 2026-07-10a.k.a. Several Grafana API endpoints, some of them unauthenticated, do not limit the size of the request body before

CVE-2026-38057 - The iDirect iQ200 does not validate CSRF tokens on state-changing API endpoints after authentication

high

High remediation recipe for The iDirect iQ200 does not validate CSRF tokens on state-changing API endpoints after authentication. Upgrade to 4.5.2.2 and remove the vulnerable authz pattern.

cve CVE-2026-38057disclosed 2026-07-10a.k.a. The iDirect iQ200 does not validate CSRF tokens on state-changing API endpoints after authentication

CVE-2026-38059 - The iDirect iQ200 exposes the /api/identity and /api/ REST API endpoints without authentication

high

High remediation recipe for The iDirect iQ200 exposes the /api/identity and /api/ REST API endpoints without authentication. Upgrade to 4.5.2.2 and remove the vulnerable authz pattern.

cve CVE-2026-38059disclosed 2026-07-10a.k.a. The iDirect iQ200 exposes the /api/identity and /api/ REST API endpoints without authentication

CVE-2026-39244 - adm-zip before 0.5.18 is vulnerable to denial of service via a crafted ZIP file with a manipulated uncompresse

high

High remediation recipe for adm-zip before 0.5.18 is vulnerable to denial of service via a crafted ZIP file with a manipulated uncompresse. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-39244disclosed 2026-07-10a.k.a. adm-zip before 0.5.18 is vulnerable to denial of service via a crafted ZIP file with a manipulated uncompresse

CVE-2026-40005 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache IoTDB

critical

Critical remediation recipe for Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache IoTDB. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-40005disclosed 2026-07-10a.k.a. Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache IoTDB

CVE-2026-40452 - Incorrect Authorization, Improper Access Control vulnerability in Apache IoTDB

high

High remediation recipe for Incorrect Authorization, Improper Access Control vulnerability in Apache IoTDB. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-40452disclosed 2026-07-10a.k.a. Incorrect Authorization, Improper Access Control vulnerability in Apache IoTDB

CVE-2026-40454 - Out-of-bounds Read, Improper Input Validation vulnerability in Apache IoTDB C++ client

high

High remediation recipe for Out-of-bounds Read, Improper Input Validation vulnerability in Apache IoTDB C++ client. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-40454disclosed 2026-07-10a.k.a. Out-of-bounds Read, Improper Input Validation vulnerability in Apache IoTDB C++ client

CVE-2026-41482 - Frappe is a full-stack web application framework

high

High remediation recipe for Frappe is a full-stack web application framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-41482disclosed 2026-07-10a.k.a. Frappe is a full-stack web application framework

CVE-2026-41876 - R-SOFT DMS is vulnerable to OS Command Injection in konwertujAction() function

high

High remediation recipe for R-SOFT DMS is vulnerable to OS Command Injection in konwertujAction() function. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-41876disclosed 2026-07-10a.k.a. R-SOFT DMS is vulnerable to OS Command Injection in konwertujAction() function

CVE-2026-41878 - R-SOFT DMS is vulnerable to Insecure Direct Object Reference (IDOR) attack in multiple file download endpoints

high

High remediation recipe for R-SOFT DMS is vulnerable to Insecure Direct Object Reference (IDOR) attack in multiple file download endpoints. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-41878disclosed 2026-07-10a.k.a. R-SOFT DMS is vulnerable to Insecure Direct Object Reference (IDOR) attack in multiple file download endpoints

CVE-2026-41879 - R-SOFT DMS stores superadmin credentials using a non-salted nested MD5 hash

high

High remediation recipe for R-SOFT DMS stores superadmin credentials using a non-salted nested MD5 hash. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.

cve CVE-2026-41879disclosed 2026-07-10a.k.a. R-SOFT DMS stores superadmin credentials using a non-salted nested MD5 hash

CVE-2026-41880 - R-SOFT DMS is vulnerable to OS Command Injection in the Optical Character Recognition (OCR) module

critical

Critical remediation recipe for R-SOFT DMS is vulnerable to OS Command Injection in the Optical Character Recognition (OCR) module. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-41880disclosed 2026-07-10a.k.a. R-SOFT DMS is vulnerable to OS Command Injection in the Optical Character Recognition (OCR) module

CVE-2026-42952 - Previously, there was no throttling on repeated authentication attempts to the charging station backend, which

high

High remediation recipe for Previously, there was no throttling on repeated authentication attempts to the charging station backend, which. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-42952disclosed 2026-07-10a.k.a. Previously, there was no throttling on repeated authentication attempts to the charging station backend, which

CVE-2026-44383 - Multiple connections to the backend using the same charging station ID are allowed, which could allow an attac

high

High remediation recipe for Multiple connections to the backend using the same charging station ID are allowed, which could allow an attac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-44383disclosed 2026-07-10a.k.a. Multiple connections to the backend using the same charging station ID are allowed, which could allow an attac

CVE-2026-49213 - TypeBot is a chatbot builder tool. Prior to 3.17.2, Typebot's shared SSRF validator in packages/lib/src/ssrf/v

high

High remediation recipe for TypeBot is a chatbot builder tool. Prior to 3.17.2, Typebot's shared SSRF validator in packages/lib/src/ssrf/v. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-49213disclosed 2026-07-10a.k.a. TypeBot is a chatbot builder tool. Prior to 3.17.2, Typebot's shared SSRF validator in packages/lib/src/ssrf/v

CVE-2026-49394 - Frappe is a full-stack web application framework

high

High remediation recipe for Frappe is a full-stack web application framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-49394disclosed 2026-07-10a.k.a. Frappe is a full-stack web application framework

CVE-2026-51119 - An issue in Invixium IXM WEB v.2.3.85.25 allows an attacker to escalate privileges via the /SystemUsers/Create

critical

Critical remediation recipe for An issue in Invixium IXM WEB v.2.3.85.25 allows an attacker to escalate privileges via the /SystemUsers/Create. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-51119disclosed 2026-07-10a.k.a. An issue in Invixium IXM WEB v.2.3.85.25 allows an attacker to escalate privileges via the /SystemUsers/Create

CVE-2026-52747 - ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx

high

High remediation recipe for ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-52747disclosed 2026-07-10a.k.a. ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx

CVE-2026-53448 - Coturn is a free open source implementation of TURN and STUN Server

high

High remediation recipe for Coturn is a free open source implementation of TURN and STUN Server. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53448disclosed 2026-07-10a.k.a. Coturn is a free open source implementation of TURN and STUN Server

CVE-2026-53450 - Coturn is a free open source implementation of TURN and STUN Server

high

High remediation recipe for Coturn is a free open source implementation of TURN and STUN Server. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53450disclosed 2026-07-10a.k.a. Coturn is a free open source implementation of TURN and STUN Server

CVE-2026-53653 - Grav is a file-based Web platform. Prior to 1.7.53 and 2.0.0-rc.8, Grav allows an unauthenticated visitor to e

high

High remediation recipe for Grav is a file-based Web platform. Prior to 1.7.53 and 2.0.0-rc.8, Grav allows an unauthenticated visitor to e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53653disclosed 2026-07-10a.k.a. Grav is a file-based Web platform. Prior to 1.7.53 and 2.0.0-rc.8, Grav allows an unauthenticated visitor to e

CVE-2026-53657 - Lima launches Linux virtual machines, typically on macOS, for running containerd

high

High remediation recipe for Lima launches Linux virtual machines, typically on macOS, for running containerd. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53657disclosed 2026-07-10a.k.a. Lima launches Linux virtual machines, typically on macOS, for running containerd

CVE-2026-54000 - osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework

high

High remediation recipe for osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54000disclosed 2026-07-10a.k.a. osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework

CVE-2026-54001 - osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework

high

High remediation recipe for osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54001disclosed 2026-07-10a.k.a. osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework

CVE-2026-54423 - In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management i

high

High remediation recipe for In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54423disclosed 2026-07-10a.k.a. In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management i

CVE-2026-54469 - Dell Unisphere for PowerMax, version(s) 10.3.0.5 and prior, contain(s) a Deserialization of Untrusted Data vul

high

High remediation recipe for Dell Unisphere for PowerMax, version(s) 10.3.0.5 and prior, contain(s) a Deserialization of Untrusted Data vul. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-54469disclosed 2026-07-10a.k.a. Dell Unisphere for PowerMax, version(s) 10.3.0.5 and prior, contain(s) a Deserialization of Untrusted Data vul

CVE-2026-55175 - Spinnaker is an open source, multi-cloud continuous delivery platform

high

High remediation recipe for Spinnaker is an open source, multi-cloud continuous delivery platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-55175disclosed 2026-07-10a.k.a. Spinnaker is an open source, multi-cloud continuous delivery platform

CVE-2026-55213 - h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3

high

High remediation recipe for h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55213disclosed 2026-07-10a.k.a. h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3

CVE-2026-55233 - OpenResty is a high performance web platform

high

High remediation recipe for OpenResty is a high performance web platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55233disclosed 2026-07-10a.k.a. OpenResty is a high performance web platform

CVE-2026-55377 - Logto is the modern, open-source auth infrastructure for SaaS and AI apps

high

High remediation recipe for Logto is the modern, open-source auth infrastructure for SaaS and AI apps. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-55377disclosed 2026-07-10a.k.a. Logto is the modern, open-source auth infrastructure for SaaS and AI apps

CVE-2026-55460 - Snipe-IT is an IT asset/license management system

high

High remediation recipe for Snipe-IT is an IT asset/license management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55460disclosed 2026-07-10a.k.a. Snipe-IT is an IT asset/license management system

CVE-2026-55474 - Snipe-IT is an IT asset/license management system

high

High remediation recipe for Snipe-IT is an IT asset/license management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55474disclosed 2026-07-10a.k.a. Snipe-IT is an IT asset/license management system

CVE-2026-55500 - 9Router is an AI router & token saver. Prior to 0.4.80, the /api/settings/database endpoint allows full databa

critical

Critical remediation recipe for 9Router is an AI router & token saver. Prior to 0.4.80, the /api/settings/database endpoint allows full databa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.

cve CVE-2026-55500disclosed 2026-07-10a.k.a. 9Router is an AI router & token saver. Prior to 0.4.80, the /api/settings/database endpoint allows full databa

CVE-2026-55501 - 9Router is an AI router & token saver. Prior to 0.4.80, the dashboard login rate limiter in src/lib/auth/login

high

High remediation recipe for 9Router is an AI router & token saver. Prior to 0.4.80, the dashboard login rate limiter in src/lib/auth/login. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55501disclosed 2026-07-10a.k.a. 9Router is an AI router & token saver. Prior to 0.4.80, the dashboard login rate limiter in src/lib/auth/login

CVE-2026-55516 - Snipe-IT is an IT asset/license management system

high

High remediation recipe for Snipe-IT is an IT asset/license management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55516disclosed 2026-07-10a.k.a. Snipe-IT is an IT asset/license management system

CVE-2026-55638 - 9Router is an AI router & token saver. Prior to 0.5.2, 9router protects /v1, /v1beta, /api/v1, and /api/v1beta

high

High remediation recipe for 9Router is an AI router & token saver. Prior to 0.5.2, 9router protects /v1, /v1beta, /api/v1, and /api/v1beta. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55638disclosed 2026-07-10a.k.a. 9Router is an AI router & token saver. Prior to 0.5.2, 9router protects /v1, /v1beta, /api/v1, and /api/v1beta

CVE-2026-55641 - 9Router is an AI router & token saver. Prior to 0.5.2, 9router determines whether a /v1 LLM proxy request is l

high

High remediation recipe for 9Router is an AI router & token saver. Prior to 0.5.2, 9router determines whether a /v1 LLM proxy request is l. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55641disclosed 2026-07-10a.k.a. 9Router is an AI router & token saver. Prior to 0.5.2, 9router determines whether a /v1 LLM proxy request is l

CVE-2026-55672 - ZITADEL is an open source identity management platform

high

High remediation recipe for ZITADEL is an open source identity management platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-55672disclosed 2026-07-10a.k.a. ZITADEL is an open source identity management platform

CVE-2026-55687 - ESF-IDF is the Espressif Internet of Things (IOT) Development Framework

high

High remediation recipe for ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55687disclosed 2026-07-10a.k.a. ESF-IDF is the Espressif Internet of Things (IOT) Development Framework

CVE-2026-55789 - Logto is the modern, open-source auth infrastructure for SaaS and AI apps

high

High remediation recipe for Logto is the modern, open-source auth infrastructure for SaaS and AI apps. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-55789disclosed 2026-07-10a.k.a. Logto is the modern, open-source auth infrastructure for SaaS and AI apps

CVE-2026-55827 - FreeRDP is a free implementation of the Remote Desktop Protocol

high

High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55827disclosed 2026-07-10a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-55843 - Snipe-IT is an IT asset/license management system

high

High remediation recipe for Snipe-IT is an IT asset/license management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55843disclosed 2026-07-10a.k.a. Snipe-IT is an IT asset/license management system

CVE-2026-55852 - Frappe is a full-stack web application framework

high

High remediation recipe for Frappe is a full-stack web application framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55852disclosed 2026-07-10a.k.a. Frappe is a full-stack web application framework

CVE-2026-55879 - OpenReplay is a self-hosted session replay suite

critical

Critical remediation recipe for OpenReplay is a self-hosted session replay suite. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55879disclosed 2026-07-10a.k.a. OpenReplay is a self-hosted session replay suite

CVE-2026-55880 - OpenReplay is a self-hosted session replay suite

high

High remediation recipe for OpenReplay is a self-hosted session replay suite. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55880disclosed 2026-07-10a.k.a. OpenReplay is a self-hosted session replay suite

CVE-2026-55881 - OpenReplay is a self-hosted session replay suite

high

High remediation recipe for OpenReplay is a self-hosted session replay suite. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55881disclosed 2026-07-10a.k.a. OpenReplay is a self-hosted session replay suite

CVE-2026-55883 - Tilt defines dev environments as code for microservice apps on Kubernetes

high

High remediation recipe for Tilt defines dev environments as code for microservice apps on Kubernetes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55883disclosed 2026-07-10a.k.a. Tilt defines dev environments as code for microservice apps on Kubernetes

CVE-2026-55884 - Tilt defines dev environments as code for microservice apps on Kubernetes

critical

Critical remediation recipe for Tilt defines dev environments as code for microservice apps on Kubernetes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55884disclosed 2026-07-10a.k.a. Tilt defines dev environments as code for microservice apps on Kubernetes

CVE-2026-56291 - Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability

highKEV

High remediation recipe for Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability. Upgrade to Apply mitigations or fixed release per vendor/CISA KEV instructions and remove the vulnerable unsafe-upload pattern.

cve CVE-2026-56291disclosed 2026-07-10a.k.a. Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability

CVE-2026-56668 - ZITADEL is an open source identity management platform

high

High remediation recipe for ZITADEL is an open source identity management platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56668disclosed 2026-07-10a.k.a. ZITADEL is an open source identity management platform

CVE-2026-56675 - 9Router is an AI router & token saver. Prior to 0.5.2, 9router treats loopback requests as trusted and allows

high

High remediation recipe for 9Router is an AI router & token saver. Prior to 0.5.2, 9router treats loopback requests as trusted and allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56675disclosed 2026-07-10a.k.a. 9Router is an AI router & token saver. Prior to 0.5.2, 9router treats loopback requests as trusted and allows

CVE-2026-56676 - 9Router is an AI router & token saver. Prior to 0.5.2, 9router validates image URLs by resolving the host befo

high

High remediation recipe for 9Router is an AI router & token saver. Prior to 0.5.2, 9router validates image URLs by resolving the host befo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56676disclosed 2026-07-10a.k.a. 9Router is an AI router & token saver. Prior to 0.5.2, 9router validates image URLs by resolving the host befo

CVE-2026-56688 - Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us

critical

Critical remediation recipe for Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56688disclosed 2026-07-10a.k.a. Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us

CVE-2026-56689 - Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us

high

High remediation recipe for Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-56689disclosed 2026-07-10a.k.a. Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us

CVE-2026-56690 - Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us

high

High remediation recipe for Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-56690disclosed 2026-07-10a.k.a. Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us

CVE-2026-56765 - Vikunja before 2.2.1 contains an authorization flaw where the LinkSharing.ReadAll endpoint exposes share hashe

critical

Critical remediation recipe for Vikunja before 2.2.1 contains an authorization flaw where the LinkSharing.ReadAll endpoint exposes share hashe. Upgrade to 2.2.1 and remove the vulnerable authz pattern.

cve CVE-2026-56765disclosed 2026-07-10a.k.a. Vikunja before 2.2.1 contains an authorization flaw where the LinkSharing.ReadAll endpoint exposes share hashe

CVE-2026-57156 - FreeRDP is a free implementation of the Remote Desktop Protocol

high

High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57156disclosed 2026-07-10a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-57212 - RabbitMQ is a messaging and streaming broker

high

High remediation recipe for RabbitMQ is a messaging and streaming broker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57212disclosed 2026-07-10a.k.a. RabbitMQ is a messaging and streaming broker

CVE-2026-57215 - RabbitMQ is a messaging and streaming broker

high

High remediation recipe for RabbitMQ is a messaging and streaming broker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57215disclosed 2026-07-10a.k.a. RabbitMQ is a messaging and streaming broker

CVE-2026-57217 - RabbitMQ is a messaging and streaming broker

high

High remediation recipe for RabbitMQ is a messaging and streaming broker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57217disclosed 2026-07-10a.k.a. RabbitMQ is a messaging and streaming broker

CVE-2026-57219 - RabbitMQ is a messaging and streaming broker

high

High remediation recipe for RabbitMQ is a messaging and streaming broker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57219disclosed 2026-07-10a.k.a. RabbitMQ is a messaging and streaming broker

CVE-2026-57220 - RabbitMQ is a messaging and streaming broker

high

High remediation recipe for RabbitMQ is a messaging and streaming broker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57220disclosed 2026-07-10a.k.a. RabbitMQ is a messaging and streaming broker

CVE-2026-57574 - Misskey is an open source, federated social media platform

high

High remediation recipe for Misskey is an open source, federated social media platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-57574disclosed 2026-07-10a.k.a. Misskey is an open source, federated social media platform

CVE-2026-57807 - Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOrange Security Software Pvt Ltd

critical

Critical remediation recipe for Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOrange Security Software Pvt Ltd. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-57807disclosed 2026-07-10a.k.a. Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOrange Security Software Pvt Ltd

CVE-2026-57850 - RustDesk before 1.4.9 does not enforce a session's authorized connection scope on the server side, so a peer g

high

High remediation recipe for RustDesk before 1.4.9 does not enforce a session's authorized connection scope on the server side, so a peer g. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-57850disclosed 2026-07-10a.k.a. RustDesk before 1.4.9 does not enforce a session's authorized connection scope on the server side, so a peer g

CVE-2026-5801 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Semtek I

critical

Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Semtek I. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-5801disclosed 2026-07-10a.k.a. Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Semtek I

CVE-2026-58492 - grav-plugin-database is the database plugin for Grav CMS

critical

Critical remediation recipe for grav-plugin-database is the database plugin for Grav CMS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58492disclosed 2026-07-10a.k.a. grav-plugin-database is the database plugin for Grav CMS

CVE-2026-58499 - EverOS is a memory runtime for agents. Prior to 1.0.1, EverOS is vulnerable to path traversal in the POST /api

high

High remediation recipe for EverOS is a memory runtime for agents. Prior to 1.0.1, EverOS is vulnerable to path traversal in the POST /api. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-58499disclosed 2026-07-10a.k.a. EverOS is a memory runtime for agents. Prior to 1.0.1, EverOS is vulnerable to path traversal in the POST /api

CVE-2026-59151 - Prowler is a cloud security platform. Prior to 5.30.3, Prowler's SAML authentication flow trusted the email do

critical

Critical remediation recipe for Prowler is a cloud security platform. Prior to 5.30.3, Prowler's SAML authentication flow trusted the email do. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59151disclosed 2026-07-10a.k.a. Prowler is a cloud security platform. Prior to 5.30.3, Prowler's SAML authentication flow trusted the email do

CVE-2026-59190 - grav-plugin-admin is an HTML user interface that provides a way to configure Grav and create and modify pages

high

High remediation recipe for grav-plugin-admin is an HTML user interface that provides a way to configure Grav and create and modify pages. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59190disclosed 2026-07-10a.k.a. grav-plugin-admin is an HTML user interface that provides a way to configure Grav and create and modify pages

CVE-2026-59792 - In JetBrains IntelliJ IDEA before 2026.1.4, 2026.2 code execution via path traversal in project workspace ID h

critical

Critical remediation recipe for In JetBrains IntelliJ IDEA before 2026.1.4, 2026.2 code execution via path traversal in project workspace ID h. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-59792disclosed 2026-07-10a.k.a. In JetBrains IntelliJ IDEA before 2026.1.4, 2026.2 code execution via path traversal in project workspace ID h

CVE-2026-59793 - In JetBrains TeamCity before 2026.1.2 arbitrary file access was possible via the Perforce VCS integration

high

High remediation recipe for In JetBrains TeamCity before 2026.1.2 arbitrary file access was possible via the Perforce VCS integration. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59793disclosed 2026-07-10a.k.a. In JetBrains TeamCity before 2026.1.2 arbitrary file access was possible via the Perforce VCS integration

CVE-2026-59794 - In JetBrains TeamCity before 2026.1.2 stored XSS on the cloud profile page was possible via agent-reported dat

high

High remediation recipe for In JetBrains TeamCity before 2026.1.2 stored XSS on the cloud profile page was possible via agent-reported dat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-59794disclosed 2026-07-10a.k.a. In JetBrains TeamCity before 2026.1.2 stored XSS on the cloud profile page was possible via agent-reported dat

CVE-2026-59795 - In JetBrains TeamCity before 2026.1.2 stored XSS via unauthenticated agent registration was possible

high

High remediation recipe for In JetBrains TeamCity before 2026.1.2 stored XSS via unauthenticated agent registration was possible. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-59795disclosed 2026-07-10a.k.a. In JetBrains TeamCity before 2026.1.2 stored XSS via unauthenticated agent registration was possible

CVE-2026-61434 - PraisonAI versions before 4.6.78 contain an allowlist bypass vulnerability in shell command execution that all

high

High remediation recipe for PraisonAI versions before 4.6.78 contain an allowlist bypass vulnerability in shell command execution that all. Upgrade to 4.6.78 and remove the vulnerable command-injection pattern.

cve CVE-2026-61434disclosed 2026-07-10a.k.a. PraisonAI versions before 4.6.78 contain an allowlist bypass vulnerability in shell command execution that all

CVE-2026-61441 - PraisonAI Platform (praisonai-platform) before 0.1.9 improperly authorizes deletion of issue dependencies

high

High remediation recipe for PraisonAI Platform (praisonai-platform) before 0.1.9 improperly authorizes deletion of issue dependencies. Upgrade to 0.1.9 and remove the vulnerable authz pattern.

cve CVE-2026-61441disclosed 2026-07-10a.k.a. PraisonAI Platform (praisonai-platform) before 0.1.9 improperly authorizes deletion of issue dependencies

CVE-2026-61455 - Grav before 2.0.1 contains a decompression bomb vulnerability in ZipArchiver::extract() that lacks limits on u

high

High remediation recipe for Grav before 2.0.1 contains a decompression bomb vulnerability in ZipArchiver::extract() that lacks limits on u. Upgrade to 2.0.1 and remove the vulnerable authz pattern.

cve CVE-2026-61455disclosed 2026-07-10a.k.a. Grav before 2.0.1 contains a decompression bomb vulnerability in ZipArchiver::extract() that lacks limits on u

CVE-2026-61459 - MCP Server Kubernetes before 3.9.0 contains an argument injection vulnerability in structured tools (kubectl_g

critical

Critical remediation recipe for MCP Server Kubernetes before 3.9.0 contains an argument injection vulnerability in structured tools (kubectl_g. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-61459disclosed 2026-07-10a.k.a. MCP Server Kubernetes before 3.9.0 contains an argument injection vulnerability in structured tools (kubectl_g

CVE-2026-61460 - Krayin CRM through 2.2.3 contains an insecure direct object reference vulnerability in LeadController, PersonC

high

High remediation recipe for Krayin CRM through 2.2.3 contains an insecure direct object reference vulnerability in LeadController, PersonC. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-61460disclosed 2026-07-10a.k.a. Krayin CRM through 2.2.3 contains an insecure direct object reference vulnerability in LeadController, PersonC

CVE-2026-61461 - Dify before 1.16.0-rc1 contains a SQL injection vulnerability in the MyScale vector store backend that allows

high

High remediation recipe for Dify before 1.16.0-rc1 contains a SQL injection vulnerability in the MyScale vector store backend that allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-61461disclosed 2026-07-10a.k.a. Dify before 1.16.0-rc1 contains a SQL injection vulnerability in the MyScale vector store backend that allows

CVE-2026-6212 - Authorization bypass through User-Controlled key vulnerability in Teracity Software Technologies Inc

high

High remediation recipe for Authorization bypass through User-Controlled key vulnerability in Teracity Software Technologies Inc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-6212disclosed 2026-07-10a.k.a. Authorization bypass through User-Controlled key vulnerability in Teracity Software Technologies Inc

CVE-2025-27462 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

critical

Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-27462disclosed 2026-07-09a.k.a. [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

CVE-2025-27463 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

critical

Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-27463disclosed 2026-07-09a.k.a. [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

CVE-2025-27464 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

critical

Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-27464disclosed 2026-07-09a.k.a. [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

CVE-2025-45422 - Incorrect access control in Proximus b-box v8c.725A allows authenticated attackers to bypass normal restrictio

high

High remediation recipe for Incorrect access control in Proximus b-box v8c.725A allows authenticated attackers to bypass normal restrictio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-45422disclosed 2026-07-09a.k.a. Incorrect access control in Proximus b-box v8c.725A allows authenticated attackers to bypass normal restrictio

CVE-2025-58146 - There are multiple issues. 1. Updates to the XAPI database sanitise input strings, but try generating the noti

critical

Critical remediation recipe for There are multiple issues. 1. Updates to the XAPI database sanitise input strings, but try generating the noti. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-58146disclosed 2026-07-09a.k.a. There are multiple issues. 1. Updates to the XAPI database sanitise input strings, but try generating the noti

CVE-2025-58151 - varstored is a component of the Xapi toolstack handling UEFI Variables for a VM

critical

Critical remediation recipe for varstored is a component of the Xapi toolstack handling UEFI Variables for a VM. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-58151disclosed 2026-07-09a.k.a. varstored is a component of the Xapi toolstack handling UEFI Variables for a VM

CVE-2025-63579 - Unauthorized use of Kyocera printers, allows all information stored in the Kyocera address book to be exported

high

High remediation recipe for Unauthorized use of Kyocera printers, allows all information stored in the Kyocera address book to be exported. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-63579disclosed 2026-07-09a.k.a. Unauthorized use of Kyocera printers, allows all information stored in the Kyocera address book to be exported

CVE-2026-12593 - The implementation of an internal and undocumented Dashboard API endpoint (POST /api/users/~/{user}/tokens) fo

high

High remediation recipe for The implementation of an internal and undocumented Dashboard API endpoint (POST /api/users/~/{user}/tokens) fo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-12593disclosed 2026-07-09a.k.a. The implementation of an internal and undocumented Dashboard API endpoint (POST /api/users/~/{user}/tokens) fo

CVE-2026-13462 - PayRange Android app, version 7.0.7 and below, contains an SSL bypass vulnerability that allows invalid certif

high

High remediation recipe for PayRange Android app, version 7.0.7 and below, contains an SSL bypass vulnerability that allows invalid certif. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-13462disclosed 2026-07-09a.k.a. PayRange Android app, version 7.0.7 and below, contains an SSL bypass vulnerability that allows invalid certif

CVE-2026-14261 - A vulnerability in the Xerte Online Tools allows for authentication bypass and remote code execution via reins

critical

Critical remediation recipe for A vulnerability in the Xerte Online Tools allows for authentication bypass and remote code execution via reins. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-14261disclosed 2026-07-09a.k.a. A vulnerability in the Xerte Online Tools allows for authentication bypass and remote code execution via reins

CVE-2026-15270 - A weakness has been identified in D-link DIR-823G 1.0.2B05_20181207

high

High remediation recipe for A weakness has been identified in D-link DIR-823G 1.0.2B05_20181207. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15270disclosed 2026-07-09a.k.a. A weakness has been identified in D-link DIR-823G 1.0.2B05_20181207

CVE-2026-15271 - A security vulnerability has been detected in TOTOLINK A3000RU, A3100R, A950RG, AC1200T10, CP450, CS185R_T10 a

high

High remediation recipe for A security vulnerability has been detected in TOTOLINK A3000RU, A3100R, A950RG, AC1200T10, CP450, CS185R_T10 a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15271disclosed 2026-07-09a.k.a. A security vulnerability has been detected in TOTOLINK A3000RU, A3100R, A950RG, AC1200T10, CP450, CS185R_T10 a

CVE-2026-15308 - The incremental HTML parser (html.parser.HTMLParser) allows for CPU denial-of-service through repeated untermi

high

High remediation recipe for The incremental HTML parser (html.parser.HTMLParser) allows for CPU denial-of-service through repeated untermi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15308disclosed 2026-07-09a.k.a. The incremental HTML parser (html.parser.HTMLParser) allows for CPU denial-of-service through repeated untermi

CVE-2026-1989 - Authorization bypass through User-Controlled key vulnerability in PAVO Financial Technology Solutions Inc

high

High remediation recipe for Authorization bypass through User-Controlled key vulnerability in PAVO Financial Technology Solutions Inc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-1989disclosed 2026-07-09a.k.a. Authorization bypass through User-Controlled key vulnerability in PAVO Financial Technology Solutions Inc

CVE-2026-2342 - Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in OceanicS

critical

Critical remediation recipe for Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in OceanicS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-2342disclosed 2026-07-09a.k.a. Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in OceanicS

CVE-2026-23556 - When oxenstored is tearing a domain down, the node data is cleaned up but the usage counts are leaked

critical

Critical remediation recipe for When oxenstored is tearing a domain down, the node data is cleaned up but the usage counts are leaked. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-23556disclosed 2026-07-09a.k.a. When oxenstored is tearing a domain down, the node data is cleaned up but the usage counts are leaked

CVE-2026-23559 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

critical

Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-23559disclosed 2026-07-09a.k.a. [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

CVE-2026-23560 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

critical

Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-23560disclosed 2026-07-09a.k.a. [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

CVE-2026-23561 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

critical

Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-23561disclosed 2026-07-09a.k.a. [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

CVE-2026-23562 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

critical

Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-23562disclosed 2026-07-09a.k.a. [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

CVE-2026-31984 - A denial-of-service vulnerability caused by unbounded resource allocation was discovered in the audit logging

high

High remediation recipe for A denial-of-service vulnerability caused by unbounded resource allocation was discovered in the audit logging. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-31984disclosed 2026-07-09a.k.a. A denial-of-service vulnerability caused by unbounded resource allocation was discovered in the audit logging

CVE-2026-33390 - An Incorrect Privilege Assignment vulnerability was discovered in the synchronization functionality due to Arc

high

High remediation recipe for An Incorrect Privilege Assignment vulnerability was discovered in the synchronization functionality due to Arc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-33390disclosed 2026-07-09a.k.a. An Incorrect Privilege Assignment vulnerability was discovered in the synchronization functionality due to Arc

CVE-2026-38076 - An integer overflow in the jbig2_arith_iaid_ctx_new() function of Artifex commit cc37d0 allows attackers to ca

high

High remediation recipe for An integer overflow in the jbig2_arith_iaid_ctx_new() function of Artifex commit cc37d0 allows attackers to ca. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-38076disclosed 2026-07-09a.k.a. An integer overflow in the jbig2_arith_iaid_ctx_new() function of Artifex commit cc37d0 allows attackers to ca

CVE-2026-39246 - decompress before 4.2.2 allows arbitrary symlink creation during archive extraction

high

High remediation recipe for decompress before 4.2.2 allows arbitrary symlink creation during archive extraction. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-39246disclosed 2026-07-09a.k.a. decompress before 4.2.2 allows arbitrary symlink creation during archive extraction

CVE-2026-41857 - A compromised or malicious BOSH Director can execute arbitrary shell commands on the operator's workstation wh

high

High remediation recipe for A compromised or malicious BOSH Director can execute arbitrary shell commands on the operator's workstation wh. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-41857disclosed 2026-07-09a.k.a. A compromised or malicious BOSH Director can execute arbitrary shell commands on the operator's workstation wh

CVE-2026-42486 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

critical

Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-42486disclosed 2026-07-09a.k.a. [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp

CVE-2026-4256 - Improper neutralization of special elements used in an LDAP query ('LDAP injection') vulnerability in PEAKUP T

high

High remediation recipe for Improper neutralization of special elements used in an LDAP query ('LDAP injection') vulnerability in PEAKUP T. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-4256disclosed 2026-07-09a.k.a. Improper neutralization of special elements used in an LDAP query ('LDAP injection') vulnerability in PEAKUP T

CVE-2026-44787 - Discourse is an open-source discussion platform

high

High remediation recipe for Discourse is an open-source discussion platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-44787disclosed 2026-07-09a.k.a. Discourse is an open-source discussion platform

CVE-2026-47826 - The blobs.yml path key traversal vulnerability in the BOSH CLI tool allows an attacker to write arbitrary file

high

High remediation recipe for The blobs.yml path key traversal vulnerability in the BOSH CLI tool allows an attacker to write arbitrary file. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-47826disclosed 2026-07-09a.k.a. The blobs.yml path key traversal vulnerability in the BOSH CLI tool allows an attacker to write arbitrary file

CVE-2026-47829 - Argument Injection in bosh-cli allows a compromised BOSH Director to inject arbitrary OpenSSH options into the

high

High remediation recipe for Argument Injection in bosh-cli allows a compromised BOSH Director to inject arbitrary OpenSSH options into the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-47829disclosed 2026-07-09a.k.a. Argument Injection in bosh-cli allows a compromised BOSH Director to inject arbitrary OpenSSH options into the

CVE-2026-47830 - Incorrect Permission Assignment in BOSH.Utils.psm1 in BOSH-Ecosystem bosh-windows-stemcell-builder allows low-

high

High remediation recipe for Incorrect Permission Assignment in BOSH.Utils.psm1 in BOSH-Ecosystem bosh-windows-stemcell-builder allows low-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-47830disclosed 2026-07-09a.k.a. Incorrect Permission Assignment in BOSH.Utils.psm1 in BOSH-Ecosystem bosh-windows-stemcell-builder allows low-

CVE-2026-47831 - Use of a cryptographically weak random number generator in the GenerateRandomPassword function in bosh-windows

high

High remediation recipe for Use of a cryptographically weak random number generator in the GenerateRandomPassword function in bosh-windows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-47831disclosed 2026-07-09a.k.a. Use of a cryptographically weak random number generator in the GenerateRandomPassword function in bosh-windows

CVE-2026-49276 - Kirby is an open-source content management system

high

High remediation recipe for Kirby is an open-source content management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-49276disclosed 2026-07-09a.k.a. Kirby is an open-source content management system

CVE-2026-50180 - Langroid is a framework for building large-language-model-powered applications

high

High remediation recipe for Langroid is a framework for building large-language-model-powered applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50180disclosed 2026-07-09a.k.a. Langroid is a framework for building large-language-model-powered applications

CVE-2026-50181 - Langroid is a framework for building large-language-model-powered applications

high

High remediation recipe for Langroid is a framework for building large-language-model-powered applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50181disclosed 2026-07-09a.k.a. Langroid is a framework for building large-language-model-powered applications

CVE-2026-50644 - SOPlanning is vulnerable to SQL injection in the audit retention configuration

high

High remediation recipe for SOPlanning is vulnerable to SQL injection in the audit retention configuration. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-50644disclosed 2026-07-09a.k.a. SOPlanning is vulnerable to SQL injection in the audit retention configuration

CVE-2026-51597 - MERCURY MIPC252W IP camera v1.0.5 Build 230306 Rel.79931n does not implement nonce expiration in RTSP Digest a

critical

Critical remediation recipe for MERCURY MIPC252W IP camera v1.0.5 Build 230306 Rel.79931n does not implement nonce expiration in RTSP Digest a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-51597disclosed 2026-07-09a.k.a. MERCURY MIPC252W IP camera v1.0.5 Build 230306 Rel.79931n does not implement nonce expiration in RTSP Digest a

CVE-2026-51599 - An insufficient input validation vulnerability in the RTSP service of MERCURY MIPC252W v1.0.5 Build 230306 Rel

critical

Critical remediation recipe for An insufficient input validation vulnerability in the RTSP service of MERCURY MIPC252W v1.0.5 Build 230306 Rel. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-51599disclosed 2026-07-09a.k.a. An insufficient input validation vulnerability in the RTSP service of MERCURY MIPC252W v1.0.5 Build 230306 Rel

CVE-2026-51600 - Tenda CP3 V3.0 firmware V31.1.9.91 does not validate the Content-Length header field in RTSP requests (includi

high

High remediation recipe for Tenda CP3 V3.0 firmware V31.1.9.91 does not validate the Content-Length header field in RTSP requests (includi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-51600disclosed 2026-07-09a.k.a. Tenda CP3 V3.0 firmware V31.1.9.91 does not validate the Content-Length header field in RTSP requests (includi

CVE-2026-51601 - Tenda CP3 V3.0 firmware V31.1.9.91 contains a stack-based buffer overflow in the RTSP service

high

High remediation recipe for Tenda CP3 V3.0 firmware V31.1.9.91 contains a stack-based buffer overflow in the RTSP service. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-51601disclosed 2026-07-09a.k.a. Tenda CP3 V3.0 firmware V31.1.9.91 contains a stack-based buffer overflow in the RTSP service

CVE-2026-51602 - A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows

high

High remediation recipe for A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-51602disclosed 2026-07-09a.k.a. A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows

CVE-2026-51603 - A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows

high

High remediation recipe for A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-51603disclosed 2026-07-09a.k.a. A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows

CVE-2026-51604 - A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows

high

High remediation recipe for A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-51604disclosed 2026-07-09a.k.a. A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows

CVE-2026-51605 - A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.991) allow

high

High remediation recipe for A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.991) allow. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-51605disclosed 2026-07-09a.k.a. A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.991) allow

CVE-2026-51606 - An improper input handling vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) causes th

high

High remediation recipe for An improper input handling vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) causes th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-51606disclosed 2026-07-09a.k.a. An improper input handling vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) causes th

CVE-2026-51923 - An Insecure Direct Object Reference (IDOR) vulnerability exists in docuForm GmbH Client v.11.11c allowing a re

high

High remediation recipe for An Insecure Direct Object Reference (IDOR) vulnerability exists in docuForm GmbH Client v.11.11c allowing a re. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-51923disclosed 2026-07-09a.k.a. An Insecure Direct Object Reference (IDOR) vulnerability exists in docuForm GmbH Client v.11.11c allowing a re

CVE-2026-53963 - Discourse is an open-source discussion platform

high

High remediation recipe for Discourse is an open-source discussion platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53963disclosed 2026-07-09a.k.a. Discourse is an open-source discussion platform

CVE-2026-53987 - The Tag plugin for GLPI 11 before 2.14.4 stores the tag name without HTML sanitization and renders it into the

high

High remediation recipe for The Tag plugin for GLPI 11 before 2.14.4 stores the tag name without HTML sanitization and renders it into the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-53987disclosed 2026-07-09a.k.a. The Tag plugin for GLPI 11 before 2.14.4 stores the tag name without HTML sanitization and renders it into the

CVE-2026-54002 - Kirby is an open-source content management system

high

High remediation recipe for Kirby is an open-source content management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-54002disclosed 2026-07-09a.k.a. Kirby is an open-source content management system

CVE-2026-54003 - Kirby is an open-source content management system

critical

Critical remediation recipe for Kirby is an open-source content management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-54003disclosed 2026-07-09a.k.a. Kirby is an open-source content management system

CVE-2026-54005 - Kirby is an open-source content management system

high

High remediation recipe for Kirby is an open-source content management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-54005disclosed 2026-07-09a.k.a. Kirby is an open-source content management system

CVE-2026-54760 - Langroid is a framework for building large-language-model-powered applications

critical

Critical remediation recipe for Langroid is a framework for building large-language-model-powered applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54760disclosed 2026-07-09a.k.a. Langroid is a framework for building large-language-model-powered applications

CVE-2026-54771 - Langroid is a framework for building large-language-model-powered applications

high

High remediation recipe for Langroid is a framework for building large-language-model-powered applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54771disclosed 2026-07-09a.k.a. Langroid is a framework for building large-language-model-powered applications

CVE-2026-54801 - A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V26.20), SICORE

high

High remediation recipe for A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V26.20), SICORE. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54801disclosed 2026-07-09a.k.a. A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V26.20), SICORE

CVE-2026-55207 - Pimcore is an Open Source Data & Experience Management Platform

high

High remediation recipe for Pimcore is an Open Source Data & Experience Management Platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-55207disclosed 2026-07-09a.k.a. Pimcore is an Open Source Data & Experience Management Platform

CVE-2026-55208 - Pimcore Studio Backend Bundle is the backend bundle for Pimcore Studio

high

High remediation recipe for Pimcore Studio Backend Bundle is the backend bundle for Pimcore Studio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55208disclosed 2026-07-09a.k.a. Pimcore Studio Backend Bundle is the backend bundle for Pimcore Studio

CVE-2026-55420 - Discourse is an open-source discussion platform

high

High remediation recipe for Discourse is an open-source discussion platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-55420disclosed 2026-07-09a.k.a. Discourse is an open-source discussion platform

CVE-2026-55604 - DeepSeek MCP Server is an MCP server for DeepSeek V4

high

High remediation recipe for DeepSeek MCP Server is an MCP server for DeepSeek V4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.

cve CVE-2026-55604disclosed 2026-07-09a.k.a. DeepSeek MCP Server is an MCP server for DeepSeek V4

CVE-2026-55615 - Langroid is a framework for building large-language-model-powered applications

critical

Critical remediation recipe for Langroid is a framework for building large-language-model-powered applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55615disclosed 2026-07-09a.k.a. Langroid is a framework for building large-language-model-powered applications

CVE-2026-56292 - A SQLi vulnerability in AcyMailing component < 10.11.1 for Joomla was discovered

high

High remediation recipe for A SQLi vulnerability in AcyMailing component < 10.11.1 for Joomla was discovered. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-56292disclosed 2026-07-09a.k.a. A SQLi vulnerability in AcyMailing component < 10.11.1 for Joomla was discovered

CVE-2026-57023 - An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Network

high

High remediation recipe for An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Network. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-57023disclosed 2026-07-09a.k.a. An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Network

CVE-2026-57026 - An Improper Validation of Syntactic Correctness of Input vulnerability in the SIP plugin of Juniper Networks J

high

High remediation recipe for An Improper Validation of Syntactic Correctness of Input vulnerability in the SIP plugin of Juniper Networks J. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57026disclosed 2026-07-09a.k.a. An Improper Validation of Syntactic Correctness of Input vulnerability in the SIP plugin of Juniper Networks J

CVE-2026-57028 - An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos

high

High remediation recipe for An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57028disclosed 2026-07-09a.k.a. An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos

CVE-2026-57111 - Permissive Cross-Origin Resource Sharing (CORS) in the REST API (helix-rest, org.apache.helix.rest.server.filt

high

High remediation recipe for Permissive Cross-Origin Resource Sharing (CORS) in the REST API (helix-rest, org.apache.helix.rest.server.filt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-57111disclosed 2026-07-09a.k.a. Permissive Cross-Origin Resource Sharing (CORS) in the REST API (helix-rest, org.apache.helix.rest.server.filt

CVE-2026-58122 - Hermes WebUI before 0.51.307 contains an authentication bypass vulnerability that allows unauthenticated remot

critical

Critical remediation recipe for Hermes WebUI before 0.51.307 contains an authentication bypass vulnerability that allows unauthenticated remot. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-58122disclosed 2026-07-09a.k.a. Hermes WebUI before 0.51.307 contains an authentication bypass vulnerability that allows unauthenticated remot

CVE-2026-58123 - Hermes WebUI before 0.51.788 contains an unauthenticated remote code execution vulnerability that allows remot

critical

Critical remediation recipe for Hermes WebUI before 0.51.788 contains an unauthenticated remote code execution vulnerability that allows remot. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.

cve CVE-2026-58123disclosed 2026-07-09a.k.a. Hermes WebUI before 0.51.788 contains an unauthenticated remote code execution vulnerability that allows remot

CVE-2026-58378 - Allwinner H616 TV Box TV98 has ADB enabled and exposed to the network on production

high

High remediation recipe for Allwinner H616 TV Box TV98 has ADB enabled and exposed to the network on production. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58378disclosed 2026-07-09a.k.a. Allwinner H616 TV Box TV98 has ADB enabled and exposed to the network on production

CVE-2026-58459 - gpsd through release-3.27.5, fixed at commit 4c06658, contains a command injection vulnerability in gpsprof th

high

High remediation recipe for gpsd through release-3.27.5, fixed at commit 4c06658, contains a command injection vulnerability in gpsprof th. Upgrade to fixed at commit 4c06658 and remove the vulnerable command-injection pattern.

cve CVE-2026-58459disclosed 2026-07-09a.k.a. gpsd through release-3.27.5, fixed at commit 4c06658, contains a command injection vulnerability in gpsprof th

CVE-2026-59148 - Mockoon provides way to design and run mock APIs

high

High remediation recipe for Mockoon provides way to design and run mock APIs. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59148disclosed 2026-07-09a.k.a. Mockoon provides way to design and run mock APIs

CVE-2026-59206 - n8n is an open source workflow automation platform

high

High remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in versions 1.123.61 and remove the vulnerable command-injection pattern.

cve CVE-2026-59206disclosed 2026-07-09a.k.a. n8n is an open source workflow automation platform

CVE-2026-59207 - n8n is an open source workflow automation platform

high

High remediation recipe for n8n is an open source workflow automation platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59207disclosed 2026-07-09a.k.a. n8n is an open source workflow automation platform

CVE-2026-59208 - n8n is an open source workflow automation platform

high

High remediation recipe for n8n is an open source workflow automation platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59208disclosed 2026-07-09a.k.a. n8n is an open source workflow automation platform

CVE-2026-59209 - n8n is an open source workflow automation platform

high

High remediation recipe for n8n is an open source workflow automation platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59209disclosed 2026-07-09a.k.a. n8n is an open source workflow automation platform

CVE-2026-59219 - Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform

high

High remediation recipe for Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59219disclosed 2026-07-09a.k.a. Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform

CVE-2026-59221 - Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform

high

High remediation recipe for Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59221disclosed 2026-07-09a.k.a. Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform

CVE-2026-59224 - Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform

high

High remediation recipe for Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59224disclosed 2026-07-09a.k.a. Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform

CVE-2026-5955 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Inrove S

critical

Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Inrove S. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-5955disclosed 2026-07-09a.k.a. Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Inrove S

CVE-2026-59691 - A heap buffer overflow vulnerability was found in GStreamer's rfbsrc plugin

high

High remediation recipe for A heap buffer overflow vulnerability was found in GStreamer's rfbsrc plugin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-59691disclosed 2026-07-09a.k.a. A heap buffer overflow vulnerability was found in GStreamer's rfbsrc plugin

CVE-2026-59720 - Hoppscotch is an open source API development ecosystem

high

High remediation recipe for Hoppscotch is an open source API development ecosystem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59720disclosed 2026-07-09a.k.a. Hoppscotch is an open source API development ecosystem

CVE-2026-59721 - Hoppscotch is an open source API development ecosystem

high

High remediation recipe for Hoppscotch is an open source API development ecosystem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59721disclosed 2026-07-09a.k.a. Hoppscotch is an open source API development ecosystem

CVE-2026-59834 - SiYuan is an open-source personal knowledge management system

high

High remediation recipe for SiYuan is an open-source personal knowledge management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59834disclosed 2026-07-09a.k.a. SiYuan is an open-source personal knowledge management system

CVE-2026-59858 - Vim is an open source, command line text editor

high

High remediation recipe for Vim is an open source, command line text editor. Upgrade to fixed in version 9.2.0735. and remove the vulnerable command-injection pattern.

cve CVE-2026-59858disclosed 2026-07-09a.k.a. Vim is an open source, command line text editor

CVE-2026-60108 - Zeek before 8.0.9 contains an uncontrolled memory consumption vulnerability in the FTP analyzer that allows un

high

High remediation recipe for Zeek before 8.0.9 contains an uncontrolled memory consumption vulnerability in the FTP analyzer that allows un. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-60108disclosed 2026-07-09a.k.a. Zeek before 8.0.9 contains an uncontrolled memory consumption vulnerability in the FTP analyzer that allows un

CVE-2026-60109 - Zeek before 8.0.9 contains a null pointer dereference vulnerability in its Kerberos protocol analyzer that all

high

High remediation recipe for Zeek before 8.0.9 contains a null pointer dereference vulnerability in its Kerberos protocol analyzer that all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-60109disclosed 2026-07-09a.k.a. Zeek before 8.0.9 contains a null pointer dereference vulnerability in its Kerberos protocol analyzer that all

CVE-2026-61343 - LibreBooking's email template editor save action passes the submitted template name directly into the destinat

high

High remediation recipe for LibreBooking's email template editor save action passes the submitted template name directly into the destinat. Upgrade to 5.1.0 and remove the vulnerable credential-leak pattern.

cve CVE-2026-61343disclosed 2026-07-09a.k.a. LibreBooking's email template editor save action passes the submitted template name directly into the destinat

CVE-2025-3110 - OpenVPN Access Server 2.7.2 through 3.1.0 accepts bare line-feed sequences inside HTTP header values, allowing

high

High remediation recipe for OpenVPN Access Server 2.7.2 through 3.1.0 accepts bare line-feed sequences inside HTTP header values, allowing. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable request-smuggling pattern.

cve CVE-2025-3110disclosed 2026-07-08a.k.a. OpenVPN Access Server 2.7.2 through 3.1.0 accepts bare line-feed sequences inside HTTP header values, allowing

CVE-2026-0288 - Multiple buffer overflow vulnerabilities in the User-ID Terminal Server Agent (TSA) component of Palo Alto Net

high

High remediation recipe for Multiple buffer overflow vulnerabilities in the User-ID Terminal Server Agent (TSA) component of Palo Alto Net. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-0288disclosed 2026-07-08a.k.a. Multiple buffer overflow vulnerabilities in the User-ID Terminal Server Agent (TSA) component of Palo Alto Net

CVE-2026-10037 - A sandbox escape vulnerability exists in the OpenJDK packages provided in Ubuntu

high

High remediation recipe for A sandbox escape vulnerability exists in the OpenJDK packages provided in Ubuntu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-10037disclosed 2026-07-08a.k.a. A sandbox escape vulnerability exists in the OpenJDK packages provided in Ubuntu

CVE-2026-10706 - In Adalo’s no-code app builder, (Versions 1 and 2) the attackers may extract full user records and correlate u

high

High remediation recipe for In Adalo’s no-code app builder, (Versions 1 and 2) the attackers may extract full user records and correlate u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-10706disclosed 2026-07-08a.k.a. In Adalo’s no-code app builder, (Versions 1 and 2) the attackers may extract full user records and correlate u

CVE-2026-10708 - This vulnerability enables large‑scale data harvesting without requiring app‑specific secrets

high

High remediation recipe for This vulnerability enables large‑scale data harvesting without requiring app‑specific secrets. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-10708disclosed 2026-07-08a.k.a. This vulnerability enables large‑scale data harvesting without requiring app‑specific secrets

CVE-2026-13320 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.7 before 18.11.7, 19.0 before 19

high

High remediation recipe for GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.7 before 18.11.7, 19.0 before 19. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13320disclosed 2026-07-08a.k.a. GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.7 before 18.11.7, 19.0 before 19

CVE-2026-14454 - Imager versions before 1.033 for Perl treat unsigned EXIF IFD entry counts as signed

critical

Critical remediation recipe for Imager versions before 1.033 for Perl treat unsigned EXIF IFD entry counts as signed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14454disclosed 2026-07-08a.k.a. Imager versions before 1.033 for Perl treat unsigned EXIF IFD entry counts as signed

CVE-2026-15107 - Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbi

high

High remediation recipe for Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-15107disclosed 2026-07-08a.k.a. Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbi

CVE-2026-15110 - Use after free in Extensions in Google Chrome prior to 150.0.7871.115 allowed an attacker who convinced a user

high

High remediation recipe for Use after free in Extensions in Google Chrome prior to 150.0.7871.115 allowed an attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-15110disclosed 2026-07-08a.k.a. Use after free in Extensions in Google Chrome prior to 150.0.7871.115 allowed an attacker who convinced a user

CVE-2026-15111 - Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a use

high

High remediation recipe for Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a use. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-15111disclosed 2026-07-08a.k.a. Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a use

CVE-2026-15112 - Use after free in Ozone in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially expl

high

High remediation recipe for Use after free in Ozone in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially expl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-15112disclosed 2026-07-08a.k.a. Use after free in Ozone in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially expl

CVE-2026-15113 - Use after free in Autofill in Google Chrome on Android prior to 150.0.7871.115 allowed a remote attacker to po

critical

Critical remediation recipe for Use after free in Autofill in Google Chrome on Android prior to 150.0.7871.115 allowed a remote attacker to po. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-15113disclosed 2026-07-08a.k.a. Use after free in Autofill in Google Chrome on Android prior to 150.0.7871.115 allowed a remote attacker to po

CVE-2026-15114 - Out of bounds read and write in Codecs in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to p

high

High remediation recipe for Out of bounds read and write in Codecs in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15114disclosed 2026-07-08a.k.a. Out of bounds read and write in Codecs in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to p

CVE-2026-15116 - Use after free in Actor in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar

high

High remediation recipe for Use after free in Actor in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-15116disclosed 2026-07-08a.k.a. Use after free in Actor in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar

CVE-2026-15117 - Use after free in Payments in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a

high

High remediation recipe for Use after free in Payments in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-15117disclosed 2026-07-08a.k.a. Use after free in Payments in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a

CVE-2026-15118 - Use after free in Input in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar

high

High remediation recipe for Use after free in Input in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-15118disclosed 2026-07-08a.k.a. Use after free in Input in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar

CVE-2026-15119 - Race in GetUserMedia in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who had compromised th

high

High remediation recipe for Race in GetUserMedia in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who had compromised th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15119disclosed 2026-07-08a.k.a. Race in GetUserMedia in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who had compromised th

CVE-2026-15120 - Use after free in Core in Google Chrome on Windows prior to 150.0.7871.115 allowed a remote attacker who had c

high

High remediation recipe for Use after free in Core in Google Chrome on Windows prior to 150.0.7871.115 allowed a remote attacker who had c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-15120disclosed 2026-07-08a.k.a. Use after free in Core in Google Chrome on Windows prior to 150.0.7871.115 allowed a remote attacker who had c

CVE-2026-15121 - Use after free in WebRTC in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitra

high

High remediation recipe for Use after free in WebRTC in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitra. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-15121disclosed 2026-07-08a.k.a. Use after free in WebRTC in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitra

CVE-2026-15122 - Insufficient validation of untrusted input in Codecs in Google Chrome on Windows prior to 150.0.7871.115 allow

high

High remediation recipe for Insufficient validation of untrusted input in Codecs in Google Chrome on Windows prior to 150.0.7871.115 allow. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15122disclosed 2026-07-08a.k.a. Insufficient validation of untrusted input in Codecs in Google Chrome on Windows prior to 150.0.7871.115 allow

CVE-2026-15123 - Inappropriate implementation in DOM in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to pote

high

High remediation recipe for Inappropriate implementation in DOM in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to pote. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15123disclosed 2026-07-08a.k.a. Inappropriate implementation in DOM in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to pote

CVE-2026-15125 - Inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to ex

high

High remediation recipe for Inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to ex. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15125disclosed 2026-07-08a.k.a. Inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to ex

CVE-2026-15126 - Use after free in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar

high

High remediation recipe for Use after free in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-15126disclosed 2026-07-08a.k.a. Use after free in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar

CVE-2026-15129 - Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially expl

high

High remediation recipe for Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially expl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-15129disclosed 2026-07-08a.k.a. Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially expl

CVE-2026-15132 - Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar

high

High remediation recipe for Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15132disclosed 2026-07-08a.k.a. Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar

CVE-2026-15133 - Use after free in InterestGroups in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute

high

High remediation recipe for Use after free in InterestGroups in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-15133disclosed 2026-07-08a.k.a. Use after free in InterestGroups in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute

CVE-2026-15167 - DBS Etherwatch file parser crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of service

high

High remediation recipe for DBS Etherwatch file parser crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of service. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-15167disclosed 2026-07-08a.k.a. DBS Etherwatch file parser crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of service

CVE-2026-29008 - U-Boot through 2026.04-rc3 contains an integer underflow vulnerability in the tcp_rx_state_machine() function

high

High remediation recipe for U-Boot through 2026.04-rc3 contains an integer underflow vulnerability in the tcp_rx_state_machine() function. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-29008disclosed 2026-07-08a.k.a. U-Boot through 2026.04-rc3 contains an integer underflow vulnerability in the tcp_rx_state_machine() function

CVE-2026-29009 - U-Boot through 2026.04-rc3 contains a buffer overflow vulnerability in nfs_readlink_reply() (net/nfs-common.c)

high

High remediation recipe for U-Boot through 2026.04-rc3 contains a buffer overflow vulnerability in nfs_readlink_reply() (net/nfs-common.c). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-29009disclosed 2026-07-08a.k.a. U-Boot through 2026.04-rc3 contains a buffer overflow vulnerability in nfs_readlink_reply() (net/nfs-common.c)

CVE-2026-31309 - Improper authorization in the /tequilapi/config/user endpoint of Mysterium Node before v1.36.0 allows unauthen

high

High remediation recipe for Improper authorization in the /tequilapi/config/user endpoint of Mysterium Node before v1.36.0 allows unauthen. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-31309disclosed 2026-07-08a.k.a. Improper authorization in the /tequilapi/config/user endpoint of Mysterium Node before v1.36.0 allows unauthen

CVE-2026-3144 - IBM API Connect 12.1.0.0 through 12.1.0.3 uses default credentials which could allow an attacker to gain unaut

high

High remediation recipe for IBM API Connect 12.1.0.0 through 12.1.0.3 uses default credentials which could allow an attacker to gain unaut. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.

cve CVE-2026-3144disclosed 2026-07-08a.k.a. IBM API Connect 12.1.0.0 through 12.1.0.3 uses default credentials which could allow an attacker to gain unaut

CVE-2026-35210 - OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables

high

High remediation recipe for OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-35210disclosed 2026-07-08a.k.a. OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables

CVE-2026-35552 - In CAXperts UPVWebServices 2.4.2212.603 through 2.7.6 and UDiTH Portal 2026.0.0 through 2026.2.0, an authentic

high

High remediation recipe for In CAXperts UPVWebServices 2.4.2212.603 through 2.7.6 and UDiTH Portal 2026.0.0 through 2026.2.0, an authentic. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-35552disclosed 2026-07-08a.k.a. In CAXperts UPVWebServices 2.4.2212.603 through 2.7.6 and UDiTH Portal 2026.0.0 through 2026.2.0, an authentic

CVE-2026-44024 - Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a

critical

Critical remediation recipe for Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-44024disclosed 2026-07-08a.k.a. Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a

CVE-2026-44025 - Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a

high

High remediation recipe for Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-44025disclosed 2026-07-08a.k.a. Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a

CVE-2026-44160 - Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a

high

High remediation recipe for Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-44160disclosed 2026-07-08a.k.a. Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a

CVE-2026-44161 - Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a

high

High remediation recipe for Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-44161disclosed 2026-07-08a.k.a. Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a

CVE-2026-47646 -

critical

Critical remediation recipe for . Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-47646disclosed 2026-07-08a.k.a.

CVE-2026-51535 - In OpENer 2.3.0 (commit 76b95cf), a resource exhaustion (Denial of Service) vulnerability exists in its networ

high

High remediation recipe for In OpENer 2.3.0 (commit 76b95cf), a resource exhaustion (Denial of Service) vulnerability exists in its networ. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-51535disclosed 2026-07-08a.k.a. In OpENer 2.3.0 (commit 76b95cf), a resource exhaustion (Denial of Service) vulnerability exists in its networ

CVE-2026-52200 - An issue in Generic OEM UZ801_v2.1 4G LTE Router V3.4.3 allows a remote attacker to execute arbitrary code via

critical

Critical remediation recipe for An issue in Generic OEM UZ801_v2.1 4G LTE Router V3.4.3 allows a remote attacker to execute arbitrary code via. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52200disclosed 2026-07-08a.k.a. An issue in Generic OEM UZ801_v2.1 4G LTE Router V3.4.3 allows a remote attacker to execute arbitrary code via

CVE-2026-53482 - Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10,

high

High remediation recipe for Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-53482disclosed 2026-07-08a.k.a. Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10,

CVE-2026-53951 - Copier is a library and CLI app for rendering project templates

high

High remediation recipe for Copier is a library and CLI app for rendering project templates. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53951disclosed 2026-07-08a.k.a. Copier is a library and CLI app for rendering project templates

CVE-2026-54528 - JupyterLab Git is a Git extension for JupyterLab

high

High remediation recipe for JupyterLab Git is a Git extension for JupyterLab. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54528disclosed 2026-07-08a.k.a. JupyterLab Git is a Git extension for JupyterLab

CVE-2026-54774 - CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core

high

High remediation recipe for CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54774disclosed 2026-07-08a.k.a. CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core

CVE-2026-54781 - CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core

high

High remediation recipe for CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54781disclosed 2026-07-08a.k.a. CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core

CVE-2026-54782 - CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core

critical

Critical remediation recipe for CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54782disclosed 2026-07-08a.k.a. CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core

CVE-2026-54783 - CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core

high

High remediation recipe for CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54783disclosed 2026-07-08a.k.a. CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core

CVE-2026-55404 - yt-dlp and youtube-dl are command-line audio/video downloaders

high

High remediation recipe for yt-dlp and youtube-dl are command-line audio/video downloaders. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55404disclosed 2026-07-08a.k.a. yt-dlp and youtube-dl are command-line audio/video downloaders

CVE-2026-55999 - Local attackers with a X connection able to provide PCX fonts to the X server xorg-server before 21.2.24 and x

high

High remediation recipe for Local attackers with a X connection able to provide PCX fonts to the X server xorg-server before 21.2.24 and x. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-55999disclosed 2026-07-08a.k.a. Local attackers with a X connection able to provide PCX fonts to the X server xorg-server before 21.2.24 and x

CVE-2026-56000 - Local attackers with a X connection able to provide GLX commit to the X server xorg-server before 21.2.24 and

high

High remediation recipe for Local attackers with a X connection able to provide GLX commit to the X server xorg-server before 21.2.24 and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-56000disclosed 2026-07-08a.k.a. Local attackers with a X connection able to provide GLX commit to the X server xorg-server before 21.2.24 and

CVE-2026-56001 - A heap buffer overflow in BitmapScaleBitmaps in libXfont2 before 2.0.8 due to an overflowing 32bit size could

high

High remediation recipe for A heap buffer overflow in BitmapScaleBitmaps in libXfont2 before 2.0.8 due to an overflowing 32bit size could. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-56001disclosed 2026-07-08a.k.a. A heap buffer overflow in BitmapScaleBitmaps in libXfont2 before 2.0.8 due to an overflowing 32bit size could

CVE-2026-56003 - A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files in libXfont2

high

High remediation recipe for A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files in libXfont2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-56003disclosed 2026-07-08a.k.a. A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files in libXfont2

CVE-2026-56297 - FreeRDP before 3.22.0 contains a use-after-free vulnerability in dvcman_channel_close and dvcman_call_on_recei

high

High remediation recipe for FreeRDP before 3.22.0 contains a use-after-free vulnerability in dvcman_channel_close and dvcman_call_on_recei. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-56297disclosed 2026-07-08a.k.a. FreeRDP before 3.22.0 contains a use-after-free vulnerability in dvcman_channel_close and dvcman_call_on_recei

CVE-2026-56669 - Elysia is a Typescript framework for request validation, type inference, OpenAPI documentation, and client-ser

high

High remediation recipe for Elysia is a Typescript framework for request validation, type inference, OpenAPI documentation, and client-ser. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56669disclosed 2026-07-08a.k.a. Elysia is a Typescript framework for request validation, type inference, OpenAPI documentation, and client-ser

CVE-2026-56776 - n8n before 1.123.55, 2.25.7, and 2.26.2 contains an authorization bypass in the POST /workflows/{workflowId}/t

high

High remediation recipe for n8n before 1.123.55, 2.25.7, and 2.26.2 contains an authorization bypass in the POST /workflows/{workflowId}/t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56776disclosed 2026-07-08a.k.a. n8n before 1.123.55, 2.25.7, and 2.26.2 contains an authorization bypass in the POST /workflows/{workflowId}/t

CVE-2026-57239 - The user-controllable executable files will be directly executed by high-privilege processes, allowing low-pri

high

High remediation recipe for The user-controllable executable files will be directly executed by high-privilege processes, allowing low-pri. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57239disclosed 2026-07-08a.k.a. The user-controllable executable files will be directly executed by high-privilege processes, allowing low-pri

CVE-2026-58192 - Appium is a cross-platform automation framework for all kinds of apps, built on top of the W3C WebDriver proto

high

High remediation recipe for Appium is a cross-platform automation framework for all kinds of apps, built on top of the W3C WebDriver proto. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58192disclosed 2026-07-08a.k.a. Appium is a cross-platform automation framework for all kinds of apps, built on top of the W3C WebDriver proto

CVE-2026-58207 - NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system

high

High remediation recipe for NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58207disclosed 2026-07-08a.k.a. NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system

CVE-2026-58210 - NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system

high

High remediation recipe for NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58210disclosed 2026-07-08a.k.a. NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system

CVE-2026-58213 - NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system

high

High remediation recipe for NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58213disclosed 2026-07-08a.k.a. NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system

CVE-2026-58250 - NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system

high

High remediation recipe for NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58250disclosed 2026-07-08a.k.a. NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system

CVE-2026-58253 - NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system

high

High remediation recipe for NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58253disclosed 2026-07-08a.k.a. NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system

CVE-2026-58525 - Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a securit

high

High remediation recipe for Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a securit. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58525disclosed 2026-07-08a.k.a. Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a securit

CVE-2026-59257 - n8n before 1.123.61, 2.x before 2.27.4, and 2.28.x before 2.28.1 contains a SQL injection vulnerability in the

high

High remediation recipe for n8n before 1.123.61, 2.x before 2.27.4, and 2.28.x before 2.28.1 contains a SQL injection vulnerability in the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59257disclosed 2026-07-08a.k.a. n8n before 1.123.61, 2.x before 2.27.4, and 2.28.x before 2.28.1 contains a SQL injection vulnerability in the

CVE-2026-59723 - Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant

high

High remediation recipe for Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59723disclosed 2026-07-08a.k.a. Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant

CVE-2026-59731 - Astro is a web framework for content-driven websites

high

High remediation recipe for Astro is a web framework for content-driven websites. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59731disclosed 2026-07-08a.k.a. Astro is a web framework for content-driven websites

CVE-2026-59803 - rpcx through 1.9.3, fixed in commit 047aec1, contains a denial-of-service vulnerability in protocol.Message.De

high

High remediation recipe for rpcx through 1.9.3, fixed in commit 047aec1, contains a denial-of-service vulnerability in protocol.Message.De. Upgrade to fixed in commit 047aec1 and remove the vulnerable authz pattern.

cve CVE-2026-59803disclosed 2026-07-08a.k.a. rpcx through 1.9.3, fixed in commit 047aec1, contains a denial-of-service vulnerability in protocol.Message.De

CVE-2026-59804 - Midscene Bridge Server through 1.10.3, fixed in commit 86f4118, contains a missing authentication and CORS mis

high

High remediation recipe for Midscene Bridge Server through 1.10.3, fixed in commit 86f4118, contains a missing authentication and CORS mis. Upgrade to 86f4118d1d847041c63d79e347e08c87c3f1a882 and remove the vulnerable authz pattern.

cve CVE-2026-59804disclosed 2026-07-08a.k.a. Midscene Bridge Server through 1.10.3, fixed in commit 86f4118, contains a missing authentication and CORS mis

CVE-2026-59805 - Gumroad before 2026.07.06.2 contains a broken access control vulnerability in the PurchasesController that all

high

High remediation recipe for Gumroad before 2026.07.06.2 contains a broken access control vulnerability in the PurchasesController that all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59805disclosed 2026-07-08a.k.a. Gumroad before 2026.07.06.2 contains a broken access control vulnerability in the PurchasesController that all

CVE-2026-59806 - Gradio before 6.20.0 contains an open redirect and server-side request forgery vulnerability that allows attac

high

High remediation recipe for Gradio before 6.20.0 contains an open redirect and server-side request forgery vulnerability that allows attac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-59806disclosed 2026-07-08a.k.a. Gradio before 6.20.0 contains an open redirect and server-side request forgery vulnerability that allows attac

CVE-2026-59807 - Composio SDK before 0.2.32-beta.283 contains a path validation bypass vulnerability that allows attackers to r

high

High remediation recipe for Composio SDK before 0.2.32-beta.283 contains a path validation bypass vulnerability that allows attackers to r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59807disclosed 2026-07-08a.k.a. Composio SDK before 0.2.32-beta.283 contains a path validation bypass vulnerability that allows attackers to r

CVE-2026-59822 - LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format

high

High remediation recipe for LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59822disclosed 2026-07-08a.k.a. LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format

CVE-2026-59879 - Immutable.js provides many Persistent Immutable data structures

high

High remediation recipe for Immutable.js provides many Persistent Immutable data structures. Upgrade to fixed in versions 4.3.9 and 5.1.8. and remove the vulnerable authz pattern.

cve CVE-2026-59879disclosed 2026-07-08a.k.a. Immutable.js provides many Persistent Immutable data structures

CVE-2026-59880 - Immutable.js provides many Persistent Immutable data structures

high

High remediation recipe for Immutable.js provides many Persistent Immutable data structures. Upgrade to fixed in versions 4.3.9 and 5.1.8. and remove the vulnerable authz pattern.

cve CVE-2026-59880disclosed 2026-07-08a.k.a. Immutable.js provides many Persistent Immutable data structures

CVE-2026-59887 - linkify-it is a links recognition library with full Unicode support

high

High remediation recipe for linkify-it is a links recognition library with full Unicode support. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59887disclosed 2026-07-08a.k.a. linkify-it is a links recognition library with full Unicode support

CVE-2026-60002 - ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its host key during a key re-exchan

high

High remediation recipe for ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its host key during a key re-exchan. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-60002disclosed 2026-07-08a.k.a. ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its host key during a key re-exchan

CVE-2026-60105 - Monsta FTP before 2.14.5 contains a server-side request forgery vulnerability in the fetchRemoteFile action ca

high

High remediation recipe for Monsta FTP before 2.14.5 contains a server-side request forgery vulnerability in the fetchRemoteFile action ca. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-60105disclosed 2026-07-08a.k.a. Monsta FTP before 2.14.5 contains a server-side request forgery vulnerability in the fetchRemoteFile action ca

CVE-2026-6896 - GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 before 18.11.7, 19.0 before 19.0

high

High remediation recipe for GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 before 18.11.7, 19.0 before 19.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-6896disclosed 2026-07-08a.k.a. GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 before 18.11.7, 19.0 before 19.0

CVE-2026-8307 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Webbeyaz

critical

Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Webbeyaz. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-8307disclosed 2026-07-08a.k.a. Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Webbeyaz

CVE-2026-9074 - IBM API Connect 10.0.8.0 through 10.0.8.9 and 12.1.0.0 through 12.1.0.3 contains an unauthenticated SQL inject

critical

Critical remediation recipe for IBM API Connect 10.0.8.0 through 10.0.8.9 and 12.1.0.0 through 12.1.0.3 contains an unauthenticated SQL inject. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-9074disclosed 2026-07-08a.k.a. IBM API Connect 10.0.8.0 through 10.0.8.9 and 12.1.0.0 through 12.1.0.3 contains an unauthenticated SQL inject

CVE-2026-13020 - A Weak Password Recovery Mechanism for Forgotten Password exists in Esri Portal for ArcGIS versions 12.1 and e

high

High remediation recipe for A Weak Password Recovery Mechanism for Forgotten Password exists in Esri Portal for ArcGIS versions 12.1 and e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13020disclosed 2026-07-07a.k.a. A Weak Password Recovery Mechanism for Forgotten Password exists in Esri Portal for ArcGIS versions 12.1 and e

CVE-2026-14380 - DBI versions before 1.650 for Perl are vulnerable to code injection via caller-influenced Profile

high

High remediation recipe for DBI versions before 1.650 for Perl are vulnerable to code injection via caller-influenced Profile. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14380disclosed 2026-07-07a.k.a. DBI versions before 1.650 for Perl are vulnerable to code injection via caller-influenced Profile

CVE-2026-34044 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

high

High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34044disclosed 2026-07-07a.k.a. Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

CVE-2026-34152 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

high

High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34152disclosed 2026-07-07a.k.a. Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

CVE-2026-37270 - Trueview Security camera T18161- AF v4.9.60.0 contains an authentication bypass vulnerability caused by improp

critical

Critical remediation recipe for Trueview Security camera T18161- AF v4.9.60.0 contains an authentication bypass vulnerability caused by improp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.

cve CVE-2026-37270disclosed 2026-07-07a.k.a. Trueview Security camera T18161- AF v4.9.60.0 contains an authentication bypass vulnerability caused by improp

CVE-2026-37271 - Fire-Boltt Smartwatch FB BGS001 Firmware: MOY-JS14-2.0.4 is vulnerable to Improper Authentication, The device

critical

Critical remediation recipe for Fire-Boltt Smartwatch FB BGS001 Firmware: MOY-JS14-2.0.4 is vulnerable to Improper Authentication, The device. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-37271disclosed 2026-07-07a.k.a. Fire-Boltt Smartwatch FB BGS001 Firmware: MOY-JS14-2.0.4 is vulnerable to Improper Authentication, The device

CVE-2026-48948 - An improper access check allows user to download vcard exports of com_contact contacts that are inaccessible

high

High remediation recipe for An improper access check allows user to download vcard exports of com_contact contacts that are inaccessible. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-48948disclosed 2026-07-07a.k.a. An improper access check allows user to download vcard exports of com_contact contacts that are inaccessible

CVE-2026-48957 - An improper access check allows unauthorized users to access com_privacy datasets

high

High remediation recipe for An improper access check allows unauthorized users to access com_privacy datasets. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-48957disclosed 2026-07-07a.k.a. An improper access check allows unauthorized users to access com_privacy datasets

CVE-2026-48958 - An improper access check allows unauthorized users to create custom fields via webservices endpoints

high

High remediation recipe for An improper access check allows unauthorized users to create custom fields via webservices endpoints. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-48958disclosed 2026-07-07a.k.a. An improper access check allows unauthorized users to create custom fields via webservices endpoints

CVE-2026-49229 - Actual is a local-first personal finance app

high

High remediation recipe for Actual is a local-first personal finance app. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-49229disclosed 2026-07-07a.k.a. Actual is a local-first personal finance app

CVE-2026-53730 - DataEase is an open source data visualization and analysis tool

high

High remediation recipe for DataEase is an open source data visualization and analysis tool. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53730disclosed 2026-07-07a.k.a. DataEase is an open source data visualization and analysis tool

CVE-2026-55077 - Coder allows organizations to provision remote development environments via Terraform

high

High remediation recipe for Coder allows organizations to provision remote development environments via Terraform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55077disclosed 2026-07-07a.k.a. Coder allows organizations to provision remote development environments via Terraform

CVE-2026-55255 - Langflow Authorization Bypass Through User-Controlled Key Vulnerability

highKEV

High remediation recipe for Langflow Authorization Bypass Through User-Controlled Key Vulnerability. Upgrade to Apply mitigations or fixed release per vendor/CISA KEV instructions and remove the vulnerable command-injection pattern.

cve CVE-2026-55255disclosed 2026-07-07a.k.a. Langflow Authorization Bypass Through User-Controlled Key Vulnerability

CVE-2026-55418 - FastGPT is an open source AI knowledge base platform

high

High remediation recipe for FastGPT is an open source AI knowledge base platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-55418disclosed 2026-07-07a.k.a. FastGPT is an open source AI knowledge base platform

CVE-2026-55635 - DataEase is an open source data visualization and analysis tool

high

High remediation recipe for DataEase is an open source data visualization and analysis tool. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-55635disclosed 2026-07-07a.k.a. DataEase is an open source data visualization and analysis tool

CVE-2026-56290 - Joomlack Page Builder Improper Access Control Vulnerability

highKEV

High remediation recipe for Joomlack Page Builder Improper Access Control Vulnerability. Upgrade to Apply mitigations or fixed release per vendor/CISA KEV instructions and remove the vulnerable command-injection pattern.

cve CVE-2026-56290disclosed 2026-07-07a.k.a. Joomlack Page Builder Improper Access Control Vulnerability

CVE-2026-56811 - Allocation of Resources Without Limits or Throttling vulnerability in phoenixframework phoenix (Phoenix.Socket

high

High remediation recipe for Allocation of Resources Without Limits or Throttling vulnerability in phoenixframework phoenix (Phoenix.Socket. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56811disclosed 2026-07-07a.k.a. Allocation of Resources Without Limits or Throttling vulnerability in phoenixframework phoenix (Phoenix.Socket

CVE-2026-57851 - MSI Feature Manager contains a local privilege escalation vulnerability in the KernCoreLib64.sys kernel driver

high

High remediation recipe for MSI Feature Manager contains a local privilege escalation vulnerability in the KernCoreLib64.sys kernel driver. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57851disclosed 2026-07-07a.k.a. MSI Feature Manager contains a local privilege escalation vulnerability in the KernCoreLib64.sys kernel driver

CVE-2026-58384 - A flaw was found in GIMP's PSD parser. An integer overflow in read_RLE_channel() can cause an undersized heap

high

High remediation recipe for A flaw was found in GIMP's PSD parser. An integer overflow in read_RLE_channel() can cause an undersized heap. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-58384disclosed 2026-07-07a.k.a. A flaw was found in GIMP's PSD parser. An integer overflow in read_RLE_channel() can cause an undersized heap

CVE-2026-59704 - Cap's GET /api/video/ai endpoint fails to validate user ownership or membership before returning private video

high

High remediation recipe for Cap's GET /api/video/ai endpoint fails to validate user ownership or membership before returning private video. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-59704disclosed 2026-07-07a.k.a. Cap's GET /api/video/ai endpoint fails to validate user ownership or membership before returning private video

CVE-2026-59706 - mem0 contains unauthenticated config API endpoints that expose LLM API keys in plaintext and allow server-side

critical

Critical remediation recipe for mem0 contains unauthenticated config API endpoints that expose LLM API keys in plaintext and allow server-side. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-59706disclosed 2026-07-07a.k.a. mem0 contains unauthenticated config API endpoints that expose LLM API keys in plaintext and allow server-side

CVE-2026-59707 - LocalAI contains an unauthenticated server-side request forgery vulnerability in the POST /models/apply endpoi

critical

Critical remediation recipe for LocalAI contains an unauthenticated server-side request forgery vulnerability in the POST /models/apply endpoi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-59707disclosed 2026-07-07a.k.a. LocalAI contains an unauthenticated server-side request forgery vulnerability in the POST /models/apply endpoi

CVE-2026-59708 - The GET /api/v1/public/:accessId/portfolio endpoint in ghostfolio accepts private access IDs without validatin

high

High remediation recipe for The GET /api/v1/public/:accessId/portfolio endpoint in ghostfolio accepts private access IDs without validatin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59708disclosed 2026-07-07a.k.a. The GET /api/v1/public/:accessId/portfolio endpoint in ghostfolio accepts private access IDs without validatin

CVE-2026-11405 - The web server binary /bin/httpd contains a hidden backdoor authentication mechanism in the login() function a

critical

Critical remediation recipe for The web server binary /bin/httpd contains a hidden backdoor authentication mechanism in the login() function a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-11405disclosed 2026-07-06a.k.a. The web server binary /bin/httpd contains a hidden backdoor authentication mechanism in the login() function a

CVE-2026-14536 - Improper enforcement of a mandatory multi-factor authentication policy in Devolutions Server 2026.2.9.0 allows

high

High remediation recipe for Improper enforcement of a mandatory multi-factor authentication policy in Devolutions Server 2026.2.9.0 allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-14536disclosed 2026-07-06a.k.a. Improper enforcement of a mandatory multi-factor authentication policy in Devolutions Server 2026.2.9.0 allows

CVE-2026-25271 - Memory Corruption when processing asynchronous input parameters due to improper handling of modified values be

high

High remediation recipe for Memory Corruption when processing asynchronous input parameters due to improper handling of modified values be. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-25271disclosed 2026-07-06a.k.a. Memory Corruption when processing asynchronous input parameters due to improper handling of modified values be

CVE-2026-40138 - A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Suppo

high

High remediation recipe for A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Suppo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-40138disclosed 2026-07-06a.k.a. A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Suppo

CVE-2026-40139 - A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Suppo

critical

Critical remediation recipe for A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Suppo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-40139disclosed 2026-07-06a.k.a. A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Suppo

CVE-2026-40140 - BeyondTrust Remote Support and Privileged Remote Access contain a high-severity pre-authentication vulnerabili

high

High remediation recipe for BeyondTrust Remote Support and Privileged Remote Access contain a high-severity pre-authentication vulnerabili. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-40140disclosed 2026-07-06a.k.a. BeyondTrust Remote Support and Privileged Remote Access contain a high-severity pre-authentication vulnerabili

CVE-2026-40141 - A high-severity vulnerability exists in a web application component of BeyondTrust Remote Support and Privileg

critical

Critical remediation recipe for A high-severity vulnerability exists in a web application component of BeyondTrust Remote Support and Privileg. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-40141disclosed 2026-07-06a.k.a. A high-severity vulnerability exists in a web application component of BeyondTrust Remote Support and Privileg

CVE-2026-44937 - Potential forgery of webhook requests when using a unauthenticated webhook in SUSE Rancher Fleet 0.15 before 0

high

High remediation recipe for Potential forgery of webhook requests when using a unauthenticated webhook in SUSE Rancher Fleet 0.15 before 0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-44937disclosed 2026-07-06a.k.a. Potential forgery of webhook requests when using a unauthenticated webhook in SUSE Rancher Fleet 0.15 before 0

CVE-2026-54763 - Traefik is an HTTP reverse proxy and load balancer

critical

Critical remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in versions v2.11.51 and remove the vulnerable authz pattern.

cve CVE-2026-54763disclosed 2026-07-06a.k.a. Traefik is an HTTP reverse proxy and load balancer

CVE-2026-54765 - Traefik is an open source HTTP reverse proxy and load balancer

high

High remediation recipe for Traefik is an open source HTTP reverse proxy and load balancer. Upgrade to fixed in version v3.7.6. and remove the vulnerable command-injection pattern.

cve CVE-2026-54765disclosed 2026-07-06a.k.a. Traefik is an open source HTTP reverse proxy and load balancer

CVE-2026-55574 - vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs

high

High remediation recipe for vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Upgrade to fixed in version 0.24.0. and remove the vulnerable authz pattern.

cve CVE-2026-55574disclosed 2026-07-06a.k.a. vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs

CVE-2026-58380 - A flaw was found in GIMP's PNM file format parser

high

High remediation recipe for A flaw was found in GIMP's PNM file format parser. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58380disclosed 2026-07-06a.k.a. A flaw was found in GIMP's PNM file format parser

CVE-2026-59712 - Leantime's Users::getUser method in the JSON-RPC API lacks proper authorization checks, allowing authenticated

high

High remediation recipe for Leantime's Users::getUser method in the JSON-RPC API lacks proper authorization checks, allowing authenticated. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.

cve CVE-2026-59712disclosed 2026-07-06a.k.a. Leantime's Users::getUser method in the JSON-RPC API lacks proper authorization checks, allowing authenticated

CVE-2026-59713 - Leantime contains an OIDC login CSRF vulnerability in the verifyState() method that unconditionally returns tr

high

High remediation recipe for Leantime contains an OIDC login CSRF vulnerability in the verifyState() method that unconditionally returns tr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59713disclosed 2026-07-06a.k.a. Leantime contains an OIDC login CSRF vulnerability in the verifyState() method that unconditionally returns tr

CVE-2026-9181 - Esri ArcGIS Server contains a directory traversal vulnerability

critical

Critical remediation recipe for Esri ArcGIS Server contains a directory traversal vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-9181disclosed 2026-07-06a.k.a. Esri ArcGIS Server contains a directory traversal vulnerability

CVE-2026-10536 - A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tr

critical

Critical remediation recipe for A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tr. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-10536disclosed 2026-07-03a.k.a. A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tr

CVE-2026-11352 - An issue in curl’s QUIC UDP receive function allows a malicious HTTP/3 server to trigger a remote denial of se

high

High remediation recipe for An issue in curl’s QUIC UDP receive function allows a malicious HTTP/3 server to trigger a remote denial of se. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable dos pattern.

cve CVE-2026-11352disclosed 2026-07-03a.k.a. An issue in curl’s QUIC UDP receive function allows a malicious HTTP/3 server to trigger a remote denial of se

CVE-2026-11564 - libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of the

critical

Critical remediation recipe for libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of the. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-11564disclosed 2026-07-03a.k.a. libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of the

CVE-2026-11586 - By default, curl automatically responds to WebSocket PING frames

high

High remediation recipe for By default, curl automatically responds to WebSocket PING frames. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-11586disclosed 2026-07-03a.k.a. By default, curl automatically responds to WebSocket PING frames

CVE-2026-12064 - When a user invokes curl using a schemeless URL combined with --proto-default sftp (or scp), a disconnect oc

high

High remediation recipe for When a user invokes curl using a schemeless URL combined with --proto-default sftp (or scp), a disconnect oc. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-12064disclosed 2026-07-03a.k.a. When a user invokes curl using a schemeless URL combined with --proto-default sftp (or scp), a disconnect oc

CVE-2026-12481 - A vulnerability in keras-team/keras version 3.14.0 allows for arbitrary code execution due to improper handlin

critical

Critical remediation recipe for A vulnerability in keras-team/keras version 3.14.0 allows for arbitrary code execution due to improper handlin. Upgrade to version 3.14.0 allows for arbitrary code execution due to improper h and remove the vulnerable command-injection pattern.

cve CVE-2026-12481disclosed 2026-07-03a.k.a. A vulnerability in keras-team/keras version 3.14.0 allows for arbitrary code execution due to improper handlin

CVE-2026-13053 - An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged u

high

High remediation recipe for An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-13053disclosed 2026-07-03a.k.a. An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged u

CVE-2026-13054 - A path traversal vulnerability in the WatchGuard Fireware OS Management Web UI allows a privileged authenticat

high

High remediation recipe for A path traversal vulnerability in the WatchGuard Fireware OS Management Web UI allows a privileged authenticat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-13054disclosed 2026-07-03a.k.a. A path traversal vulnerability in the WatchGuard Fireware OS Management Web UI allows a privileged authenticat

CVE-2026-13079 - A local privilege escalation vulnerability in the WatchGuard Mobile VPN with SSL client for Windows allows a l

high

High remediation recipe for A local privilege escalation vulnerability in the WatchGuard Mobile VPN with SSL client for Windows allows a l. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13079disclosed 2026-07-03a.k.a. A local privilege escalation vulnerability in the WatchGuard Mobile VPN with SSL client for Windows allows a l

CVE-2026-13383 - An Out-of-bounds Write vulnerability in WatchGuard Fireware OS ikestubd process could allow an authenticated p

high

High remediation recipe for An Out-of-bounds Write vulnerability in WatchGuard Fireware OS ikestubd process could allow an authenticated p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-13383disclosed 2026-07-03a.k.a. An Out-of-bounds Write vulnerability in WatchGuard Fireware OS ikestubd process could allow an authenticated p

CVE-2026-13384 - An Out-of-bounds Write vulnerability in WatchGuard Fireware OS wgagent process could allow an authenticated pr

high

High remediation recipe for An Out-of-bounds Write vulnerability in WatchGuard Fireware OS wgagent process could allow an authenticated pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-13384disclosed 2026-07-03a.k.a. An Out-of-bounds Write vulnerability in WatchGuard Fireware OS wgagent process could allow an authenticated pr

CVE-2026-14544 - A flaw was found in HPLIP (HP Linux Imaging and Printing Software)

critical

Critical remediation recipe for A flaw was found in HPLIP (HP Linux Imaging and Printing Software). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14544disclosed 2026-07-03a.k.a. A flaw was found in HPLIP (HP Linux Imaging and Printing Software)

CVE-2026-26307 - Gitea versions before 1.25.5 do not enforce a timeout on git grep searches, allowing expensive searches to con

high

High remediation recipe for Gitea versions before 1.25.5 do not enforce a timeout on git grep searches, allowing expensive searches to con. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-26307disclosed 2026-07-03a.k.a. Gitea versions before 1.25.5 do not enforce a timeout on git grep searches, allowing expensive searches to con

CVE-2026-47896 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache Lucene

high

High remediation recipe for Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache Lucene. Upgrade to upgrade to version 4.8.0-beta00018 and remove the vulnerable path-traversal pattern.

cve CVE-2026-47896disclosed 2026-07-03a.k.a. Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache Lucene

CVE-2026-47897 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache Lucene

high

High remediation recipe for Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache Lucene. Upgrade to upgrade to version 4.8.0-beta00018 and remove the vulnerable path-traversal pattern.

cve CVE-2026-47897disclosed 2026-07-03a.k.a. Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache Lucene

CVE-2026-47898 - Improper Restriction of XML External Entity Reference vulnerability in Apache Lucene.Net (Lucene.Net.Analysis

critical

Critical remediation recipe for Improper Restriction of XML External Entity Reference vulnerability in Apache Lucene.Net (Lucene.Net.Analysis. Upgrade to upgrade to version 4.8.0-beta00018 and remove the vulnerable authz pattern.

cve CVE-2026-47898disclosed 2026-07-03a.k.a. Improper Restriction of XML External Entity Reference vulnerability in Apache Lucene.Net (Lucene.Net.Analysis

CVE-2026-57983 - Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security

high

High remediation recipe for Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57983disclosed 2026-07-03a.k.a. Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security

CVE-2026-57984 - Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a netwo

high

High remediation recipe for Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a netwo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57984disclosed 2026-07-03a.k.a. Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a netwo

CVE-2026-57985 - Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o

high

High remediation recipe for Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57985disclosed 2026-07-03a.k.a. Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o

CVE-2026-58289 - Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an una

critical

Critical remediation recipe for Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an una. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-58289disclosed 2026-07-03a.k.a. Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an una

CVE-2026-58293 - External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to ex

high

High remediation recipe for External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to ex. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58293disclosed 2026-07-03a.k.a. External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to ex

CVE-2026-58297 - Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unau

high

High remediation recipe for Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unau. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58297disclosed 2026-07-03a.k.a. Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unau

CVE-2026-8926 - When asking curl to use a .netrc file to find credentials and at the same time specifying a URL with a usern

critical

Critical remediation recipe for When asking curl to use a .netrc file to find credentials and at the same time specifying a URL with a usern. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.

cve CVE-2026-8926disclosed 2026-07-03a.k.a. When asking curl to use a .netrc file to find credentials and at the same time specifying a URL with a usern

CVE-2026-38969 - ruby webrick through v1.9.2 WEBrick reparses trailer Content-Length into canonical request state, enabling req

high

High remediation recipe for ruby webrick through v1.9.2 WEBrick reparses trailer Content-Length into canonical request state, enabling req. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable request-smuggling pattern.

cve CVE-2026-38969disclosed 2026-07-02a.k.a. ruby webrick through v1.9.2 WEBrick reparses trailer Content-Length into canonical request state, enabling req

CVE-2026-38971 - ardupilot through Plane-4.6.3 was found to contain an out-of-bounds read issue in libraries/GCS_MAVLink/GCS_se

critical

Critical remediation recipe for ardupilot through Plane-4.6.3 was found to contain an out-of-bounds read issue in libraries/GCS_MAVLink/GCS_se. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-38971disclosed 2026-07-02a.k.a. ardupilot through Plane-4.6.3 was found to contain an out-of-bounds read issue in libraries/GCS_MAVLink/GCS_se

CVE-2026-41106 - Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate

critical

Critical remediation recipe for Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-41106disclosed 2026-07-02a.k.a. Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate

CVE-2026-44941 - A relative path traversal in the keyhint option in repomd.xml parsing of libzypp before 17.38.12 can be used

high

High remediation recipe for A relative path traversal in the keyhint option in repomd.xml parsing of libzypp before 17.38.12 can be used. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-44941disclosed 2026-07-02a.k.a. A relative path traversal in the keyhint option in repomd.xml parsing of libzypp before 17.38.12 can be used

CVE-2026-45499 - Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a

critical

Critical remediation recipe for Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-45499disclosed 2026-07-02a.k.a. Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a

CVE-2026-54401 - A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery (S

high

High remediation recipe for A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery (S. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-54401disclosed 2026-07-02a.k.a. A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery (S

CVE-2026-54402 - A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vul

critical

Critical remediation recipe for A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vul. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-54402disclosed 2026-07-02a.k.a. A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vul

CVE-2026-54408 - A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in U

high

High remediation recipe for A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in U. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-54408disclosed 2026-07-02a.k.a. A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in U

CVE-2026-54409 - A malicious actor with access to the network and under certain conditions could exploit an Improper Initializa

high

High remediation recipe for A malicious actor with access to the network and under certain conditions could exploit an Improper Initializa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-54409disclosed 2026-07-02a.k.a. A malicious actor with access to the network and under certain conditions could exploit an Improper Initializa

CVE-2026-55112 - A malicious actor with access to the network and low privileges and under certain conditions could exploit an

high

High remediation recipe for A malicious actor with access to the network and low privileges and under certain conditions could exploit an. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55112disclosed 2026-07-02a.k.a. A malicious actor with access to the network and low privileges and under certain conditions could exploit an

CVE-2026-55115 - A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery (S

critical

Critical remediation recipe for A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery (S. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-55115disclosed 2026-07-02a.k.a. A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery (S

CVE-2026-55116 - A malicious actor with access to the network and under certain network configurations could exploit an Imprope

critical

Critical remediation recipe for A malicious actor with access to the network and under certain network configurations could exploit an Imprope. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55116disclosed 2026-07-02a.k.a. A malicious actor with access to the network and under certain network configurations could exploit an Imprope

CVE-2026-57100 - Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized a

critical

Critical remediation recipe for Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-57100disclosed 2026-07-02a.k.a. Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized a

CVE-2026-9272 - In Progress Flowmon ADS versions prior to 12.5.6 and 13.0.5, a vulnerability exists whereby an adversary who i

high

High remediation recipe for In Progress Flowmon ADS versions prior to 12.5.6 and 13.0.5, a vulnerability exists whereby an adversary who i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-9272disclosed 2026-07-02a.k.a. In Progress Flowmon ADS versions prior to 12.5.6 and 13.0.5, a vulnerability exists whereby an adversary who i

CVE-2025-23350 - NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual

critical

Critical remediation recipe for NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-23350disclosed 2026-07-01a.k.a. NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual

CVE-2025-23351 - NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual

critical

Critical remediation recipe for NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-23351disclosed 2026-07-01a.k.a. NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual

CVE-2026-10538 - Messaging consumer functionality allows deserialization of user-controlled data without sufficient restriction

high

High remediation recipe for Messaging consumer functionality allows deserialization of user-controlled data without sufficient restriction. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-10538disclosed 2026-07-01a.k.a. Messaging consumer functionality allows deserialization of user-controlled data without sufficient restriction

CVE-2026-10539 - A Control-M/Server communication command does not sufficiently filter or sanitize user-supplied input

critical

Critical remediation recipe for A Control-M/Server communication command does not sufficiently filter or sanitize user-supplied input. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-10539disclosed 2026-07-01a.k.a. A Control-M/Server communication command does not sufficiently filter or sanitize user-supplied input

CVE-2026-12575 - DVP80ES3 with Improper Resource Shutdown or Release vulnerability

high

High remediation recipe for DVP80ES3 with Improper Resource Shutdown or Release vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-12575disclosed 2026-07-01a.k.a. DVP80ES3 with Improper Resource Shutdown or Release vulnerability

CVE-2026-12576 - DVP80ES3 with Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnera

high

High remediation recipe for DVP80ES3 with Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnera. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-12576disclosed 2026-07-01a.k.a. DVP80ES3 with Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnera

CVE-2026-12579 - AS228T with Authentication Bypass Vulnerability

high

High remediation recipe for AS228T with Authentication Bypass Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-12579disclosed 2026-07-01a.k.a. AS228T with Authentication Bypass Vulnerability

CVE-2026-14191 - An out-of-bounds heap write exists in the RAR5 recovery-volume (.rev) parser in WinRAR and UnRAR (RecVolumes5:

high

High remediation recipe for An out-of-bounds heap write exists in the RAR5 recovery-volume (.rev) parser in WinRAR and UnRAR (RecVolumes5:. Upgrade to fixed in the RAR3 path only in WinRAR 6.23 and remove the vulnerable authz pattern.

cve CVE-2026-14191disclosed 2026-07-01a.k.a. An out-of-bounds heap write exists in the RAR5 recovery-volume (.rev) parser in WinRAR and UnRAR (RecVolumes5:

CVE-2026-14193 - DVP80ES300T with Improper Validation of Array Index Vulnerability

high

High remediation recipe for DVP80ES300T with Improper Validation of Array Index Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14193disclosed 2026-07-01a.k.a. DVP80ES300T with Improper Validation of Array Index Vulnerability

CVE-2026-14198 - @fastify/middie versions 9.1.0 through 9.3.2 decode the encoded slash %2F inside path parameter values before

critical

Critical remediation recipe for @fastify/middie versions 9.1.0 through 9.3.2 decode the encoded slash %2F inside path parameter values before. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-14198disclosed 2026-07-01a.k.a. @fastify/middie versions 9.1.0 through 9.3.2 decode the encoded slash %2F inside path parameter values before

CVE-2026-20191 - A vulnerability in Cisco Catalyst Center could allow an unauthenticated, remote attacker to read arbitrary fil

high

High remediation recipe for A vulnerability in Cisco Catalyst Center could allow an unauthenticated, remote attacker to read arbitrary fil. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20191disclosed 2026-07-01a.k.a. A vulnerability in Cisco Catalyst Center could allow an unauthenticated, remote attacker to read arbitrary fil

CVE-2026-20213 - A vulnerability in the PE file format parser of ClamAV could allow an unauthenticated, remote attacker to caus

high

High remediation recipe for A vulnerability in the PE file format parser of ClamAV could allow an unauthenticated, remote attacker to caus. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20213disclosed 2026-07-01a.k.a. A vulnerability in the PE file format parser of ClamAV could allow an unauthenticated, remote attacker to caus

CVE-2026-20214 - A vulnerability in the FSG file format parser of ClamAV could allow an unauthenticated, remote attacker to cau

high

High remediation recipe for A vulnerability in the FSG file format parser of ClamAV could allow an unauthenticated, remote attacker to cau. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20214disclosed 2026-07-01a.k.a. A vulnerability in the FSG file format parser of ClamAV could allow an unauthenticated, remote attacker to cau

CVE-2026-20215 - A vulnerability in the 7z file format parser of ClamAV could allow an unauthenticated, remote attacker to caus

high

High remediation recipe for A vulnerability in the 7z file format parser of ClamAV could allow an unauthenticated, remote attacker to caus. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20215disclosed 2026-07-01a.k.a. A vulnerability in the 7z file format parser of ClamAV could allow an unauthenticated, remote attacker to caus

CVE-2026-20216 - A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attac

high

High remediation recipe for A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-20216disclosed 2026-07-01a.k.a. A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attac

CVE-2026-20217 - A vulnerability in the PESpin file format parser of ClamAV could allow an unauthenticated, remote attacker to

high

High remediation recipe for A vulnerability in the PESpin file format parser of ClamAV could allow an unauthenticated, remote attacker to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20217disclosed 2026-07-01a.k.a. A vulnerability in the PESpin file format parser of ClamAV could allow an unauthenticated, remote attacker to

CVE-2026-20243 - A vulnerability in the ALZ file format parser of ClamAV could allow an unauthenticated, remote attacker to cau

high

High remediation recipe for A vulnerability in the ALZ file format parser of ClamAV could allow an unauthenticated, remote attacker to cau. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20243disclosed 2026-07-01a.k.a. A vulnerability in the ALZ file format parser of ClamAV could allow an unauthenticated, remote attacker to cau

CVE-2026-20244 - A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cau

high

High remediation recipe for A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cau. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20244disclosed 2026-07-01a.k.a. A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cau

CVE-2026-20458 - In Modem, there is a possible memory corruption due to a missing bounds check

high

High remediation recipe for In Modem, there is a possible memory corruption due to a missing bounds check. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20458disclosed 2026-07-01a.k.a. In Modem, there is a possible memory corruption due to a missing bounds check

CVE-2026-23537 - A vulnerability has been identified in the Feast Feature Server’s /save-document endpoint that allows an una

critical

Critical remediation recipe for A vulnerability has been identified in the Feast Feature Server’s /save-document endpoint that allows an una. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-23537disclosed 2026-07-01a.k.a. A vulnerability has been identified in the Feast Feature Server’s /save-document endpoint that allows an una

CVE-2026-24240 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt

high

High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-24240disclosed 2026-07-01a.k.a. NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt

CVE-2026-24242 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause server-side request fo

high

High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause server-side request fo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-24242disclosed 2026-07-01a.k.a. NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause server-side request fo

CVE-2026-24243 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt

high

High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-24243disclosed 2026-07-01a.k.a. NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt

CVE-2026-24244 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt

high

High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-24244disclosed 2026-07-01a.k.a. NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt

CVE-2026-24245 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt

high

High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-24245disclosed 2026-07-01a.k.a. NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt

CVE-2026-24246 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of dy

high

High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of dy. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-24246disclosed 2026-07-01a.k.a. NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of dy

CVE-2026-24247 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt

high

High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-24247disclosed 2026-07-01a.k.a. NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt

CVE-2026-24248 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of co

high

High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-24248disclosed 2026-07-01a.k.a. NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of co

CVE-2026-24249 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt

high

High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-24249disclosed 2026-07-01a.k.a. NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt

CVE-2026-24250 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper validation of

high

High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper validation of. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-24250disclosed 2026-07-01a.k.a. NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper validation of

CVE-2026-24251 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of dy

high

High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of dy. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-24251disclosed 2026-07-01a.k.a. NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of dy

CVE-2026-24260 - NVIDIA Container Toolkit for Linux contains a vulnerability where an attacker could cause a time-of-check time

high

High remediation recipe for NVIDIA Container Toolkit for Linux contains a vulnerability where an attacker could cause a time-of-check time. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-24260disclosed 2026-07-01a.k.a. NVIDIA Container Toolkit for Linux contains a vulnerability where an attacker could cause a time-of-check time

CVE-2026-24264 - NVIDIA Triton Inference Server for Linux contains a vulnerability where an attacker can cause improper handlin

high

High remediation recipe for NVIDIA Triton Inference Server for Linux contains a vulnerability where an attacker can cause improper handlin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-24264disclosed 2026-07-01a.k.a. NVIDIA Triton Inference Server for Linux contains a vulnerability where an attacker can cause improper handlin

CVE-2026-24270 - NVIDIA AIStore framework contains a vulnerability where an attacker could bypass authentication

critical

Critical remediation recipe for NVIDIA AIStore framework contains a vulnerability where an attacker could bypass authentication. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-24270disclosed 2026-07-01a.k.a. NVIDIA AIStore framework contains a vulnerability where an attacker could bypass authentication

CVE-2026-50043 - Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in Sky

high

High remediation recipe for Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in Sky. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-50043disclosed 2026-07-01a.k.a. Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in Sky

CVE-2026-50195 - containerd is an open-source container runtime

critical

Critical remediation recipe for containerd is an open-source container runtime. Upgrade to fixed in versions 2.3.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-50195disclosed 2026-07-01a.k.a. containerd is an open-source container runtime

CVE-2026-5120 - A Race Condition vulnerability affecting BIOVIA Workbook from Release 2021 through Release 2026 could allow a

high

High remediation recipe for A Race Condition vulnerability affecting BIOVIA Workbook from Release 2021 through Release 2026 could allow a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-5120disclosed 2026-07-01a.k.a. A Race Condition vulnerability affecting BIOVIA Workbook from Release 2021 through Release 2026 could allow a

CVE-2026-5136 - A flaw was found in Foreman. The Usergroup model in Foreman does not properly validate role assignments agains

high

High remediation recipe for A flaw was found in Foreman. The Usergroup model in Foreman does not properly validate role assignments agains. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-5136disclosed 2026-07-01a.k.a. A flaw was found in Foreman. The Usergroup model in Foreman does not properly validate role assignments agains

CVE-2026-53492 - containerd is an open-source container runtime

critical

Critical remediation recipe for containerd is an open-source container runtime. Upgrade to fixed in versions 2.3.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-53492disclosed 2026-07-01a.k.a. containerd is an open-source container runtime

CVE-2026-54592 - Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem

high

High remediation recipe for Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. Upgrade to fixed in version 3.17.3. and remove the vulnerable mcp-auth pattern.

cve CVE-2026-54592disclosed 2026-07-01a.k.a. Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem

CVE-2026-57692 - Incorrect Privilege Assignment vulnerability in LCweb PrivateContent allows Privilege Escalation

critical

Critical remediation recipe for Incorrect Privilege Assignment vulnerability in LCweb PrivateContent allows Privilege Escalation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57692disclosed 2026-07-01a.k.a. Incorrect Privilege Assignment vulnerability in LCweb PrivateContent allows Privilege Escalation

CVE-2026-58126 - PACSgear PACS Scan 5.2.1 contains an unauthenticated remote code execution vulnerability that allows remote at

critical

Critical remediation recipe for PACSgear PACS Scan 5.2.1 contains an unauthenticated remote code execution vulnerability that allows remote at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-58126disclosed 2026-07-01a.k.a. PACSgear PACS Scan 5.2.1 contains an unauthenticated remote code execution vulnerability that allows remote at

CVE-2026-58127 - PACSgear MediaWriter 5.2.1 exposes a .NET Remoting TCP service on port 9000 via PacsgearMediaServerEngine.dll,

critical

Critical remediation recipe for PACSgear MediaWriter 5.2.1 exposes a .NET Remoting TCP service on port 9000 via PacsgearMediaServerEngine.dll,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-58127disclosed 2026-07-01a.k.a. PACSgear MediaWriter 5.2.1 exposes a .NET Remoting TCP service on port 9000 via PacsgearMediaServerEngine.dll,

CVE-2026-58452 - JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerabi

high

High remediation recipe for JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerabi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-58452disclosed 2026-07-01a.k.a. JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerabi

CVE-2026-58453 - JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerab

critical

Critical remediation recipe for JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerab. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-58453disclosed 2026-07-01a.k.a. JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerab

CVE-2026-58454 - JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a remote code execution vulnerabi

high

High remediation recipe for JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a remote code execution vulnerabi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-58454disclosed 2026-07-01a.k.a. JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a remote code execution vulnerabi

CVE-2026-6687 - FatFs R0.16 and earlier contains a stack overflow bug in f_getlabel() because exFAT label length (XDIR_NumLabe

high

High remediation recipe for FatFs R0.16 and earlier contains a stack overflow bug in f_getlabel() because exFAT label length (XDIR_NumLabe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-6687disclosed 2026-07-01a.k.a. FatFs R0.16 and earlier contains a stack overflow bug in f_getlabel() because exFAT label length (XDIR_NumLabe

CVE-2026-6688 - FatFs R0.16 and earlier contains a downstream-caller vulnerability pattern associated with FatFs long filename

high

High remediation recipe for FatFs R0.16 and earlier contains a downstream-caller vulnerability pattern associated with FatFs long filename. Upgrade to fixed buffers without bounds checks and remove the vulnerable authz pattern.

cve CVE-2026-6688disclosed 2026-07-01a.k.a. FatFs R0.16 and earlier contains a downstream-caller vulnerability pattern associated with FatFs long filename

CVE-2026-7829 - UltraVNC repeater through 1.8.2.2 contains a post-authentication out-of-bounds write in the allow/deny rule pa

high

High remediation recipe for UltraVNC repeater through 1.8.2.2 contains a post-authentication out-of-bounds write in the allow/deny rule pa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-7829disclosed 2026-07-01a.k.a. UltraVNC repeater through 1.8.2.2 contains a post-authentication out-of-bounds write in the allow/deny rule pa

CVE-2026-7831 - UltraVNC viewer through 1.8.2.2 contains an off-by-one stack buffer overflow in the RFB ServerInit message han

high

High remediation recipe for UltraVNC viewer through 1.8.2.2 contains an off-by-one stack buffer overflow in the RFB ServerInit message han. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-7831disclosed 2026-07-01a.k.a. UltraVNC viewer through 1.8.2.2 contains an off-by-one stack buffer overflow in the RFB ServerInit message han

CVE-2026-7838 - UltraVNC viewer through 1.8.2.2 contains an integer overflow leading to a heap buffer overflow in the RFB prot

high

High remediation recipe for UltraVNC viewer through 1.8.2.2 contains an integer overflow leading to a heap buffer overflow in the RFB prot. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-7838disclosed 2026-07-01a.k.a. UltraVNC viewer through 1.8.2.2 contains an integer overflow leading to a heap buffer overflow in the RFB prot

CVE-2026-7839 - UltraVNC repeater through 1.8.2.2 initializes the HTTP administration server with a hardcoded default password

critical

Critical remediation recipe for UltraVNC repeater through 1.8.2.2 initializes the HTTP administration server with a hardcoded default password. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-7839disclosed 2026-07-01a.k.a. UltraVNC repeater through 1.8.2.2 initializes the HTTP administration server with a hardcoded default password

CVE-2026-7840 - UltraVNC repeater through 1.8.2.2 contains a global buffer overflow in its embedded HTTP administration server

critical

Critical remediation recipe for UltraVNC repeater through 1.8.2.2 contains a global buffer overflow in its embedded HTTP administration server. Upgrade to fixed 1000-byte global buffer and remove the vulnerable authz pattern.

cve CVE-2026-7840disclosed 2026-07-01a.k.a. UltraVNC repeater through 1.8.2.2 contains a global buffer overflow in its embedded HTTP administration server

CVE-2025-24815 - Nokia MantaRay NM is subject to an unrestricted file upload vulnerability due to insufficient file type valida

high

High remediation recipe for Nokia MantaRay NM is subject to an unrestricted file upload vulnerability due to insufficient file type valida. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-24815disclosed 2026-06-30a.k.a. Nokia MantaRay NM is subject to an unrestricted file upload vulnerability due to insufficient file type valida

CVE-2025-36359 - IBM DevOps Automation 1.0.1 and IBM DevOps Loop 1.0.2 does not invalidate session IDs after expiration which c

high

High remediation recipe for IBM DevOps Automation 1.0.1 and IBM DevOps Loop 1.0.2 does not invalidate session IDs after expiration which c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-36359disclosed 2026-06-30a.k.a. IBM DevOps Automation 1.0.1 and IBM DevOps Loop 1.0.2 does not invalidate session IDs after expiration which c

CVE-2025-7406 - Nokia MantaRay NM is vulnerable to a sudo privilege escalation vulnerability where a local attacker possessing

high

High remediation recipe for Nokia MantaRay NM is vulnerable to a sudo privilege escalation vulnerability where a local attacker possessing. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-7406disclosed 2026-06-30a.k.a. Nokia MantaRay NM is vulnerable to a sudo privilege escalation vulnerability where a local attacker possessing

CVE-2026-10109 - IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to remote code execution due to imprope

critical

Critical remediation recipe for IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to remote code execution due to imprope. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-10109disclosed 2026-06-30a.k.a. IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to remote code execution due to imprope

CVE-2026-10129 - IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) protection bypass vulnerabi

high

High remediation recipe for IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) protection bypass vulnerabi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-10129disclosed 2026-06-30a.k.a. IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) protection bypass vulnerabi

CVE-2026-10134 - IBM Langflow OSS 1.0.0 through 1.9.3 allows an attacker to read every secret available to the Langflow process

critical

Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.9.3 allows an attacker to read every secret available to the Langflow process. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-10134disclosed 2026-06-30a.k.a. IBM Langflow OSS 1.0.0 through 1.9.3 allows an attacker to read every secret available to the Langflow process

CVE-2026-10140 - IBM Langflow OSS 1.0.0 through 1.10.0 voice mode contains improper shared-state handling that allows reuse of

critical

Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.10.0 voice mode contains improper shared-state handling that allows reuse of. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-10140disclosed 2026-06-30a.k.a. IBM Langflow OSS 1.0.0 through 1.10.0 voice mode contains improper shared-state handling that allows reuse of

CVE-2026-10546 - IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) vulnerability in the URL co

high

High remediation recipe for IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) vulnerability in the URL co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-10546disclosed 2026-06-30a.k.a. IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) vulnerability in the URL co

CVE-2026-10560 - IBM Langflow OSS 1.0.0 through 1.9.6 contains a missing authentication vulnerability in /api/v1/build_public_t

high

High remediation recipe for IBM Langflow OSS 1.0.0 through 1.9.6 contains a missing authentication vulnerability in /api/v1/build_public_t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-10560disclosed 2026-06-30a.k.a. IBM Langflow OSS 1.0.0 through 1.9.6 contains a missing authentication vulnerability in /api/v1/build_public_t

CVE-2026-10564 - IBM Langflow OSS 1.0.0 through 1.9.6 contains a Server-Side Request Forgery (SSRF)

high

High remediation recipe for IBM Langflow OSS 1.0.0 through 1.9.6 contains a Server-Side Request Forgery (SSRF). Upgrade to version 1.9.3. An authenticated attacker can exploit this to access and remove the vulnerable command-injection pattern.

cve CVE-2026-10564disclosed 2026-06-30a.k.a. IBM Langflow OSS 1.0.0 through 1.9.6 contains a Server-Side Request Forgery (SSRF)

CVE-2026-11541 - IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through

high

High remediation recipe for IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable request-smuggling pattern.

cve CVE-2026-11541disclosed 2026-06-30a.k.a. IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through

CVE-2026-11546 - IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forg

high

High remediation recipe for IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forg. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-11546disclosed 2026-06-30a.k.a. IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forg

CVE-2026-11594 - IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin

high

High remediation recipe for IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-11594disclosed 2026-06-30a.k.a. IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin

CVE-2026-11708 - IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin

critical

Critical remediation recipe for IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-11708disclosed 2026-06-30a.k.a. IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin

CVE-2026-11712 - IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin

critical

Critical remediation recipe for IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-11712disclosed 2026-06-30a.k.a. IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin

CVE-2026-11714 - IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forg

high

High remediation recipe for IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forg. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-11714disclosed 2026-06-30a.k.a. IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forg

CVE-2026-11806 - IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 is affected by an arbitrary file read vul

high

High remediation recipe for IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 is affected by an arbitrary file read vul. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-11806disclosed 2026-06-30a.k.a. IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 is affected by an arbitrary file read vul

CVE-2026-13207 - FUXA versions 1.3.1 and prior contain an authentication bypass vulnerability via dot-segment path normalizatio

high

High remediation recipe for FUXA versions 1.3.1 and prior contain an authentication bypass vulnerability via dot-segment path normalizatio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13207disclosed 2026-06-30a.k.a. FUXA versions 1.3.1 and prior contain an authentication bypass vulnerability via dot-segment path normalizatio

CVE-2026-13449 - IBM Business Automation Manager Open Editions 9.0.0 through 9.4.2 is vulnerable to an XML external entity inje

high

High remediation recipe for IBM Business Automation Manager Open Editions 9.0.0 through 9.4.2 is vulnerable to an XML external entity inje. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13449disclosed 2026-06-30a.k.a. IBM Business Automation Manager Open Editions 9.0.0 through 9.4.2 is vulnerable to an XML external entity inje

CVE-2026-13759 - IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 ships three ObjectInputStream subclasses (WsObjectInputStr

high

High remediation recipe for IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 ships three ObjectInputStream subclasses (WsObjectInputStr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-13759disclosed 2026-06-30a.k.a. IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 ships three ObjectInputStream subclasses (WsObjectInputStr

CVE-2026-13766 - DBIx::QuickORM versions before 0.000026 for Perl allow SQL injection via unquoted SQL identifiers

critical

Critical remediation recipe for DBIx::QuickORM versions before 0.000026 for Perl allow SQL injection via unquoted SQL identifiers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-13766disclosed 2026-06-30a.k.a. DBIx::QuickORM versions before 0.000026 for Perl allow SQL injection via unquoted SQL identifiers

CVE-2026-13772 - IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 's Object Query Language engine resolves attacker-supplied

high

High remediation recipe for IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 's Object Query Language engine resolves attacker-supplied. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-13772disclosed 2026-06-30a.k.a. IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 's Object Query Language engine resolves attacker-supplied

CVE-2026-13774 - Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user

high

High remediation recipe for Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13774disclosed 2026-06-30a.k.a. Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user

CVE-2026-13775 - Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised th

critical

Critical remediation recipe for Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13775disclosed 2026-06-30a.k.a. Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised th

CVE-2026-13776 - Type Confusion in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t

critical

Critical remediation recipe for Type Confusion in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13776disclosed 2026-06-30a.k.a. Type Confusion in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t

CVE-2026-13777 - Insufficient validation of untrusted input in iOSWeb in Google Chrome on iOS prior to 150.0.7871.47 allowed a

high

High remediation recipe for Insufficient validation of untrusted input in iOSWeb in Google Chrome on iOS prior to 150.0.7871.47 allowed a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13777disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in iOSWeb in Google Chrome on iOS prior to 150.0.7871.47 allowed a

CVE-2026-13778 - Use after free in WebUSB in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to execute ar

high

High remediation recipe for Use after free in WebUSB in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to execute ar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13778disclosed 2026-06-30a.k.a. Use after free in WebUSB in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to execute ar

CVE-2026-13779 - Use after free in Chromoting in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a remote attacker to

high

High remediation recipe for Use after free in Chromoting in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a remote attacker to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13779disclosed 2026-06-30a.k.a. Use after free in Chromoting in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a remote attacker to

CVE-2026-13780 - Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote a

critical

Critical remediation recipe for Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13780disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote a

CVE-2026-13781 - Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote at

critical

Critical remediation recipe for Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13781disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote at

CVE-2026-13782 - Use after free in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromise

critical

Critical remediation recipe for Use after free in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromise. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13782disclosed 2026-06-30a.k.a. Use after free in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromise

CVE-2026-13783 - Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user

high

High remediation recipe for Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13783disclosed 2026-06-30a.k.a. Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user

CVE-2026-13786 - Use after free in Ozone in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary

high

High remediation recipe for Use after free in Ozone in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13786disclosed 2026-06-30a.k.a. Use after free in Ozone in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary

CVE-2026-13787 - Use after free in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to e

high

High remediation recipe for Use after free in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13787disclosed 2026-06-30a.k.a. Use after free in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to e

CVE-2026-13788 - Use after free in Fullscreen in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to e

high

High remediation recipe for Use after free in Fullscreen in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13788disclosed 2026-06-30a.k.a. Use after free in Fullscreen in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to e

CVE-2026-13791 - Insufficient validation of untrusted input in Downloads in Google Chrome prior to 150.0.7871.47 allowed an att

high

High remediation recipe for Insufficient validation of untrusted input in Downloads in Google Chrome prior to 150.0.7871.47 allowed an att. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13791disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Downloads in Google Chrome prior to 150.0.7871.47 allowed an att

CVE-2026-13794 - Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.4

high

High remediation recipe for Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13794disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.4

CVE-2026-13797 - Insufficient validation of untrusted input in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a rem

critical

Critical remediation recipe for Insufficient validation of untrusted input in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a rem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13797disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a rem

CVE-2026-13798 - Heap buffer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had c

critical

Critical remediation recipe for Heap buffer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13798disclosed 2026-06-30a.k.a. Heap buffer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had c

CVE-2026-13799 - Use after free in QUIC in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploi

high

High remediation recipe for Use after free in QUIC in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13799disclosed 2026-06-30a.k.a. Use after free in QUIC in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploi

CVE-2026-13800 - Inappropriate implementation in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local att

high

High remediation recipe for Inappropriate implementation in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local att. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13800disclosed 2026-06-30a.k.a. Inappropriate implementation in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local att

CVE-2026-13801 - Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compr

high

High remediation recipe for Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13801disclosed 2026-06-30a.k.a. Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compr

CVE-2026-13802 - Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user

high

High remediation recipe for Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13802disclosed 2026-06-30a.k.a. Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user

CVE-2026-13803 - Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compro

high

High remediation recipe for Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compro. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13803disclosed 2026-06-30a.k.a. Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compro

CVE-2026-13804 - Use after free in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had comprom

high

High remediation recipe for Use after free in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had comprom. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13804disclosed 2026-06-30a.k.a. Use after free in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had comprom

CVE-2026-13805 - Use after free in GFX in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to execute arbi

high

High remediation recipe for Use after free in GFX in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to execute arbi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13805disclosed 2026-06-30a.k.a. Use after free in GFX in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to execute arbi

CVE-2026-13806 - Insufficient validation of untrusted input in Accessibility in Google Chrome prior to 150.0.7871.47 allowed a

high

High remediation recipe for Insufficient validation of untrusted input in Accessibility in Google Chrome prior to 150.0.7871.47 allowed a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13806disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Accessibility in Google Chrome prior to 150.0.7871.47 allowed a

CVE-2026-13807 - Use after free in Import in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convince

high

High remediation recipe for Use after free in Import in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convince. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13807disclosed 2026-06-30a.k.a. Use after free in Import in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convince

CVE-2026-13811 - Use after free in IME in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary c

high

High remediation recipe for Use after free in IME in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13811disclosed 2026-06-30a.k.a. Use after free in IME in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary c

CVE-2026-13813 - Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a rem

high

High remediation recipe for Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a rem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13813disclosed 2026-06-30a.k.a. Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a rem

CVE-2026-13814 - Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user

high

High remediation recipe for Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13814disclosed 2026-06-30a.k.a. Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user

CVE-2026-13815 - Use after free in Blink in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary

high

High remediation recipe for Use after free in Blink in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13815disclosed 2026-06-30a.k.a. Use after free in Blink in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary

CVE-2026-13817 - Insufficient validation of untrusted input in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote at

high

High remediation recipe for Insufficient validation of untrusted input in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13817disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote at

CVE-2026-13819 - Out of bounds read in ANGLE in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had c

high

High remediation recipe for Out of bounds read in ANGLE in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13819disclosed 2026-06-30a.k.a. Out of bounds read in ANGLE in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had c

CVE-2026-13821 - Use after free in Canvas in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar

high

High remediation recipe for Use after free in Canvas in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13821disclosed 2026-06-30a.k.a. Use after free in Canvas in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar

CVE-2026-13823 - Use after free in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t

high

High remediation recipe for Use after free in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13823disclosed 2026-06-30a.k.a. Use after free in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t

CVE-2026-13824 - Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacke

high

High remediation recipe for Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacke. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13824disclosed 2026-06-30a.k.a. Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacke

CVE-2026-13825 - Uninitialized Use in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exp

high

High remediation recipe for Uninitialized Use in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13825disclosed 2026-06-30a.k.a. Uninitialized Use in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exp

CVE-2026-13827 - Use after free in Updater in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to perform p

high

High remediation recipe for Use after free in Updater in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to perform p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13827disclosed 2026-06-30a.k.a. Use after free in Updater in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to perform p

CVE-2026-13829 - Insufficient validation of untrusted input in Settings in Google Chrome on Windows prior to 150.0.7871.47 allo

high

High remediation recipe for Insufficient validation of untrusted input in Settings in Google Chrome on Windows prior to 150.0.7871.47 allo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13829disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Settings in Google Chrome on Windows prior to 150.0.7871.47 allo

CVE-2026-13830 - Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to exe

high

High remediation recipe for Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to exe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13830disclosed 2026-06-30a.k.a. Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to exe

CVE-2026-13831 - Out of bounds read and write in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had

high

High remediation recipe for Out of bounds read and write in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13831disclosed 2026-06-30a.k.a. Out of bounds read and write in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had

CVE-2026-13832 - Use after free in Headless in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromis

high

High remediation recipe for Use after free in Headless in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromis. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13832disclosed 2026-06-30a.k.a. Use after free in Headless in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromis

CVE-2026-13834 - Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote a

high

High remediation recipe for Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13834disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote a

CVE-2026-13835 - Inappropriate implementation in XML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to poten

high

High remediation recipe for Inappropriate implementation in XML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to poten. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13835disclosed 2026-06-30a.k.a. Inappropriate implementation in XML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to poten

CVE-2026-13841 - Integer overflow in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised

high

High remediation recipe for Integer overflow in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13841disclosed 2026-06-30a.k.a. Integer overflow in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised

CVE-2026-13843 - Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 al

critical

Critical remediation recipe for Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13843disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 al

CVE-2026-13844 - Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perfo

high

High remediation recipe for Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perfo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13844disclosed 2026-06-30a.k.a. Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perfo

CVE-2026-13845 - Use after free in DOM in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary c

high

High remediation recipe for Use after free in DOM in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13845disclosed 2026-06-30a.k.a. Use after free in DOM in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary c

CVE-2026-13846 - Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had comprom

critical

Critical remediation recipe for Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had comprom. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13846disclosed 2026-06-30a.k.a. Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had comprom

CVE-2026-13848 - Use after free in Forms in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary

high

High remediation recipe for Use after free in Forms in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13848disclosed 2026-06-30a.k.a. Use after free in Forms in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary

CVE-2026-13849 - Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 al

high

High remediation recipe for Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13849disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 al

CVE-2026-13850 - Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 al

high

High remediation recipe for Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13850disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 al

CVE-2026-13851 - Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4

critical

Critical remediation recipe for Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13851disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4

CVE-2026-13852 - Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4

critical

Critical remediation recipe for Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13852disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4

CVE-2026-13853 - Use after free in Journeys in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromis

critical

Critical remediation recipe for Use after free in Journeys in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromis. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13853disclosed 2026-06-30a.k.a. Use after free in Journeys in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromis

CVE-2026-13854 - Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who had com

critical

Critical remediation recipe for Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who had com. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13854disclosed 2026-06-30a.k.a. Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who had com

CVE-2026-13855 - Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinc

high

High remediation recipe for Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13855disclosed 2026-06-30a.k.a. Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinc

CVE-2026-13856 - Insufficient validation of untrusted input in Speech in Google Chrome on Android prior to 150.0.7871.47 allowe

high

High remediation recipe for Insufficient validation of untrusted input in Speech in Google Chrome on Android prior to 150.0.7871.47 allowe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13856disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Speech in Google Chrome on Android prior to 150.0.7871.47 allowe

CVE-2026-13859 - Inappropriate implementation in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to pot

critical

Critical remediation recipe for Inappropriate implementation in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to pot. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13859disclosed 2026-06-30a.k.a. Inappropriate implementation in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to pot

CVE-2026-13861 - Use after free in Core in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t

critical

Critical remediation recipe for Use after free in Core in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13861disclosed 2026-06-30a.k.a. Use after free in Core in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t

CVE-2026-13863 - Insufficient validation of untrusted input in CustomTabs in Google Chrome on Android prior to 150.0.7871.47 al

high

High remediation recipe for Insufficient validation of untrusted input in CustomTabs in Google Chrome on Android prior to 150.0.7871.47 al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13863disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in CustomTabs in Google Chrome on Android prior to 150.0.7871.47 al

CVE-2026-13864 - Insufficient policy enforcement in WebHID in Google Chrome prior to 150.0.7871.47 allowed an attacker who conv

high

High remediation recipe for Insufficient policy enforcement in WebHID in Google Chrome prior to 150.0.7871.47 allowed an attacker who conv. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13864disclosed 2026-06-30a.k.a. Insufficient policy enforcement in WebHID in Google Chrome prior to 150.0.7871.47 allowed an attacker who conv

CVE-2026-13869 - Use after free in Device in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had

critical

Critical remediation recipe for Use after free in Device in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13869disclosed 2026-06-30a.k.a. Use after free in Device in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had

CVE-2026-13870 - Use after free in WebView in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to exec

high

High remediation recipe for Use after free in WebView in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to exec. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13870disclosed 2026-06-30a.k.a. Use after free in WebView in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to exec

CVE-2026-13872 - Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4

critical

Critical remediation recipe for Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13872disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4

CVE-2026-13878 - Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had c

critical

Critical remediation recipe for Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13878disclosed 2026-06-30a.k.a. Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had c

CVE-2026-13880 - Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had comprom

critical

Critical remediation recipe for Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had comprom. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13880disclosed 2026-06-30a.k.a. Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had comprom

CVE-2026-13882 - Race in USB in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer

critical

Critical remediation recipe for Race in USB in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13882disclosed 2026-06-30a.k.a. Race in USB in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer

CVE-2026-13883 - Type Confusion in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially perfo

critical

Critical remediation recipe for Type Confusion in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially perfo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13883disclosed 2026-06-30a.k.a. Type Confusion in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially perfo

CVE-2026-13884 - Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a local attacker to execute arb

high

High remediation recipe for Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a local attacker to execute arb. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13884disclosed 2026-06-30a.k.a. Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a local attacker to execute arb

CVE-2026-13885 - Use after free in Skia in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to execute

high

High remediation recipe for Use after free in Skia in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to execute. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13885disclosed 2026-06-30a.k.a. Use after free in Skia in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to execute

CVE-2026-13888 - Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi

high

High remediation recipe for Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13888disclosed 2026-06-30a.k.a. Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi

CVE-2026-13891 - Insufficient validation of untrusted input in Extensions in Google Chrome prior to 150.0.7871.47 allowed a rem

high

High remediation recipe for Insufficient validation of untrusted input in Extensions in Google Chrome prior to 150.0.7871.47 allowed a rem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13891disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Extensions in Google Chrome prior to 150.0.7871.47 allowed a rem

CVE-2026-13897 - Insufficient policy enforcement in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacke

high

High remediation recipe for Insufficient policy enforcement in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacke. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13897disclosed 2026-06-30a.k.a. Insufficient policy enforcement in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacke

CVE-2026-13898 - Use after free in Cast Receiver in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute a

high

High remediation recipe for Use after free in Cast Receiver in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13898disclosed 2026-06-30a.k.a. Use after free in Cast Receiver in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute a

CVE-2026-13899 - Use after free in HTML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary

high

High remediation recipe for Use after free in HTML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13899disclosed 2026-06-30a.k.a. Use after free in HTML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary

CVE-2026-13901 - Insufficient policy enforcement in Serial in Google Chrome prior to 150.0.7871.47 allowed a remote attacker wh

critical

Critical remediation recipe for Insufficient policy enforcement in Serial in Google Chrome prior to 150.0.7871.47 allowed a remote attacker wh. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13901disclosed 2026-06-30a.k.a. Insufficient policy enforcement in Serial in Google Chrome prior to 150.0.7871.47 allowed a remote attacker wh

CVE-2026-13903 - Insufficient policy enforcement in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed a remote attacker

high

High remediation recipe for Insufficient policy enforcement in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed a remote attacker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13903disclosed 2026-06-30a.k.a. Insufficient policy enforcement in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed a remote attacker

CVE-2026-13909 - Insufficient policy enforcement in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker

critical

Critical remediation recipe for Insufficient policy enforcement in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13909disclosed 2026-06-30a.k.a. Insufficient policy enforcement in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker

CVE-2026-13915 - Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who

high

High remediation recipe for Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13915disclosed 2026-06-30a.k.a. Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who

CVE-2026-13918 - Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to p

high

High remediation recipe for Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13918disclosed 2026-06-30a.k.a. Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to p

CVE-2026-13925 - Inappropriate implementation in Downloads in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote

high

High remediation recipe for Inappropriate implementation in Downloads in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13925disclosed 2026-06-30a.k.a. Inappropriate implementation in Downloads in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote

CVE-2026-13927 - Insufficient validation of untrusted input in UI in Google Chrome on Android prior to 150.0.7871.47 allowed a

high

High remediation recipe for Insufficient validation of untrusted input in UI in Google Chrome on Android prior to 150.0.7871.47 allowed a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13927disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in UI in Google Chrome on Android prior to 150.0.7871.47 allowed a

CVE-2026-13928 - Insufficient validation of untrusted input in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a rem

high

High remediation recipe for Insufficient validation of untrusted input in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a rem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13928disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a rem

CVE-2026-13934 - Insufficient validation of untrusted input in Dawn in Google Chrome on Android prior to 150.0.7871.47 allowed

critical

Critical remediation recipe for Insufficient validation of untrusted input in Dawn in Google Chrome on Android prior to 150.0.7871.47 allowed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13934disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Dawn in Google Chrome on Android prior to 150.0.7871.47 allowed

CVE-2026-13965 - Use after free in Oilpan in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar

high

High remediation recipe for Use after free in Oilpan in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13965disclosed 2026-06-30a.k.a. Use after free in Oilpan in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar

CVE-2026-13967 - Heap buffer overflow in V8 in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitr

high

High remediation recipe for Heap buffer overflow in V8 in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13967disclosed 2026-06-30a.k.a. Heap buffer overflow in V8 in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitr

CVE-2026-13968 - Insufficient validation of untrusted input in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remot

high

High remediation recipe for Insufficient validation of untrusted input in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remot. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13968disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remot

CVE-2026-14005 - Use after free in Omnibox in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who con

high

High remediation recipe for Use after free in Omnibox in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who con. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14005disclosed 2026-06-30a.k.a. Use after free in Omnibox in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who con

CVE-2026-14006 - Use after free in Navigation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi

high

High remediation recipe for Use after free in Navigation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14006disclosed 2026-06-30a.k.a. Use after free in Navigation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi

CVE-2026-14009 - Inappropriate implementation in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to

high

High remediation recipe for Inappropriate implementation in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14009disclosed 2026-06-30a.k.a. Inappropriate implementation in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to

CVE-2026-14011 - Out of bounds read in SurfaceCapture in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perf

high

High remediation recipe for Out of bounds read in SurfaceCapture in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perf. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14011disclosed 2026-06-30a.k.a. Out of bounds read in SurfaceCapture in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perf

CVE-2026-14018 - Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perfo

high

High remediation recipe for Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perfo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14018disclosed 2026-06-30a.k.a. Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perfo

CVE-2026-14024 - Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinc

high

High remediation recipe for Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14024disclosed 2026-06-30a.k.a. Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinc

CVE-2026-14025 - Use after free in Views in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced

high

High remediation recipe for Use after free in Views in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14025disclosed 2026-06-30a.k.a. Use after free in Views in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced

CVE-2026-14027 - Use after free in SignIn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a use

high

High remediation recipe for Use after free in SignIn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a use. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14027disclosed 2026-06-30a.k.a. Use after free in SignIn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a use

CVE-2026-14032 - Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed an attacker who convinced a

high

High remediation recipe for Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed an attacker who convinced a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14032disclosed 2026-06-30a.k.a. Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed an attacker who convinced a

CVE-2026-14036 - Insufficient policy enforcement in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed a remote attacker

high

High remediation recipe for Insufficient policy enforcement in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed a remote attacker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-14036disclosed 2026-06-30a.k.a. Insufficient policy enforcement in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed a remote attacker

CVE-2026-14037 - Insufficient policy enforcement in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who h

critical

Critical remediation recipe for Insufficient policy enforcement in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who h. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-14037disclosed 2026-06-30a.k.a. Insufficient policy enforcement in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who h

CVE-2026-14038 - Insufficient validation of untrusted input in New Tab Page in Google Chrome prior to 150.0.7871.47 allowed a r

critical

Critical remediation recipe for Insufficient validation of untrusted input in New Tab Page in Google Chrome prior to 150.0.7871.47 allowed a r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14038disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in New Tab Page in Google Chrome prior to 150.0.7871.47 allowed a r

CVE-2026-14040 - Use after free in BrowserTag in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user

high

High remediation recipe for Use after free in BrowserTag in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14040disclosed 2026-06-30a.k.a. Use after free in BrowserTag in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user

CVE-2026-14041 - Insufficient policy enforcement in Serial in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to

high

High remediation recipe for Insufficient policy enforcement in Serial in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-14041disclosed 2026-06-30a.k.a. Insufficient policy enforcement in Serial in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to

CVE-2026-14043 - Use after free in GetUserMedia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compr

critical

Critical remediation recipe for Use after free in GetUserMedia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14043disclosed 2026-06-30a.k.a. Use after free in GetUserMedia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compr

CVE-2026-14044 - Use after free in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised

critical

Critical remediation recipe for Use after free in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14044disclosed 2026-06-30a.k.a. Use after free in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised

CVE-2026-14055 - Insufficient validation of untrusted input in Device Trust in Google Chrome on Windows prior to 150.0.7871.47

critical

Critical remediation recipe for Insufficient validation of untrusted input in Device Trust in Google Chrome on Windows prior to 150.0.7871.47. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14055disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Device Trust in Google Chrome on Windows prior to 150.0.7871.47

CVE-2026-14056 - Insufficient validation of untrusted input in Media in Google Chrome prior to 150.0.7871.47 allowed a remote a

critical

Critical remediation recipe for Insufficient validation of untrusted input in Media in Google Chrome prior to 150.0.7871.47 allowed a remote a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14056disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Media in Google Chrome prior to 150.0.7871.47 allowed a remote a

CVE-2026-14060 - Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 al

high

High remediation recipe for Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14060disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 al

CVE-2026-14064 - Use after free in PageInfo in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who co

high

High remediation recipe for Use after free in PageInfo in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14064disclosed 2026-06-30a.k.a. Use after free in PageInfo in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who co

CVE-2026-14067 - Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to e

high

High remediation recipe for Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14067disclosed 2026-06-30a.k.a. Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to e

CVE-2026-14078 - Insufficient validation of untrusted input in WebRTC in Google Chrome prior to 150.0.7871.47 allowed a remote

high

High remediation recipe for Insufficient validation of untrusted input in WebRTC in Google Chrome prior to 150.0.7871.47 allowed a remote. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14078disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in WebRTC in Google Chrome prior to 150.0.7871.47 allowed a remote

CVE-2026-14084 - Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 150.0.7871.47 allowed a rem

high

High remediation recipe for Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 150.0.7871.47 allowed a rem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14084disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 150.0.7871.47 allowed a rem

CVE-2026-14086 - Insufficient policy enforcement in HID in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to ex

high

High remediation recipe for Insufficient policy enforcement in HID in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to ex. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-14086disclosed 2026-06-30a.k.a. Insufficient policy enforcement in HID in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to ex

CVE-2026-14087 - Heap buffer overflow in WebNN in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who

high

High remediation recipe for Heap buffer overflow in WebNN in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14087disclosed 2026-06-30a.k.a. Heap buffer overflow in WebNN in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who

CVE-2026-14090 - Insufficient validation of untrusted input in CameraCapture in Google Chrome on ChromeOS prior to 150.0.7871.4

critical

Critical remediation recipe for Insufficient validation of untrusted input in CameraCapture in Google Chrome on ChromeOS prior to 150.0.7871.4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14090disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in CameraCapture in Google Chrome on ChromeOS prior to 150.0.7871.4

CVE-2026-14091 - Use after free in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitr

high

High remediation recipe for Use after free in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14091disclosed 2026-06-30a.k.a. Use after free in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitr

CVE-2026-14093 - Use after free in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t

critical

Critical remediation recipe for Use after free in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14093disclosed 2026-06-30a.k.a. Use after free in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t

CVE-2026-14094 - Use after free in Installer in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to per

high

High remediation recipe for Use after free in Installer in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to per. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14094disclosed 2026-06-30a.k.a. Use after free in Installer in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to per

CVE-2026-14095 - Insufficient policy enforcement in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker w

critical

Critical remediation recipe for Insufficient policy enforcement in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker w. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-14095disclosed 2026-06-30a.k.a. Insufficient policy enforcement in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker w

CVE-2026-14097 - Inappropriate implementation in WebAppInstalls in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote

critical

Critical remediation recipe for Inappropriate implementation in WebAppInstalls in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14097disclosed 2026-06-30a.k.a. Inappropriate implementation in WebAppInstalls in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote

CVE-2026-14099 - Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who

high

High remediation recipe for Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14099disclosed 2026-06-30a.k.a. Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who

CVE-2026-14101 - Insufficient policy enforcement in Sandbox in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote att

critical

Critical remediation recipe for Insufficient policy enforcement in Sandbox in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote att. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-14101disclosed 2026-06-30a.k.a. Insufficient policy enforcement in Sandbox in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote att

CVE-2026-14102 - Use after free in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially e

high

High remediation recipe for Use after free in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14102disclosed 2026-06-30a.k.a. Use after free in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially e

CVE-2026-14104 - Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 150.0.7871.47 allowed a

high

High remediation recipe for Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 150.0.7871.47 allowed a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14104disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 150.0.7871.47 allowed a

CVE-2026-14105 - Insufficient policy enforcement in Speech in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to

critical

Critical remediation recipe for Insufficient policy enforcement in Speech in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-14105disclosed 2026-06-30a.k.a. Insufficient policy enforcement in Speech in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to

CVE-2026-14106 - Insufficient validation of untrusted input in Text in Google Chrome on Android prior to 150.0.7871.47 allowed

critical

Critical remediation recipe for Insufficient validation of untrusted input in Text in Google Chrome on Android prior to 150.0.7871.47 allowed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14106disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Text in Google Chrome on Android prior to 150.0.7871.47 allowed

CVE-2026-14107 - Use after free in Scheduling in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi

high

High remediation recipe for Use after free in Scheduling in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14107disclosed 2026-06-30a.k.a. Use after free in Scheduling in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi

CVE-2026-14108 - Use after free in PDFium in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar

high

High remediation recipe for Use after free in PDFium in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14108disclosed 2026-06-30a.k.a. Use after free in PDFium in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar

CVE-2026-14109 - Insufficient policy enforcement in Mojo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who

critical

Critical remediation recipe for Insufficient policy enforcement in Mojo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-14109disclosed 2026-06-30a.k.a. Insufficient policy enforcement in Mojo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who

CVE-2026-14111 - Use after free in WebProtect in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user

high

High remediation recipe for Use after free in WebProtect in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14111disclosed 2026-06-30a.k.a. Use after free in WebProtect in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user

CVE-2026-14113 - Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had

critical

Critical remediation recipe for Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14113disclosed 2026-06-30a.k.a. Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had

CVE-2026-14114 - Inappropriate implementation in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a lo

high

High remediation recipe for Inappropriate implementation in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a lo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14114disclosed 2026-06-30a.k.a. Inappropriate implementation in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a lo

CVE-2026-14115 - Insufficient validation of untrusted input in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote at

high

High remediation recipe for Insufficient validation of untrusted input in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14115disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote at

CVE-2026-14120 - Inappropriate implementation in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who

critical

Critical remediation recipe for Inappropriate implementation in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14120disclosed 2026-06-30a.k.a. Inappropriate implementation in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who

CVE-2026-14121 - Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to exe

high

High remediation recipe for Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to exe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14121disclosed 2026-06-30a.k.a. Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to exe

CVE-2026-14122 - Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.4

high

High remediation recipe for Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14122disclosed 2026-06-30a.k.a. Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.4

CVE-2026-14124 - Inappropriate implementation in CredentialProvider in Google Chrome on Windows prior to 150.0.7871.47 allowed

high

High remediation recipe for Inappropriate implementation in CredentialProvider in Google Chrome on Windows prior to 150.0.7871.47 allowed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14124disclosed 2026-06-30a.k.a. Inappropriate implementation in CredentialProvider in Google Chrome on Windows prior to 150.0.7871.47 allowed

CVE-2026-14149 - Use after free in Audio in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to execute

high

High remediation recipe for Use after free in Audio in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to execute. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14149disclosed 2026-06-30a.k.a. Use after free in Audio in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to execute

CVE-2026-14151 - Inappropriate implementation in AI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had c

critical

Critical remediation recipe for Inappropriate implementation in AI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14151disclosed 2026-06-30a.k.a. Inappropriate implementation in AI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had c

CVE-2026-14152 - Out of bounds read and write in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who ha

critical

Critical remediation recipe for Out of bounds read and write in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who ha. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14152disclosed 2026-06-30a.k.a. Out of bounds read and write in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who ha

CVE-2026-14161 - Hospital Quening Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unaut

high

High remediation recipe for Hospital Quening Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unaut. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14161disclosed 2026-06-30a.k.a. Hospital Quening Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unaut

CVE-2026-14162 - Hospital Queuing Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unaut

critical

Critical remediation recipe for Hospital Queuing Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unaut. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14162disclosed 2026-06-30a.k.a. Hospital Queuing Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unaut

CVE-2026-14164 - A double free issue has been identified in libarchive's RAR5 reader

high

High remediation recipe for A double free issue has been identified in libarchive's RAR5 reader. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-14164disclosed 2026-06-30a.k.a. A double free issue has been identified in libarchive's RAR5 reader

CVE-2026-14241 - Memory safety bugs present in Firefox 152.0.3

critical

Critical remediation recipe for Memory safety bugs present in Firefox 152.0.3. Upgrade to fixed in Firefox 152.0.4. and remove the vulnerable authz pattern.

cve CVE-2026-14241disclosed 2026-06-30a.k.a. Memory safety bugs present in Firefox 152.0.3

CVE-2026-35505 - An unauthenticated remote attacker can repeatedly send crafted connection requests to leak memory

high

High remediation recipe for An unauthenticated remote attacker can repeatedly send crafted connection requests to leak memory. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-35505disclosed 2026-06-30a.k.a. An unauthenticated remote attacker can repeatedly send crafted connection requests to leak memory

CVE-2026-41053 - Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provid

high

High remediation recipe for Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provid. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-41053disclosed 2026-06-30a.k.a. Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provid

CVE-2026-44628 - An unauthenticated attacker can crash the worklist server with a single crafted query when the server has a va

high

High remediation recipe for An unauthenticated attacker can crash the worklist server with a single crafted query when the server has a va. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-44628disclosed 2026-06-30a.k.a. An unauthenticated attacker can crash the worklist server with a single crafted query when the server has a va

CVE-2026-48276 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous

critical

Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-48276disclosed 2026-06-30a.k.a. ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous

CVE-2026-48277 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha

critical

Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-48277disclosed 2026-06-30a.k.a. ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha

CVE-2026-48281 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha

critical

Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-48281disclosed 2026-06-30a.k.a. ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha

CVE-2026-48282 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Rest

critical

Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Rest. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-48282disclosed 2026-06-30a.k.a. ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Rest

CVE-2026-48283 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous

critical

Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-48283disclosed 2026-06-30a.k.a. ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous

CVE-2026-48285 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerabi

high

High remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerabi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-48285disclosed 2026-06-30a.k.a. ColdFusion versions 2025.9, 2023.20 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerabi

CVE-2026-48286 - Adobe Campaign Classic (ACC) versions 7.4.3 build 9396 and earlier are affected by an Incorrect Authorization

critical

Critical remediation recipe for Adobe Campaign Classic (ACC) versions 7.4.3 build 9396 and earlier are affected by an Incorrect Authorization. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-48286disclosed 2026-06-30a.k.a. Adobe Campaign Classic (ACC) versions 7.4.3 build 9396 and earlier are affected by an Incorrect Authorization

CVE-2026-48307 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnera

high

High remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnera. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-48307disclosed 2026-06-30a.k.a. ColdFusion versions 2025.9, 2023.20 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnera

CVE-2026-48313 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Rest

critical

Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Rest. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-48313disclosed 2026-06-30a.k.a. ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Rest

CVE-2026-48315 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha

critical

Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-48315disclosed 2026-06-30a.k.a. ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha

CVE-2026-49432 - Improper Input Validation vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp

high

High remediation recipe for Improper Input Validation vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp. Upgrade to upgrade to version 6.2.7 or 5.19.8 and remove the vulnerable command-injection pattern.

cve CVE-2026-49432disclosed 2026-06-30a.k.a. Improper Input Validation vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp

CVE-2026-49434 - Improper Input Validation vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All

high

High remediation recipe for Improper Input Validation vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All. Upgrade to upgrade to version 6.2.7 or 5.19.8 and remove the vulnerable authz pattern.

cve CVE-2026-49434disclosed 2026-06-30a.k.a. Improper Input Validation vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All

CVE-2026-49877 - Improper Authorization vulnerability in Apache ActiveMQ

high

High remediation recipe for Improper Authorization vulnerability in Apache ActiveMQ. Upgrade to upgrade to version 6.2.7 or 5.19.8 and remove the vulnerable authz pattern.

cve CVE-2026-49877disclosed 2026-06-30a.k.a. Improper Authorization vulnerability in Apache ActiveMQ

CVE-2026-50003 - A malicious or compromised server can make a DCMTK client using bit-preserving C-GET storage mode write files

critical

Critical remediation recipe for A malicious or compromised server can make a DCMTK client using bit-preserving C-GET storage mode write files. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50003disclosed 2026-06-30a.k.a. A malicious or compromised server can make a DCMTK client using bit-preserving C-GET storage mode write files

CVE-2026-50110 - Storage Concentrator (SC & SCVM) contains hardcoded credentials for numerous internal services embedded within

critical

Critical remediation recipe for Storage Concentrator (SC & SCVM) contains hardcoded credentials for numerous internal services embedded within. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50110disclosed 2026-06-30a.k.a. Storage Concentrator (SC & SCVM) contains hardcoded credentials for numerous internal services embedded within

CVE-2026-50254 - An unauthenticated remote attacker can repeatedly send a single crafted connection request to leak memory

high

High remediation recipe for An unauthenticated remote attacker can repeatedly send a single crafted connection request to leak memory. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50254disclosed 2026-06-30a.k.a. An unauthenticated remote attacker can repeatedly send a single crafted connection request to leak memory

CVE-2026-50734 - Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ Client, Apache ActiveMQ, Apache A

high

High remediation recipe for Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ Client, Apache ActiveMQ, Apache A. Upgrade to upgrade to version 6.2.7 or 5.19.8 and remove the vulnerable dos pattern.

cve CVE-2026-50734disclosed 2026-06-30a.k.a. Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ Client, Apache ActiveMQ, Apache A

CVE-2026-50750 - Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ

high

High remediation recipe for Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ. Upgrade to upgrade to version 6.2.7 and remove the vulnerable dos pattern.

cve CVE-2026-50750disclosed 2026-06-30a.k.a. Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ

CVE-2026-52195 - Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a d

high

High remediation recipe for Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-52195disclosed 2026-06-30a.k.a. Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a d

CVE-2026-52196 - Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a d

high

High remediation recipe for Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-52196disclosed 2026-06-30a.k.a. Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a d

CVE-2026-52197 - An issue in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via

high

High remediation recipe for An issue in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-52197disclosed 2026-06-30a.k.a. An issue in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via

CVE-2026-52868 - An unauthenticated attacker can read worklist records from a directory outside the intended per-AE worklist st

high

High remediation recipe for An unauthenticated attacker can read worklist records from a directory outside the intended per-AE worklist st. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52868disclosed 2026-06-30a.k.a. An unauthenticated attacker can read worklist records from a directory outside the intended per-AE worklist st

CVE-2026-53916 - Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache Acti

high

High remediation recipe for Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache Acti. Upgrade to upgrade to version 6.2.7 or 5.19.8 and remove the vulnerable authz pattern.

cve CVE-2026-53916disclosed 2026-06-30a.k.a. Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache Acti

CVE-2026-53917 - Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache Acti

high

High remediation recipe for Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache Acti. Upgrade to upgrade to version 6.2.7 or 5.19.8 and remove the vulnerable dos pattern.

cve CVE-2026-53917disclosed 2026-06-30a.k.a. Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache Acti

CVE-2026-54475 - Missing Authorization vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ

high

High remediation recipe for Missing Authorization vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. Upgrade to upgrade to version 6.2.7 and remove the vulnerable authz pattern.

cve CVE-2026-54475disclosed 2026-06-30a.k.a. Missing Authorization vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ

CVE-2026-54672 - electron-updater allows for automatic updates for Electron apps

high

High remediation recipe for electron-updater allows for automatic updates for Electron apps. Upgrade to fixed in version 26.15.0. and remove the vulnerable authz pattern.

cve CVE-2026-54672disclosed 2026-06-30a.k.a. electron-updater allows for automatic updates for Electron apps

CVE-2026-55721 - Storage Concentrator (SC & SCVM) is vulnerable to SQL injection through cookie values processed by the login.p

critical

Critical remediation recipe for Storage Concentrator (SC & SCVM) is vulnerable to SQL injection through cookie values processed by the login.p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55721disclosed 2026-06-30a.k.a. Storage Concentrator (SC & SCVM) is vulnerable to SQL injection through cookie values processed by the login.p

CVE-2026-56137 - RPG MAKER MV and MZ provided by Gotcha Gotcha Games Inc

high

High remediation recipe for RPG MAKER MV and MZ provided by Gotcha Gotcha Games Inc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56137disclosed 2026-06-30a.k.a. RPG MAKER MV and MZ provided by Gotcha Gotcha Games Inc

CVE-2026-56278 - Flowise before 3.1.0 (affected versions 3.0.13 and earlier) uses a weak hardcoded default secret ('flowise') f

critical

Critical remediation recipe for Flowise before 3.1.0 (affected versions 3.0.13 and earlier) uses a weak hardcoded default secret ('flowise') f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56278disclosed 2026-06-30a.k.a. Flowise before 3.1.0 (affected versions 3.0.13 and earlier) uses a weak hardcoded default secret ('flowise') f

CVE-2026-56413 - Storage Concentrator (SC & SCVM) contains a command injection vulnerability in the ms_service.pl service, whic

critical

Critical remediation recipe for Storage Concentrator (SC & SCVM) contains a command injection vulnerability in the ms_service.pl service, whic. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56413disclosed 2026-06-30a.k.a. Storage Concentrator (SC & SCVM) contains a command injection vulnerability in the ms_service.pl service, whic

CVE-2026-56415 - Storage Concentrator (SC & SCVM) contains a command injection vulnerability within the debug.pl script that is

critical

Critical remediation recipe for Storage Concentrator (SC & SCVM) contains a command injection vulnerability within the debug.pl script that is. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56415disclosed 2026-06-30a.k.a. Storage Concentrator (SC & SCVM) contains a command injection vulnerability within the debug.pl script that is

CVE-2026-56808 - DGM3103SCT provided by AVTECH Security Corporation contains an OS command injection vulnerability, which may l

high

High remediation recipe for DGM3103SCT provided by AVTECH Security Corporation contains an OS command injection vulnerability, which may l. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56808disclosed 2026-06-30a.k.a. DGM3103SCT provided by AVTECH Security Corporation contains an OS command injection vulnerability, which may l

CVE-2026-57080 - Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire messa

high

High remediation recipe for Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire messa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57080disclosed 2026-06-30a.k.a. Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire messa

CVE-2026-57081 - Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via deeply nested bencoded inpu

high

High remediation recipe for Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via deeply nested bencoded inpu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-57081disclosed 2026-06-30a.k.a. Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via deeply nested bencoded inpu

CVE-2026-58014 - A flaw was found in GLib. An off-by-one error can occur in the g_key_file_get_locale_string_list function in t

high

High remediation recipe for A flaw was found in GLib. An off-by-one error can occur in the g_key_file_get_locale_string_list function in t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-58014disclosed 2026-06-30a.k.a. A flaw was found in GLib. An off-by-one error can occur in the g_key_file_get_locale_string_list function in t

CVE-2026-58016 - A flaw was found in GLib. A state confusion issue exists in g_dbus_node_info_new_for_xml() in the gio/gdbusint

high

High remediation recipe for A flaw was found in GLib. A state confusion issue exists in g_dbus_node_info_new_for_xml() in the gio/gdbusint. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-58016disclosed 2026-06-30a.k.a. A flaw was found in GLib. A state confusion issue exists in g_dbus_node_info_new_for_xml() in the gio/gdbusint

CVE-2026-58166 - OpenBMB ChatDev through 2.2.0, fixed in commit 4fd4da6, contains a path traversal vulnerability that allows un

critical

Critical remediation recipe for OpenBMB ChatDev through 2.2.0, fixed in commit 4fd4da6, contains a path traversal vulnerability that allows un. Upgrade to fixed in commit 4fd4da6 and remove the vulnerable path-traversal pattern.

cve CVE-2026-58166disclosed 2026-06-30a.k.a. OpenBMB ChatDev through 2.2.0, fixed in commit 4fd4da6, contains a path traversal vulnerability that allows un

CVE-2026-58168 - DeepTutor before version 1.4.10 contains an authorization bypass vulnerability that allows low-privilege users

high

High remediation recipe for DeepTutor before version 1.4.10 contains an authorization bypass vulnerability that allows low-privilege users. Upgrade to version 1.4.10 contains an authorization bypass vulnerability that a and remove the vulnerable command-injection pattern.

cve CVE-2026-58168disclosed 2026-06-30a.k.a. DeepTutor before version 1.4.10 contains an authorization bypass vulnerability that allows low-privilege users

CVE-2026-58169 - Vibe-Trading before 0.1.10 contains a DNS rebinding authentication bypass vulnerability that allows remote att

high

High remediation recipe for Vibe-Trading before 0.1.10 contains a DNS rebinding authentication bypass vulnerability that allows remote att. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-58169disclosed 2026-06-30a.k.a. Vibe-Trading before 0.1.10 contains a DNS rebinding authentication bypass vulnerability that allows remote att

CVE-2026-58170 - Vibe-Trading before 0.1.10 builds the proposal file path by joining a caller-supplied proposal identifier onto

high

High remediation recipe for Vibe-Trading before 0.1.10 builds the proposal file path by joining a caller-supplied proposal identifier onto. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-58170disclosed 2026-06-30a.k.a. Vibe-Trading before 0.1.10 builds the proposal file path by joining a caller-supplied proposal identifier onto

CVE-2026-58302 - rtapi_app in linuxcnc-uspace in LinuxCNC before 2.9.9 allows privilege escalation

high

High remediation recipe for rtapi_app in linuxcnc-uspace in LinuxCNC before 2.9.9 allows privilege escalation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-58302disclosed 2026-06-30a.k.a. rtapi_app in linuxcnc-uspace in LinuxCNC before 2.9.9 allows privilege escalation

CVE-2026-58372 - SeaweedFS before 4.34 contains a path traversal vulnerability in the S3 gateway DeleteMultipleObjectsHandler t

high

High remediation recipe for SeaweedFS before 4.34 contains a path traversal vulnerability in the S3 gateway DeleteMultipleObjectsHandler t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-58372disclosed 2026-06-30a.k.a. SeaweedFS before 4.34 contains a path traversal vulnerability in the S3 gateway DeleteMultipleObjectsHandler t

CVE-2026-58375 - JimuReport through 2.5.0 exposes the POST /jmreport/auto/export endpoint without authentication: the handler i

high

High remediation recipe for JimuReport through 2.5.0 exposes the POST /jmreport/auto/export endpoint without authentication: the handler i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-58375disclosed 2026-06-30a.k.a. JimuReport through 2.5.0 exposes the POST /jmreport/auto/export endpoint without authentication: the handler i

CVE-2026-58449 - txtai through 9.10.0, fixed in commit 11b32da, exposes an API /reindex endpoint whose function body parameter

critical

Critical remediation recipe for txtai through 9.10.0, fixed in commit 11b32da, exposes an API /reindex endpoint whose function body parameter. Upgrade to fixed in commit 11b32da and remove the vulnerable authz pattern.

cve CVE-2026-58449disclosed 2026-06-30a.k.a. txtai through 9.10.0, fixed in commit 11b32da, exposes an API /reindex endpoint whose function body parameter

CVE-2026-6556 - @fastify/express versions 4.0.6 and earlier only rewrite the plugin prefix for middleware mount paths when the

critical

Critical remediation recipe for @fastify/express versions 4.0.6 and earlier only rewrite the plugin prefix for middleware mount paths when the. Upgrade to fixed inside prefixed plugin scopes and remove the vulnerable authz pattern.

cve CVE-2026-6556disclosed 2026-06-30a.k.a. @fastify/express versions 4.0.6 and earlier only rewrite the plugin prefix for middleware mount paths when the

CVE-2026-7663 - IBM Langflow OSS 1.0.0 through 1.9.6 could allow unauthenticated attackers to access protected MCP project res

critical

Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.9.6 could allow unauthenticated attackers to access protected MCP project res. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-7663disclosed 2026-06-30a.k.a. IBM Langflow OSS 1.0.0 through 1.9.6 could allow unauthenticated attackers to access protected MCP project res

CVE-2026-7803 - IBM Langflow OSS 1.0.0 through 1.10.0 could allow arbitrary code execution due to improper validation of flow

critical

Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.10.0 could allow arbitrary code execution due to improper validation of flow. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-7803disclosed 2026-06-30a.k.a. IBM Langflow OSS 1.0.0 through 1.10.0 could allow arbitrary code execution due to improper validation of flow

CVE-2026-7871 - IBM Langflow OSS 1.0.0 through 1.10.0 allows users with Redis access to execute arbitrary code with full appli

critical

Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.10.0 allows users with Redis access to execute arbitrary code with full appli. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-7871disclosed 2026-06-30a.k.a. IBM Langflow OSS 1.0.0 through 1.10.0 allows users with Redis access to execute arbitrary code with full appli

CVE-2026-7873 - IBM Langflow OSS 1.0.0 through 1.10.0 allows authenticated attackers to execute arbitrary OS commands and read

critical

Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.10.0 allows authenticated attackers to execute arbitrary OS commands and read. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-7873disclosed 2026-06-30a.k.a. IBM Langflow OSS 1.0.0 through 1.10.0 allows authenticated attackers to execute arbitrary OS commands and read

CVE-2026-7874 - IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow disclosure of all stored credentials due to the use

critical

Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow disclosure of all stored credentials due to the use. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-7874disclosed 2026-06-30a.k.a. IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow disclosure of all stored credentials due to the use

CVE-2026-8402 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Eksagate

critical

Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Eksagate. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-8402disclosed 2026-06-30a.k.a. Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Eksagate

CVE-2026-8451 - Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler A

high

High remediation recipe for Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler A. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-8451disclosed 2026-06-30a.k.a. Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler A

CVE-2026-8452 - Memory overflow vulnerability NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavi

critical

Critical remediation recipe for Memory overflow vulnerability NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-8452disclosed 2026-06-30a.k.a. Memory overflow vulnerability NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavi

CVE-2026-8655 - Multiple Memory overflow vulnerabilities in NetScaler ADC and NetScaler Gateway leading to unpredictable or er

critical

Critical remediation recipe for Multiple Memory overflow vulnerabilities in NetScaler ADC and NetScaler Gateway leading to unpredictable or er. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-8655disclosed 2026-06-30a.k.a. Multiple Memory overflow vulnerabilities in NetScaler ADC and NetScaler Gateway leading to unpredictable or er

CVE-2025-2902 - Improper Authorization Vulnerability of Maintenance Utility in Hitachi Virtual Storage Platform

high

High remediation recipe for Improper Authorization Vulnerability of Maintenance Utility in Hitachi Virtual Storage Platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-2902disclosed 2026-06-29a.k.a. Improper Authorization Vulnerability of Maintenance Utility in Hitachi Virtual Storage Platform

CVE-2026-11979 - libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --she

high

High remediation recipe for libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --she. Upgrade to fixed in the commit c2e233fc. and remove the vulnerable command-injection pattern.

cve CVE-2026-11979disclosed 2026-06-29a.k.a. libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --she

CVE-2026-12912 - A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially craft

high

High remediation recipe for A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially craft. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-12912disclosed 2026-06-29a.k.a. A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially craft

CVE-2026-13519 - A vulnerability was found in Tenda JD12L 16.03.53.23

high

High remediation recipe for A vulnerability was found in Tenda JD12L 16.03.53.23. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13519disclosed 2026-06-29a.k.a. A vulnerability was found in Tenda JD12L 16.03.53.23

CVE-2026-13580 - A security vulnerability has been detected in Edimax EW-7478APC 1.04

high

High remediation recipe for A security vulnerability has been detected in Edimax EW-7478APC 1.04. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13580disclosed 2026-06-29a.k.a. A security vulnerability has been detected in Edimax EW-7478APC 1.04

CVE-2026-13582 - A flaw has been found in Edimax EW-7478APC 1.04

high

High remediation recipe for A flaw has been found in Edimax EW-7478APC 1.04. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13582disclosed 2026-06-29a.k.a. A flaw has been found in Edimax EW-7478APC 1.04

CVE-2026-13583 - A vulnerability has been found in Edimax EW-7478APC 1.04

high

High remediation recipe for A vulnerability has been found in Edimax EW-7478APC 1.04. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13583disclosed 2026-06-29a.k.a. A vulnerability has been found in Edimax EW-7478APC 1.04

CVE-2026-13592 - A vulnerability was detected in liftoff-sr CIPster up to e8e9dba09bf56962807d3504b783ccdb6287f3e4

high

High remediation recipe for A vulnerability was detected in liftoff-sr CIPster up to e8e9dba09bf56962807d3504b783ccdb6287f3e4. Upgrade to version details for affected or updated releases are not provided. T and remove the vulnerable authz pattern.

cve CVE-2026-13592disclosed 2026-06-29a.k.a. A vulnerability was detected in liftoff-sr CIPster up to e8e9dba09bf56962807d3504b783ccdb6287f3e4

CVE-2026-13676 - fast-uri versions 2.3.1 through 3.1.2 and 4.0.0 fail to canonicalize Unicode (IDN) hostnames for HTTP-family U

high

High remediation recipe for fast-uri versions 2.3.1 through 3.1.2 and 4.0.0 fail to canonicalize Unicode (IDN) hostnames for HTTP-family U. Upgrade to version path calls a helper that does not exist on the global URL co and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-13676disclosed 2026-06-29a.k.a. fast-uri versions 2.3.1 through 3.1.2 and 4.0.0 fail to canonicalize Unicode (IDN) hostnames for HTTP-family U

CVE-2026-13744 - Improper neutralization of attacker-controlled content in Snowflake CLI versions prior to 3.19 allowed uninten

high

High remediation recipe for Improper neutralization of attacker-controlled content in Snowflake CLI versions prior to 3.19 allowed uninten. Upgrade to version 3.19. Users must manually upgrade. and remove the vulnerable authz pattern.

cve CVE-2026-13744disclosed 2026-06-29a.k.a. Improper neutralization of attacker-controlled content in Snowflake CLI versions prior to 3.19 allowed uninten

CVE-2026-13762 - Inconsistent interpretation of HTTP/2 requests in Amazon CloudFront with AWS WAF enabled might allow remote ac

critical

Critical remediation recipe for Inconsistent interpretation of HTTP/2 requests in Amazon CloudFront with AWS WAF enabled might allow remote ac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13762disclosed 2026-06-29a.k.a. Inconsistent interpretation of HTTP/2 requests in Amazon CloudFront with AWS WAF enabled might allow remote ac

CVE-2026-13763 - Inconsistent interpretation of HTTP/2 requests in AWS Application Load Balancer with AWS WAF enabled might all

critical

Critical remediation recipe for Inconsistent interpretation of HTTP/2 requests in AWS Application Load Balancer with AWS WAF enabled might all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13763disclosed 2026-06-29a.k.a. Inconsistent interpretation of HTTP/2 requests in AWS Application Load Balancer with AWS WAF enabled might all

CVE-2026-22078 - Because O+ Connect's IPC service does not authenticate clients, external applications can escalate privileges

high

High remediation recipe for Because O+ Connect's IPC service does not authenticate clients, external applications can escalate privileges. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-22078disclosed 2026-06-29a.k.a. Because O+ Connect's IPC service does not authenticate clients, external applications can escalate privileges

CVE-2026-25707 - A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be

high

High remediation recipe for A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-25707disclosed 2026-06-29a.k.a. A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be

CVE-2026-34592 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

high

High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to fixed in 4.0.0-beta.471. and remove the vulnerable command-injection pattern.

cve CVE-2026-34592disclosed 2026-06-29a.k.a. Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

CVE-2026-34594 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

high

High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to fixed in 4.0.0-beta.471. and remove the vulnerable command-injection pattern.

cve CVE-2026-34594disclosed 2026-06-29a.k.a. Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

CVE-2026-34597 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

high

High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to fixed in 4.0.0-beta.470. and remove the vulnerable command-injection pattern.

cve CVE-2026-34597disclosed 2026-06-29a.k.a. Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

CVE-2026-36848 - Gigamon GVOS v5.16.1 and below is vulnerable to Directory Traversal in the GVOS H-VUE subsystem

high

High remediation recipe for Gigamon GVOS v5.16.1 and below is vulnerable to Directory Traversal in the GVOS H-VUE subsystem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-36848disclosed 2026-06-29a.k.a. Gigamon GVOS v5.16.1 and below is vulnerable to Directory Traversal in the GVOS H-VUE subsystem

CVE-2026-39868 - This issue was addressed with improved input validation

critical

Critical remediation recipe for This issue was addressed with improved input validation. Upgrade to fixed in iOS 26.5.2 and iPadOS 26.5.2 and remove the vulnerable authz pattern.

cve CVE-2026-39868disclosed 2026-06-29a.k.a. This issue was addressed with improved input validation

CVE-2026-40522 - FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Bank Statement report handler that

high

High remediation recipe for FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Bank Statement report handler that. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-40522disclosed 2026-06-29a.k.a. FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Bank Statement report handler that

CVE-2026-40523 - FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Audit Trail report handler that al

high

High remediation recipe for FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Audit Trail report handler that al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-40523disclosed 2026-06-29a.k.a. FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Audit Trail report handler that al

CVE-2026-40524 - FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the get_gl_transactions() function whe

high

High remediation recipe for FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the get_gl_transactions() function whe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-40524disclosed 2026-06-29a.k.a. FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the get_gl_transactions() function whe

CVE-2026-41992 - GNU gzip contains a global buffer overflow vulnerability in the LZH decompression logic caused by improper reu

high

High remediation recipe for GNU gzip contains a global buffer overflow vulnerability in the LZH decompression logic caused by improper reu. Upgrade to fixed in the commit 63dbf6b3b9e6e781df1a6a64e609b10e23969681 and remove the vulnerable authz pattern.

cve CVE-2026-41992disclosed 2026-06-29a.k.a. GNU gzip contains a global buffer overflow vulnerability in the LZH decompression logic caused by improper reu

CVE-2026-43701 - The issue was addressed with improved checks

high

High remediation recipe for The issue was addressed with improved checks. Upgrade to fixed in Safari 26.5.2 and remove the vulnerable authz pattern.

cve CVE-2026-43701disclosed 2026-06-29a.k.a. The issue was addressed with improved checks

CVE-2026-43705 - A type confusion issue was addressed with improved checks

high

High remediation recipe for A type confusion issue was addressed with improved checks. Upgrade to fixed in Safari 26.5.2 and remove the vulnerable authz pattern.

cve CVE-2026-43705disclosed 2026-06-29a.k.a. A type confusion issue was addressed with improved checks

CVE-2026-43715 - A use-after-free issue was addressed with improved memory management

high

High remediation recipe for A use-after-free issue was addressed with improved memory management. Upgrade to fixed in Safari 26.5.2 and remove the vulnerable authz pattern.

cve CVE-2026-43715disclosed 2026-06-29a.k.a. A use-after-free issue was addressed with improved memory management

CVE-2026-43724 - The issue was addressed with improved input sanitization

high

High remediation recipe for The issue was addressed with improved input sanitization. Upgrade to fixed in iOS 26.5.2 and iPadOS 26.5.2 and remove the vulnerable authz pattern.

cve CVE-2026-43724disclosed 2026-06-29a.k.a. The issue was addressed with improved input sanitization

CVE-2026-43725 - The issue was addressed with improved input validation

high

High remediation recipe for The issue was addressed with improved input validation. Upgrade to fixed in Safari 26.5.2 and remove the vulnerable authz pattern.

cve CVE-2026-43725disclosed 2026-06-29a.k.a. The issue was addressed with improved input validation

CVE-2026-43731 - A use-after-free issue was addressed with improved memory management

high

High remediation recipe for A use-after-free issue was addressed with improved memory management. Upgrade to fixed in Safari 26.5.2 and remove the vulnerable authz pattern.

cve CVE-2026-43731disclosed 2026-06-29a.k.a. A use-after-free issue was addressed with improved memory management

CVE-2026-43735 - The issue was addressed with improved checks

high

High remediation recipe for The issue was addressed with improved checks. Upgrade to fixed in Safari 26.5.2 and remove the vulnerable authz pattern.

cve CVE-2026-43735disclosed 2026-06-29a.k.a. The issue was addressed with improved checks

CVE-2026-48558 - SimpleHelp Authentication Bypass Vulnerability

highKEV

High remediation recipe for SimpleHelp Authentication Bypass Vulnerability. Upgrade to Apply mitigations or fixed release per vendor/CISA KEV instructions and remove the vulnerable command-injection pattern.

cve CVE-2026-48558disclosed 2026-06-29a.k.a. SimpleHelp Authentication Bypass Vulnerability

CVE-2026-49049 - The Helix3 plugin for Joomla exposes an ajax handler task, that allows unauthenticated attackers to delete arb

high

High remediation recipe for The Helix3 plugin for Joomla exposes an ajax handler task, that allows unauthenticated attackers to delete arb. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-49049disclosed 2026-06-29a.k.a. The Helix3 plugin for Joomla exposes an ajax handler task, that allows unauthenticated attackers to delete arb

CVE-2026-51221 - A buffer overflow in the Get_Attribute_List function of EIPStackGroup OpENer commit 76b95c allows attackers to

high

High remediation recipe for A buffer overflow in the Get_Attribute_List function of EIPStackGroup OpENer commit 76b95c allows attackers to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-51221disclosed 2026-06-29a.k.a. A buffer overflow in the Get_Attribute_List function of EIPStackGroup OpENer commit 76b95c allows attackers to

CVE-2026-53404 - Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat's rewrite valve meant that if the

high

High remediation recipe for Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat's rewrite valve meant that if the. Upgrade to upgrade to version 11.0.23 and remove the vulnerable authz pattern.

cve CVE-2026-53404disclosed 2026-06-29a.k.a. Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat's rewrite valve meant that if the

CVE-2026-53434 - Detection of Error Condition Without Action vulnerability in Apache Tomcat when configuring CRLs for a FFM bas

critical

Critical remediation recipe for Detection of Error Condition Without Action vulnerability in Apache Tomcat when configuring CRLs for a FFM bas. Upgrade to upgrade to version 11.0.23 and remove the vulnerable authz pattern.

cve CVE-2026-53434disclosed 2026-06-29a.k.a. Detection of Error Condition Without Action vulnerability in Apache Tomcat when configuring CRLs for a FFM bas

CVE-2026-54369 - acl before version 2.4.0 contains a symlink traversal vulnerability in the libacl pathname-based functions acl

high

High remediation recipe for acl before version 2.4.0 contains a symlink traversal vulnerability in the libacl pathname-based functions acl. Upgrade to version 2.4.0 contains a symlink traversal vulnerability in the liba and remove the vulnerable path-traversal pattern.

cve CVE-2026-54369disclosed 2026-06-29a.k.a. acl before version 2.4.0 contains a symlink traversal vulnerability in the libacl pathname-based functions acl

CVE-2026-54371 - attr before version 2.6.0 contains a symlink traversal vulnerability in the getfattr and setfattr utilities th

high

High remediation recipe for attr before version 2.6.0 contains a symlink traversal vulnerability in the getfattr and setfattr utilities th. Upgrade to version 2.6.0 contains a symlink traversal vulnerability in the getf and remove the vulnerable path-traversal pattern.

cve CVE-2026-54371disclosed 2026-06-29a.k.a. attr before version 2.6.0 contains a symlink traversal vulnerability in the getfattr and setfattr utilities th

CVE-2026-55276 - Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat meant that special roles and empty

critical

Critical remediation recipe for Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat meant that special roles and empty. Upgrade to upgrade to version 11.0.23 and remove the vulnerable authz pattern.

cve CVE-2026-55276disclosed 2026-06-29a.k.a. Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat meant that special roles and empty

CVE-2026-55607 - Claude Code is an agentic coding tool. From 2.1.38 until 2.1.163, Claude Code's worktree handling allowed crea

high

High remediation recipe for Claude Code is an agentic coding tool. From 2.1.38 until 2.1.163, Claude Code's worktree handling allowed crea. Upgrade to fixed in 2.1.163. and remove the vulnerable path-traversal pattern.

cve CVE-2026-55607disclosed 2026-06-29a.k.a. Claude Code is an agentic coding tool. From 2.1.38 until 2.1.163, Claude Code's worktree handling allowed crea

CVE-2026-55844 - Home Assistant is open source home automation software that puts local control and privacy first

high

High remediation recipe for Home Assistant is open source home automation software that puts local control and privacy first. Upgrade to fixed in 2025.5.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-55844disclosed 2026-06-29a.k.a. Home Assistant is open source home automation software that puts local control and privacy first

CVE-2026-55957 - Missing Critical Step in Authentication vulnerability in Apache Tomcat when the JNDIRealm was configured to au

high

High remediation recipe for Missing Critical Step in Authentication vulnerability in Apache Tomcat when the JNDIRealm was configured to au. Upgrade to upgrade to version 11.0.5 and remove the vulnerable authz pattern.

cve CVE-2026-55957disclosed 2026-06-29a.k.a. Missing Critical Step in Authentication vulnerability in Apache Tomcat when the JNDIRealm was configured to au

CVE-2026-56285 - Nitter's /video media proxy endpoint fails to validate target URLs against Twitter/X domains and uses a hardco

high

High remediation recipe for Nitter's /video media proxy endpoint fails to validate target URLs against Twitter/X domains and uses a hardco. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56285disclosed 2026-06-29a.k.a. Nitter's /video media proxy endpoint fails to validate target URLs against Twitter/X domains and uses a hardco

CVE-2026-56780 - Modoboa before 2.9.0 contains an insecure direct object reference vulnerability in the PUT /api/v1/accounts/{p

high

High remediation recipe for Modoboa before 2.9.0 contains an insecure direct object reference vulnerability in the PUT /api/v1/accounts/{p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56780disclosed 2026-06-29a.k.a. Modoboa before 2.9.0 contains an insecure direct object reference vulnerability in the PUT /api/v1/accounts/{p

CVE-2026-56782 - Gorse before 0.5.10 contains an authentication bypass vulnerability in the /api/dump and /api/restore endpoint

critical

Critical remediation recipe for Gorse before 0.5.10 contains an authentication bypass vulnerability in the /api/dump and /api/restore endpoint. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-56782disclosed 2026-06-29a.k.a. Gorse before 0.5.10 contains an authentication bypass vulnerability in the /api/dump and /api/restore endpoint

CVE-2026-57320 - Unauthenticated Cross Site Scripting (XSS) in BEAR <= 1.1.8 versions

high

High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in BEAR <= 1.1.8 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-57320disclosed 2026-06-29a.k.a. Unauthenticated Cross Site Scripting (XSS) in BEAR <= 1.1.8 versions

CVE-2026-57331 - Performer Arbitrary File Deletion in Paid Videochat Turnkey Site <= 7.4.8 versions

critical

Critical remediation recipe for Performer Arbitrary File Deletion in Paid Videochat Turnkey Site <= 7.4.8 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57331disclosed 2026-06-29a.k.a. Performer Arbitrary File Deletion in Paid Videochat Turnkey Site <= 7.4.8 versions

CVE-2026-57332 - Subscriber Broken Access Control in Wallet System for WooCommerce <= 2.7.6 versions

high

High remediation recipe for Subscriber Broken Access Control in Wallet System for WooCommerce <= 2.7.6 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-57332disclosed 2026-06-29a.k.a. Subscriber Broken Access Control in Wallet System for WooCommerce <= 2.7.6 versions

CVE-2026-57333 - Unauthenticated Cross Site Scripting (XSS) in Link Whisper Free <= 0.9.4 versions

high

High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in Link Whisper Free <= 0.9.4 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-57333disclosed 2026-06-29a.k.a. Unauthenticated Cross Site Scripting (XSS) in Link Whisper Free <= 0.9.4 versions

CVE-2026-57336 - Unauthenticated Cross Site Scripting (XSS) in Jobify <= 4.3.2 versions

high

High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in Jobify <= 4.3.2 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-57336disclosed 2026-06-29a.k.a. Unauthenticated Cross Site Scripting (XSS) in Jobify <= 4.3.2 versions

CVE-2026-57337 - Unauthenticated Cross Site Scripting (XSS) in Landing Page Builder <= 1.5.3.5 versions

high

High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in Landing Page Builder <= 1.5.3.5 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-57337disclosed 2026-06-29a.k.a. Unauthenticated Cross Site Scripting (XSS) in Landing Page Builder <= 1.5.3.5 versions

CVE-2026-57338 - Unauthenticated Cross Site Scripting (XSS) in ARForms <= 7.1.2 versions

high

High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in ARForms <= 7.1.2 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-57338disclosed 2026-06-29a.k.a. Unauthenticated Cross Site Scripting (XSS) in ARForms <= 7.1.2 versions

CVE-2026-57498 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

critical

Critical remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to fixed in 4.0.0-beta.474. and remove the vulnerable command-injection pattern.

cve CVE-2026-57498disclosed 2026-06-29a.k.a. Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

CVE-2026-57947 - Pinpoint through 3.1.0 contains a server-side request forgery vulnerability in the webhook registration endpoi

high

High remediation recipe for Pinpoint through 3.1.0 contains a server-side request forgery vulnerability in the webhook registration endpoi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-57947disclosed 2026-06-29a.k.a. Pinpoint through 3.1.0 contains a server-side request forgery vulnerability in the webhook registration endpoi

CVE-2026-57950 - ruoyi-vue-pro through 2026.05, fixed in commit 5d1fd70 contains a broken access control vulnerability in ErpSa

high

High remediation recipe for ruoyi-vue-pro through 2026.05, fixed in commit 5d1fd70 contains a broken access control vulnerability in ErpSa. Upgrade to fixed in commit 5d1fd70 contains a broken access control vulnerabilit and remove the vulnerable command-injection pattern.

cve CVE-2026-57950disclosed 2026-06-29a.k.a. ruoyi-vue-pro through 2026.05, fixed in commit 5d1fd70 contains a broken access control vulnerability in ErpSa

CVE-2026-57955 - SigNoz through 0.130.1 contains a SQL injection vulnerability that allows authenticated attackers to execute a

high

High remediation recipe for SigNoz through 0.130.1 contains a SQL injection vulnerability that allows authenticated attackers to execute a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-57955disclosed 2026-06-29a.k.a. SigNoz through 0.130.1 contains a SQL injection vulnerability that allows authenticated attackers to execute a

CVE-2026-57999 - luci-app-tailscale-community contains a command injection vulnerability in the tailscale.do_login RPC method t

high

High remediation recipe for luci-app-tailscale-community contains a command injection vulnerability in the tailscale.do_login RPC method t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-57999disclosed 2026-06-29a.k.a. luci-app-tailscale-community contains a command injection vulnerability in the tailscale.do_login RPC method t

CVE-2026-58000 - luci-proto-openvpn through 0.11.1, fixed in commit e4ff45e, contains a command injection vulnerability in the

high

High remediation recipe for luci-proto-openvpn through 0.11.1, fixed in commit e4ff45e, contains a command injection vulnerability in the. Upgrade to fixed in commit e4ff45e and remove the vulnerable command-injection pattern.

cve CVE-2026-58000disclosed 2026-06-29a.k.a. luci-proto-openvpn through 0.11.1, fixed in commit e4ff45e, contains a command injection vulnerability in the

CVE-2026-7656 - The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_

high

High remediation recipe for The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_. Upgrade to fixed by splitting the condition so any failing check drops the pa and remove the vulnerable command-injection pattern.

cve CVE-2026-7656disclosed 2026-06-29a.k.a. The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_

CVE-2026-10643 - Zephyr's IP socket recvmsg() implementation (subsys/net/lib/sockets/sockets_inet.c, insert_pktinfo()) validate

high

High remediation recipe for Zephyr's IP socket recvmsg() implementation (subsys/net/lib/sockets/sockets_inet.c, insert_pktinfo()) validate. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-10643disclosed 2026-06-28a.k.a. Zephyr's IP socket recvmsg() implementation (subsys/net/lib/sockets/sockets_inet.c, insert_pktinfo()) validate

CVE-2026-10646 - Zephyr's BSD-sockets getaddrinfo() implementation (subsys/net/lib/sockets/getaddrinfo.c) passes a pointer to a

high

High remediation recipe for Zephyr's BSD-sockets getaddrinfo() implementation (subsys/net/lib/sockets/getaddrinfo.c) passes a pointer to a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-10646disclosed 2026-06-28a.k.a. Zephyr's BSD-sockets getaddrinfo() implementation (subsys/net/lib/sockets/getaddrinfo.c) passes a pointer to a

CVE-2026-49048 - The Joomla extension JoomCCK exposes a front-end controller task, that builds two SQL statements by directly c

critical

Critical remediation recipe for The Joomla extension JoomCCK exposes a front-end controller task, that builds two SQL statements by directly c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-49048disclosed 2026-06-28a.k.a. The Joomla extension JoomCCK exposes a front-end controller task, that builds two SQL statements by directly c

CVE-2023-37524 - HCL Traveler for Microsoft Outlook (HTMO) is susceptible to vulnerabilities due to .NET Framework 4.5 being ou

high

High remediation recipe for HCL Traveler for Microsoft Outlook (HTMO) is susceptible to vulnerabilities due to .NET Framework 4.5 being ou. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2023-37524disclosed 2026-06-27a.k.a. HCL Traveler for Microsoft Outlook (HTMO) is susceptible to vulnerabilities due to .NET Framework 4.5 being ou

CVE-2026-45258 - dsp_mmap_single() validated the requested mapping by checking the sum of the user-supplied offset and length a

high

High remediation recipe for dsp_mmap_single() validated the requested mapping by checking the sum of the user-supplied offset and length a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-45258disclosed 2026-06-27a.k.a. dsp_mmap_single() validated the requested mapping by checking the sum of the user-supplied offset and length a

CVE-2026-49412 - The kernel handler for IPV6_MSFILTER dropped a serializing lock in order to copy the source-filter list from u

high

High remediation recipe for The kernel handler for IPV6_MSFILTER dropped a serializing lock in order to copy the source-filter list from u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-49412disclosed 2026-06-27a.k.a. The kernel handler for IPV6_MSFILTER dropped a serializing lock in order to copy the source-filter list from u

CVE-2026-49413 - The Linuxulator determined whether a binary was set-user-ID or set-group-ID by checking the P_SUGID process fl

high

High remediation recipe for The Linuxulator determined whether a binary was set-user-ID or set-group-ID by checking the P_SUGID process fl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-49413disclosed 2026-06-27a.k.a. The Linuxulator determined whether a binary was set-user-ID or set-group-ID by checking the P_SUGID process fl

CVE-2026-49414 - The ELF image activator cleared per-process ASLR preference flags for setuid binaries after the code that comp

high

High remediation recipe for The ELF image activator cleared per-process ASLR preference flags for setuid binaries after the code that comp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-49414disclosed 2026-06-27a.k.a. The ELF image activator cleared per-process ASLR preference flags for setuid binaries after the code that comp

CVE-2026-49416 - The CONS_HISTORY ioctl handler did not adequately validate the requested history size

high

High remediation recipe for The CONS_HISTORY ioctl handler did not adequately validate the requested history size. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-49416disclosed 2026-06-27a.k.a. The CONS_HISTORY ioctl handler did not adequately validate the requested history size

CVE-2026-49417 - Second, the audio buffer backing a mapping could be freed when the device was closed even though the mapping r

high

High remediation recipe for Second, the audio buffer backing a mapping could be freed when the device was closed even though the mapping r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-49417disclosed 2026-06-27a.k.a. Second, the audio buffer backing a mapping could be freed when the device was closed even though the mapping r

CVE-2026-11625 - Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes

high

High remediation recipe for Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-11625disclosed 2026-06-26a.k.a. Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes

CVE-2026-11702 - Bytes::Random::Secure::Tiny versions through 1.011 for Perl share internal state across forked processes

high

High remediation recipe for Bytes::Random::Secure::Tiny versions through 1.011 for Perl share internal state across forked processes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-11702disclosed 2026-06-26a.k.a. Bytes::Random::Secure::Tiny versions through 1.011 for Perl share internal state across forked processes

CVE-2026-13372 - Incorrect link resolution by display name in the custom PowerShell VPN editor in Devolutions Remote Desktop Ma

high

High remediation recipe for Incorrect link resolution by display name in the custom PowerShell VPN editor in Devolutions Remote Desktop Ma. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13372disclosed 2026-06-26a.k.a. Incorrect link resolution by display name in the custom PowerShell VPN editor in Devolutions Remote Desktop Ma

CVE-2026-21734 - A web page that contains unusual GPU shader code is loaded into the GPU compiler process and can trigger a wri

high

High remediation recipe for A web page that contains unusual GPU shader code is loaded into the GPU compiler process and can trigger a wri. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-21734disclosed 2026-06-26a.k.a. A web page that contains unusual GPU shader code is loaded into the GPU compiler process and can trigger a wri

CVE-2026-28701 - Various versions of Daktronics Controller Firmware could allow authenticated and unauthenticated remote users

critical

Critical remediation recipe for Various versions of Daktronics Controller Firmware could allow authenticated and unauthenticated remote users. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-28701disclosed 2026-06-26a.k.a. Various versions of Daktronics Controller Firmware could allow authenticated and unauthenticated remote users

CVE-2026-31928 - The DMP-5000 devices are shipped with a default administrative web account with weak authentication controls,

high

High remediation recipe for The DMP-5000 devices are shipped with a default administrative web account with weak authentication controls,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-31928disclosed 2026-06-26a.k.a. The DMP-5000 devices are shipped with a default administrative web account with weak authentication controls,

CVE-2026-32833 - Cudy LT300 3.0 running firmware prior to version 2.5.12 contains an OS command injection vulnerability that al

high

High remediation recipe for Cudy LT300 3.0 running firmware prior to version 2.5.12 contains an OS command injection vulnerability that al. Upgrade to version 2.5.12 contains an OS command injection vulnerability that a and remove the vulnerable command-injection pattern.

cve CVE-2026-32833disclosed 2026-06-26a.k.a. Cudy LT300 3.0 running firmware prior to version 2.5.12 contains an OS command injection vulnerability that al

CVE-2026-33560 - The DMP-5000 file service exposes authenticated arbitrary file upload functionality

high

High remediation recipe for The DMP-5000 file service exposes authenticated arbitrary file upload functionality. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-33560disclosed 2026-06-26a.k.a. The DMP-5000 file service exposes authenticated arbitrary file upload functionality

CVE-2026-36478 - An issue in Technitium DNS Server v.14.3 and before allows a remote attacker to cause a denial of service via

high

High remediation recipe for An issue in Technitium DNS Server v.14.3 and before allows a remote attacker to cause a denial of service via. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-36478disclosed 2026-06-26a.k.a. An issue in Technitium DNS Server v.14.3 and before allows a remote attacker to cause a denial of service via

CVE-2026-38639 - An issue in the parse_month function (/time/strptime.rs) of relibc commit ab6a2e allows attackers to cause a D

high

High remediation recipe for An issue in the parse_month function (/time/strptime.rs) of relibc commit ab6a2e allows attackers to cause a D. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-38639disclosed 2026-06-26a.k.a. An issue in the parse_month function (/time/strptime.rs) of relibc commit ab6a2e allows attackers to cause a D

CVE-2026-38641 - An issue in the DSO::mmap_and_copy function of relibc commit 61f42d allows attackers to cause a Denial of Serv

high

High remediation recipe for An issue in the DSO::mmap_and_copy function of relibc commit 61f42d allows attackers to cause a Denial of Serv. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-38641disclosed 2026-06-26a.k.a. An issue in the DSO::mmap_and_copy function of relibc commit 61f42d allows attackers to cause a Denial of Serv

CVE-2026-45195 - Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigg

high

High remediation recipe for Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigg. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-45195disclosed 2026-06-26a.k.a. Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigg

CVE-2026-45807 - Kestra is an open-source, event-driven orchestration platform

high

High remediation recipe for Kestra is an open-source, event-driven orchestration platform. Upgrade to fixed in 1.0.43 and 1.3.19. and remove the vulnerable command-injection pattern.

cve CVE-2026-45807disclosed 2026-06-26a.k.a. Kestra is an open-source, event-driven orchestration platform

CVE-2026-46604 - The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset

high

High remediation recipe for The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-46604disclosed 2026-06-26a.k.a. The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset

CVE-2026-46710 - Notepad++ is a free and open-source source code editor

high

High remediation recipe for Notepad++ is a free and open-source source code editor. Upgrade to fixed in 8.9.6. and remove the vulnerable command-injection pattern.

cve CVE-2026-46710disclosed 2026-06-26a.k.a. Notepad++ is a free and open-source source code editor

CVE-2026-47220 - Envoy is an open source edge and service proxy designed for cloud-native applications

high

High remediation recipe for Envoy is an open source edge and service proxy designed for cloud-native applications. Upgrade to fixed in 1.37.5 and 1.38.3. and remove the vulnerable command-injection pattern.

cve CVE-2026-47220disclosed 2026-06-26a.k.a. Envoy is an open source edge and service proxy designed for cloud-native applications

CVE-2026-48042 - Envoy is an open source edge and service proxy designed for cloud-native applications

high

High remediation recipe for Envoy is an open source edge and service proxy designed for cloud-native applications. Upgrade to fixed in 1.35.11 and remove the vulnerable command-injection pattern.

cve CVE-2026-48042disclosed 2026-06-26a.k.a. Envoy is an open source edge and service proxy designed for cloud-native applications

CVE-2026-48044 - Envoy is an open source edge and service proxy designed for cloud-native applications

high

High remediation recipe for Envoy is an open source edge and service proxy designed for cloud-native applications. Upgrade to fixed in 1.35.11 and remove the vulnerable command-injection pattern.

cve CVE-2026-48044disclosed 2026-06-26a.k.a. Envoy is an open source edge and service proxy designed for cloud-native applications

CVE-2026-48743 - Envoy is an open source edge and service proxy designed for cloud-native applications

high

High remediation recipe for Envoy is an open source edge and service proxy designed for cloud-native applications. Upgrade to fixed in 1.35.11 and remove the vulnerable command-injection pattern.

cve CVE-2026-48743disclosed 2026-06-26a.k.a. Envoy is an open source edge and service proxy designed for cloud-native applications

CVE-2026-48778 - Notepad++ is a free and open-source source code editor

high

High remediation recipe for Notepad++ is a free and open-source source code editor. Upgrade to fixed in 8.9.6.1. and remove the vulnerable command-injection pattern.

cve CVE-2026-48778disclosed 2026-06-26a.k.a. Notepad++ is a free and open-source source code editor

CVE-2026-48800 - Notepad++ is a free and open-source source code editor

high

High remediation recipe for Notepad++ is a free and open-source source code editor. Upgrade to fixed in 8.9.6.1. and remove the vulnerable command-injection pattern.

cve CVE-2026-48800disclosed 2026-06-26a.k.a. Notepad++ is a free and open-source source code editor

CVE-2026-49984 - Kestra is an open-source, event-driven orchestration platform

high

High remediation recipe for Kestra is an open-source, event-driven orchestration platform. Upgrade to fixed in 1.0.45 and 1.3.23. and remove the vulnerable command-injection pattern.

cve CVE-2026-49984disclosed 2026-06-26a.k.a. Kestra is an open-source, event-driven orchestration platform

CVE-2026-49991 - RustFS is a distributed object storage system built in Rust

high

High remediation recipe for RustFS is a distributed object storage system built in Rust. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-49991disclosed 2026-06-26a.k.a. RustFS is a distributed object storage system built in Rust

CVE-2026-50132 - Budibase is an open-source low-code platform

high

High remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-50132disclosed 2026-06-26a.k.a. Budibase is an open-source low-code platform

CVE-2026-50136 - Budibase is an open-source low-code platform

high

High remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.3. and remove the vulnerable command-injection pattern.

cve CVE-2026-50136disclosed 2026-06-26a.k.a. Budibase is an open-source low-code platform

CVE-2026-50137 - Budibase is an open-source low-code platform

critical

Critical remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-50137disclosed 2026-06-26a.k.a. Budibase is an open-source low-code platform

CVE-2026-50741 - Bypass to the fix for CVE-2026-34916. Variants of such vectors have been also reported by phucrio and offsetmd

high

High remediation recipe for Bypass to the fix for CVE-2026-34916. Variants of such vectors have been also reported by phucrio and offsetmd. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50741disclosed 2026-06-26a.k.a. Bypass to the fix for CVE-2026-34916. Variants of such vectors have been also reported by phucrio and offsetmd

CVE-2026-52782 - OpenProject is open-source, web-based project management software

critical

Critical remediation recipe for OpenProject is open-source, web-based project management software. Upgrade to fixed in 17.3.3 and 17.4.1. and remove the vulnerable command-injection pattern.

cve CVE-2026-52782disclosed 2026-06-26a.k.a. OpenProject is open-source, web-based project management software

CVE-2026-52783 - OpenProject is open-source, web-based project management software

high

High remediation recipe for OpenProject is open-source, web-based project management software. Upgrade to fixed in 17.3.3 and 17.4.1. and remove the vulnerable command-injection pattern.

cve CVE-2026-52783disclosed 2026-06-26a.k.a. OpenProject is open-source, web-based project management software

CVE-2026-52785 - OpenProject is open-source, web-based project management software

critical

Critical remediation recipe for OpenProject is open-source, web-based project management software. Upgrade to fixed in 17.3.3 and 17.4.1. and remove the vulnerable command-injection pattern.

cve CVE-2026-52785disclosed 2026-06-26a.k.a. OpenProject is open-source, web-based project management software

CVE-2026-52884 - Notepad++ is a free and open-source source code editor

high

High remediation recipe for Notepad++ is a free and open-source source code editor. Upgrade to fixed in 8.9.6.2. and remove the vulnerable command-injection pattern.

cve CVE-2026-52884disclosed 2026-06-26a.k.a. Notepad++ is a free and open-source source code editor

CVE-2026-53281 - In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid NULL pointer dereference

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid NULL pointer dereference. Upgrade to fixed a NULL pointer dereference in an unlikely situation partly. and remove the vulnerable authz pattern.

cve CVE-2026-53281disclosed 2026-06-26a.k.a. In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid NULL pointer dereference

CVE-2026-53286 - In the Linux kernel, the following vulnerability has been resolved: idpf: fix double free and use-after-free i

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: idpf: fix double free and use-after-free i. Upgrade to fixed the same use-after-free in the matching unplug path in this and remove the vulnerable authz pattern.

cve CVE-2026-53286disclosed 2026-06-26a.k.a. In the Linux kernel, the following vulnerability has been resolved: idpf: fix double free and use-after-free i

CVE-2026-53290 - In the Linux kernel, the following vulnerability has been resolved: drm/xe/eustall: Fix drm_dev_put called bef

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/xe/eustall: Fix drm_dev_put called bef. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53290disclosed 2026-06-26a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/xe/eustall: Fix drm_dev_put called bef

CVE-2026-53294 - In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: don't free the reus

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: don't free the reus. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53294disclosed 2026-06-26a.k.a. In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: don't free the reus

CVE-2026-53296 - In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: free channels on pr

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: free channels on pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53296disclosed 2026-06-26a.k.a. In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: free channels on pr

CVE-2026-53300 - In the Linux kernel, the following vulnerability has been resolved: net: enetc: fix NTMP DMA use-after-free is

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: enetc: fix NTMP DMA use-after-free is. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53300disclosed 2026-06-26a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: enetc: fix NTMP DMA use-after-free is

CVE-2026-53309 - In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: fix off-by-one in dlm_match_reg

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: fix off-by-one in dlm_match_reg. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53309disclosed 2026-06-26a.k.a. In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: fix off-by-one in dlm_match_reg

CVE-2026-53322 - In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Clean up DMABUFs before disablin

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Clean up DMABUFs before disablin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53322disclosed 2026-06-26a.k.a. In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Clean up DMABUFs before disablin

CVE-2026-54351 - Budibase is an open-source low-code platform

high

High remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.9. and remove the vulnerable command-injection pattern.

cve CVE-2026-54351disclosed 2026-06-26a.k.a. Budibase is an open-source low-code platform

CVE-2026-54352 - Budibase is an open-source low-code platform

critical

Critical remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.9. and remove the vulnerable command-injection pattern.

cve CVE-2026-54352disclosed 2026-06-26a.k.a. Budibase is an open-source low-code platform

CVE-2026-54353 - Budibase is an open-source low-code platform

high

High remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.9. and remove the vulnerable command-injection pattern.

cve CVE-2026-54353disclosed 2026-06-26a.k.a. Budibase is an open-source low-code platform

CVE-2026-54826 - Subscriber Insecure Direct Object References (IDOR) in SupportCandy <= 3.4.6 versions

high

High remediation recipe for Subscriber Insecure Direct Object References (IDOR) in SupportCandy <= 3.4.6 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54826disclosed 2026-06-26a.k.a. Subscriber Insecure Direct Object References (IDOR) in SupportCandy <= 3.4.6 versions

CVE-2026-54835 - Unauthenticated Broken Access Control in Five Star Restaurant Menu <= 2.5.2 versions

high

High remediation recipe for Unauthenticated Broken Access Control in Five Star Restaurant Menu <= 2.5.2 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54835disclosed 2026-06-26a.k.a. Unauthenticated Broken Access Control in Five Star Restaurant Menu <= 2.5.2 versions

CVE-2026-55069 - Kestra is an open-source, event-driven orchestration platform

high

High remediation recipe for Kestra is an open-source, event-driven orchestration platform. Upgrade to fixed in 1.3.24. and remove the vulnerable command-injection pattern.

cve CVE-2026-55069disclosed 2026-06-26a.k.a. Kestra is an open-source, event-driven orchestration platform

CVE-2026-55189 - RustFS is a distributed object storage system built in Rust

high

High remediation recipe for RustFS is a distributed object storage system built in Rust. Upgrade to fixed in 1.0.0-beta.9. and remove the vulnerable authz pattern.

cve CVE-2026-55189disclosed 2026-06-26a.k.a. RustFS is a distributed object storage system built in Rust

CVE-2026-55975 - A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML f

high

High remediation recipe for A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-55975disclosed 2026-06-26a.k.a. A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML f

CVE-2026-56008 - Contributor Privilege Escalation in Fusion Builder <= 3.15.4 versions

high

High remediation recipe for Contributor Privilege Escalation in Fusion Builder <= 3.15.4 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56008disclosed 2026-06-26a.k.a. Contributor Privilege Escalation in Fusion Builder <= 3.15.4 versions

CVE-2026-56028 - Unauthenticated Privilege Escalation in Easy Elements for Elementor &#8211; Addons &amp; Website Templates <=

critical

Critical remediation recipe for Unauthenticated Privilege Escalation in Easy Elements for Elementor &#8211; Addons &amp; Website Templates <=. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56028disclosed 2026-06-26a.k.a. Unauthenticated Privilege Escalation in Easy Elements for Elementor &#8211; Addons &amp; Website Templates <=

CVE-2026-56034 - Unauthenticated SQL Injection in Library Management System <= 3.5.7 versions

critical

Critical remediation recipe for Unauthenticated SQL Injection in Library Management System <= 3.5.7 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56034disclosed 2026-06-26a.k.a. Unauthenticated SQL Injection in Library Management System <= 3.5.7 versions

CVE-2026-56041 - Unauthenticated Cross Site Scripting (XSS) in Responsive Lightbox <= 2.7.6 versions

high

High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in Responsive Lightbox <= 2.7.6 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-56041disclosed 2026-06-26a.k.a. Unauthenticated Cross Site Scripting (XSS) in Responsive Lightbox <= 2.7.6 versions

CVE-2026-56061 - Unauthenticated Broken Access Control in Subscriptions for WooCommerce <= 1.9.5 versions

high

High remediation recipe for Unauthenticated Broken Access Control in Subscriptions for WooCommerce <= 1.9.5 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56061disclosed 2026-06-26a.k.a. Unauthenticated Broken Access Control in Subscriptions for WooCommerce <= 1.9.5 versions

CVE-2026-56068 - Unauthenticated SQL Injection in JetEngine <= 3.8.10.2 versions

critical

Critical remediation recipe for Unauthenticated SQL Injection in JetEngine <= 3.8.10.2 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56068disclosed 2026-06-26a.k.a. Unauthenticated SQL Injection in JetEngine <= 3.8.10.2 versions

CVE-2026-56414 - A vulnerability exists in H.View IP cameras certificate-related upload interfaces allow authenticated users to

high

High remediation recipe for A vulnerability exists in H.View IP cameras certificate-related upload interfaces allow authenticated users to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-56414disclosed 2026-06-26a.k.a. A vulnerability exists in H.View IP cameras certificate-related upload interfaces allow authenticated users to

CVE-2026-56876 - extract-zip does not validate symlink targets when extracting zip archives

high

High remediation recipe for extract-zip does not validate symlink targets when extracting zip archives. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-56876disclosed 2026-06-26a.k.a. extract-zip does not validate symlink targets when extracting zip archives

CVE-2026-57314 - Unauthenticated Cross Site Scripting (XSS) in SureCart <= 4.3.2 versions

high

High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in SureCart <= 4.3.2 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-57314disclosed 2026-06-26a.k.a. Unauthenticated Cross Site Scripting (XSS) in SureCart <= 4.3.2 versions

CVE-2026-57321 - Contributor Arbitrary File Deletion in H5P <= 1.17.7 versions

high

High remediation recipe for Contributor Arbitrary File Deletion in H5P <= 1.17.7 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57321disclosed 2026-06-26a.k.a. Contributor Arbitrary File Deletion in H5P <= 1.17.7 versions

CVE-2026-5757 - Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an at

high

High remediation recipe for Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-5757disclosed 2026-06-26a.k.a. Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an at

CVE-2026-57642 - Contributor SQL Injection in Gallery <= 4.7.8 versions

high

High remediation recipe for Contributor SQL Injection in Gallery <= 4.7.8 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57642disclosed 2026-06-26a.k.a. Contributor SQL Injection in Gallery <= 4.7.8 versions

CVE-2026-57667 - Sales Representative SQL Injection in Groundhogg <= 4.5 versions

high

High remediation recipe for Sales Representative SQL Injection in Groundhogg <= 4.5 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57667disclosed 2026-06-26a.k.a. Sales Representative SQL Injection in Groundhogg <= 4.5 versions

CVE-2026-57915 - It is possible to bypass the Kerberos pre-authentication check in Apache Kerby by sending a PA-DATA with an un

high

High remediation recipe for It is possible to bypass the Kerberos pre-authentication check in Apache Kerby by sending a PA-DATA with an un. Upgrade to upgrade to version 2.1.2 and remove the vulnerable authz pattern.

cve CVE-2026-57915disclosed 2026-06-26a.k.a. It is possible to bypass the Kerberos pre-authentication check in Apache Kerby by sending a PA-DATA with an un

CVE-2026-9221 - The Setracker2 Android Companion App (com.tgelec.setracker) versions 3.1.5 and earlier uses MD5 to generate a

high

High remediation recipe for The Setracker2 Android Companion App (com.tgelec.setracker) versions 3.1.5 and earlier uses MD5 to generate a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-9221disclosed 2026-06-26a.k.a. The Setracker2 Android Companion App (com.tgelec.setracker) versions 3.1.5 and earlier uses MD5 to generate a

CVE-2026-9640 - A privilege escalation vulnerability exists in LXD from 6.0 before 6.9, 5.21.0 before 5.21.5, and 5.0.0 before

high

High remediation recipe for A privilege escalation vulnerability exists in LXD from 6.0 before 6.9, 5.21.0 before 5.21.5, and 5.0.0 before. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-9640disclosed 2026-06-26a.k.a. A privilege escalation vulnerability exists in LXD from 6.0 before 6.9, 5.21.0 before 5.21.5, and 5.0.0 before

CVE-2025-60464 - A use-after-free in the gf_sei_load_from_state_internal function (/filters/sei_load.c) of GPAC Project/MP4Box

high

High remediation recipe for A use-after-free in the gf_sei_load_from_state_internal function (/filters/sei_load.c) of GPAC Project/MP4Box. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-60464disclosed 2026-06-25a.k.a. A use-after-free in the gf_sei_load_from_state_internal function (/filters/sei_load.c) of GPAC Project/MP4Box

CVE-2025-71324 - Flowise before 3.0.6 contains an arbitrary file read vulnerability in the chatId parameter of the /api/v1/get-

high

High remediation recipe for Flowise before 3.0.6 contains an arbitrary file read vulnerability in the chatId parameter of the /api/v1/get-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-71324disclosed 2026-06-25a.k.a. Flowise before 3.0.6 contains an arbitrary file read vulnerability in the chatId parameter of the /api/v1/get-

CVE-2025-71327 - Flowise contains an authentication bypass vulnerability in the unprotected /api/v1/account/register endpoint t

critical

Critical remediation recipe for Flowise contains an authentication bypass vulnerability in the unprotected /api/v1/account/register endpoint t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2025-71327disclosed 2026-06-25a.k.a. Flowise contains an authentication bypass vulnerability in the unprotected /api/v1/account/register endpoint t

CVE-2025-71328 - Flowise before 3.0.10 contains an unverified password change vulnerability

high

High remediation recipe for Flowise before 3.0.10 contains an unverified password change vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-71328disclosed 2026-06-25a.k.a. Flowise before 3.0.10 contains an unverified password change vulnerability

CVE-2025-71333 - Flowise through 2.2.4 contains an unauthenticated arbitrary file upload vulnerability in the /api/v1/attachmen

critical

Critical remediation recipe for Flowise through 2.2.4 contains an unauthenticated arbitrary file upload vulnerability in the /api/v1/attachmen. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2025-71333disclosed 2026-06-25a.k.a. Flowise through 2.2.4 contains an unauthenticated arbitrary file upload vulnerability in the /api/v1/attachmen

CVE-2025-71334 - Flowise before 3.0.6 (affected versions 2.2.8 and earlier) contains an arbitrary file access vulnerability due

critical

Critical remediation recipe for Flowise before 3.0.6 (affected versions 2.2.8 and earlier) contains an arbitrary file access vulnerability due. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2025-71334disclosed 2026-06-25a.k.a. Flowise before 3.0.6 (affected versions 2.2.8 and earlier) contains an arbitrary file access vulnerability due

CVE-2025-71335 - Flowise before 3.0.10 (affected versions 3.0.7 and earlier) fails to invalidate existing sessions and session

high

High remediation recipe for Flowise before 3.0.10 (affected versions 3.0.7 and earlier) fails to invalidate existing sessions and session. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-71335disclosed 2026-06-25a.k.a. Flowise before 3.0.10 (affected versions 3.0.7 and earlier) fails to invalidate existing sessions and session

CVE-2025-71338 - Flowise contains a path traversal vulnerability in the /api/v1/document-store/loader/process endpoint that all

critical

Critical remediation recipe for Flowise contains a path traversal vulnerability in the /api/v1/document-store/loader/process endpoint that all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2025-71338disclosed 2026-06-25a.k.a. Flowise contains a path traversal vulnerability in the /api/v1/document-store/loader/process endpoint that all

CVE-2026-11800 - A flaw was found in Keycloak. This JWT algorithm confusion vulnerability in the JWT Authorization Grant flow a

high

High remediation recipe for A flaw was found in Keycloak. This JWT algorithm confusion vulnerability in the JWT Authorization Grant flow a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-11800disclosed 2026-06-25a.k.a. A flaw was found in Keycloak. This JWT algorithm confusion vulnerability in the JWT Authorization Grant flow a

CVE-2026-12053 - GitLab has remediated an issue in GitLab EE affecting all versions from 19.1 before 19.1.1 that under certain

high

High remediation recipe for GitLab has remediated an issue in GitLab EE affecting all versions from 19.1 before 19.1.1 that under certain. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-12053disclosed 2026-06-25a.k.a. GitLab has remediated an issue in GitLab EE affecting all versions from 19.1 before 19.1.1 that under certain

CVE-2026-12244 - If NSD is configured as secondary for a zone, the primary of that zone can crash NSD with an AXFR containing a

high

High remediation recipe for If NSD is configured as secondary for a zone, the primary of that zone can crash NSD with an AXFR containing a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-12244disclosed 2026-06-25a.k.a. If NSD is configured as secondary for a zone, the primary of that zone can crash NSD with an AXFR containing a

CVE-2026-12246 - NSD version 4.14.0 introduced a bug where a specially crafted APL RR, with an adflength larger than permitted

high

High remediation recipe for NSD version 4.14.0 introduced a bug where a specially crafted APL RR, with an adflength larger than permitted. Upgrade to version 4.14.0 introduced a bug where a specially crafted APL RR and remove the vulnerable authz pattern.

cve CVE-2026-12246disclosed 2026-06-25a.k.a. NSD version 4.14.0 introduced a bug where a specially crafted APL RR, with an adflength larger than permitted

CVE-2026-20230 - Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability

highKEV

High remediation recipe for Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability. Upgrade to Apply mitigations or fixed release per vendor/CISA KEV instructions and remove the vulnerable command-injection pattern.

cve CVE-2026-20230disclosed 2026-06-25a.k.a. Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability

CVE-2026-27366 - Unauthenticated Broken Access Control in MainWP Child <= 6.1.1 versions

high

High remediation recipe for Unauthenticated Broken Access Control in MainWP Child <= 6.1.1 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-27366disclosed 2026-06-25a.k.a. Unauthenticated Broken Access Control in MainWP Child <= 6.1.1 versions

CVE-2026-39951 - Cacti is an open source performance and fault management framework

high

High remediation recipe for Cacti is an open source performance and fault management framework. Upgrade to fixed in version 1.2.31. and remove the vulnerable command-injection pattern.

cve CVE-2026-39951disclosed 2026-06-25a.k.a. Cacti is an open source performance and fault management framework

CVE-2026-46733 - Dell Display and Peripheral Manager (DDPM Windows), versions prior to 2.3, contain an Improper Access Control

high

High remediation recipe for Dell Display and Peripheral Manager (DDPM Windows), versions prior to 2.3, contain an Improper Access Control. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46733disclosed 2026-06-25a.k.a. Dell Display and Peripheral Manager (DDPM Windows), versions prior to 2.3, contain an Improper Access Control

CVE-2026-46734 - Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Certificate Validat

high

High remediation recipe for Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Certificate Validat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-46734disclosed 2026-06-25a.k.a. Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Certificate Validat

CVE-2026-50548 - Cursor is a code editor built for programming with AI

critical

Critical remediation recipe for Cursor is a code editor built for programming with AI. Upgrade to fixed in 3.0. and remove the vulnerable authz pattern.

cve CVE-2026-50548disclosed 2026-06-25a.k.a. Cursor is a code editor built for programming with AI

CVE-2026-50549 - Cursor is a code editor built for programming with AI

critical

Critical remediation recipe for Cursor is a code editor built for programming with AI. Upgrade to fixed in 3.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-50549disclosed 2026-06-25a.k.a. Cursor is a code editor built for programming with AI

CVE-2026-53131 - In the Linux kernel, the following vulnerability has been resolved: netfilter: require Ethernet MAC header bef

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: require Ethernet MAC header bef. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53131disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: require Ethernet MAC header bef

CVE-2026-53132 - In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix potential unbounded skb

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix potential unbounded skb. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-53132disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix potential unbounded skb

CVE-2026-53133 - In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix truncation for block sizes

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix truncation for block sizes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53133disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix truncation for block sizes

CVE-2026-53136 - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp VBIOS HDMI retimer

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp VBIOS HDMI retimer. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53136disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp VBIOS HDMI retimer

CVE-2026-53137 - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp HDMI HDCP2 rx_id_li

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp HDMI HDCP2 rx_id_li. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53137disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp HDMI HDCP2 rx_id_li

CVE-2026-53138 - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Bound VBIOS record-chain

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Bound VBIOS record-chain. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53138disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Bound VBIOS record-chain

CVE-2026-53143 - In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix buffer overflow in SDMA qu

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix buffer overflow in SDMA qu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53143disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix buffer overflow in SDMA qu

CVE-2026-53146 - In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Limit XDomain response copy t

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Limit XDomain response copy t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53146disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Limit XDomain response copy t

CVE-2026-53147 - In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request pack

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request pack. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53147disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request pack

CVE-2026-53148 - In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Clamp XDomain response data c

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Clamp XDomain response data c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.

cve CVE-2026-53148disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Clamp XDomain response data c

CVE-2026-53151 - In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix the ACK parser to extract the S

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix the ACK parser to extract the S. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53151disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix the ACK parser to extract the S

CVE-2026-53153 - In the Linux kernel, the following vulnerability has been resolved: mm/list_lru: drain before clearing xarray

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mm/list_lru: drain before clearing xarray. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53153disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: mm/list_lru: drain before clearing xarray

CVE-2026-53157 - In the Linux kernel, the following vulnerability has been resolved: net: phonet: free phonet_device after RCU

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: phonet: free phonet_device after RCU. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53157disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: phonet: free phonet_device after RCU

CVE-2026-53160 - In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free race in

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free race in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53160disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free race in

CVE-2026-53161 - In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free of fastr

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free of fastr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53161disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free of fastr

CVE-2026-53162 - In the Linux kernel, the following vulnerability has been resolved: memcg: use round-robin victim selection in

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: memcg: use round-robin victim selection in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53162disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: memcg: use round-robin victim selection in

CVE-2026-53165 - In the Linux kernel, the following vulnerability has been resolved: iomap: avoid potential null folio->mapping

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: iomap: avoid potential null folio->mapping. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53165disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: iomap: avoid potential null folio->mapping

CVE-2026-53170 - In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: reject DMA commands with uni

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: reject DMA commands with uni. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53170disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: reject DMA commands with uni

CVE-2026-53171 - In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix arithmetic issues in dma

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix arithmetic issues in dma. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53171disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix arithmetic issues in dma

CVE-2026-53172 - In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix IFM region index out-of-

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix IFM region index out-of-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53172disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix IFM region index out-of-

CVE-2026-53173 - In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix OOB write in ethosu_gem_

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix OOB write in ethosu_gem_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53173disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix OOB write in ethosu_gem_

CVE-2026-53174 - In the Linux kernel, the following vulnerability has been resolved: ovl: keep err zero after successful ovl_ca

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ovl: keep err zero after successful ovl_ca. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53174disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: ovl: keep err zero after successful ovl_ca

CVE-2026-53175 - In the Linux kernel, the following vulnerability has been resolved: inet: frags: fix use-after-free caused by

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: inet: frags: fix use-after-free caused by. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53175disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: inet: frags: fix use-after-free caused by

CVE-2026-53178 - In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: rtw_mlme: add bounds c

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: rtw_mlme: add bounds c. Upgrade to fixed IE offsets to prevent unsigned integer underflow. and remove the vulnerable authz pattern.

cve CVE-2026-53178disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: rtw_mlme: add bounds c

CVE-2026-53180 - In the Linux kernel, the following vulnerability has been resolved: timers/migration: Fix livelock in tmigr_ha

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: timers/migration: Fix livelock in tmigr_ha. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53180disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: timers/migration: Fix livelock in tmigr_ha

CVE-2026-53182 - In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: reject oversized EMA RNR li

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: reject oversized EMA RNR li. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53182disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: reject oversized EMA RNR li

CVE-2026-53183 - In the Linux kernel, the following vulnerability has been resolved: mptcp: allow subflow rcv wnd to shrink In

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mptcp: allow subflow rcv wnd to shrink In. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53183disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: mptcp: allow subflow rcv wnd to shrink In

CVE-2026-53184 - In the Linux kernel, the following vulnerability has been resolved: udp: clear skb->dev before running a sockm

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: udp: clear skb->dev before running a sockm. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53184disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: udp: clear skb->dev before running a sockm

CVE-2026-53185 - In the Linux kernel, the following vulnerability has been resolved: zram: fix use-after-free in zram_bvec_writ

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: zram: fix use-after-free in zram_bvec_writ. Upgrade to patched asynchronously and zram_read_page and remove the vulnerable mcp-auth pattern.

cve CVE-2026-53185disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: zram: fix use-after-free in zram_bvec_writ

CVE-2026-53186 - In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: bound SRP_RSP sense copy by the

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: bound SRP_RSP sense copy by the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53186disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: bound SRP_RSP sense copy by the

CVE-2026-53187 - In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate cpu_id against nr_cpu_

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate cpu_id against nr_cpu_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-53187disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate cpu_id against nr_cpu_

CVE-2026-53188 - In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate the passed in fops for

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate the passed in fops for. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53188disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate the passed in fops for

CVE-2026-53189 - In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: update file PMD counter be

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: update file PMD counter be. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53189disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: update file PMD counter be

CVE-2026-53191 - In the Linux kernel, the following vulnerability has been resolved: io_uring/net: inherit IORING_CQE_F_BUF_MOR

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: io_uring/net: inherit IORING_CQE_F_BUF_MOR. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53191disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: io_uring/net: inherit IORING_CQE_F_BUF_MOR

CVE-2026-53193 - In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Forcibly close timer instance

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Forcibly close timer instance. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53193disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Forcibly close timer instance

CVE-2026-53198 - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of a deferred fi

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of a deferred fi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53198disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of a deferred fi

CVE-2026-53199 - In the Linux kernel, the following vulnerability has been resolved: hv_netvsc: use kmap_local_page in netvsc_c

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: hv_netvsc: use kmap_local_page in netvsc_c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.

cve CVE-2026-53199disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: hv_netvsc: use kmap_local_page in netvsc_c

CVE-2026-53200 - In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: nv: Fix handling of XN[0] when

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: nv: Fix handling of XN[0] when. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53200disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: nv: Fix handling of XN[0] when

CVE-2026-53201 - In the Linux kernel, the following vulnerability has been resolved: Revert drm/xe: Skip exec queue schedule t

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Revert drm/xe: Skip exec queue schedule t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53201disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: Revert drm/xe: Skip exec queue schedule t

CVE-2026-53202 - In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix signed integer truncation

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix signed integer truncation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.

cve CVE-2026-53202disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix signed integer truncation

CVE-2026-53203 - In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add buffer overflow check in M

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add buffer overflow check in M. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53203disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add buffer overflow check in M

CVE-2026-53205 - In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds checks for firmware

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds checks for firmware. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53205disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds checks for firmware

CVE-2026-53209 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: reject oversized Broa

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: reject oversized Broa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53209disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: reject oversized Broa

CVE-2026-53212 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_tunnel: fix use-after-free

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_tunnel: fix use-after-free. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53212disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_tunnel: fix use-after-free

CVE-2026-53215 - In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: refill RX buffers before XDP o

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: refill RX buffers before XDP o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53215disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: refill RX buffers before XDP o

CVE-2026-53216 - In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: limit XDP frame size to the RX

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: limit XDP frame size to the RX. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-53216disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: limit XDP frame size to the RX

CVE-2026-53217 - In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: sync RX data at the hardware p

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: sync RX data at the hardware p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-53217disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: sync RX data at the hardware p

CVE-2026-53221 - In the Linux kernel, the following vulnerability has been resolved: ip6_vti: fix incorrect tunnel matching in

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ip6_vti: fix incorrect tunnel matching in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53221disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: ip6_vti: fix incorrect tunnel matching in

CVE-2026-53223 - In the Linux kernel, the following vulnerability has been resolved: net: guard timestamp cmsgs to real error q

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: guard timestamp cmsgs to real error q. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53223disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: guard timestamp cmsgs to real error q

CVE-2026-53224 - In the Linux kernel, the following vulnerability has been resolved: sctp: validate embedded INIT chunk and add

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: sctp: validate embedded INIT chunk and add. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53224disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: sctp: validate embedded INIT chunk and add

CVE-2026-53225 - In the Linux kernel, the following vulnerability has been resolved: sctp: fix uninit-value in __sctp_rcv_ascon

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: sctp: fix uninit-value in __sctp_rcv_ascon. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53225disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: sctp: fix uninit-value in __sctp_rcv_ascon

CVE-2026-53229 - In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix DMA and xdp_frame leak

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix DMA and xdp_frame leak. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53229disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix DMA and xdp_frame leak

CVE-2026-53230 - In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix slab-out-of-bounds in mlx5_q

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix slab-out-of-bounds in mlx5_q. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53230disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix slab-out-of-bounds in mlx5_q

CVE-2026-53232 - In the Linux kernel, the following vulnerability has been resolved: net: phy: clean the sfp upstream if phy pr

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: phy: clean the sfp upstream if phy pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53232disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: phy: clean the sfp upstream if phy pr

CVE-2026-53233 - In the Linux kernel, the following vulnerability has been resolved: netdev: fix double-free in netdev_nl_bind_

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netdev: fix double-free in netdev_nl_bind_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53233disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: netdev: fix double-free in netdev_nl_bind_

CVE-2026-53234 - In the Linux kernel, the following vulnerability has been resolved: net: ibm: emac: Fix use-after-free during

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: ibm: emac: Fix use-after-free during. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53234disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: ibm: emac: Fix use-after-free during

CVE-2026-53235 - In the Linux kernel, the following vulnerability has been resolved: net: add pskb_may_pull() to skb_gro_receiv

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: add pskb_may_pull() to skb_gro_receiv. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53235disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: add pskb_may_pull() to skb_gro_receiv

CVE-2026-53239 - In the Linux kernel, the following vulnerability has been resolved: xfrm: policy: fix use-after-free on inexac

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfrm: policy: fix use-after-free on inexac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53239disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: xfrm: policy: fix use-after-free on inexac

CVE-2026-53240 - In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix use-after-free on first_s

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix use-after-free on first_s. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53240disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix use-after-free on first_s

CVE-2026-53242 - In the Linux kernel, the following vulnerability has been resolved: ALSA: PCM: Fix wait queue list corruption

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ALSA: PCM: Fix wait queue list corruption. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-53242disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: ALSA: PCM: Fix wait queue list corruption

CVE-2026-53244 - In the Linux kernel, the following vulnerability has been resolved: VFS: fix possible failure to unlock in nfs

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: VFS: fix possible failure to unlock in nfs. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53244disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: VFS: fix possible failure to unlock in nfs

CVE-2026-53246 - In the Linux kernel, the following vulnerability has been resolved: sctp: validate cached peer INIT chunk leng

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: sctp: validate cached peer INIT chunk leng. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53246disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: sctp: validate cached peer INIT chunk leng

CVE-2026-53247 - In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtk_eth_soc: Fix use-after-

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtk_eth_soc: Fix use-after-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-53247disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtk_eth_soc: Fix use-after-

CVE-2026-53248 - In the Linux kernel, the following vulnerability has been resolved: net: airoha: Fix use-after-free in metadat

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: airoha: Fix use-after-free in metadat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-53248disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: airoha: Fix use-after-free in metadat

CVE-2026-53250 - In the Linux kernel, the following vulnerability has been resolved: xsk: cache csum_start/csum_offset to fix T

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xsk: cache csum_start/csum_offset to fix T. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-53250disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: xsk: cache csum_start/csum_offset to fix T

CVE-2026-53253 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: bnep: reject short frames befor

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: bnep: reject short frames befor. Upgrade to fixed fields in bnep_rx_frame and remove the vulnerable command-injection pattern.

cve CVE-2026-53253disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: bnep: reject short frames befor

CVE-2026-53254 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: validate skb length in

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: validate skb length in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53254disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: validate skb length in

CVE-2026-53255 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: validate advertising TLV

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: validate advertising TLV. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53255disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: validate advertising TLV

CVE-2026-53256 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: hold listener socket in

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: hold listener socket in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53256disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: hold listener socket in

CVE-2026-53259 - In the Linux kernel, the following vulnerability has been resolved: ipv6: anycast: insert aca into global hash

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: anycast: insert aca into global hash. Upgrade to version reported in and remove the vulnerable authz pattern.

cve CVE-2026-53259disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: ipv6: anycast: insert aca into global hash

CVE-2026-53260 - In the Linux kernel, the following vulnerability has been resolved: tcp: Add preempt_{disable,enable}_nested()

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: tcp: Add preempt_{disable,enable}_nested(). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53260disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: tcp: Add preempt_{disable,enable}_nested()

CVE-2026-53264 - In the Linux kernel, the following vulnerability has been resolved: net/sched: act_api: use RCU with deferred

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/sched: act_api: use RCU with deferred. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable supply-chain pattern.

cve CVE-2026-53264disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/sched: act_api: use RCU with deferred

CVE-2026-53265 - In the Linux kernel, the following vulnerability has been resolved: dm cache policy smq: check allocation unde

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dm cache policy smq: check allocation unde. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53265disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: dm cache policy smq: check allocation unde

CVE-2026-53266 - In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: make ebt_snat ARP rewri

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: make ebt_snat ARP rewri. Upgrade to fixed by commit 63137bc5882a. and remove the vulnerable command-injection pattern.

cve CVE-2026-53266disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: make ebt_snat ARP rewri

CVE-2026-53267 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: bail out on template ct

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: bail out on template ct. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53267disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: bail out on template ct

CVE-2026-53270 - In the Linux kernel, the following vulnerability has been resolved: ipvs: clear the svc scheduler ptr early on

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipvs: clear the svc scheduler ptr early on. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53270disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: ipvs: clear the svc scheduler ptr early on

CVE-2026-53272 - In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi->sync_dec

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi->sync_dec. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53272disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi->sync_dec

CVE-2026-53273 - In the Linux kernel, the following vulnerability has been resolved: tee: optee: prevent use-after-free when th

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: tee: optee: prevent use-after-free when th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-53273disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: tee: optee: prevent use-after-free when th

CVE-2026-53275 - In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: Fix use-after-free when proce

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: Fix use-after-free when proce. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53275disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: Fix use-after-free when proce

CVE-2026-53276 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix a use-after-free of th

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix a use-after-free of th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53276disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix a use-after-free of th

CVE-2026-53277 - In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page ta

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page ta. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53277disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page ta

CVE-2026-54030 - LibreChat is an enhanced ChatGPT clone that supports multiple AI providers

high

High remediation recipe for LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Upgrade to fixed in 0.8.5. and remove the vulnerable command-injection pattern.

cve CVE-2026-54030disclosed 2026-06-25a.k.a. LibreChat is an enhanced ChatGPT clone that supports multiple AI providers

CVE-2026-54033 - LibreChat is an enhanced ChatGPT clone that supports multiple AI providers

high

High remediation recipe for LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Upgrade to fixed in 0.8.4-rc1. and remove the vulnerable ssrf pattern.

cve CVE-2026-54033disclosed 2026-06-25a.k.a. LibreChat is an enhanced ChatGPT clone that supports multiple AI providers

CVE-2026-54830 - Unauthenticated Broken Access Control in Five Star Restaurant Reservations <= 2.7.19 versions

high

High remediation recipe for Unauthenticated Broken Access Control in Five Star Restaurant Reservations <= 2.7.19 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54830disclosed 2026-06-25a.k.a. Unauthenticated Broken Access Control in Five Star Restaurant Reservations <= 2.7.19 versions

CVE-2026-54844 - Unauthenticated Broken Access Control in CheckView Automated Testing <= 2.1.0 versions

high

High remediation recipe for Unauthenticated Broken Access Control in CheckView Automated Testing <= 2.1.0 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54844disclosed 2026-06-25a.k.a. Unauthenticated Broken Access Control in CheckView Automated Testing <= 2.1.0 versions

CVE-2026-54917 - SeaweedFS is a distributed storage system for object storage (S3), file systems, and Iceberg tables

critical

Critical remediation recipe for SeaweedFS is a distributed storage system for object storage (S3), file systems, and Iceberg tables. Upgrade to fixed in 4.30. and remove the vulnerable authz pattern.

cve CVE-2026-54917disclosed 2026-06-25a.k.a. SeaweedFS is a distributed storage system for object storage (S3), file systems, and Iceberg tables

CVE-2026-55693 - Vim is an open source, command line text editor

high

High remediation recipe for Vim is an open source, command line text editor. Upgrade to fixed MAXWLEN-element stack arrays it indexes and remove the vulnerable command-injection pattern.

cve CVE-2026-55693disclosed 2026-06-25a.k.a. Vim is an open source, command line text editor

CVE-2026-55895 - Vim is an open source, command line text editor

high

High remediation recipe for Vim is an open source, command line text editor. Upgrade to fixed in 9.2.0663. and remove the vulnerable command-injection pattern.

cve CVE-2026-55895disclosed 2026-06-25a.k.a. Vim is an open source, command line text editor

CVE-2026-55960 - Un-negotiated Raw Public Key (RFC 7250) accepted in place of an X.509 certificate, bypassing chain validation

high

High remediation recipe for Un-negotiated Raw Public Key (RFC 7250) accepted in place of an X.509 certificate, bypassing chain validation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-55960disclosed 2026-06-25a.k.a. Un-negotiated Raw Public Key (RFC 7250) accepted in place of an X.509 certificate, bypassing chain validation

CVE-2026-55967 - AES-GCM encryption/decryption with extremely large cumulative single message sizes (>64 GiB) were not properly

high

High remediation recipe for AES-GCM encryption/decryption with extremely large cumulative single message sizes (>64 GiB) were not properly. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55967disclosed 2026-06-25a.k.a. AES-GCM encryption/decryption with extremely large cumulative single message sizes (>64 GiB) were not properly

CVE-2026-56051 - Unauthenticated Cross Site Scripting (XSS) in TablePress <= 3.3.1 versions

high

High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in TablePress <= 3.3.1 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-56051disclosed 2026-06-25a.k.a. Unauthenticated Cross Site Scripting (XSS) in TablePress <= 3.3.1 versions

CVE-2026-56123 - socat versions 1.8.0.0 through 1.8.1.1 contain a heap-based buffer overflow vulnerability that allows a malici

high

High remediation recipe for socat versions 1.8.0.0 through 1.8.1.1 contain a heap-based buffer overflow vulnerability that allows a malici. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56123disclosed 2026-06-25a.k.a. socat versions 1.8.0.0 through 1.8.1.1 contain a heap-based buffer overflow vulnerability that allows a malici

CVE-2026-56766 - Hydra through 9.7, fixed in commit 9cc84c2, contains a stack buffer overflow in NTLM authentication across SMT

high

High remediation recipe for Hydra through 9.7, fixed in commit 9cc84c2, contains a stack buffer overflow in NTLM authentication across SMT. Upgrade to fixed in commit 9cc84c2 and remove the vulnerable authz pattern.

cve CVE-2026-56766disclosed 2026-06-25a.k.a. Hydra through 9.7, fixed in commit 9cc84c2, contains a stack buffer overflow in NTLM authentication across SMT

CVE-2026-56768 - Seahub before 13.0.23 does not enforce SHARE_LINK_LOGIN_REQUIRED on GET /api/v2.1/share-link-zip-task/, allowi

high

High remediation recipe for Seahub before 13.0.23 does not enforce SHARE_LINK_LOGIN_REQUIRED on GET /api/v2.1/share-link-zip-task/, allowi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56768disclosed 2026-06-25a.k.a. Seahub before 13.0.23 does not enforce SHARE_LINK_LOGIN_REQUIRED on GET /api/v2.1/share-link-zip-task/, allowi

CVE-2026-56769 - Huly Platform through 0.7.423, fixed in commit 68cbf8a contains an authenticated server-side request forgery v

high

High remediation recipe for Huly Platform through 0.7.423, fixed in commit 68cbf8a contains an authenticated server-side request forgery v. Upgrade to fixed in commit 68cbf8a contains an authenticated server-side request and remove the vulnerable ssrf pattern.

cve CVE-2026-56769disclosed 2026-06-25a.k.a. Huly Platform through 0.7.423, fixed in commit 68cbf8a contains an authenticated server-side request forgery v

CVE-2026-56770 - libais through 0.15 VdmStream::AddLine uses an unchecked sentinel value as a vector index when processing AIS

high

High remediation recipe for libais through 0.15 VdmStream::AddLine uses an unchecked sentinel value as a vector index when processing AIS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-56770disclosed 2026-06-25a.k.a. libais through 0.15 VdmStream::AddLine uses an unchecked sentinel value as a vector index when processing AIS

CVE-2026-56786 - RTKLIB through 2.4.3 contains an out-of-bounds write vulnerability in decode_type1033 function that fails to c

critical

Critical remediation recipe for RTKLIB through 2.4.3 contains an out-of-bounds write vulnerability in decode_type1033 function that fails to c. Upgrade to fixed 64-byte descriptor fields. An attacker controlling an NTRIP and remove the vulnerable dos pattern.

cve CVE-2026-56786disclosed 2026-06-25a.k.a. RTKLIB through 2.4.3 contains an out-of-bounds write vulnerability in decode_type1033 function that fails to c

CVE-2026-57235 - Nokogiri is an open source XML and HTML library for the Ruby programming language

high

High remediation recipe for Nokogiri is an open source XML and HTML library for the Ruby programming language. Upgrade to fixed in 1.19.4. and remove the vulnerable command-injection pattern.

cve CVE-2026-57235disclosed 2026-06-25a.k.a. Nokogiri is an open source XML and HTML library for the Ruby programming language

CVE-2026-57236 - Nokogiri is an open source XML and HTML library for the Ruby programming language

high

High remediation recipe for Nokogiri is an open source XML and HTML library for the Ruby programming language. Upgrade to fixed in 1.19.4. and remove the vulnerable command-injection pattern.

cve CVE-2026-57236disclosed 2026-06-25a.k.a. Nokogiri is an open source XML and HTML library for the Ruby programming language

CVE-2026-57434 - Nokogiri is an open source XML and HTML library for the Ruby programming language

high

High remediation recipe for Nokogiri is an open source XML and HTML library for the Ruby programming language. Upgrade to fixed in 1.19.4. and remove the vulnerable command-injection pattern.

cve CVE-2026-57434disclosed 2026-06-25a.k.a. Nokogiri is an open source XML and HTML library for the Ruby programming language

CVE-2026-57435 - Nokogiri is an open source XML and HTML library for the Ruby programming language

high

High remediation recipe for Nokogiri is an open source XML and HTML library for the Ruby programming language. Upgrade to fixed in 1.19.4. and remove the vulnerable command-injection pattern.

cve CVE-2026-57435disclosed 2026-06-25a.k.a. Nokogiri is an open source XML and HTML library for the Ruby programming language

CVE-2026-57455 - Vim is an open source, command line text editor

high

High remediation recipe for Vim is an open source, command line text editor. Upgrade to fixed in 9.2.0698. and remove the vulnerable command-injection pattern.

cve CVE-2026-57455disclosed 2026-06-25a.k.a. Vim is an open source, command line text editor

CVE-2026-57589 - sys/kern/sysv_sem.c in OpenBSD through 7.9 has a use-after-free allowing local privilege escalation to root

high

High remediation recipe for sys/kern/sysv_sem.c in OpenBSD through 7.9 has a use-after-free allowing local privilege escalation to root. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.

cve CVE-2026-57589disclosed 2026-06-25a.k.a. sys/kern/sysv_sem.c in OpenBSD through 7.9 has a use-after-free allowing local privilege escalation to root

CVE-2026-57700 - Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious File

critical

Critical remediation recipe for Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious File. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57700disclosed 2026-06-25a.k.a. Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious File

CVE-2026-6094 - Heap buffer overread in wc_PKCS7_DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData

critical

Critical remediation recipe for Heap buffer overread in wc_PKCS7_DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-6094disclosed 2026-06-25a.k.a. Heap buffer overread in wc_PKCS7_DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData

CVE-2026-7511 - PKCS7_verify signer confusion allows forged signatures, where the signer associated with a signature is not co

high

High remediation recipe for PKCS7_verify signer confusion allows forged signatures, where the signer associated with a signature is not co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-7511disclosed 2026-06-25a.k.a. PKCS7_verify signer confusion allows forged signatures, where the signer associated with a signature is not co

CVE-2026-8660 - OS Command Injection vulnerability in the ping action of Rapid7 InsightConnect Ping Plugin on Linux allows rem

high

High remediation recipe for OS Command Injection vulnerability in the ping action of Rapid7 InsightConnect Ping Plugin on Linux allows rem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-8660disclosed 2026-06-25a.k.a. OS Command Injection vulnerability in the ping action of Rapid7 InsightConnect Ping Plugin on Linux allows rem

CVE-2026-8665 - OS Command Injection vulnerability in the TR action of Rapid7 InsightConnect Translate Plugin on Linux allows

high

High remediation recipe for OS Command Injection vulnerability in the TR action of Rapid7 InsightConnect Translate Plugin on Linux allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-8665disclosed 2026-06-25a.k.a. OS Command Injection vulnerability in the TR action of Rapid7 InsightConnect Translate Plugin on Linux allows

CVE-2026-8666 - OS Command Injection vulnerability in the traceroute action of Rapid7 InsightConnect Traceroute Plugin on Linu

high

High remediation recipe for OS Command Injection vulnerability in the traceroute action of Rapid7 InsightConnect Traceroute Plugin on Linu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-8666disclosed 2026-06-25a.k.a. OS Command Injection vulnerability in the traceroute action of Rapid7 InsightConnect Traceroute Plugin on Linu

CVE-2026-9099 - A flaw was found in Keycloak. A missing authorization check in the GroupResource.addChild() endpoint within th

high

High remediation recipe for A flaw was found in Keycloak. A missing authorization check in the GroupResource.addChild() endpoint within th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-9099disclosed 2026-06-25a.k.a. A flaw was found in Keycloak. A missing authorization check in the GroupResource.addChild() endpoint within th

CVE-2026-9800 - A flaw was found in Keycloak Policy Enforcer

high

High remediation recipe for A flaw was found in Keycloak Policy Enforcer. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-9800disclosed 2026-06-25a.k.a. A flaw was found in Keycloak Policy Enforcer

CVE-2025-60467 - A use-after-free in the gf_filter_pid_inst_swap_delete_task function (/filter_core/filter_pid.c) of GPAC Proje

high

High remediation recipe for A use-after-free in the gf_filter_pid_inst_swap_delete_task function (/filter_core/filter_pid.c) of GPAC Proje. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-60467disclosed 2026-06-24a.k.a. A use-after-free in the gf_filter_pid_inst_swap_delete_task function (/filter_core/filter_pid.c) of GPAC Proje

CVE-2025-60474 - A buffer overflow in the gf_media_import function (/media_tools/av_parsers.c) of GPAC Project/MP4Box before 26

high

High remediation recipe for A buffer overflow in the gf_media_import function (/media_tools/av_parsers.c) of GPAC Project/MP4Box before 26. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-60474disclosed 2026-06-24a.k.a. A buffer overflow in the gf_media_import function (/media_tools/av_parsers.c) of GPAC Project/MP4Box before 26

CVE-2026-11877 - An unauthorized user can modify configuration through API calls that affects the OpenText Access Manager

high

High remediation recipe for An unauthorized user can modify configuration through API calls that affects the OpenText Access Manager. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-11877disclosed 2026-06-24a.k.a. An unauthorized user can modify configuration through API calls that affects the OpenText Access Manager

CVE-2026-13201 - A flaw was found in KubeVirt's safepath package used by virt-handler

high

High remediation recipe for A flaw was found in KubeVirt's safepath package used by virt-handler. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-13201disclosed 2026-06-24a.k.a. A flaw was found in KubeVirt's safepath package used by virt-handler

CVE-2026-2050 - GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2050disclosed 2026-06-24a.k.a. GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-44020 - Docling simplifies document processing by parsing diverse formats and providing integrations with the generati

high

High remediation recipe for Docling simplifies document processing by parsing diverse formats and providing integrations with the generati. Upgrade to fixed in 2.74.0. and remove the vulnerable ssrf pattern.

cve CVE-2026-44020disclosed 2026-06-24a.k.a. Docling simplifies document processing by parsing diverse formats and providing integrations with the generati

CVE-2026-49980 - Rclone is a command-line program to sync files and directories to and from different cloud storage providers

critical

Critical remediation recipe for Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Upgrade to fixed in 1.74.3. and remove the vulnerable authz pattern.

cve CVE-2026-49980disclosed 2026-06-24a.k.a. Rclone is a command-line program to sync files and directories to and from different cloud storage providers

CVE-2026-52923 - In the Linux kernel, the following vulnerability has been resolved: ipc: limit next_id allocation to the valid

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipc: limit next_id allocation to the valid. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52923disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: ipc: limit next_id allocation to the valid

CVE-2026-52924 - In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-52924disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO

CVE-2026-52943 - In the Linux kernel, the following vulnerability has been resolved: net: skbuff: fix missing zerocopy referenc

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: skbuff: fix missing zerocopy referenc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52943disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: skbuff: fix missing zerocopy referenc

CVE-2026-52945 - In the Linux kernel, the following vulnerability has been resolved: Revert wireguard: device: enable threaded

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Revert wireguard: device: enable threaded. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-52945disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: Revert wireguard: device: enable threaded

CVE-2026-52950 - In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: fix UAF with retry loop Re

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: fix UAF with retry loop Re. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52950disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: fix UAF with retry loop Re

CVE-2026-52951 - In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: handle empty bo and UAF ra

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: handle empty bo and UAF ra. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-52951disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: handle empty bo and UAF ra

CVE-2026-52952 - In the Linux kernel, the following vulnerability has been resolved: iommu: Fix WARN_ON in __iommu_group_set_do

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: iommu: Fix WARN_ON in __iommu_group_set_do. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52952disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: iommu: Fix WARN_ON in __iommu_group_set_do

CVE-2026-52955 - In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52955disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces

CVE-2026-52956 - In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52956disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces

CVE-2026-52969 - In the Linux kernel, the following vulnerability has been resolved: KVM: Reject wrapped offset in kvm_reset_di

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: Reject wrapped offset in kvm_reset_di. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52969disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: KVM: Reject wrapped offset in kvm_reset_di

CVE-2026-52972 - In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Cap AEAD AD length to 0x8

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Cap AEAD AD length to 0x8. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52972disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Cap AEAD AD length to 0x8

CVE-2026-52973 - In the Linux kernel, the following vulnerability has been resolved: futex: Drop CLONE_THREAD requirement for p

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: futex: Drop CLONE_THREAD requirement for p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52973disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: futex: Drop CLONE_THREAD requirement for p

CVE-2026-52976 - In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix error cleanup in xe_exec_queue

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix error cleanup in xe_exec_queue. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52976disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix error cleanup in xe_exec_queue

CVE-2026-52987 - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid double drm_exec_fini() i

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid double drm_exec_fini() i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52987disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid double drm_exec_fini() i

CVE-2026-52989 - In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: propagate nvmet_tcp_build_pdu_i

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: propagate nvmet_tcp_build_pdu_i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52989disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: propagate nvmet_tcp_build_pdu_i

CVE-2026-52991 - In the Linux kernel, the following vulnerability has been resolved: sched/psi: fix race between file release a

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: sched/psi: fix race between file release a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52991disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: sched/psi: fix race between file release a

CVE-2026-52993 - In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipc_buf_append()

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipc_buf_append(). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52993disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipc_buf_append()

CVE-2026-53000 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfree_rcu to release o

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfree_rcu to release o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53000disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfree_rcu to release o

CVE-2026-53002 - In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: remove sprintf usage

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: remove sprintf usage. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53002disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: remove sprintf usage

CVE-2026-53006 - In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6_rcv() Cac

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6_rcv() Cac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53006disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6_rcv() Cac

CVE-2026-53009 - In the Linux kernel, the following vulnerability has been resolved: ice: fix double-free of tx_buf skb If ice_

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ice: fix double-free of tx_buf skb If ice_. Upgrade to version of the patch. and remove the vulnerable authz pattern.

cve CVE-2026-53009disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: ice: fix double-free of tx_buf skb If ice_

CVE-2026-53016 - In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - copy IV using skcipher ivsiz

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - copy IV using skcipher ivsiz. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53016disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - copy IV using skcipher ivsiz

CVE-2026-53033 - In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Take state lock for af_unix

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Take state lock for af_unix. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53033disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Take state lock for af_unix

CVE-2026-53059 - In the Linux kernel, the following vulnerability has been resolved: dm log: fix out-of-bounds write due to reg

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dm log: fix out-of-bounds write due to reg. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-53059disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: dm log: fix out-of-bounds write due to reg

CVE-2026-53071 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Add missing chan lock in

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Add missing chan lock in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53071disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Add missing chan lock in

CVE-2026-53081 - In the Linux kernel, the following vulnerability has been resolved: bpf: Enforce regsafe base id consistency f

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: Enforce regsafe base id consistency f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53081disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: bpf: Enforce regsafe base id consistency f

CVE-2026-53085 - In the Linux kernel, the following vulnerability has been resolved: bpf: fix mm lifecycle in open-coded task_v

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: fix mm lifecycle in open-coded task_v. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable supply-chain pattern.

cve CVE-2026-53085disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: bpf: fix mm lifecycle in open-coded task_v

CVE-2026-53091 - In the Linux kernel, the following vulnerability has been resolved: net: pull headers in qdisc_pkt_len_segs_in

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: pull headers in qdisc_pkt_len_segs_in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.

cve CVE-2026-53091disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: pull headers in qdisc_pkt_len_segs_in

CVE-2026-53092 - In the Linux kernel, the following vulnerability has been resolved: bpf: Fix linked reg delta tracking when sr

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: Fix linked reg delta tracking when sr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53092disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: bpf: Fix linked reg delta tracking when sr

CVE-2026-53130 - In the Linux kernel, the following vulnerability has been resolved: fs/omfs: reject s_sys_blocksize smaller th

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: fs/omfs: reject s_sys_blocksize smaller th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53130disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: fs/omfs: reject s_sys_blocksize smaller th

CVE-2026-54297 - Faraday is an HTTP client library abstraction layer that provides a common interface over many adapters

high

High remediation recipe for Faraday is an HTTP client library abstraction layer that provides a common interface over many adapters. Upgrade to fixed in 1.10.6 and 2.14.3. and remove the vulnerable dos pattern.

cve CVE-2026-54297disclosed 2026-06-24a.k.a. Faraday is an HTTP client library abstraction layer that provides a common interface over many adapters

CVE-2026-54904 - concurrent-ruby is a modern concurrency tools for Ruby

high

High remediation recipe for concurrent-ruby is a modern concurrency tools for Ruby. Upgrade to fixed in 1.3.7. and remove the vulnerable command-injection pattern.

cve CVE-2026-54904disclosed 2026-06-24a.k.a. concurrent-ruby is a modern concurrency tools for Ruby

CVE-2026-54906 - concurrent-ruby is a modern concurrency tools for Ruby

critical

Critical remediation recipe for concurrent-ruby is a modern concurrency tools for Ruby. Upgrade to fixed in 1.3.7. and remove the vulnerable command-injection pattern.

cve CVE-2026-54906disclosed 2026-06-24a.k.a. concurrent-ruby is a modern concurrency tools for Ruby

CVE-2026-55455 - Appsmith is a platform to build admin panels, internal tools, and dashboards

critical

Critical remediation recipe for Appsmith is a platform to build admin panels, internal tools, and dashboards. Upgrade to fixed in 2.1. and remove the vulnerable command-injection pattern.

cve CVE-2026-55455disclosed 2026-06-24a.k.a. Appsmith is a platform to build admin panels, internal tools, and dashboards

CVE-2026-56270 - Flowise before 3.1.0 (versions 3.0.13 and earlier) contains a missing authentication vulnerability in the /api

high

High remediation recipe for Flowise before 3.1.0 (versions 3.0.13 and earlier) contains a missing authentication vulnerability in the /api. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.

cve CVE-2026-56270disclosed 2026-06-24a.k.a. Flowise before 3.1.0 (versions 3.0.13 and earlier) contains a missing authentication vulnerability in the /api

CVE-2026-56351 - n8n before version 2.4.0 contains a sql injection vulnerability in MySQL, PostgreSQL, and Microsoft SQL nodes

high

High remediation recipe for n8n before version 2.4.0 contains a sql injection vulnerability in MySQL, PostgreSQL, and Microsoft SQL nodes. Upgrade to version 2.4.0 contains a sql injection vulnerability in MySQL and remove the vulnerable authz pattern.

cve CVE-2026-56351disclosed 2026-06-24a.k.a. n8n before version 2.4.0 contains a sql injection vulnerability in MySQL, PostgreSQL, and Microsoft SQL nodes

CVE-2026-57281 - Jenkins Script Security Plugin 1402.v94c9ce464861 and earlier does not reject Groovy AST transformation annota

high

High remediation recipe for Jenkins Script Security Plugin 1402.v94c9ce464861 and earlier does not reject Groovy AST transformation annota. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-57281disclosed 2026-06-24a.k.a. Jenkins Script Security Plugin 1402.v94c9ce464861 and earlier does not reject Groovy AST transformation annota

CVE-2025-61018 - An issue in the sqlo_place_dt_set component of openlink virtuoso-opensource v7.2.11 allows attackers to cause

high

High remediation recipe for An issue in the sqlo_place_dt_set component of openlink virtuoso-opensource v7.2.11 allows attackers to cause. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-61018disclosed 2026-06-23a.k.a. An issue in the sqlo_place_dt_set component of openlink virtuoso-opensource v7.2.11 allows attackers to cause

CVE-2025-61020 - An issue in the sqlo_strip_in_join component of openlink virtuoso-opensource v7.2.11 allows attackers to cause

high

High remediation recipe for An issue in the sqlo_strip_in_join component of openlink virtuoso-opensource v7.2.11 allows attackers to cause. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-61020disclosed 2026-06-23a.k.a. An issue in the sqlo_strip_in_join component of openlink virtuoso-opensource v7.2.11 allows attackers to cause

CVE-2025-61023 - An issue in the st_compare component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denia

high

High remediation recipe for An issue in the st_compare component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denia. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-61023disclosed 2026-06-23a.k.a. An issue in the st_compare component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denia

CVE-2025-61028 - An issue in the time_t_to_dt component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Den

high

High remediation recipe for An issue in the time_t_to_dt component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Den. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-61028disclosed 2026-06-23a.k.a. An issue in the time_t_to_dt component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Den

CVE-2026-12112 - A flaw was found in the foreman-mcp-server

high

High remediation recipe for A flaw was found in the foreman-mcp-server. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-12112disclosed 2026-06-23a.k.a. A flaw was found in the foreman-mcp-server

CVE-2026-45732 - n8n is an open source workflow automation platform

high

High remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 1.123.43 and remove the vulnerable command-injection pattern.

cve CVE-2026-45732disclosed 2026-06-23a.k.a. n8n is an open source workflow automation platform

CVE-2026-48020 - Traefik is an HTTP reverse proxy and load balancer

critical

Critical remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 2.11.48 and remove the vulnerable command-injection pattern.

cve CVE-2026-48020disclosed 2026-06-23a.k.a. Traefik is an HTTP reverse proxy and load balancer

CVE-2026-49465 - n8n is an open source workflow automation platform

high

High remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 1.123.48 and remove the vulnerable command-injection pattern.

cve CVE-2026-49465disclosed 2026-06-23a.k.a. n8n is an open source workflow automation platform

CVE-2026-50023 - yt-dlp is a command-line audio/video downloader

high

High remediation recipe for yt-dlp is a command-line audio/video downloader. Upgrade to fixed in 2026.06.09. and remove the vulnerable authz pattern.

cve CVE-2026-50023disclosed 2026-06-23a.k.a. yt-dlp is a command-line audio/video downloader

CVE-2026-50574 - yt-dlp is a command-line audio/video downloader

high

High remediation recipe for yt-dlp is a command-line audio/video downloader. Upgrade to fixed in 2026.06.09. and remove the vulnerable path-traversal pattern.

cve CVE-2026-50574disclosed 2026-06-23a.k.a. yt-dlp is a command-line audio/video downloader

CVE-2026-54304 - n8n is an open source workflow automation platform

high

High remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 1.123.55 and remove the vulnerable command-injection pattern.

cve CVE-2026-54304disclosed 2026-06-23a.k.a. n8n is an open source workflow automation platform

CVE-2026-54305 - n8n is an open source workflow automation platform

critical

Critical remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 1.123.55 and remove the vulnerable command-injection pattern.

cve CVE-2026-54305disclosed 2026-06-23a.k.a. n8n is an open source workflow automation platform

CVE-2026-54307 - n8n is an open source workflow automation platform

critical

Critical remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 1.123.55 and remove the vulnerable command-injection pattern.

cve CVE-2026-54307disclosed 2026-06-23a.k.a. n8n is an open source workflow automation platform

CVE-2026-54308 - n8n is an open source workflow automation platform

high

High remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 2.25.7 and 2.26.2. and remove the vulnerable command-injection pattern.

cve CVE-2026-54308disclosed 2026-06-23a.k.a. n8n is an open source workflow automation platform

CVE-2026-54316 - Claude Code is an agentic coding tool. From 0.2.54 until 2.1.163, because the hostname huggingface.co was pre-

critical

Critical remediation recipe for Claude Code is an agentic coding tool. From 0.2.54 until 2.1.163, because the hostname huggingface.co was pre-. Upgrade to fixed in 2.1.163. and remove the vulnerable cert-validation pattern.

cve CVE-2026-54316disclosed 2026-06-23a.k.a. Claude Code is an agentic coding tool. From 0.2.54 until 2.1.163, because the hostname huggingface.co was pre-

CVE-2026-54513 - jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Proce

high

High remediation recipe for jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Proce. Upgrade to fixed in 2.18.8 and remove the vulnerable command-injection pattern.

cve CVE-2026-54513disclosed 2026-06-23a.k.a. jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Proce

CVE-2026-54761 - Traefik is an HTTP reverse proxy and load balancer

high

High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 3.6.21 and 3.7.5. and remove the vulnerable command-injection pattern.

cve CVE-2026-54761disclosed 2026-06-23a.k.a. Traefik is an HTTP reverse proxy and load balancer

CVE-2026-54762 - Traefik is an HTTP reverse proxy and load balancer

high

High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 3.7.5. and remove the vulnerable authz pattern.

cve CVE-2026-54762disclosed 2026-06-23a.k.a. Traefik is an HTTP reverse proxy and load balancer

CVE-2025-66389 - GitHub Copilot 1.372.0 allows filesystem access outside of a workspace folder (without user approval) via a fi

high

High remediation recipe for GitHub Copilot 1.372.0 allows filesystem access outside of a workspace folder (without user approval) via a fi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-66389disclosed 2026-06-22a.k.a. GitHub Copilot 1.372.0 allows filesystem access outside of a workspace folder (without user approval) via a fi

CVE-2026-28381 - The Snowflake datasource allows for GET/PUT commands, which can allow any user with access to run queries agai

critical

Critical remediation recipe for The Snowflake datasource allows for GET/PUT commands, which can allow any user with access to run queries agai. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-28381disclosed 2026-06-22a.k.a. The Snowflake datasource allows for GET/PUT commands, which can allow any user with access to run queries agai

CVE-2026-42127 - The public dashboard query endpoint does not limit request body size before processing, allowing unauthenticat

high

High remediation recipe for The public dashboard query endpoint does not limit request body size before processing, allowing unauthenticat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-42127disclosed 2026-06-22a.k.a. The public dashboard query endpoint does not limit request body size before processing, allowing unauthenticat

CVE-2026-44271 - Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special El

high

High remediation recipe for Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special El. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-44271disclosed 2026-06-22a.k.a. Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special El

CVE-2026-48746 - vLLM is an inference and serving engine for large language models (LLMs)

critical

Critical remediation recipe for vLLM is an inference and serving engine for large language models (LLMs). Upgrade to fixed in 0.22.0. and remove the vulnerable auth-bypass pattern.

cve CVE-2026-48746disclosed 2026-06-22a.k.a. vLLM is an inference and serving engine for large language models (LLMs)

CVE-2026-49468 - LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format

critical

Critical remediation recipe for LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Upgrade to fixed in 1.84.0. and remove the vulnerable authz pattern.

cve CVE-2026-49468disclosed 2026-06-22a.k.a. LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format

CVE-2026-54099 - A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform

high

High remediation recipe for A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-54099disclosed 2026-06-22a.k.a. A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform

CVE-2026-54100 - A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform

high

High remediation recipe for A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-54100disclosed 2026-06-22a.k.a. A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform

CVE-2026-56266 - Crawl4AI before 0.8.7 contains a server-side request forgery vulnerability in the /crawl, /crawl/stream, /md,

high

High remediation recipe for Crawl4AI before 0.8.7 contains a server-side request forgery vulnerability in the /crawl, /crawl/stream, /md,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-56266disclosed 2026-06-22a.k.a. Crawl4AI before 0.8.7 contains a server-side request forgery vulnerability in the /crawl, /crawl/stream, /md,

CVE-2026-8858 - IBM WebSphere Application Server and IBM WebSphere Application Server Liberty are vulnerable to remote code ex

high

High remediation recipe for IBM WebSphere Application Server and IBM WebSphere Application Server Liberty are vulnerable to remote code ex. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-8858disclosed 2026-06-22a.k.a. IBM WebSphere Application Server and IBM WebSphere Application Server Liberty are vulnerable to remote code ex

CVE-2026-9029 - The geomap panel's XYZ tile layer has a sanitize-then-interpolate ordering bug

high

High remediation recipe for The geomap panel's XYZ tile layer has a sanitize-then-interpolate ordering bug. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-9029disclosed 2026-06-22a.k.a. The geomap panel's XYZ tile layer has a sanitize-then-interpolate ordering bug

CVE-2026-9072 - IBM WebSphere Application Server and IBM WebSphere Application Server Liberty - when using Intelligent Managem

high

High remediation recipe for IBM WebSphere Application Server and IBM WebSphere Application Server Liberty - when using Intelligent Managem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-9072disclosed 2026-06-22a.k.a. IBM WebSphere Application Server and IBM WebSphere Application Server Liberty - when using Intelligent Managem

CVE-2026-12773 - A weakness has been identified in BerriAI litellm up to 1.59.8

high

High remediation recipe for A weakness has been identified in BerriAI litellm up to 1.59.8. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.

cve CVE-2026-12773disclosed 2026-06-21a.k.a. A weakness has been identified in BerriAI litellm up to 1.59.8

CVE-2026-56340 - vLLM versions >= 0.10.2 and < 0.13.0 are missing sparse tensor validation in multimodal embeddings processing

high

High remediation recipe for vLLM versions >= 0.10.2 and < 0.13.0 are missing sparse tensor validation in multimodal embeddings processing. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56340disclosed 2026-06-20a.k.a. vLLM versions >= 0.10.2 and < 0.13.0 are missing sparse tensor validation in multimodal embeddings processing

CVE-2025-62821 - Microsoft HEIF Image Extensions 1.2.22.0 has an out-of-bounds read because CHEIFItemInfoEntry_GetDataSize can

critical

Critical remediation recipe for Microsoft HEIF Image Extensions 1.2.22.0 has an out-of-bounds read because CHEIFItemInfoEntry_GetDataSize can. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-62821disclosed 2026-06-19a.k.a. Microsoft HEIF Image Extensions 1.2.22.0 has an out-of-bounds read because CHEIFItemInfoEntry_GetDataSize can

CVE-2026-3195 - A flaw was found in QEMU. When reading input audio in the virtio-snd device input callback, the virtio_snd_pc

high

High remediation recipe for A flaw was found in QEMU. When reading input audio in the virtio-snd device input callback, the virtio_snd_pc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3195disclosed 2026-06-19a.k.a. A flaw was found in QEMU. When reading input audio in the virtio-snd device input callback, the virtio_snd_pc

CVE-2026-47645 - Url redirection to untrusted site ('open redirect') in Microsoft 365 Copilot's Business Chat allows an unautho

high

High remediation recipe for Url redirection to untrusted site ('open redirect') in Microsoft 365 Copilot's Business Chat allows an unautho. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-47645disclosed 2026-06-19a.k.a. Url redirection to untrusted site ('open redirect') in Microsoft 365 Copilot's Business Chat allows an unautho

CVE-2026-48584 - Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges ove

critical

Critical remediation recipe for Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges ove. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-48584disclosed 2026-06-19a.k.a. Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges ove

CVE-2026-48715 - radvd is a router advertisement daemon for IPv6

high

High remediation recipe for radvd is a router advertisement daemon for IPv6. Upgrade to version 2.21 and remove the vulnerable authz pattern.

cve CVE-2026-48715disclosed 2026-06-19a.k.a. radvd is a router advertisement daemon for IPv6

CVE-2026-50242 - In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.14842

critical

Critical remediation recipe for In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.14842. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-50242disclosed 2026-06-19a.k.a. In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.14842

CVE-2026-51843 - Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface

critical

Critical remediation recipe for Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-51843disclosed 2026-06-19a.k.a. Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface

CVE-2026-51844 - Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface

critical

Critical remediation recipe for Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-51844disclosed 2026-06-19a.k.a. Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface

CVE-2026-51845 - Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface

critical

Critical remediation recipe for Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-51845disclosed 2026-06-19a.k.a. Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface

CVE-2026-51846 - In Tenda AC7 v15.03.06.44, the wanSpeed parameter of the route /goform/AdvSetMacMtuWan has a stack buffer over

critical

Critical remediation recipe for In Tenda AC7 v15.03.06.44, the wanSpeed parameter of the route /goform/AdvSetMacMtuWan has a stack buffer over. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.

cve CVE-2026-51846disclosed 2026-06-19a.k.a. In Tenda AC7 v15.03.06.44, the wanSpeed parameter of the route /goform/AdvSetMacMtuWan has a stack buffer over

CVE-2026-52910 - In the Linux kernel, the following vulnerability has been resolved: bpf: Free reuseport cBPF prog after RCU gr

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: Free reuseport cBPF prog after RCU gr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-52910disclosed 2026-06-19a.k.a. In the Linux kernel, the following vulnerability has been resolved: bpf: Free reuseport cBPF prog after RCU gr

CVE-2026-53915 - In JetBrains GoLand before 2026.1.3 remote code execution was possible via untrusted project configuration

high

High remediation recipe for In JetBrains GoLand before 2026.1.3 remote code execution was possible via untrusted project configuration. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53915disclosed 2026-06-19a.k.a. In JetBrains GoLand before 2026.1.3 remote code execution was possible via untrusted project configuration

CVE-2026-56142 - In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.14842

critical

Critical remediation recipe for In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.14842. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56142disclosed 2026-06-19a.k.a. In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.14842

CVE-2026-56208 - A heap buffer overflow vulnerability was found in libaom, the reference AV1 codec implementation

high

High remediation recipe for A heap buffer overflow vulnerability was found in libaom, the reference AV1 codec implementation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-56208disclosed 2026-06-19a.k.a. A heap buffer overflow vulnerability was found in libaom, the reference AV1 codec implementation

CVE-2026-56209 - An arbitrary address write vulnerability was found in libaom, the reference AV1 codec implementation

high

High remediation recipe for An arbitrary address write vulnerability was found in libaom, the reference AV1 codec implementation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-56209disclosed 2026-06-19a.k.a. An arbitrary address write vulnerability was found in libaom, the reference AV1 codec implementation

CVE-2026-56210 - A heap-buffer-overflow read vulnerability was found in libaom, the reference AV1 codec implementation

high

High remediation recipe for A heap-buffer-overflow read vulnerability was found in libaom, the reference AV1 codec implementation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-56210disclosed 2026-06-19a.k.a. A heap-buffer-overflow read vulnerability was found in libaom, the reference AV1 codec implementation

CVE-2026-56211 - A remote code execution vulnerability was found in libaom, the reference AV1 codec implementation

high

High remediation recipe for A remote code execution vulnerability was found in libaom, the reference AV1 codec implementation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56211disclosed 2026-06-19a.k.a. A remote code execution vulnerability was found in libaom, the reference AV1 codec implementation

CVE-2026-12505 - A flaw was found in the cifs-utils package where the cifs.upcall helper fails to securely drop its root privil

high

High remediation recipe for A flaw was found in the cifs-utils package where the cifs.upcall helper fails to securely drop its root privil. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-12505disclosed 2026-06-18a.k.a. A flaw was found in the cifs-utils package where the cifs.upcall helper fails to securely drop its root privil

CVE-2026-43994 - Coturn is a free open source implementation of TURN and STUN Server

high

High remediation recipe for Coturn is a free open source implementation of TURN and STUN Server. Upgrade to fixed in version 4.10.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-43994disclosed 2026-06-18a.k.a. Coturn is a free open source implementation of TURN and STUN Server

CVE-2026-55203 - HAProxy through 3.4.0, fixed in commit 5985276, contains an integer overflow vulnerability in the fcgi_conn st

high

High remediation recipe for HAProxy through 3.4.0, fixed in commit 5985276, contains an integer overflow vulnerability in the fcgi_conn st. Upgrade to fixed in commit 5985276 and remove the vulnerable authz pattern.

cve CVE-2026-55203disclosed 2026-06-18a.k.a. HAProxy through 3.4.0, fixed in commit 5985276, contains an integer overflow vulnerability in the fcgi_conn st

CVE-2026-8461 - An out-of-bounds write vulnerability in FFmpeg's libavcodec library, specifically in the MagicYUV decoder, all

high

High remediation recipe for An out-of-bounds write vulnerability in FFmpeg's libavcodec library, specifically in the MagicYUV decoder, all. Upgrade to version 8.1.2. and remove the vulnerable authz pattern.

cve CVE-2026-8461disclosed 2026-06-18a.k.a. An out-of-bounds write vulnerability in FFmpeg's libavcodec library, specifically in the MagicYUV decoder, all

CVE-2026-12151 - Impact: The undici WebSocket client enforces maxPayloadSize on the cumulative byte count of fragments in a mes

high

High remediation recipe for Impact: The undici WebSocket client enforces maxPayloadSize on the cumulative byte count of fragments in a mes. Upgrade to Upgrade to undici >= 6.26.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-12151disclosed 2026-06-17a.k.a. Impact: The undici WebSocket client enforces maxPayloadSize on the cumulative byte count of fragments in a mes

CVE-2026-2467 - Heap-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variable

high

High remediation recipe for Heap-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variable. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2467disclosed 2026-06-17a.k.a. Heap-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variable

CVE-2026-2674 - Out-of-bounds Write, Out-of-bounds Write, Out-of-bounds Write vulnerability in RTI Connext Professional (Queue

high

High remediation recipe for Out-of-bounds Write, Out-of-bounds Write, Out-of-bounds Write vulnerability in RTI Connext Professional (Queue. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2674disclosed 2026-06-17a.k.a. Out-of-bounds Write, Out-of-bounds Write, Out-of-bounds Write vulnerability in RTI Connext Professional (Queue

CVE-2026-30799 - Missing Authentication for Critical Function vulnerability in RTI Connext Professional (Security Plugins) allo

high

High remediation recipe for Missing Authentication for Critical Function vulnerability in RTI Connext Professional (Security Plugins) allo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-30799disclosed 2026-06-17a.k.a. Missing Authentication for Critical Function vulnerability in RTI Connext Professional (Security Plugins) allo

CVE-2026-30802 - Out-of-bounds Read vulnerability in RTI Connext Micro (Core Libraries) allows Overread Buffers.This issue affe

high

High remediation recipe for Out-of-bounds Read vulnerability in RTI Connext Micro (Core Libraries) allows Overread Buffers.This issue affe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-30802disclosed 2026-06-17a.k.a. Out-of-bounds Read vulnerability in RTI Connext Micro (Core Libraries) allows Overread Buffers.This issue affe

CVE-2026-30803 - Integer Underflow (Wrap or Wraparound) vulnerability in RTI Connext Micro (Core Libraries) allows Overread Buf

critical

Critical remediation recipe for Integer Underflow (Wrap or Wraparound) vulnerability in RTI Connext Micro (Core Libraries) allows Overread Buf. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-30803disclosed 2026-06-17a.k.a. Integer Underflow (Wrap or Wraparound) vulnerability in RTI Connext Micro (Core Libraries) allows Overread Buf

CVE-2026-3894 - Out-of-bounds Read vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers.This iss

critical

Critical remediation recipe for Out-of-bounds Read vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers.This iss. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3894disclosed 2026-06-17a.k.a. Out-of-bounds Read vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers.This iss

CVE-2026-42055 - NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_proxy_v2_module and ngx_http_grpc_module

high

High remediation recipe for NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_proxy_v2_module and ngx_http_grpc_module. Upgrade to version to 2 and remove the vulnerable command-injection pattern.

cve CVE-2026-42055disclosed 2026-06-17a.k.a. NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_proxy_v2_module and ngx_http_grpc_module

CVE-2026-42530 - NGINX Open Source has a vulnerability in the ngx_http_v3_module module

high

High remediation recipe for NGINX Open Source has a vulnerability in the ngx_http_v3_module module. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-42530disclosed 2026-06-17a.k.a. NGINX Open Source has a vulnerability in the ngx_http_v3_module module

CVE-2026-47774 - Envoy is an open source edge and service proxy designed for cloud-native applications

high

High remediation recipe for Envoy is an open source edge and service proxy designed for cloud-native applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-47774disclosed 2026-06-17a.k.a. Envoy is an open source edge and service proxy designed for cloud-native applications

CVE-2026-48294 - Adobe Acrobat PDF Extension (Chrome) versions 26.5.2.2 and earlier are affected by a UXSS-class cross-origin d

high

High remediation recipe for Adobe Acrobat PDF Extension (Chrome) versions 26.5.2.2 and earlier are affected by a UXSS-class cross-origin d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-48294disclosed 2026-06-17a.k.a. Adobe Acrobat PDF Extension (Chrome) versions 26.5.2.2 and earlier are affected by a UXSS-class cross-origin d

CVE-2026-55200 - libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2_transpor

high

High remediation recipe for libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2_transpor. Upgrade to fixed in commit 7acf3df contains an out-of-bounds write vulnerability and remove the vulnerable command-injection pattern.

cve CVE-2026-55200disclosed 2026-06-17a.k.a. libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2_transpor

CVE-2026-10649 - A flaw was found in Pacemaker. An unauthenticated remote attacker can exploit an integer overflow vulnerabilit

high

High remediation recipe for A flaw was found in Pacemaker. An unauthenticated remote attacker can exploit an integer overflow vulnerabilit. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-10649disclosed 2026-06-16a.k.a. A flaw was found in Pacemaker. An unauthenticated remote attacker can exploit an integer overflow vulnerabilit

CVE-2026-12289 - Privilege escalation in the Graphics: WebRender component

high

High remediation recipe for Privilege escalation in the Graphics: WebRender component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.

cve CVE-2026-12289disclosed 2026-06-16a.k.a. Privilege escalation in the Graphics: WebRender component

CVE-2026-12290 - Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firef

high

High remediation recipe for Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firef. Upgrade to fixed in Firefox 152. This vulnerability was fixed in Firefox 152 and remove the vulnerable authz pattern.

cve CVE-2026-12290disclosed 2026-06-16a.k.a. Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firef

CVE-2026-12291 - Use-after-free in the Networking: HTTP component

high

High remediation recipe for Use-after-free in the Networking: HTTP component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.

cve CVE-2026-12291disclosed 2026-06-16a.k.a. Use-after-free in the Networking: HTTP component

CVE-2026-12292 - Incorrect boundary conditions in the Web Audio component

high

High remediation recipe for Incorrect boundary conditions in the Web Audio component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.

cve CVE-2026-12292disclosed 2026-06-16a.k.a. Incorrect boundary conditions in the Web Audio component

CVE-2026-12293 - Use-after-free in the Graphics: WebGPU component

critical

Critical remediation recipe for Use-after-free in the Graphics: WebGPU component. Upgrade to fixed in Firefox 152 and Thunderbird 152. and remove the vulnerable authz pattern.

cve CVE-2026-12293disclosed 2026-06-16a.k.a. Use-after-free in the Graphics: WebGPU component

CVE-2026-12294 - Sandbox escape in the DOM: Workers component

critical

Critical remediation recipe for Sandbox escape in the DOM: Workers component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.

cve CVE-2026-12294disclosed 2026-06-16a.k.a. Sandbox escape in the DOM: Workers component

CVE-2026-12295 - Sandbox escape in the DOM: Navigation component

critical

Critical remediation recipe for Sandbox escape in the DOM: Navigation component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.

cve CVE-2026-12295disclosed 2026-06-16a.k.a. Sandbox escape in the DOM: Navigation component

CVE-2026-12296 - Sandbox escape in the Security: Process Sandboxing component

critical

Critical remediation recipe for Sandbox escape in the Security: Process Sandboxing component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.

cve CVE-2026-12296disclosed 2026-06-16a.k.a. Sandbox escape in the Security: Process Sandboxing component

CVE-2026-12297 - Sandbox escape due to incorrect boundary conditions in the Networking component

critical

Critical remediation recipe for Sandbox escape due to incorrect boundary conditions in the Networking component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.

cve CVE-2026-12297disclosed 2026-06-16a.k.a. Sandbox escape due to incorrect boundary conditions in the Networking component

CVE-2026-12326 - Memory safety bugs present in Firefox 151 and Thunderbird 151

high

High remediation recipe for Memory safety bugs present in Firefox 151 and Thunderbird 151. Upgrade to fixed in Firefox 152 and Thunderbird 152. and remove the vulnerable authz pattern.

cve CVE-2026-12326disclosed 2026-06-16a.k.a. Memory safety bugs present in Firefox 151 and Thunderbird 151

CVE-2026-12328 - Memory safety bugs present in Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and

high

High remediation recipe for Memory safety bugs present in Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.

cve CVE-2026-12328disclosed 2026-06-16a.k.a. Memory safety bugs present in Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and

CVE-2026-12398 - A command injection vulnerability was found in galaxy_ng

high

High remediation recipe for A command injection vulnerability was found in galaxy_ng. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-12398disclosed 2026-06-16a.k.a. A command injection vulnerability was found in galaxy_ng

CVE-2026-46331 - In the Linux kernel, the following vulnerability has been resolved: net/sched: fix pedit partial COW leading t

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/sched: fix pedit partial COW leading t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-46331disclosed 2026-06-16a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/sched: fix pedit partial COW leading t

CVE-2026-50656 - Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Microsoft Defend

high

High remediation recipe for Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Microsoft Defend. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50656disclosed 2026-06-16a.k.a. Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Microsoft Defend

CVE-2026-52719 - An out-of-bounds read vulnerability was found in the VA JPEG decoder in GStreamer's gst-plugins-bad

high

High remediation recipe for An out-of-bounds read vulnerability was found in the VA JPEG decoder in GStreamer's gst-plugins-bad. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-52719disclosed 2026-06-15a.k.a. An out-of-bounds read vulnerability was found in the VA JPEG decoder in GStreamer's gst-plugins-bad

CVE-2026-52720 - A heap buffer overflow vulnerability was found in GStreamer's librfb (RFB/VNC client)

high

High remediation recipe for A heap buffer overflow vulnerability was found in GStreamer's librfb (RFB/VNC client). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-52720disclosed 2026-06-15a.k.a. A heap buffer overflow vulnerability was found in GStreamer's librfb (RFB/VNC client)

CVE-2026-52722 - A signed integer overflow vulnerability was found in GStreamer's VMnc decoder

high

High remediation recipe for A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-52722disclosed 2026-06-15a.k.a. A signed integer overflow vulnerability was found in GStreamer's VMnc decoder

CVE-2026-53705 - A flaw was found in GStreamer's WavPack audio decoder in gst-plugins-good

high

High remediation recipe for A flaw was found in GStreamer's WavPack audio decoder in gst-plugins-good. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-53705disclosed 2026-06-15a.k.a. A flaw was found in GStreamer's WavPack audio decoder in gst-plugins-good

CVE-2026-6040 - A heap use-after-free existed when importing the blank-width characters of an ODF number format

high

High remediation recipe for A heap use-after-free existed when importing the blank-width characters of an ODF number format. Upgrade to fixed versions the position is bounds-checked before use. and remove the vulnerable authz pattern.

cve CVE-2026-6040disclosed 2026-06-15a.k.a. A heap use-after-free existed when importing the blank-width characters of an ODF number format

CVE-2026-8357 - LibreOffice Calc compiles cell formulas when opening a spreadsheet

high

High remediation recipe for LibreOffice Calc compiles cell formulas when opening a spreadsheet. Upgrade to fixed versions the array is sized to hold the largest possible nes and remove the vulnerable authz pattern.

cve CVE-2026-8357disclosed 2026-06-15a.k.a. LibreOffice Calc compiles cell formulas when opening a spreadsheet

CVE-2026-9863 - Fortra BoKS Manager contains an OS command injection vulnerability in the client upgrade and patch tooling for

high

High remediation recipe for Fortra BoKS Manager contains an OS command injection vulnerability in the client upgrade and patch tooling for. Upgrade to version handling. and remove the vulnerable command-injection pattern.

cve CVE-2026-9863disclosed 2026-06-15a.k.a. Fortra BoKS Manager contains an OS command injection vulnerability in the client upgrade and patch tooling for

CVE-2026-11769 - We have released version 5.24.0 of the Grafana Operator

high

High remediation recipe for We have released version 5.24.0 of the Grafana Operator. Upgrade to version 5.24.0 of the Grafana Operator. This patch includes a CRITIC and remove the vulnerable command-injection pattern.

cve CVE-2026-11769disclosed 2026-06-13a.k.a. We have released version 5.24.0 of the Grafana Operator

CVE-2026-54228 - A time-of-check time-of-use (TOCTOU) race condition was found in the abrt-dbus D-Bus service's SetElement meth

high

High remediation recipe for A time-of-check time-of-use (TOCTOU) race condition was found in the abrt-dbus D-Bus service's SetElement meth. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-54228disclosed 2026-06-13a.k.a. A time-of-check time-of-use (TOCTOU) race condition was found in the abrt-dbus D-Bus service's SetElement meth

CVE-2026-54229 - A race condition was found in the abrt-dbus D-Bus service's ChownProblemDir method

high

High remediation recipe for A race condition was found in the abrt-dbus D-Bus service's ChownProblemDir method. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54229disclosed 2026-06-13a.k.a. A race condition was found in the abrt-dbus D-Bus service's ChownProblemDir method

CVE-2026-54230 - A symlink following vulnerability was found in the ABRT post-create event handler scripts in libreport

high

High remediation recipe for A symlink following vulnerability was found in the ABRT post-create event handler scripts in libreport. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-54230disclosed 2026-06-13a.k.a. A symlink following vulnerability was found in the ABRT post-create event handler scripts in libreport

CVE-2026-12143 - form-data is a library for creating readable multipart/form-data streams

high

High remediation recipe for form-data is a library for creating readable multipart/form-data streams. Upgrade to Fixed in 2.5.6 and remove the vulnerable authz pattern.

cve CVE-2026-12143disclosed 2026-06-12a.k.a. form-data is a library for creating readable multipart/form-data streams

CVE-2026-44168 - MariaDB server is a community developed fork of MySQL server

high

High remediation recipe for MariaDB server is a community developed fork of MySQL server. Upgrade to patched in versions 10.6.26 and remove the vulnerable command-injection pattern.

cve CVE-2026-44168disclosed 2026-06-12a.k.a. MariaDB server is a community developed fork of MySQL server

CVE-2026-44170 - MariaDB server is a community developed fork of MySQL server

critical

Critical remediation recipe for MariaDB server is a community developed fork of MySQL server. Upgrade to patched in versions 10.6.26 and remove the vulnerable command-injection pattern.

cve CVE-2026-44170disclosed 2026-06-12a.k.a. MariaDB server is a community developed fork of MySQL server

CVE-2026-44172 - MariaDB server is a community developed fork of MySQL server

critical

Critical remediation recipe for MariaDB server is a community developed fork of MySQL server. Upgrade to patched in versions 3.3.19 and 3.4.9. and remove the vulnerable authz pattern.

cve CVE-2026-44172disclosed 2026-06-12a.k.a. MariaDB server is a community developed fork of MySQL server

CVE-2026-44893 - Netty is a network application framework for development of protocol servers and clients

high

High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-44893disclosed 2026-06-12a.k.a. Netty is a network application framework for development of protocol servers and clients

CVE-2026-44894 - Netty is a network application framework for development of protocol servers and clients

high

High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to version 4.2.15.Final and remove the vulnerable command-injection pattern.

cve CVE-2026-44894disclosed 2026-06-12a.k.a. Netty is a network application framework for development of protocol servers and clients

CVE-2026-45169 - Idira Privileged Access Manager (PAM) Self-Hosted Vault versions prior to 15.0.3, 14.6.5, 14.2.7, and 14.0.8 e

high

High remediation recipe for Idira Privileged Access Manager (PAM) Self-Hosted Vault versions prior to 15.0.3, 14.6.5, 14.2.7, and 14.0.8 e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-45169disclosed 2026-06-12a.k.a. Idira Privileged Access Manager (PAM) Self-Hosted Vault versions prior to 15.0.3, 14.6.5, 14.2.7, and 14.0.8 e

CVE-2026-46340 - Netty is a network application framework for development of protocol servers and clients

high

High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46340disclosed 2026-06-12a.k.a. Netty is a network application framework for development of protocol servers and clients

CVE-2026-48059 - Netty is a network application framework for development of protocol servers and clients

high

High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-48059disclosed 2026-06-12a.k.a. Netty is a network application framework for development of protocol servers and clients

CVE-2026-48163 - MariaDB server is a community developed fork of MySQL server

high

High remediation recipe for MariaDB server is a community developed fork of MySQL server. Upgrade to patched in versions 10.6.27 and remove the vulnerable command-injection pattern.

cve CVE-2026-48163disclosed 2026-06-12a.k.a. MariaDB server is a community developed fork of MySQL server

CVE-2026-48165 - MariaDB server is a community developed fork of MySQL server

high

High remediation recipe for MariaDB server is a community developed fork of MySQL server. Upgrade to patched in versions 10.6.27 and remove the vulnerable command-injection pattern.

cve CVE-2026-48165disclosed 2026-06-12a.k.a. MariaDB server is a community developed fork of MySQL server

CVE-2026-48748 - Netty is a network application framework for development of protocol servers and clients

high

High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to version 4.2.15.Final and remove the vulnerable dos pattern.

cve CVE-2026-48748disclosed 2026-06-12a.k.a. Netty is a network application framework for development of protocol servers and clients

CVE-2026-49875 - Apache CXF's EndpointReferenceUtils and W3CMultiSchemaFactory classes construct a SAXParserFactory without the

critical

Critical remediation recipe for Apache CXF's EndpointReferenceUtils and W3CMultiSchemaFactory classes construct a SAXParserFactory without the. Upgrade to upgrade to versions 4.2.2 or 4.1.7 and remove the vulnerable authz pattern.

cve CVE-2026-49875disclosed 2026-06-12a.k.a. Apache CXF's EndpointReferenceUtils and W3CMultiSchemaFactory classes construct a SAXParserFactory without the

CVE-2026-50011 - Netty is a network application framework for development of protocol servers and clients

high

High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50011disclosed 2026-06-12a.k.a. Netty is a network application framework for development of protocol servers and clients

CVE-2026-50083 - The Aqara IAM/SSO Gateway (gw-builder.aqara.com) used a hardcoded OAuth client credential, which is an instanc

critical

Critical remediation recipe for The Aqara IAM/SSO Gateway (gw-builder.aqara.com) used a hardcoded OAuth client credential, which is an instanc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.

cve CVE-2026-50083disclosed 2026-06-12a.k.a. The Aqara IAM/SSO Gateway (gw-builder.aqara.com) used a hardcoded OAuth client credential, which is an instanc

CVE-2026-50085 - The Aqara Board service (op-test.aqara.com) accepts arbitrary MQTT command payloads, and forwards them to the

high

High remediation recipe for The Aqara Board service (op-test.aqara.com) accepts arbitrary MQTT command payloads, and forwards them to the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50085disclosed 2026-06-12a.k.a. The Aqara Board service (op-test.aqara.com) accepts arbitrary MQTT command payloads, and forwards them to the

CVE-2026-50086 - The Aqara IAM/SSO gateway (gw-builder.aqara.com) exposes bidirectional AES round-trups against the platform's

critical

Critical remediation recipe for The Aqara IAM/SSO gateway (gw-builder.aqara.com) exposes bidirectional AES round-trups against the platform's. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50086disclosed 2026-06-12a.k.a. The Aqara IAM/SSO gateway (gw-builder.aqara.com) exposes bidirectional AES round-trups against the platform's

CVE-2026-50091 - Aqara Home Android (com.lumiunited.aqarahome) 6.0.0 (and white-label clients embedding the same liblumidevsdk

critical

Critical remediation recipe for Aqara Home Android (com.lumiunited.aqarahome) 6.0.0 (and white-label clients embedding the same liblumidevsdk. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50091disclosed 2026-06-12a.k.a. Aqara Home Android (com.lumiunited.aqarahome) 6.0.0 (and white-label clients embedding the same liblumidevsdk

CVE-2026-50627 - The JwtAccessTokenValidator class in Apache CXF fails to validate the 'aud' (Audience) claims of incoming JWT

critical

Critical remediation recipe for The JwtAccessTokenValidator class in Apache CXF fails to validate the 'aud' (Audience) claims of incoming JWT. Upgrade to upgrade to versions 4.2.2 or 4.1.7 and remove the vulnerable command-injection pattern.

cve CVE-2026-50627disclosed 2026-06-12a.k.a. The JwtAccessTokenValidator class in Apache CXF fails to validate the 'aud' (Audience) claims of incoming JWT

CVE-2026-50628 - A logic error in OAuthRequestFilter rejects legitimate requests originating from the bound IP address, while b

critical

Critical remediation recipe for A logic error in OAuthRequestFilter rejects legitimate requests originating from the bound IP address, while b. Upgrade to upgrade to versions 4.2.2 or 4.1.7 and remove the vulnerable mcp-auth pattern.

cve CVE-2026-50628disclosed 2026-06-12a.k.a. A logic error in OAuthRequestFilter rejects legitimate requests originating from the bound IP address, while b

CVE-2026-50632 - A further incomplete fix for a previous advisory CVE-2026-44417 (Untrusted JMS configuration can lead to RCE)

high

High remediation recipe for A further incomplete fix for a previous advisory CVE-2026-44417 (Untrusted JMS configuration can lead to RCE). Upgrade to upgrade to versions 4.2.2 or 4.1.7 and remove the vulnerable command-injection pattern.

cve CVE-2026-50632disclosed 2026-06-12a.k.a. A further incomplete fix for a previous advisory CVE-2026-44417 (Untrusted JMS configuration can lead to RCE)

CVE-2026-50633 - A JNDI Injection vulnerability has been discovered in Apache CXF's JCA integration module, which can allow for

high

High remediation recipe for A JNDI Injection vulnerability has been discovered in Apache CXF's JCA integration module, which can allow for. Upgrade to upgrade to versions 4.2.2 or 4.1.7 and remove the vulnerable authz pattern.

cve CVE-2026-50633disclosed 2026-06-12a.k.a. A JNDI Injection vulnerability has been discovered in Apache CXF's JCA integration module, which can allow for

CVE-2026-53406 - Insufficient Verification of Data Authenticity in Remote Control for Zoom Contact Center for Windows before ve

high

High remediation recipe for Insufficient Verification of Data Authenticity in Remote Control for Zoom Contact Center for Windows before ve. Upgrade to version 7.0.0 may allow an authenticated user to enable an escalatio and remove the vulnerable dos pattern.

cve CVE-2026-53406disclosed 2026-06-12a.k.a. Insufficient Verification of Data Authenticity in Remote Control for Zoom Contact Center for Windows before ve

CVE-2026-53407 - Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and

high

High remediation recipe for Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and. Upgrade to version 7.0.4 for Android and before 7.0.3 for iOS may allow an unau and remove the vulnerable authz pattern.

cve CVE-2026-53407disclosed 2026-06-12a.k.a. Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and

CVE-2026-11774 - An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server (389-ds-base)

high

High remediation recipe for An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server (389-ds-base). Upgrade to patched schema.c only and did not modify sasl_io.c. and remove the vulnerable command-injection pattern.

cve CVE-2026-11774disclosed 2026-06-11a.k.a. An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server (389-ds-base)

CVE-2026-41699 - Spring for GraphQL applications are vulnerable to Unsafe Deserialization when processing paginated GraphQL que

high

High remediation recipe for Spring for GraphQL applications are vulnerable to Unsafe Deserialization when processing paginated GraphQL que. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-41699disclosed 2026-06-11a.k.a. Spring for GraphQL applications are vulnerable to Unsafe Deserialization when processing paginated GraphQL que

CVE-2026-41700 - Spring for GraphQL applications that have enabled the WebSocket transport are vulnerable to Cross-Site WebSock

high

High remediation recipe for Spring for GraphQL applications that have enabled the WebSocket transport are vulnerable to Cross-Site WebSock. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-41700disclosed 2026-06-11a.k.a. Spring for GraphQL applications that have enabled the WebSocket transport are vulnerable to Cross-Site WebSock

CVE-2026-41856 - The Spring GraphQL annotation detection mechanism for @Controller data fetchers may not correctly resolve anno

high

High remediation recipe for The Spring GraphQL annotation detection mechanism for @Controller data fetchers may not correctly resolve anno. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-41856disclosed 2026-06-11a.k.a. The Spring GraphQL annotation detection mechanism for @Controller data fetchers may not correctly resolve anno

CVE-2026-44890 - Netty is a network application framework for development of protocol servers and clients

high

High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-44890disclosed 2026-06-11a.k.a. Netty is a network application framework for development of protocol servers and clients

CVE-2026-46519 - mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management

high

High remediation recipe for mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management. Upgrade to version 3.6.0 and remove the vulnerable mcp-auth pattern.

cve CVE-2026-46519disclosed 2026-06-11a.k.a. mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management

CVE-2026-47162 - Vim is an open source, command line text editor

high

High remediation recipe for Vim is an open source, command line text editor. Upgrade to version 9.2.0495 and remove the vulnerable command-injection pattern.

cve CVE-2026-47162disclosed 2026-06-11a.k.a. Vim is an open source, command line text editor

CVE-2026-49261 - MariaDB server is a community developed fork of MySQL server

critical

Critical remediation recipe for MariaDB server is a community developed fork of MySQL server. Upgrade to fixed in 10.6.27 and remove the vulnerable command-injection pattern.

cve CVE-2026-49261disclosed 2026-06-11a.k.a. MariaDB server is a community developed fork of MySQL server

CVE-2026-5497 - vLLM versions 0.8.0 and later are vulnerable to an Out-of-Memory (OOM) Denial of Service (DoS) attack due to u

high

High remediation recipe for vLLM versions 0.8.0 and later are vulnerable to an Out-of-Memory (OOM) Denial of Service (DoS) attack due to u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-5497disclosed 2026-06-11a.k.a. vLLM versions 0.8.0 and later are vulnerable to an Out-of-Memory (OOM) Denial of Service (DoS) attack due to u

CVE-2026-0270 - A path traversal vulnerability in Palo Alto Networks Cortex XSOAR engine software running on Linux allows an u

high

High remediation recipe for A path traversal vulnerability in Palo Alto Networks Cortex XSOAR engine software running on Linux allows an u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-0270disclosed 2026-06-10a.k.a. A path traversal vulnerability in Palo Alto Networks Cortex XSOAR engine software running on Linux allows an u

CVE-2026-0271 - A privilege escalation (PE) vulnerability in the Palo Alto Networks Prisma Access Agent app on Linux devices e

high

High remediation recipe for A privilege escalation (PE) vulnerability in the Palo Alto Networks Prisma Access Agent app on Linux devices e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-0271disclosed 2026-06-10a.k.a. A privilege escalation (PE) vulnerability in the Palo Alto Networks Prisma Access Agent app on Linux devices e

CVE-2026-0272 - A privilege escalation vulnerability in Palo Alto Networks PAN-OS® software allows an authenticated administra

high

High remediation recipe for A privilege escalation vulnerability in Palo Alto Networks PAN-OS® software allows an authenticated administra. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-0272disclosed 2026-06-10a.k.a. A privilege escalation vulnerability in Palo Alto Networks PAN-OS® software allows an authenticated administra

CVE-2026-0273 - A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrato

high

High remediation recipe for A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrato. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-0273disclosed 2026-06-10a.k.a. A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrato

CVE-2026-0274 - An improper validation of credentials vulnerability in the CommvaultSecurityIQ integration for Cortex XSOAR an

critical

Critical remediation recipe for An improper validation of credentials vulnerability in the CommvaultSecurityIQ integration for Cortex XSOAR an. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.

cve CVE-2026-0274disclosed 2026-06-10a.k.a. An improper validation of credentials vulnerability in the CommvaultSecurityIQ integration for Cortex XSOAR an

CVE-2026-11837 - A local privilege escalation vulnerability was found in the ansible.posix authorized_key module

high

High remediation recipe for A local privilege escalation vulnerability was found in the ansible.posix authorized_key module. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-11837disclosed 2026-06-10a.k.a. A local privilege escalation vulnerability was found in the ansible.posix authorized_key module

CVE-2026-2049 - GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2049disclosed 2026-06-10a.k.a. GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-24716 - A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions

high

High remediation recipe for A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. Upgrade to fixed the vulnerability in the following versions and remove the vulnerable authz pattern.

cve CVE-2026-24716disclosed 2026-06-10a.k.a. A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions

CVE-2026-24719 - A command injection vulnerability has been reported to affect several QNAP operating system versions

high

High remediation recipe for A command injection vulnerability has been reported to affect several QNAP operating system versions. Upgrade to fixed the vulnerability in the following versions and remove the vulnerable command-injection pattern.

cve CVE-2026-24719disclosed 2026-06-10a.k.a. A command injection vulnerability has been reported to affect several QNAP operating system versions

CVE-2026-41716 - Spring Data's internal property-lookup cache accepts and permanently retains attacker-supplied strings as cach

high

High remediation recipe for Spring Data's internal property-lookup cache accepts and permanently retains attacker-supplied strings as cach. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-41716disclosed 2026-06-10a.k.a. Spring Data's internal property-lookup cache accepts and permanently retains attacker-supplied strings as cach

CVE-2026-41717 - Spring Data MongoDB contains a SpEL (Spring Expression Language) expression injection vulnerability

high

High remediation recipe for Spring Data MongoDB contains a SpEL (Spring Expression Language) expression injection vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-41717disclosed 2026-06-10a.k.a. Spring Data MongoDB contains a SpEL (Spring Expression Language) expression injection vulnerability

CVE-2026-41728 - Spring Data REST's JSON Patch (application/json-patch+json) implementation does not apply the write-access fil

high

High remediation recipe for Spring Data REST's JSON Patch (application/json-patch+json) implementation does not apply the write-access fil. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-41728disclosed 2026-06-10a.k.a. Spring Data REST's JSON Patch (application/json-patch+json) implementation does not apply the write-access fil

CVE-2026-41731 - JsonKafkaHeaderMapper and the deprecated DefaultKafkaHeaderMapper matched type headers against trusted package

high

High remediation recipe for JsonKafkaHeaderMapper and the deprecated DefaultKafkaHeaderMapper matched type headers against trusted package. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-41731disclosed 2026-06-10a.k.a. JsonKafkaHeaderMapper and the deprecated DefaultKafkaHeaderMapper matched type headers against trusted package

CVE-2026-46520 - ImageMagick is free and open-source software used for editing and manipulating digital images

high

High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to patched in versions 6.9.13-48 and 7.1.2-23. and remove the vulnerable command-injection pattern.

cve CVE-2026-46520disclosed 2026-06-10a.k.a. ImageMagick is free and open-source software used for editing and manipulating digital images

CVE-2026-46522 - ImageMagick is free and open-source software used for editing and manipulating digital images

high

High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-46522disclosed 2026-06-10a.k.a. ImageMagick is free and open-source software used for editing and manipulating digital images

CVE-2026-46529 - Atril Document Viewer is the default document reader of the MATE desktop environment for Linux

high

High remediation recipe for Atril Document Viewer is the default document reader of the MATE desktop environment for Linux. Upgrade to fixed in 1.6.2 and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-46529disclosed 2026-06-10a.k.a. Atril Document Viewer is the default document reader of the MATE desktop environment for Linux

CVE-2026-49759 - Stack-based Buffer Overflow vulnerability in Erlang OTP erts (inet_drv) allows an unauthenticated remote attac

high

High remediation recipe for Stack-based Buffer Overflow vulnerability in Erlang OTP erts (inet_drv) allows an unauthenticated remote attac. Upgrade to fixed tag and remove the vulnerable dos pattern.

cve CVE-2026-49759disclosed 2026-06-10a.k.a. Stack-based Buffer Overflow vulnerability in Erlang OTP erts (inet_drv) allows an unauthenticated remote attac

CVE-2026-53435 - In Jenkins 2.567 and earlier, LTS 2.555.2 and earlier, it is possible for attackers to have Jenkins deserializ

high

High remediation recipe for In Jenkins 2.567 and earlier, LTS 2.555.2 and earlier, it is possible for attackers to have Jenkins deserializ. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-53435disclosed 2026-06-10a.k.a. In Jenkins 2.567 and earlier, LTS 2.555.2 and earlier, it is possible for attackers to have Jenkins deserializ

CVE-2026-6893 - A flaw was found in dracut. A remote attacker on the adjacent network can exploit this vulnerability by provid

high

High remediation recipe for A flaw was found in dracut. A remote attacker on the adjacent network can exploit this vulnerability by provid. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-6893disclosed 2026-06-10a.k.a. A flaw was found in dracut. A remote attacker on the adjacent network can exploit this vulnerability by provid

CVE-2025-10263 - Arm C1-Ultra, C1-Premium, Neoverse V3 & V3AE, Neoverse V2, Neoverse V1, Neoverse-N2, Neoverse-N1, Cortex-X925,

critical

Critical remediation recipe for Arm C1-Ultra, C1-Premium, Neoverse V3 & V3AE, Neoverse V2, Neoverse V1, Neoverse-N2, Neoverse-N1, Cortex-X925,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-10263disclosed 2026-06-09a.k.a. Arm C1-Ultra, C1-Premium, Neoverse V3 & V3AE, Neoverse V2, Neoverse V1, Neoverse-N2, Neoverse-N1, Cortex-X925,

CVE-2026-26142 - Deserialization of untrusted data in Nuance PowerScribe allows an unauthorized attacker to execute code over a

critical

Critical remediation recipe for Deserialization of untrusted data in Nuance PowerScribe allows an unauthorized attacker to execute code over a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-26142disclosed 2026-06-09a.k.a. Deserialization of untrusted data in Nuance PowerScribe allows an unauthorized attacker to execute code over a

CVE-2026-40983 - In Micrometer, it is possible for a user to provide specially crafted gRPC requests that may cause a denial-of

high

High remediation recipe for In Micrometer, it is possible for a user to provide specially crafted gRPC requests that may cause a denial-of. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-40983disclosed 2026-06-09a.k.a. In Micrometer, it is possible for a user to provide specially crafted gRPC requests that may cause a denial-of

CVE-2026-40984 - In Micrometer, it is possible for a user to provide specially crafted HTTP requests that may cause a denial-of

high

High remediation recipe for In Micrometer, it is possible for a user to provide specially crafted HTTP requests that may cause a denial-of. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-40984disclosed 2026-06-09a.k.a. In Micrometer, it is possible for a user to provide specially crafted HTTP requests that may cause a denial-of

CVE-2026-41855 - In an untrusted JMS environment, org.springframework.jms.support.converter.MappingJackson2MessageConverter and

high

High remediation recipe for In an untrusted JMS environment, org.springframework.jms.support.converter.MappingJackson2MessageConverter and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-41855disclosed 2026-06-09a.k.a. In an untrusted JMS environment, org.springframework.jms.support.converter.MappingJackson2MessageConverter and

CVE-2026-45490 - Improper authorization in .NET allows an authorized attacker to elevate privileges locally

high

High remediation recipe for Improper authorization in .NET allows an authorized attacker to elevate privileges locally. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-45490disclosed 2026-06-09a.k.a. Improper authorization in .NET allows an authorized attacker to elevate privileges locally

CVE-2026-45591 - Uncontrolled resource consumption in ASP.NET Core allows an unauthorized attacker to deny service over a netwo

high

High remediation recipe for Uncontrolled resource consumption in ASP.NET Core allows an unauthorized attacker to deny service over a netwo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-45591disclosed 2026-06-09a.k.a. Uncontrolled resource consumption in ASP.NET Core allows an unauthorized attacker to deny service over a netwo

CVE-2026-46316 - In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46316disclosed 2026-06-09a.k.a. In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation

CVE-2026-46323 - In the Linux kernel, the following vulnerability has been resolved: net: gro: don't merge zcopy skbs skb_gro_r

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: gro: don't merge zcopy skbs skb_gro_r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-46323disclosed 2026-06-09a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: gro: don't merge zcopy skbs skb_gro_r

CVE-2026-46328 - In the Linux kernel, the following vulnerability has been resolved: apparmor: fix rlimit for posix cpu timers

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: apparmor: fix rlimit for posix cpu timers. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-46328disclosed 2026-06-09a.k.a. In the Linux kernel, the following vulnerability has been resolved: apparmor: fix rlimit for posix cpu timers

CVE-2026-47907 - Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Access Control vulnerability that co

high

High remediation recipe for Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Access Control vulnerability that co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-47907disclosed 2026-06-09a.k.a. Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Access Control vulnerability that co

CVE-2026-47931 - ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Input Validation vulnerability tha

high

High remediation recipe for ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Input Validation vulnerability tha. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-47931disclosed 2026-06-09a.k.a. ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Input Validation vulnerability tha

CVE-2026-47937 - Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Ele

high

High remediation recipe for Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Ele. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-47937disclosed 2026-06-09a.k.a. Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Ele

CVE-2026-5068 - A remote, unauthenticated BLE peer can trigger a 2-byte out-of-bounds write in the Bluetooth host during L2CAP

high

High remediation recipe for A remote, unauthenticated BLE peer can trigger a 2-byte out-of-bounds write in the Bluetooth host during L2CAP. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-5068disclosed 2026-06-09a.k.a. A remote, unauthenticated BLE peer can trigger a 2-byte out-of-bounds write in the Bluetooth host during L2CAP

CVE-2026-9698 - DBI versions before 1.648 for Perl saved errors in a limited-sized buffer

critical

Critical remediation recipe for DBI versions before 1.648 for Perl saved errors in a limited-sized buffer. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-9698disclosed 2026-06-09a.k.a. DBI versions before 1.648 for Perl saved errors in a limited-sized buffer

CVE-2026-11577 - A flaw was found in Keycloak. A limited administrator can exploit an improper access control vulnerability in

high

High remediation recipe for A flaw was found in Keycloak. A limited administrator can exploit an improper access control vulnerability in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-11577disclosed 2026-06-08a.k.a. A flaw was found in Keycloak. A limited administrator can exploit an improper access control vulnerability in

CVE-2026-3238 - A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller

high

High remediation recipe for A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-3238disclosed 2026-06-08a.k.a. A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller

CVE-2026-34355 - A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and earlier allows an attack by an untrusted

high

High remediation recipe for A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and earlier allows an attack by an untrusted. Upgrade to upgrade to version 2.4.68 and remove the vulnerable authz pattern.

cve CVE-2026-34355disclosed 2026-06-08a.k.a. A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and earlier allows an attack by an untrusted

CVE-2026-42536 - Heap-based Buffer Overflow vulnerability in Apache HTTP Server with mod_xml2enc, xml2StartParse, and untrusted

high

High remediation recipe for Heap-based Buffer Overflow vulnerability in Apache HTTP Server with mod_xml2enc, xml2StartParse, and untrusted. Upgrade to upgrade to version 2.4.68 and remove the vulnerable authz pattern.

cve CVE-2026-42536disclosed 2026-06-08a.k.a. Heap-based Buffer Overflow vulnerability in Apache HTTP Server with mod_xml2enc, xml2StartParse, and untrusted

CVE-2026-44185 - Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requests to an attacker controlled OCSP

high

High remediation recipe for Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requests to an attacker controlled OCSP. Upgrade to upgrade to version 2.4.68 and remove the vulnerable authz pattern.

cve CVE-2026-44185disclosed 2026-06-08a.k.a. Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requests to an attacker controlled OCSP

CVE-2026-46279 - In the Linux kernel, the following vulnerability has been resolved: mm/alloc_tag: clear codetag for pages allo

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mm/alloc_tag: clear codetag for pages allo. Upgrade to fixed at 8192 entries and remove the vulnerable authz pattern.

cve CVE-2026-46279disclosed 2026-06-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: mm/alloc_tag: clear codetag for pages allo

CVE-2026-46281 - In the Linux kernel, the following vulnerability has been resolved: vmalloc: fix buffer overflow in vrealloc_n

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: vmalloc: fix buffer overflow in vrealloc_n. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-46281disclosed 2026-06-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: vmalloc: fix buffer overflow in vrealloc_n

CVE-2026-46285 - In the Linux kernel, the following vulnerability has been resolved: mtd: docg3: fix use-after-free in docg3_re

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mtd: docg3: fix use-after-free in docg3_re. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46285disclosed 2026-06-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: mtd: docg3: fix use-after-free in docg3_re

CVE-2026-46289 - In the Linux kernel, the following vulnerability has been resolved: lib/scatterlist: fix length calculations i

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: lib/scatterlist: fix length calculations i. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-46289disclosed 2026-06-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: lib/scatterlist: fix length calculations i

CVE-2026-46293 - In the Linux kernel, the following vulnerability has been resolved: clk: microchip: mpfs-ccc: fix out of bound

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: clk: microchip: mpfs-ccc: fix out of bound. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46293disclosed 2026-06-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: clk: microchip: mpfs-ccc: fix out of bound

CVE-2026-46301 - In the Linux kernel, the following vulnerability has been resolved: spi: topcliff-pch: fix use-after-free on u

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: spi: topcliff-pch: fix use-after-free on u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46301disclosed 2026-06-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: spi: topcliff-pch: fix use-after-free on u

CVE-2026-46308 - In the Linux kernel, the following vulnerability has been resolved: pmdomain: mediatek: fix use-after-free in

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: pmdomain: mediatek: fix use-after-free in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46308disclosed 2026-06-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: pmdomain: mediatek: fix use-after-free in

CVE-2026-46309 - In the Linux kernel, the following vulnerability has been resolved: drm/xe/uapi: Reject coh_none PAT index for

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/xe/uapi: Reject coh_none PAT index for. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46309disclosed 2026-06-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/xe/uapi: Reject coh_none PAT index for

CVE-2026-49975 - Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http leads to denial of

high

High remediation recipe for Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http leads to denial of. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-49975disclosed 2026-06-08a.k.a. Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http leads to denial of

CVE-2026-11332 - A flaw was found in ansible-core. The ansible-galaxy role install command processes dependency specifications

high

High remediation recipe for A flaw was found in ansible-core. The ansible-galaxy role install command processes dependency specifications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-11332disclosed 2026-06-05a.k.a. A flaw was found in ansible-core. The ansible-galaxy role install command processes dependency specifications

CVE-2026-21035 - Improper input validation in Samsung Plus TV prior to version 1.0.28.6 allows remote attackers to access sensi

high

High remediation recipe for Improper input validation in Samsung Plus TV prior to version 1.0.28.6 allows remote attackers to access sensi. Upgrade to version 1.0.28.6 allows remote attackers to access sensitive informa and remove the vulnerable authz pattern.

cve CVE-2026-21035disclosed 2026-06-05a.k.a. Improper input validation in Samsung Plus TV prior to version 1.0.28.6 allows remote attackers to access sensi

CVE-2026-21037 - Improper input validation in Samsung Members prior to version 5.8.01.5 allows local attackers to access arbitr

high

High remediation recipe for Improper input validation in Samsung Members prior to version 5.8.01.5 allows local attackers to access arbitr. Upgrade to version 5.8.01.5 allows local attackers to access arbitrary URL and and remove the vulnerable authz pattern.

cve CVE-2026-21037disclosed 2026-06-05a.k.a. Improper input validation in Samsung Members prior to version 5.8.01.5 allows local attackers to access arbitr

CVE-2026-50256 - A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland

high

High remediation recipe for A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50256disclosed 2026-06-05a.k.a. A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland

CVE-2026-50257 - A use-after-free flaw was found in the X.Org X server and Xwayland in miSyncDestroyFence()

high

High remediation recipe for A use-after-free flaw was found in the X.Org X server and Xwayland in miSyncDestroyFence(). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50257disclosed 2026-06-05a.k.a. A use-after-free flaw was found in the X.Org X server and Xwayland in miSyncDestroyFence()

CVE-2026-50258 - A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland

high

High remediation recipe for A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50258disclosed 2026-06-05a.k.a. A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland

CVE-2026-50259 - A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland

high

High remediation recipe for A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50259disclosed 2026-06-05a.k.a. A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland

CVE-2026-50260 - A use-after-free flaw was found in the X.Org X server and Xwayland in FreeCounter()

high

High remediation recipe for A use-after-free flaw was found in the X.Org X server and Xwayland in FreeCounter(). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50260disclosed 2026-06-05a.k.a. A use-after-free flaw was found in the X.Org X server and Xwayland in FreeCounter()

CVE-2026-50261 - A use-after-free flaw was found in the X.Org X server and Xwayland in SyncChangeCounter()

high

High remediation recipe for A use-after-free flaw was found in the X.Org X server and Xwayland in SyncChangeCounter(). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50261disclosed 2026-06-05a.k.a. A use-after-free flaw was found in the X.Org X server and Xwayland in SyncChangeCounter()

CVE-2026-50264 - An out-of-bounds write flaw was found in the X.Org X server and Xwayland in DRIGetBuffers/DRIGetBuffersWithFor

high

High remediation recipe for An out-of-bounds write flaw was found in the X.Org X server and Xwayland in DRIGetBuffers/DRIGetBuffersWithFor. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-50264disclosed 2026-06-05a.k.a. An out-of-bounds write flaw was found in the X.Org X server and Xwayland in DRIGetBuffers/DRIGetBuffersWithFor

CVE-2025-12694 - A local privilege escalation vulnerability exists in Forcepoint VPN Client that allows a local non-administrat

high

High remediation recipe for A local privilege escalation vulnerability exists in Forcepoint VPN Client that allows a local non-administrat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-12694disclosed 2026-06-04a.k.a. A local privilege escalation vulnerability exists in Forcepoint VPN Client that allows a local non-administrat

CVE-2026-10843 - A flaw was found in the OpenShift Cloud Credential Operator Mint-mode IAM policies for AWS

high

High remediation recipe for A flaw was found in the OpenShift Cloud Credential Operator Mint-mode IAM policies for AWS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-10843disclosed 2026-06-04a.k.a. A flaw was found in the OpenShift Cloud Credential Operator Mint-mode IAM policies for AWS

CVE-2026-41283 - OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed

critical

Critical remediation recipe for OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-41283disclosed 2026-06-04a.k.a. OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed

CVE-2026-22054 - Active IQ Config Advisor version 6.7.3 contains hard-coded credentials that could allow an authenticated attac

high

High remediation recipe for Active IQ Config Advisor version 6.7.3 contains hard-coded credentials that could allow an authenticated attac. Upgrade to version 6.7.3 contains hard-coded credentials that could allow an au and remove the vulnerable authz pattern.

cve CVE-2026-22054disclosed 2026-06-03a.k.a. Active IQ Config Advisor version 6.7.3 contains hard-coded credentials that could allow an authenticated attac

CVE-2026-22055 - Active IQ OneCollect version 2.7.3 contains hard-coded credentials that could allow an authenticated attacker

high

High remediation recipe for Active IQ OneCollect version 2.7.3 contains hard-coded credentials that could allow an authenticated attacker. Upgrade to version 2.7.3 contains hard-coded credentials that could allow an au and remove the vulnerable authz pattern.

cve CVE-2026-22055disclosed 2026-06-03a.k.a. Active IQ OneCollect version 2.7.3 contains hard-coded credentials that could allow an authenticated attacker

CVE-2026-4035 - A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment variables i

high

High remediation recipe for A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment variables i. Upgrade to fixed in version 3.11.0. and remove the vulnerable authz pattern.

cve CVE-2026-4035disclosed 2026-06-03a.k.a. A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment variables i

CVE-2026-46244 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: Fix IPv6 inner_thoff

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: Fix IPv6 inner_thoff. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46244disclosed 2026-06-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: Fix IPv6 inner_thoff

CVE-2026-46246 - In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_lbc: Fix use-after-f

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_lbc: Fix use-after-f. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-46246disclosed 2026-06-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_lbc: Fix use-after-f

CVE-2026-46251 - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix block_group_tree dirty_list cor

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: btrfs: fix block_group_tree dirty_list cor. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-46251disclosed 2026-06-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: btrfs: fix block_group_tree dirty_list cor

CVE-2026-46253 - In the Linux kernel, the following vulnerability has been resolved: pstore/ram: fix buffer overflow in persist

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: pstore/ram: fix buffer overflow in persist. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-46253disclosed 2026-06-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: pstore/ram: fix buffer overflow in persist

CVE-2026-46259 - In the Linux kernel, the following vulnerability has been resolved: procfs: fix missing RCU protection when re

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: procfs: fix missing RCU protection when re. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-46259disclosed 2026-06-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: procfs: fix missing RCU protection when re

CVE-2026-46260 - In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix out-of-bound access in fib6_add_

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix out-of-bound access in fib6_add_. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-46260disclosed 2026-06-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix out-of-bound access in fib6_add_

CVE-2026-46265 - In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix WQ_MEM_RECLAIM warning When

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix WQ_MEM_RECLAIM warning When. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-46265disclosed 2026-06-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix WQ_MEM_RECLAIM warning When

CVE-2026-46266 - In the Linux kernel, the following vulnerability has been resolved: inet: RAW sockets using IPPROTO_RAW MUST d

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: inet: RAW sockets using IPPROTO_RAW MUST d. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-46266disclosed 2026-06-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: inet: RAW sockets using IPPROTO_RAW MUST d

CVE-2026-46267 - In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work befo

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work befo. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-46267disclosed 2026-06-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work befo

CVE-2026-46270 - In the Linux kernel, the following vulnerability has been resolved: power: supply: rt9455: Fix use-after-free

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: rt9455: Fix use-after-free. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-46270disclosed 2026-06-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: power: supply: rt9455: Fix use-after-free

CVE-2026-6657 - A vulnerability in jupyter-server versions 1.12.0 through 2.17.0 allows an attacker to bypass CORS origin vali

high

High remediation recipe for A vulnerability in jupyter-server versions 1.12.0 through 2.17.0 allows an attacker to bypass CORS origin vali. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-6657disclosed 2026-06-03a.k.a. A vulnerability in jupyter-server versions 1.12.0 through 2.17.0 allows an attacker to bypass CORS origin vali

CVE-2026-10701 - Incorrect boundary conditions in the Graphics: Text component

high

High remediation recipe for Incorrect boundary conditions in the Graphics: Text component. Upgrade to fixed in Firefox 151.0.3. and remove the vulnerable authz pattern.

cve CVE-2026-10701disclosed 2026-06-02a.k.a. Incorrect boundary conditions in the Graphics: Text component

CVE-2026-1784 - The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy

high

High remediation recipe for The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-1784disclosed 2026-06-02a.k.a. The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy

CVE-2026-42504 - Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU

high

High remediation recipe for Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-42504disclosed 2026-06-02a.k.a. Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU

CVE-2019-25718 - Dräger Infinity Explorer C700 contains a privilege escalation vulnerability that allows attackers to break out

high

High remediation recipe for Dräger Infinity Explorer C700 contains a privilege escalation vulnerability that allows attackers to break out. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2019-25718disclosed 2026-06-01a.k.a. Dräger Infinity Explorer C700 contains a privilege escalation vulnerability that allows attackers to break out

CVE-2025-70099 - A NULL pointer dereference in the ext4_dir_en_get_name_len function in include/ext4_dir.h of lwext4 1.0.0 allo

high

High remediation recipe for A NULL pointer dereference in the ext4_dir_en_get_name_len function in include/ext4_dir.h of lwext4 1.0.0 allo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-70099disclosed 2026-06-01a.k.a. A NULL pointer dereference in the ext4_dir_en_get_name_len function in include/ext4_dir.h of lwext4 1.0.0 allo

CVE-2026-10118 - A flaw was found in Poppler's Splash backend

high

High remediation recipe for A flaw was found in Poppler's Splash backend. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-10118disclosed 2026-06-01a.k.a. A flaw was found in Poppler's Splash backend

CVE-2026-43958 - A flaw was found in rrdcached, a component of rrdtool

high

High remediation recipe for A flaw was found in rrdcached, a component of rrdtool. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-43958disclosed 2026-06-01a.k.a. A flaw was found in rrdcached, a component of rrdtool

CVE-2026-42965 - A flaw was found in the OpenShift Router

high

High remediation recipe for A flaw was found in the OpenShift Router. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-42965disclosed 2026-05-29a.k.a. A flaw was found in the OpenShift Router

CVE-2026-44421 - FreeRDP is a free implementation of the Remote Desktop Protocol

high

High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.26.0. and remove the vulnerable dos pattern.

cve CVE-2026-44421disclosed 2026-05-29a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-44422 - FreeRDP is a free implementation of the Remote Desktop Protocol

high

High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.26.0. and remove the vulnerable authz pattern.

cve CVE-2026-44422disclosed 2026-05-29a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-45700 - FreeRDP is a free implementation of the Remote Desktop Protocol

critical

Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.26.0. and remove the vulnerable authz pattern.

cve CVE-2026-45700disclosed 2026-05-29a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-4408 - A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic

critical

Critical remediation recipe for A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-4408disclosed 2026-05-28a.k.a. A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic

CVE-2026-46115 - In the Linux kernel, the following vulnerability has been resolved: block: add pgmap check to biovec_phys_merg

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: block: add pgmap check to biovec_phys_merg. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-46115disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: block: add pgmap check to biovec_phys_merg

CVE-2026-46116 - In the Linux kernel, the following vulnerability has been resolved: xfrm: defensively unhash xfrm_state lists

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfrm: defensively unhash xfrm_state lists. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-46116disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: xfrm: defensively unhash xfrm_state lists

CVE-2026-46119 - In the Linux kernel, the following vulnerability has been resolved: libceph: Fix slab-out-of-bounds access in

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: libceph: Fix slab-out-of-bounds access in. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-46119disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: libceph: Fix slab-out-of-bounds access in

CVE-2026-46125 - In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: remove station if connecti

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: remove station if connecti. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46125disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: remove station if connecti

CVE-2026-46135 - In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix race between ICReq handling

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix race between ICReq handling. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-46135disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix race between ICReq handling

CVE-2026-46145 - In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Validate rx_hash_key_len Sashik

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Validate rx_hash_key_len Sashik. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.

cve CVE-2026-46145disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Validate rx_hash_key_len Sashik

CVE-2026-46152 - In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: drop stray 'static' from f

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: drop stray 'static' from f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46152disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: drop stray 'static' from f

CVE-2026-46166 - In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: use safe list iteration in

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: use safe list iteration in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46166disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: use safe list iteration in

CVE-2026-46176 - In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46176disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in

CVE-2026-46181 - In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-46181disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_

CVE-2026-46185 - In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in syml

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in syml. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-46185disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in syml

CVE-2026-46189 - In the Linux kernel, the following vulnerability has been resolved: RDMA/vmw_pvrdma: Fix double free on pvrdma

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/vmw_pvrdma: Fix double free on pvrdma. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46189disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/vmw_pvrdma: Fix double free on pvrdma

CVE-2026-46195 - In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before bu

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before bu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46195disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before bu

CVE-2026-46215 - In the Linux kernel, the following vulnerability has been resolved: drm: Set old handle to NULL before prime s

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm: Set old handle to NULL before prime s. Upgrade to 0, 6.18.32, 7.0.9, 7.1 and remove the vulnerable authz pattern.

cve CVE-2026-46215disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm: Set old handle to NULL before prime s

CVE-2026-46227 - In the Linux kernel, the following vulnerability has been resolved: sctp: revalidate list cursor after sctp_se

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: sctp: revalidate list cursor after sctp_se. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-46227disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: sctp: revalidate list cursor after sctp_se

CVE-2026-9795 - A flaw was found in Keycloak's Fine-Grained Admin Permissions (FGAPv2) feature

high

High remediation recipe for A flaw was found in Keycloak's Fine-Grained Admin Permissions (FGAPv2) feature. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-9795disclosed 2026-05-28a.k.a. A flaw was found in Keycloak's Fine-Grained Admin Permissions (FGAPv2) feature

CVE-2026-9804 - A flaw was found in KubeVirt's virt-exportserver component

high

High remediation recipe for A flaw was found in KubeVirt's virt-exportserver component. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-9804disclosed 2026-05-28a.k.a. A flaw was found in KubeVirt's virt-exportserver component

CVE-2025-71306 - In the Linux kernel, the following vulnerability has been resolved: ima: Fix stack-out-of-bounds in is_bprm_cr

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ima: Fix stack-out-of-bounds in is_bprm_cr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-71306disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: ima: Fix stack-out-of-bounds in is_bprm_cr

CVE-2026-1933 - A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes

high

High remediation recipe for A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-1933disclosed 2026-05-27a.k.a. A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes

CVE-2026-3012 - A flaw was found in Samba’s certificate auto-enrollment Group Policy handling

high

High remediation recipe for A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-3012disclosed 2026-05-27a.k.a. A flaw was found in Samba’s certificate auto-enrollment Group Policy handling

CVE-2026-45837 - In the Linux kernel, the following vulnerability has been resolved: bpf: Fix use-after-free in arena_vm_close

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: Fix use-after-free in arena_vm_close. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-45837disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: bpf: Fix use-after-free in arena_vm_close

CVE-2026-45839 - In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indice

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indice. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-45839disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indice

CVE-2026-45851 - In the Linux kernel, the following vulnerability has been resolved: efi: Fix reservation of unaccepted memory

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: efi: Fix reservation of unaccepted memory. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-45851disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: efi: Fix reservation of unaccepted memory

CVE-2026-45852 - In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix double free in rxe_srq_from_

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix double free in rxe_srq_from_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-45852disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix double free in rxe_srq_from_

CVE-2026-45853 - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Use kvfree instead of kfree in

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Use kvfree instead of kfree in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-45853disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Use kvfree instead of kfree in

CVE-2026-45856 - In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Validate wqe_size before usin

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Validate wqe_size before usin. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-45856disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Validate wqe_size before usin

CVE-2026-45859 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_queue: do shared-unco

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_queue: do shared-unco. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-45859disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_queue: do shared-unco

CVE-2026-45860 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conncount: increase the conn

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conncount: increase the conn. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-45860disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conncount: increase the conn

CVE-2026-45861 - In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix slab-use-after-free in qd_put Co

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix slab-use-after-free in qd_put Co. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-45861disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix slab-use-after-free in qd_put Co

CVE-2026-45862 - In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Flush cache for PASID table be

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Flush cache for PASID table be. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-45862disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Flush cache for PASID table be

CVE-2026-45866 - In the Linux kernel, the following vulnerability has been resolved: serial: caif: fix use-after-free in caif_s

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: serial: caif: fix use-after-free in caif_s. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-45866disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: serial: caif: fix use-after-free in caif_s

CVE-2026-45867 - In the Linux kernel, the following vulnerability has been resolved: power: supply: act8945a: Fix use-after-fre

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: act8945a: Fix use-after-fre. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-45867disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: power: supply: act8945a: Fix use-after-fre

CVE-2026-45878 - In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix watch_id bounds checking i

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix watch_id bounds checking i. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-45878disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix watch_id bounds checking i

CVE-2026-45879 - In the Linux kernel, the following vulnerability has been resolved: power: supply: bq25980: Fix use-after-free

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: bq25980: Fix use-after-free. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-45879disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: power: supply: bq25980: Fix use-after-free

CVE-2026-45882 - In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_bms_vm: Fix use-afte

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_bms_vm: Fix use-afte. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-45882disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_bms_vm: Fix use-afte

CVE-2026-45885 - In the Linux kernel, the following vulnerability has been resolved: power: supply: cpcap-battery: Fix use-afte

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: cpcap-battery: Fix use-afte. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-45885disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: power: supply: cpcap-battery: Fix use-afte

CVE-2026-45891 - In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix double free issue for tx sp

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix double free issue for tx sp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-45891disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix double free issue for tx sp

CVE-2026-45893 - In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix & Optimize table creation fr

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix & Optimize table creation fr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-45893disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix & Optimize table creation fr

CVE-2026-45896 - In the Linux kernel, the following vulnerability has been resolved: mtd: intel-dg: Fix accessing regions befor

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mtd: intel-dg: Fix accessing regions befor. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-45896disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: mtd: intel-dg: Fix accessing regions befor

CVE-2026-45898 - In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix workqueue list corruption b

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix workqueue list corruption b. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-45898disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix workqueue list corruption b

CVE-2026-45902 - In the Linux kernel, the following vulnerability has been resolved: power: supply: bq256xx: Fix use-after-free

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: bq256xx: Fix use-after-free. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-45902disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: power: supply: bq256xx: Fix use-after-free

CVE-2026-45910 - In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix race condition in QP timer h

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix race condition in QP timer h. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-45910disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix race condition in QP timer h

CVE-2026-45914 - In the Linux kernel, the following vulnerability has been resolved: Revert hwmon: (ibmpex) fix use-after-free

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Revert hwmon: (ibmpex) fix use-after-free. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-45914disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: Revert hwmon: (ibmpex) fix use-after-free

CVE-2026-45916 - In the Linux kernel, the following vulnerability has been resolved: power: supply: sbs-battery: Fix use-after-

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: sbs-battery: Fix use-after-. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-45916disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: power: supply: sbs-battery: Fix use-after-

CVE-2026-45935 - In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix slab-out-of-bounds read in D

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix slab-out-of-bounds read in D. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-45935disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix slab-out-of-bounds read in D

CVE-2026-45936 - In the Linux kernel, the following vulnerability has been resolved: power: supply: goldfish: Fix use-after-fre

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: goldfish: Fix use-after-fre. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-45936disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: power: supply: goldfish: Fix use-after-fre

CVE-2026-45938 - In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_lbc: Fix use-after-f

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_lbc: Fix use-after-f. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-45938disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_lbc: Fix use-after-f

CVE-2026-45946 - In the Linux kernel, the following vulnerability has been resolved: power: supply: ab8500: Fix use-after-free

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: ab8500: Fix use-after-free. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-45946disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: power: supply: ab8500: Fix use-after-free

CVE-2026-45957 - In the Linux kernel, the following vulnerability has been resolved: rcu: Fix rcu_read_unlock() deadloop due to

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rcu: Fix rcu_read_unlock() deadloop due to. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-45957disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: rcu: Fix rcu_read_unlock() deadloop due to

CVE-2026-45970 - In the Linux kernel, the following vulnerability has been resolved: bonding: alb: fix UAF in rlb_arp_recv duri

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bonding: alb: fix UAF in rlb_arp_recv duri. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-45970disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: bonding: alb: fix UAF in rlb_arp_recv duri

CVE-2026-45972 - In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF and double

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF and double. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-45972disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF and double

CVE-2026-45984 - In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in iomap inline d

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in iomap inline d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-45984disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in iomap inline d

CVE-2026-45988 - In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packe

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packe. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-45988disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packe

CVE-2026-45998 - In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix potential UAF after skb_unshare

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix potential UAF after skb_unshare. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-45998disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix potential UAF after skb_unshare

CVE-2026-46033 - In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - reject short ahash di

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - reject short ahash di. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46033disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - reject short ahash di

CVE-2026-46043 - In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before pay

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before pay. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-46043disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before pay

CVE-2026-46054 - In the Linux kernel, the following vulnerability has been resolved: selinux: fix overlayfs mmap() and mprotect

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: selinux: fix overlayfs mmap() and mprotect. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-46054disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: selinux: fix overlayfs mmap() and mprotect

CVE-2026-46090 - In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix peer runtime UAF during f

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix peer runtime UAF during f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46090disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix peer runtime UAF during f

CVE-2026-46094 - In the Linux kernel, the following vulnerability has been resolved: ext4: fix bounds check in check_xattrs() t

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ext4: fix bounds check in check_xattrs() t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46094disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: ext4: fix bounds check in check_xattrs() t

CVE-2026-46097 - In the Linux kernel, the following vulnerability has been resolved: Input: edt-ft5x06 - fix use-after-free in

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Input: edt-ft5x06 - fix use-after-free in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46097disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: Input: edt-ft5x06 - fix use-after-free in

CVE-2026-46099 - In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix NOREF dst use in seg6 and r

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix NOREF dst use in seg6 and r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-46099disclosed 2026-05-27a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix NOREF dst use in seg6 and r

CVE-2026-48962 - IO::Compress versions before 2.220 for Perl can execute arbitrary code in File::GlobMapper via an attacker-con

high

High remediation recipe for IO::Compress versions before 2.220 for Perl can execute arbitrary code in File::GlobMapper via an attacker-con. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-48962disclosed 2026-05-27a.k.a. IO::Compress versions before 2.220 for Perl can execute arbitrary code in File::GlobMapper via an attacker-con

CVE-2026-9312 - A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an

high

High remediation recipe for A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an. Upgrade to fixed in versions 3.17.17 and remove the vulnerable path-traversal pattern.

cve CVE-2026-9312disclosed 2026-05-27a.k.a. A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an

CVE-2026-40033 - FreeRDP before 3.26.0 contains a heap-buffer-overflow vulnerability in gdi_CacheToSurface that allows remote a

high

High remediation recipe for FreeRDP before 3.26.0 contains a heap-buffer-overflow vulnerability in gdi_CacheToSurface that allows remote a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-40033disclosed 2026-05-26a.k.a. FreeRDP before 3.26.0 contains a heap-buffer-overflow vulnerability in gdi_CacheToSurface that allows remote a

CVE-2026-42496 - Archive::Tar versions before 3.08 for Perl extract symlinks with attacker controlled targets outside the extra

critical

Critical remediation recipe for Archive::Tar versions before 3.08 for Perl extract symlinks with attacker controlled targets outside the extra. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-42496disclosed 2026-05-26a.k.a. Archive::Tar versions before 3.08 for Perl extract symlinks with attacker controlled targets outside the extra

CVE-2026-44209 - Banks generates meaningful LLM prompts using a template language that makes sense

high

High remediation recipe for Banks generates meaningful LLM prompts using a template language that makes sense. Upgrade to fixed in 2.4.2. and remove the vulnerable command-injection pattern.

cve CVE-2026-44209disclosed 2026-05-26a.k.a. Banks generates meaningful LLM prompts using a template language that makes sense

CVE-2026-4480 - A flaw was found in the Samba printing subsystem

critical

Critical remediation recipe for A flaw was found in the Samba printing subsystem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-4480disclosed 2026-05-26a.k.a. A flaw was found in the Samba printing subsystem

CVE-2026-48864 - A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled

high

High remediation recipe for A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled. Upgrade to 0.7.38-2.hum1, 0:0.7.20-7.el8_10, 0:0.7.33-5.el10_2 and remove the vulnerable memory-corruption pattern.

cve CVE-2026-48864disclosed 2026-05-26a.k.a. A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled

CVE-2026-43503 - In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-43503disclosed 2026-05-23a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker

CVE-2026-46300 - In the Linux kernel, the following vulnerability has been resolved: net: skbuff: preserve shared-frag marker d

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: skbuff: preserve shared-frag marker d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-46300disclosed 2026-05-23a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: skbuff: preserve shared-frag marker d

CVE-2026-39821 - The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only la

critical

Critical remediation recipe for The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only la. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-39821disclosed 2026-05-22a.k.a. The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only la

CVE-2026-9256 - NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module

high

High remediation recipe for NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-9256disclosed 2026-05-22a.k.a. NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module

CVE-2026-43494 - In the Linux kernel, the following vulnerability has been resolved: net/rds: reset op_nents when zerocopy page

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/rds: reset op_nents when zerocopy page. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-43494disclosed 2026-05-21a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/rds: reset op_nents when zerocopy page

CVE-2026-43499 - In the Linux kernel, the following vulnerability has been resolved: rtmutex: Use waiter::task instead of curre

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rtmutex: Use waiter::task instead of curre. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-43499disclosed 2026-05-21a.k.a. In the Linux kernel, the following vulnerability has been resolved: rtmutex: Use waiter::task instead of curre

CVE-2026-43501 - In the Linux kernel, the following vulnerability has been resolved: ipv6: rpl: reserve mac_len headroom when r

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: rpl: reserve mac_len headroom when r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-43501disclosed 2026-05-21a.k.a. In the Linux kernel, the following vulnerability has been resolved: ipv6: rpl: reserve mac_len headroom when r

CVE-2026-47101 - LiteLLM prior to 1.83.14 allows an authenticated internal_user to create API keys with access to routes that t

high

High remediation recipe for LiteLLM prior to 1.83.14 allows an authenticated internal_user to create API keys with access to routes that t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-47101disclosed 2026-05-21a.k.a. LiteLLM prior to 1.83.14 allows an authenticated internal_user to create API keys with access to routes that t

CVE-2026-47102 - LiteLLM prior to 1.83.10 allows a user to modify their own user_role via the /user/update endpoint

high

High remediation recipe for LiteLLM prior to 1.83.10 allows a user to modify their own user_role via the /user/update endpoint. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-47102disclosed 2026-05-21a.k.a. LiteLLM prior to 1.83.10 allows a user to modify their own user_role via the /user/update endpoint

CVE-2026-20223 - A vulnerability in the&nbsp;access validation of internal REST APIs of Cisco Secure Workload could allow an un

critical

Critical remediation recipe for A vulnerability in the&nbsp;access validation of internal REST APIs of Cisco Secure Workload could allow an un. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-20223disclosed 2026-05-20a.k.a. A vulnerability in the&nbsp;access validation of internal REST APIs of Cisco Secure Workload could allow an un

CVE-2026-29518 - Rsync versions before 3.4.3 contain a time-of-check to time-of-use (TOCTOU) race condition in daemon file hand

high

High remediation recipe for Rsync versions before 3.4.3 contain a time-of-check to time-of-use (TOCTOU) race condition in daemon file hand. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-29518disclosed 2026-05-20a.k.a. Rsync versions before 3.4.3 contain a time-of-check to time-of-use (TOCTOU) race condition in daemon file hand

CVE-2026-3039 - BIND servers that are configured to use TKEY-based authentication via GSS-API tokens are vulnerable to excessi

high

High remediation recipe for BIND servers that are configured to use TKEY-based authentication via GSS-API tokens are vulnerable to excessi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3039disclosed 2026-05-20a.k.a. BIND servers that are configured to use TKEY-based authentication via GSS-API tokens are vulnerable to excessi

CVE-2026-33278 - NLnet Labs Unbound 1.19.1 up to and including version 1.25.0 has a vulnerability in the DNSSEC validator that

critical

Critical remediation recipe for NLnet Labs Unbound 1.19.1 up to and including version 1.25.0 has a vulnerability in the DNSSEC validator that. Upgrade to version 1.25.0 has a vulnerability in the DNSSEC validator that enab and remove the vulnerable command-injection pattern.

cve CVE-2026-33278disclosed 2026-05-20a.k.a. NLnet Labs Unbound 1.19.1 up to and including version 1.25.0 has a vulnerability in the DNSSEC validator that

CVE-2026-3593 - A use-after-free vulnerability exists within the DNS-over-HTTPS implementation

high

High remediation recipe for A use-after-free vulnerability exists within the DNS-over-HTTPS implementation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3593disclosed 2026-05-20a.k.a. A use-after-free vulnerability exists within the DNS-over-HTTPS implementation

CVE-2026-41292 - NLnet Labs Unbound up to and including version 1.25.0 is vulnerable to a degradation of service attack related

high

High remediation recipe for NLnet Labs Unbound up to and including version 1.25.0 is vulnerable to a degradation of service attack related. Upgrade to version 1.25.0 is vulnerable to a degradation of service attack rela and remove the vulnerable dos pattern.

cve CVE-2026-41292disclosed 2026-05-20a.k.a. NLnet Labs Unbound up to and including version 1.25.0 is vulnerable to a degradation of service attack related

CVE-2026-42944 - NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a vulnerability that results in heap overflow

high

High remediation recipe for NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a vulnerability that results in heap overflow. Upgrade to version 1.25.0 has a vulnerability that results in heap overflow whe and remove the vulnerable dos pattern.

cve CVE-2026-42944disclosed 2026-05-20a.k.a. NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a vulnerability that results in heap overflow

CVE-2026-42959 - NLnet Labs Unbound up to and including version 1.25.0 has a denial of service vulnerability in the DNSSEC vali

high

High remediation recipe for NLnet Labs Unbound up to and including version 1.25.0 has a denial of service vulnerability in the DNSSEC vali. Upgrade to version 1.25.0 has a denial of service vulnerability in the DNSSEC v and remove the vulnerable dos pattern.

cve CVE-2026-42959disclosed 2026-05-20a.k.a. NLnet Labs Unbound up to and including version 1.25.0 has a denial of service vulnerability in the DNSSEC vali

CVE-2026-43618 - Rsync version 3.4.2 and prior contain an integer overflow vulnerability in the compressed-token decoder where

high

High remediation recipe for Rsync version 3.4.2 and prior contain an integer overflow vulnerability in the compressed-token decoder where. Upgrade to version 3.4.2 and prior contain an integer overflow vulnerability in and remove the vulnerable authz pattern.

cve CVE-2026-43618disclosed 2026-05-20a.k.a. Rsync version 3.4.2 and prior contain an integer overflow vulnerability in the compressed-token decoder where

CVE-2026-47783 - In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel

high

High remediation recipe for In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-47783disclosed 2026-05-20a.k.a. In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel

CVE-2026-5946 - Multiple flaws have been identified in named related to the handling of DNS messages whose CLASS is not Inte

high

High remediation recipe for Multiple flaws have been identified in named related to the handling of DNS messages whose CLASS is not Inte. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-5946disclosed 2026-05-20a.k.a. Multiple flaws have been identified in named related to the handling of DNS messages whose CLASS is not Inte

CVE-2026-5947 - Undefined behavior may result due to a race condition leading to a use-after-free violation

high

High remediation recipe for Undefined behavior may result due to a race condition leading to a use-after-free violation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-5947disclosed 2026-05-20a.k.a. Undefined behavior may result due to a race condition leading to a use-after-free violation

CVE-2026-8631 - A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software

critical

Critical remediation recipe for A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-8631disclosed 2026-05-20a.k.a. A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software

CVE-2026-8632 - A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software

high

High remediation recipe for A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-8632disclosed 2026-05-20a.k.a. A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software

CVE-2026-9064 - A flaw was found in 389-ds-base. The get_ldapmessage_controls_ext() function in the LDAP server does not enfor

high

High remediation recipe for A flaw was found in 389-ds-base. The get_ldapmessage_controls_ext() function in the LDAP server does not enfor. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-9064disclosed 2026-05-20a.k.a. A flaw was found in 389-ds-base. The get_ldapmessage_controls_ext() function in the LDAP server does not enfor

CVE-2025-51427 - An issue was discovered in ModelScope 1.25.0 allowing attackers to execute arbitrary code via crafted module l

high

High remediation recipe for An issue was discovered in ModelScope 1.25.0 allowing attackers to execute arbitrary code via crafted module l. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-51427disclosed 2026-05-19a.k.a. An issue was discovered in ModelScope 1.25.0 allowing attackers to execute arbitrary code via crafted module l

CVE-2026-27173 - JWT tokens that were used by workers in Kubernetes Executors have been exposed to users who had read only acce

high

High remediation recipe for JWT tokens that were used by workers in Kubernetes Executors have been exposed to users who had read only acce. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-27173disclosed 2026-05-19a.k.a. JWT tokens that were used by workers in Kubernetes Executors have been exposed to users who had read only acce

CVE-2026-32740 - libheif is a HEIF and AVIF file format decoder and encoder

high

High remediation recipe for libheif is a HEIF and AVIF file format decoder and encoder. Upgrade to fixed in version 1.22.0. and remove the vulnerable authz pattern.

cve CVE-2026-32740disclosed 2026-05-19a.k.a. libheif is a HEIF and AVIF file format decoder and encoder

CVE-2026-32741 - libheif is a HEIF and AVIF file format decoder and encoder

high

High remediation recipe for libheif is a HEIF and AVIF file format decoder and encoder. Upgrade to fixed in version 1.22.0. and remove the vulnerable mcp-auth pattern.

cve CVE-2026-32741disclosed 2026-05-19a.k.a. libheif is a HEIF and AVIF file format decoder and encoder

CVE-2026-32882 - libheif is a HEIF and AVIF file format decoder and encoder

high

High remediation recipe for libheif is a HEIF and AVIF file format decoder and encoder. Upgrade to fixed in versionThis issue has been fixed in version 1.22.0. and remove the vulnerable dos pattern.

cve CVE-2026-32882disclosed 2026-05-19a.k.a. libheif is a HEIF and AVIF file format decoder and encoder

CVE-2026-43493 - In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Fix handling of MAY_BACKL

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Fix handling of MAY_BACKL. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43493disclosed 2026-05-19a.k.a. In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Fix handling of MAY_BACKL

CVE-2026-7307 - A flaw was found in Keycloak. A remote, unauthenticated attacker can send a specially crafted XML input to the

high

High remediation recipe for A flaw was found in Keycloak. A remote, unauthenticated attacker can send a specially crafted XML input to the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-7307disclosed 2026-05-19a.k.a. A flaw was found in Keycloak. A remote, unauthenticated attacker can send a specially crafted XML input to the

CVE-2026-7507 - A session fixation vulnerability was found in Keycloak's login-actions endpoints

high

High remediation recipe for A session fixation vulnerability was found in Keycloak's login-actions endpoints. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-7507disclosed 2026-05-19a.k.a. A session fixation vulnerability was found in Keycloak's login-actions endpoints

CVE-2026-8945 - Sandbox escape in Firefox and Firefox Focus for Android

high

High remediation recipe for Sandbox escape in Firefox and Firefox Focus for Android. Upgrade to fixed in Firefox 151. and remove the vulnerable authz pattern.

cve CVE-2026-8945disclosed 2026-05-19a.k.a. Sandbox escape in Firefox and Firefox Focus for Android

CVE-2026-8946 - Incorrect boundary conditions in the Audio/Video: Web Codecs component

high

High remediation recipe for Incorrect boundary conditions in the Audio/Video: Web Codecs component. Upgrade to fixed in Firefox 151 and remove the vulnerable authz pattern.

cve CVE-2026-8946disclosed 2026-05-19a.k.a. Incorrect boundary conditions in the Audio/Video: Web Codecs component

CVE-2026-8947 - Use-after-free in the DOM: Bindings (WebIDL) component

high

High remediation recipe for Use-after-free in the DOM: Bindings (WebIDL) component. Upgrade to fixed in Firefox 151 and remove the vulnerable authz pattern.

cve CVE-2026-8947disclosed 2026-05-19a.k.a. Use-after-free in the DOM: Bindings (WebIDL) component

CVE-2026-8948 - Same-origin policy bypass in the DOM: Networking component

critical

Critical remediation recipe for Same-origin policy bypass in the DOM: Networking component. Upgrade to fixed in Firefox 151 and Thunderbird 151. and remove the vulnerable authz pattern.

cve CVE-2026-8948disclosed 2026-05-19a.k.a. Same-origin policy bypass in the DOM: Networking component

CVE-2026-8973 - Memory safety bugs present in Firefox 150

high

High remediation recipe for Memory safety bugs present in Firefox 150. Upgrade to fixed in Firefox 151 and Thunderbird 151. and remove the vulnerable authz pattern.

cve CVE-2026-8973disclosed 2026-05-19a.k.a. Memory safety bugs present in Firefox 150

CVE-2026-8975 - Memory safety bugs present in Firefox ESR 115.35, Firefox ESR 140.10 and Firefox 150

high

High remediation recipe for Memory safety bugs present in Firefox ESR 115.35, Firefox ESR 140.10 and Firefox 150. Upgrade to fixed in Firefox 151 and remove the vulnerable authz pattern.

cve CVE-2026-8975disclosed 2026-05-19a.k.a. Memory safety bugs present in Firefox ESR 115.35, Firefox ESR 140.10 and Firefox 150

CVE-2026-42822 - Improper authentication in Azure Local Disconnected Operations allows an unauthorized attacker to elevate priv

critical

Critical remediation recipe for Improper authentication in Azure Local Disconnected Operations allows an unauthorized attacker to elevate priv. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-42822disclosed 2026-05-18a.k.a. Improper authentication in Azure Local Disconnected Operations allows an unauthorized attacker to elevate priv

CVE-2025-54518 - Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an a

high

High remediation recipe for Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-54518disclosed 2026-05-15a.k.a. Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an a

CVE-2026-34253 - A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package

high

High remediation recipe for A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-34253disclosed 2026-05-15a.k.a. A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package

CVE-2026-44774 - Traefik is an HTTP reverse proxy and load balancer

critical

Critical remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 2.11.46 and remove the vulnerable authz pattern.

cve CVE-2026-44774disclosed 2026-05-15a.k.a. Traefik is an HTTP reverse proxy and load balancer

CVE-2026-46333 - In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'get_dumpable()' lo

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'get_dumpable()' lo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46333disclosed 2026-05-15a.k.a. In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'get_dumpable()' lo

CVE-2026-20224 - A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauth

high

High remediation recipe for A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauth. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20224disclosed 2026-05-14a.k.a. A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauth

CVE-2026-44216 - Wasmtime is a runtime for WebAssembly. From 30.0.0 to 36.0.8, 43.0.2, and 44.0.1, Wasmtime's allocation logic

high

High remediation recipe for Wasmtime is a runtime for WebAssembly. From 30.0.0 to 36.0.8, 43.0.2, and 44.0.1, Wasmtime's allocation logic. Upgrade to fixed in 36.0.8 and remove the vulnerable dos pattern.

cve CVE-2026-44216disclosed 2026-05-14a.k.a. Wasmtime is a runtime for WebAssembly. From 30.0.0 to 36.0.8, 43.0.2, and 44.0.1, Wasmtime's allocation logic

CVE-2026-44484 - PyTorch Lightning is a deep learning framework to pretrain and finetune AI models

critical

Critical remediation recipe for PyTorch Lightning is a deep learning framework to pretrain and finetune AI models. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-44484disclosed 2026-05-14a.k.a. PyTorch Lightning is a deep learning framework to pretrain and finetune AI models

CVE-2026-44673 - libyang is a YANG data modeling language library

high

High remediation recipe for libyang is a YANG data modeling language library. Upgrade to fixed in SO 5.2.15. and remove the vulnerable dos pattern.

cve CVE-2026-44673disclosed 2026-05-14a.k.a. libyang is a YANG data modeling language library

CVE-2026-6473 - Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the se

high

High remediation recipe for Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the se. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-6473disclosed 2026-05-14a.k.a. Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the se

CVE-2026-6477 - Use of inherently dangerous function PQfn(..., result_is_int=0, ...) in PostgreSQL libpq lo_export(), lo_read(

high

High remediation recipe for Use of inherently dangerous function PQfn(..., result_is_int=0, ...) in PostgreSQL libpq lo_export(), lo_read(. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-6477disclosed 2026-05-14a.k.a. Use of inherently dangerous function PQfn(..., result_is_int=0, ...) in PostgreSQL libpq lo_export(), lo_read(

CVE-2026-20916 - An authenticated iControl REST user with low privileges can create or modify arbitrary files through an undisc

high

High remediation recipe for An authenticated iControl REST user with low privileges can create or modify arbitrary files through an undisc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-20916disclosed 2026-05-13a.k.a. An authenticated iControl REST user with low privileges can create or modify arbitrary files through an undisc

CVE-2026-32643 - A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at

high

High remediation recipe for A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-32643disclosed 2026-05-13a.k.a. A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at

CVE-2026-32673 - A vulnerability exists in BIG-IP scripted monitors that may allow an authenticated attacker with the Resource

high

High remediation recipe for A vulnerability exists in BIG-IP scripted monitors that may allow an authenticated attacker with the Resource. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-32673disclosed 2026-05-13a.k.a. A vulnerability exists in BIG-IP scripted monitors that may allow an authenticated attacker with the Resource

CVE-2026-33376 - When using an IPv6 allow-list for the Auth Proxy feature, it defaults to /32 addresses

high

High remediation recipe for When using an IPv6 allow-list for the Auth Proxy feature, it defaults to /32 addresses. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-33376disclosed 2026-05-13a.k.a. When using an IPv6 allow-list for the Auth Proxy feature, it defaults to /32 addresses

CVE-2026-33377 - An Editor can overwrite a dashboard not owned by them to acquire admin on that specific dashboard

high

High remediation recipe for An Editor can overwrite a dashboard not owned by them to acquire admin on that specific dashboard. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-33377disclosed 2026-05-13a.k.a. An Editor can overwrite a dashboard not owned by them to acquire admin on that specific dashboard

CVE-2026-34176 - When running in Appliance mode, an authenticated remote command injection vulnerability exists in an undisclos

high

High remediation recipe for When running in Appliance mode, an authenticated remote command injection vulnerability exists in an undisclos. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34176disclosed 2026-05-13a.k.a. When running in Appliance mode, an authenticated remote command injection vulnerability exists in an undisclos

CVE-2026-36741 - U-SPEED AC1200 Gigabit Wi-Fi Router (Model: T18-21K) V1.0 is vulnerable to Command Injection

high

High remediation recipe for U-SPEED AC1200 Gigabit Wi-Fi Router (Model: T18-21K) V1.0 is vulnerable to Command Injection. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-36741disclosed 2026-05-13a.k.a. U-SPEED AC1200 Gigabit Wi-Fi Router (Model: T18-21K) V1.0 is vulnerable to Command Injection

CVE-2026-39455 - When the BIG-IP Configuration utility is configured to use Lightweight Directory Access Protocol (LDAP) authen

high

High remediation recipe for When the BIG-IP Configuration utility is configured to use Lightweight Directory Access Protocol (LDAP) authen. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-39455disclosed 2026-05-13a.k.a. When the BIG-IP Configuration utility is configured to use Lightweight Directory Access Protocol (LDAP) authen

CVE-2026-39458 - When a BIG-IP DNS profile enabled with DNS cache is configured on a virtual server, undisclosed traffic can ca

high

High remediation recipe for When a BIG-IP DNS profile enabled with DNS cache is configured on a virtual server, undisclosed traffic can ca. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-39458disclosed 2026-05-13a.k.a. When a BIG-IP DNS profile enabled with DNS cache is configured on a virtual server, undisclosed traffic can ca

CVE-2026-39459 - A vulnerability exists in iControl REST and the TMOS Shell (tmsh) where a highly privileged, authenticated att

high

High remediation recipe for A vulnerability exists in iControl REST and the TMOS Shell (tmsh) where a highly privileged, authenticated att. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-39459disclosed 2026-05-13a.k.a. A vulnerability exists in iControl REST and the TMOS Shell (tmsh) where a highly privileged, authenticated att

CVE-2026-40060 - When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can

high

High remediation recipe for When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-40060disclosed 2026-05-13a.k.a. When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can

CVE-2026-40061 - When BIG-IP DNS is provisioned, a vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (

high

High remediation recipe for When BIG-IP DNS is provisioned, a vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-40061disclosed 2026-05-13a.k.a. When BIG-IP DNS is provisioned, a vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (

CVE-2026-40067 - When a BIG-IP APM access policy is configured on a virtual server, undisclosed traffic can cause the apmd proc

high

High remediation recipe for When a BIG-IP APM access policy is configured on a virtual server, undisclosed traffic can cause the apmd proc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-40067disclosed 2026-05-13a.k.a. When a BIG-IP APM access policy is configured on a virtual server, undisclosed traffic can cause the apmd proc

CVE-2026-40423 - When a SIP profile is configured on a virtual server, undisclosed traffic can cause the Traffic Management Mic

high

High remediation recipe for When a SIP profile is configured on a virtual server, undisclosed traffic can cause the Traffic Management Mic. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-40423disclosed 2026-05-13a.k.a. When a SIP profile is configured on a virtual server, undisclosed traffic can cause the Traffic Management Mic

CVE-2026-40618 - When an SSL profile is configured on a virtual server on BIG-IP Virtual Edition (VE) without Intel QuickAssist

high

High remediation recipe for When an SSL profile is configured on a virtual server on BIG-IP Virtual Edition (VE) without Intel QuickAssist. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-40618disclosed 2026-05-13a.k.a. When an SSL profile is configured on a virtual server on BIG-IP Virtual Edition (VE) without Intel QuickAssist

CVE-2026-40629 - When SSL profiles are configured on a virtual server, undisclosed traffic can cause the virtual server to stop

high

High remediation recipe for When SSL profiles are configured on a virtual server, undisclosed traffic can cause the virtual server to stop. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-40629disclosed 2026-05-13a.k.a. When SSL profiles are configured on a virtual server, undisclosed traffic can cause the virtual server to stop

CVE-2026-40631 - An authenticated attacker with the Resource Administrator or Administrator role can modify configuration objec

high

High remediation recipe for An authenticated attacker with the Resource Administrator or Administrator role can modify configuration objec. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-40631disclosed 2026-05-13a.k.a. An authenticated attacker with the Resource Administrator or Administrator role can modify configuration objec

CVE-2026-40698 - A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at

high

High remediation recipe for A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-40698disclosed 2026-05-13a.k.a. A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at

CVE-2026-42266 - JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Noteb

high

High remediation recipe for JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Noteb. Upgrade to fixed in 4.5.7. and remove the vulnerable command-injection pattern.

cve CVE-2026-42266disclosed 2026-05-13a.k.a. JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Noteb

CVE-2026-42557 - jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Noteb

critical

Critical remediation recipe for jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Noteb. Upgrade to fixed in 4.5.7. and remove the vulnerable authz pattern.

cve CVE-2026-42557disclosed 2026-05-13a.k.a. jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Noteb

CVE-2026-42578 - Netty is an asynchronous, event-driven network application framework

high

High remediation recipe for Netty is an asynchronous, event-driven network application framework. Upgrade to fixed in 4.2.13.Final and 4.1.133.Final. and remove the vulnerable authz pattern.

cve CVE-2026-42578disclosed 2026-05-13a.k.a. Netty is an asynchronous, event-driven network application framework

CVE-2026-42579 - Netty is an asynchronous, event-driven network application framework

high

High remediation recipe for Netty is an asynchronous, event-driven network application framework. Upgrade to fixed in 4.2.13.Final and 4.1.133.Final. and remove the vulnerable command-injection pattern.

cve CVE-2026-42579disclosed 2026-05-13a.k.a. Netty is an asynchronous, event-driven network application framework

CVE-2026-42587 - Netty is an asynchronous, event-driven network application framework

high

High remediation recipe for Netty is an asynchronous, event-driven network application framework. Upgrade to fixed in 4.2.13.Final and 4.1.133.Final. and remove the vulnerable command-injection pattern.

cve CVE-2026-42587disclosed 2026-05-13a.k.a. Netty is an asynchronous, event-driven network application framework

CVE-2026-44573 - Next.js is a React framework for building full-stack web applications

high

High remediation recipe for Next.js is a React framework for building full-stack web applications. Upgrade to fixed data route and remove the vulnerable authz pattern.

cve CVE-2026-44573disclosed 2026-05-13a.k.a. Next.js is a React framework for building full-stack web applications

CVE-2026-44574 - Next.js is a React framework for building full-stack web applications

high

High remediation recipe for Next.js is a React framework for building full-stack web applications. Upgrade to fixed in 15.5.16 and 16.2.5. and remove the vulnerable authz pattern.

cve CVE-2026-44574disclosed 2026-05-13a.k.a. Next.js is a React framework for building full-stack web applications

CVE-2026-44579 - Next.js is a React framework for building full-stack web applications

high

High remediation recipe for Next.js is a React framework for building full-stack web applications. Upgrade to fixed in 15.5.16 and 16.2.5. and remove the vulnerable authz pattern.

cve CVE-2026-44579disclosed 2026-05-13a.k.a. Next.js is a React framework for building full-stack web applications

CVE-2026-5773 - libcurl might in some circumstances reuse the wrong connection for SMB(S) transfers

high

High remediation recipe for libcurl might in some circumstances reuse the wrong connection for SMB(S) transfers. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-5773disclosed 2026-05-13a.k.a. libcurl might in some circumstances reuse the wrong connection for SMB(S) transfers

CVE-2025-40947 - A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (

high

High remediation recipe for A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-40947disclosed 2026-05-12a.k.a. A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (

CVE-2025-40949 - A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (

critical

Critical remediation recipe for A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-40949disclosed 2026-05-12a.k.a. A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (

CVE-2026-22924 - A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0)

critical

Critical remediation recipe for A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-22924disclosed 2026-05-12a.k.a. A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0)

CVE-2026-22925 - A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0)

high

High remediation recipe for A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-22925disclosed 2026-05-12a.k.a. A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0)

CVE-2026-32177 - Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally

high

High remediation recipe for Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-32177disclosed 2026-05-12a.k.a. Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally

CVE-2026-35433 - Improper input validation in .NET allows an unauthorized attacker to elevate privileges locally

high

High remediation recipe for Improper input validation in .NET allows an unauthorized attacker to elevate privileges locally. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-35433disclosed 2026-05-12a.k.a. Improper input validation in .NET allows an unauthorized attacker to elevate privileges locally

CVE-2026-42899 - Loop with unreachable exit condition ('infinite loop') in ASP.NET Core allows an unauthorized attacker to deny

high

High remediation recipe for Loop with unreachable exit condition ('infinite loop') in ASP.NET Core allows an unauthorized attacker to deny. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-42899disclosed 2026-05-12a.k.a. Loop with unreachable exit condition ('infinite loop') in ASP.NET Core allows an unauthorized attacker to deny

CVE-2026-44411 - A vulnerability has been identified in Solid Edge SE2026 (All versions < V226.0 Update 5)

high

High remediation recipe for A vulnerability has been identified in Solid Edge SE2026 (All versions < V226.0 Update 5). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-44411disclosed 2026-05-12a.k.a. A vulnerability has been identified in Solid Edge SE2026 (All versions < V226.0 Update 5)

CVE-2026-8401 - Sandbox escape in the Profile Backup component

critical

Critical remediation recipe for Sandbox escape in the Profile Backup component. Upgrade to fixed in Firefox 150.0.3 and remove the vulnerable authz pattern.

cve CVE-2026-8401disclosed 2026-05-12a.k.a. Sandbox escape in the Profile Backup component

CVE-2026-2614 - A vulnerability in the _create_model_version() handler of mlflow/server/handlers.py in mlflow/mlflow versi

high

High remediation recipe for A vulnerability in the _create_model_version() handler of mlflow/server/handlers.py in mlflow/mlflow versi. Upgrade to version source. The and remove the vulnerable command-injection pattern.

cve CVE-2026-2614disclosed 2026-05-11a.k.a. A vulnerability in the _create_model_version() handler of mlflow/server/handlers.py in mlflow/mlflow versi

CVE-2026-28847 - The issue was addressed with improved memory handling

high

High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.

cve CVE-2026-28847disclosed 2026-05-11a.k.a. The issue was addressed with improved memory handling

CVE-2026-28883 - A use-after-free issue was addressed with improved memory management

high

High remediation recipe for A use-after-free issue was addressed with improved memory management. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.

cve CVE-2026-28883disclosed 2026-05-11a.k.a. A use-after-free issue was addressed with improved memory management

CVE-2026-28904 - The issue was addressed with improved memory handling

high

High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.

cve CVE-2026-28904disclosed 2026-05-11a.k.a. The issue was addressed with improved memory handling

CVE-2026-28905 - The issue was addressed with improved memory handling

high

High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.

cve CVE-2026-28905disclosed 2026-05-11a.k.a. The issue was addressed with improved memory handling

CVE-2026-28947 - A use-after-free issue was addressed with improved memory management

high

High remediation recipe for A use-after-free issue was addressed with improved memory management. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.

cve CVE-2026-28947disclosed 2026-05-11a.k.a. A use-after-free issue was addressed with improved memory management

CVE-2026-28953 - The issue was addressed with improved memory handling

high

High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.

cve CVE-2026-28953disclosed 2026-05-11a.k.a. The issue was addressed with improved memory handling

CVE-2026-28955 - The issue was addressed with improved memory handling

high

High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.

cve CVE-2026-28955disclosed 2026-05-11a.k.a. The issue was addressed with improved memory handling

CVE-2026-43500 - In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-43500disclosed 2026-05-11a.k.a. In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets

CVE-2026-43658 - The issue was addressed with improved memory handling

high

High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.

cve CVE-2026-43658disclosed 2026-05-11a.k.a. The issue was addressed with improved memory handling

CVE-2026-4802 - A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary command executio

high

High remediation recipe for A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary command executio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-4802disclosed 2026-05-11a.k.a. A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary command executio

CVE-2026-4890 - A Denial of Service (DoS) vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a

high

High remediation recipe for A Denial of Service (DoS) vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-4890disclosed 2026-05-11a.k.a. A Denial of Service (DoS) vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a

CVE-2026-4892 - A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers

high

High remediation recipe for A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-4892disclosed 2026-05-11a.k.a. A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers

CVE-2026-5172 - A buffer overflow in dnsmasq’s extract_addresses() function allows an attacker to trigger a heap out-of-bounds

high

High remediation recipe for A buffer overflow in dnsmasq’s extract_addresses() function allows an attacker to trigger a heap out-of-bounds. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-5172disclosed 2026-05-11a.k.a. A buffer overflow in dnsmasq’s extract_addresses() function allows an attacker to trigger a heap out-of-bounds

CVE-2026-7210 - xml.parsers.expat and xml.etree.ElementTree use insufficient entropy for Expat hash-flooding protection, w

high

High remediation recipe for xml.parsers.expat and xml.etree.ElementTree use insufficient entropy for Expat hash-flooding protection, w. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-7210disclosed 2026-05-11a.k.a. xml.parsers.expat and xml.etree.ElementTree use insufficient entropy for Expat hash-flooding protection, w

CVE-2026-8177 - XML::LibXML versions through 2.0210 for Perl read out-of-bounds heap memory when parsing XML node names contai

high

High remediation recipe for XML::LibXML versions through 2.0210 for Perl read out-of-bounds heap memory when parsing XML node names contai. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-8177disclosed 2026-05-10a.k.a. XML::LibXML versions through 2.0210 for Perl read out-of-bounds heap memory when parsing XML node names contai

CVE-2026-41163 - bubblewrap is a low-level unprivileged sandboxing tool

high

High remediation recipe for bubblewrap is a low-level unprivileged sandboxing tool. Upgrade to version 0.11.0 to before version 0.11.2 and remove the vulnerable authz pattern.

cve CVE-2026-41163disclosed 2026-05-09a.k.a. bubblewrap is a low-level unprivileged sandboxing tool

CVE-2026-42203 - LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format

high

High remediation recipe for LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Upgrade to version 1.80.5 to before version 1.83.7 and remove the vulnerable authz pattern.

cve CVE-2026-42203disclosed 2026-05-08a.k.a. LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format

CVE-2026-42208 - LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format

critical

Critical remediation recipe for LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Upgrade to version 1.81.16 to before version 1.83.7 and remove the vulnerable authz pattern.

cve CVE-2026-42208disclosed 2026-05-08a.k.a. LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format

CVE-2026-43291 - In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation fo

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation fo. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43291disclosed 2026-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation fo

CVE-2026-43296 - In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Workaround SQM/PSE stalls by

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Workaround SQM/PSE stalls by. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43296disclosed 2026-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Workaround SQM/PSE stalls by

CVE-2026-43304 - In the Linux kernel, the following vulnerability has been resolved: libceph: define and enforce CEPH_MAX_KEY_L

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: libceph: define and enforce CEPH_MAX_KEY_L. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable command-injection pattern.

cve CVE-2026-43304disclosed 2026-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: libceph: define and enforce CEPH_MAX_KEY_L

CVE-2026-43329 - In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: strictly check for m

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: strictly check for m. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-43329disclosed 2026-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: strictly check for m

CVE-2026-43341 - In the Linux kernel, the following vulnerability has been resolved: net/ipv6: ioam6: prevent schema length wra

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/ipv6: ioam6: prevent schema length wra. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43341disclosed 2026-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/ipv6: ioam6: prevent schema length wra

CVE-2026-43378 - In the Linux kernel, the following vulnerability has been resolved: smb: server: fix use-after-free in smb2_op

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: server: fix use-after-free in smb2_op. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-43378disclosed 2026-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: smb: server: fix use-after-free in smb2_op

CVE-2026-43383 - In the Linux kernel, the following vulnerability has been resolved: net/tcp-md5: Fix MAC comparison to be cons

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/tcp-md5: Fix MAC comparison to be cons. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43383disclosed 2026-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/tcp-md5: Fix MAC comparison to be cons

CVE-2026-43384 - In the Linux kernel, the following vulnerability has been resolved: net/tcp-ao: Fix MAC comparison to be const

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/tcp-ao: Fix MAC comparison to be const. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43384disclosed 2026-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/tcp-ao: Fix MAC comparison to be const

CVE-2026-43406 - In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds r

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds r. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-43406disclosed 2026-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds r

CVE-2026-43407 - In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-43407disclosed 2026-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces

CVE-2026-43414 - In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Completely fix fcport doubl

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Completely fix fcport doubl. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-43414disclosed 2026-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Completely fix fcport doubl

CVE-2026-43456 - In the Linux kernel, the following vulnerability has been resolved: bonding: fix type confusion in bond_setup_

highKEV

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bonding: fix type confusion in bond_setup_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-43456disclosed 2026-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: bonding: fix type confusion in bond_setup_

CVE-2026-33814 - When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames i

high

High remediation recipe for When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-33814disclosed 2026-05-07a.k.a. When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames i

CVE-2026-39820 - Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU

high

High remediation recipe for Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-39820disclosed 2026-05-07a.k.a. Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU

CVE-2026-40981 - When using Google Secrets Manager as a backend for the Spring Cloud Config server a client can craft a request

high

High remediation recipe for When using Google Secrets Manager as a backend for the Spring Cloud Config server a client can craft a request. Upgrade to upgrade to 3.1.14 or greater and remove the vulnerable authz pattern.

cve CVE-2026-40981disclosed 2026-05-07a.k.a. When using Google Secrets Manager as a backend for the Spring Cloud Config server a client can craft a request

CVE-2026-40982 - Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-conf

critical

Critical remediation recipe for Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-conf. Upgrade to upgrade to 3.1.14 or greater and remove the vulnerable authz pattern.

cve CVE-2026-40982disclosed 2026-05-07a.k.a. Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-conf

CVE-2026-41142 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

high

High remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to patched in versions 3.2.9 and remove the vulnerable authz pattern.

cve CVE-2026-41142disclosed 2026-05-07a.k.a. OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

CVE-2026-42216 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

critical

Critical remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to patched in versions 3.2.9 and remove the vulnerable authz pattern.

cve CVE-2026-42216disclosed 2026-05-07a.k.a. OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

CVE-2026-42499 - Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322

high

High remediation recipe for Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-42499disclosed 2026-05-07a.k.a. Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322

CVE-2026-8090 - Use-after-free in the DOM: Networking component

high

High remediation recipe for Use-after-free in the DOM: Networking component. Upgrade to fixed in Firefox 150.0.2 and remove the vulnerable authz pattern.

cve CVE-2026-8090disclosed 2026-05-07a.k.a. Use-after-free in the DOM: Networking component

CVE-2026-8091 - Incorrect boundary conditions in the Audio/Video: Playback component

critical

Critical remediation recipe for Incorrect boundary conditions in the Audio/Video: Playback component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.

cve CVE-2026-8091disclosed 2026-05-07a.k.a. Incorrect boundary conditions in the Audio/Video: Playback component

CVE-2026-8092 - Memory safety bugs present in Firefox ESR 115.35.1, Firefox ESR 140.10.1 and Firefox 150.0.1

high

High remediation recipe for Memory safety bugs present in Firefox ESR 115.35.1, Firefox ESR 140.10.1 and Firefox 150.0.1. Upgrade to fixed in Firefox 150.0.2 and remove the vulnerable authz pattern.

cve CVE-2026-8092disclosed 2026-05-07a.k.a. Memory safety bugs present in Firefox ESR 115.35.1, Firefox ESR 140.10.1 and Firefox 150.0.1

CVE-2026-8093 - Memory safety bugs present in Firefox 150.0.1

high

High remediation recipe for Memory safety bugs present in Firefox 150.0.1. Upgrade to fixed in Firefox 150.0.2 and Thunderbird 150.0.2. and remove the vulnerable authz pattern.

cve CVE-2026-8093disclosed 2026-05-07a.k.a. Memory safety bugs present in Firefox 150.0.1

CVE-2026-8094 - Other issue in the WebRTC component. This vulnerability was fixed in Firefox ESR 140.10.2 and Thunderbird 140

critical

Critical remediation recipe for Other issue in the WebRTC component. This vulnerability was fixed in Firefox ESR 140.10.2 and Thunderbird 140. Upgrade to fixed in Firefox ESR 140.10.2 and Thunderbird 140.10.2. and remove the vulnerable authz pattern.

cve CVE-2026-8094disclosed 2026-05-07a.k.a. Other issue in the WebRTC component. This vulnerability was fixed in Firefox ESR 140.10.2 and Thunderbird 140

CVE-2026-20167 - A vulnerability in the web-based management interface of Cisco IoT Field Network Director could allow an authe

high

High remediation recipe for A vulnerability in the web-based management interface of Cisco IoT Field Network Director could allow an authe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20167disclosed 2026-05-06a.k.a. A vulnerability in the web-based management interface of Cisco IoT Field Network Director could allow an authe

CVE-2026-33079 - In versions 3.0.0a1 through 3.2.0 of Mistune, there is a ReDoS (Regular Expression Denial of Service) vulnerab

high

High remediation recipe for In versions 3.0.0a1 through 3.2.0 of Mistune, there is a ReDoS (Regular Expression Denial of Service) vulnerab. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-33079disclosed 2026-05-06a.k.a. In versions 3.0.0a1 through 3.2.0 of Mistune, there is a ReDoS (Regular Expression Denial of Service) vulnerab

CVE-2026-43078 - In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Fix page reassignment ove

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Fix page reassignment ove. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43078disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Fix page reassignment ove

CVE-2026-43112 - In the Linux kernel, the following vulnerability has been resolved: fs/smb/client: fix out-of-bounds read in c

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: fs/smb/client: fix out-of-bounds read in c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-43112disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: fs/smb/client: fix out-of-bounds read in c

CVE-2026-43117 - In the Linux kernel, the following vulnerability has been resolved: btrfs: tracepoints: get correct superblock

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: btrfs: tracepoints: get correct superblock. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43117disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: btrfs: tracepoints: get correct superblock

CVE-2026-43125 - In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlm_search_rsb_tre

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlm_search_rsb_tre. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-43125disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlm_search_rsb_tre

CVE-2026-43128 - In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix double dma_buf_unpin in fai

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix double dma_buf_unpin in fai. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43128disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix double dma_buf_unpin in fai

CVE-2026-43133 - In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Always use vmcb01 in VMLOAD/VMS

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Always use vmcb01 in VMLOAD/VMS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-43133disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Always use vmcb01 in VMLOAD/VMS

CVE-2026-43134 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix missing key size che

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix missing key size che. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43134disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix missing key size che

CVE-2026-43139 - In the Linux kernel, the following vulnerability has been resolved: xfrm6: fix uninitialized saddr in xfrm6_ge

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfrm6: fix uninitialized saddr in xfrm6_ge. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43139disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: xfrm6: fix uninitialized saddr in xfrm6_ge

CVE-2026-43141 - In the Linux kernel, the following vulnerability has been resolved: ntb: ntb_hw_switchtec: Fix shift-out-of-bo

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ntb: ntb_hw_switchtec: Fix shift-out-of-bo. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-43141disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: ntb: ntb_hw_switchtec: Fix shift-out-of-bo

CVE-2026-43150 - In the Linux kernel, the following vulnerability has been resolved: perf/arm-cmn: Reject unsupported hardware

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: perf/arm-cmn: Reject unsupported hardware. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43150disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: perf/arm-cmn: Reject unsupported hardware

CVE-2026-43153 - In the Linux kernel, the following vulnerability has been resolved: xfs: remove xfs_attr_leaf_hasname The call

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfs: remove xfs_attr_leaf_hasname The call. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43153disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: xfs: remove xfs_attr_leaf_hasname The call

CVE-2026-43158 - In the Linux kernel, the following vulnerability has been resolved: xfs: fix freemap adjustments when adding x

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfs: fix freemap adjustments when adding x. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43158disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: xfs: fix freemap adjustments when adding x

CVE-2026-43178 - In the Linux kernel, the following vulnerability has been resolved: procfs: fix possible double mmput() in do_

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: procfs: fix possible double mmput() in do_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-43178disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: procfs: fix possible double mmput() in do_

CVE-2026-43180 - In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: remove TX queue manipula

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: remove TX queue manipula. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43180disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: remove TX queue manipula

CVE-2026-43184 - In the Linux kernel, the following vulnerability has been resolved: rnbd-srv: Zero the rsp buffer before using

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rnbd-srv: Zero the rsp buffer before using. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43184disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: rnbd-srv: Zero the rsp buffer before using

CVE-2026-43186 - In the Linux kernel, the following vulnerability has been resolved: ipv6: ioam: fix heap buffer overflow in __

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: ioam: fix heap buffer overflow in __. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-43186disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: ipv6: ioam: fix heap buffer overflow in __

CVE-2026-43187 - In the Linux kernel, the following vulnerability has been resolved: xfs: delete attr leaf freemap entries when

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfs: delete attr leaf freemap entries when. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43187disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: xfs: delete attr leaf freemap entries when

CVE-2026-43190 - In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_tcpmss: check remaining leng

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_tcpmss: check remaining leng. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43190disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_tcpmss: check remaining leng

CVE-2026-43194 - In the Linux kernel, the following vulnerability has been resolved: net: consume xmit errors of GSO frames udp

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: consume xmit errors of GSO frames udp. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43194disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: consume xmit errors of GSO frames udp

CVE-2026-43196 - In the Linux kernel, the following vulnerability has been resolved: soc: ti: pruss: Fix double free in pruss_c

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: soc: ti: pruss: Fix double free in pruss_c. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-43196disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: soc: ti: pruss: Fix double free in pruss_c

CVE-2026-43198 - In the Linux kernel, the following vulnerability has been resolved: tcp: fix potential race in tcp_v6_syn_recv

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: tcp: fix potential race in tcp_v6_syn_recv. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-43198disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: tcp: fix potential race in tcp_v6_syn_recv

CVE-2026-43199 - In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix scheduling while atomic i

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix scheduling while atomic i. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43199disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix scheduling while atomic i

CVE-2026-43203 - In the Linux kernel, the following vulnerability has been resolved: atm: fore200e: fix use-after-free in taskl

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: atm: fore200e: fix use-after-free in taskl. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-43203disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: atm: fore200e: fix use-after-free in taskl

CVE-2026-43205 - In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: validate num_ifs to prevent

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: validate num_ifs to prevent. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-43205disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: validate num_ifs to prevent

CVE-2026-43206 - In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix out-of-bounds write in kfd

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix out-of-bounds write in kfd. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-43206disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix out-of-bounds write in kfd

CVE-2026-43207 - In the Linux kernel, the following vulnerability has been resolved: media: mtk-mdp: Fix error handling in prob

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: media: mtk-mdp: Fix error handling in prob. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable command-injection pattern.

cve CVE-2026-43207disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: media: mtk-mdp: Fix error handling in prob

CVE-2026-43211 - In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pci_slot_trylock() error handling

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pci_slot_trylock() error handling. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43211disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pci_slot_trylock() error handling

CVE-2026-43212 - In the Linux kernel, the following vulnerability has been resolved: LoongArch: Make cpumask_of_node() robust a

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: LoongArch: Make cpumask_of_node() robust a. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43212disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: LoongArch: Make cpumask_of_node() robust a

CVE-2026-43214 - In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Add SRCU protection for reading

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Add SRCU protection for reading. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43214disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Add SRCU protection for reading

CVE-2026-43215 - In the Linux kernel, the following vulnerability has been resolved: cifs: Fix locking usage for tcon fields We

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: cifs: Fix locking usage for tcon fields We. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43215disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: cifs: Fix locking usage for tcon fields We

CVE-2026-43222 - In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: AV1: Fix tile info buf

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: AV1: Fix tile info buf. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43222disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: AV1: Fix tile info buf

CVE-2026-43230 - In the Linux kernel, the following vulnerability has been resolved: net/rds: Clear reconnect pending bit When

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/rds: Clear reconnect pending bit When. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43230disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/rds: Clear reconnect pending bit When

CVE-2026-43233 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: fix OOB read

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: fix OOB read. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43233disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: fix OOB read

CVE-2026-43236 - In the Linux kernel, the following vulnerability has been resolved: drm/atmel-hlcdc: fix use-after-free of drm

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/atmel-hlcdc: fix use-after-free of drm. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-43236disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/atmel-hlcdc: fix use-after-free of drm

CVE-2026-43239 - In the Linux kernel, the following vulnerability has been resolved: smb: client: prevent races in ->query_inte

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: prevent races in ->query_inte. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43239disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: smb: client: prevent races in ->query_inte

CVE-2026-43241 - In the Linux kernel, the following vulnerability has been resolved: ntb: ntb_hw_switchtec: Fix array-index-out

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ntb: ntb_hw_switchtec: Fix array-index-out. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-43241disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: ntb: ntb_hw_switchtec: Fix array-index-out

CVE-2026-43248 - In the Linux kernel, the following vulnerability has been resolved: vhost: move vdpa group bound check to vhos

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: vhost: move vdpa group bound check to vhos. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43248disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: vhost: move vdpa group bound check to vhos

CVE-2026-43249 - In the Linux kernel, the following vulnerability has been resolved: 9p/xen: protect xen_9pfs_front_free agains

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: 9p/xen: protect xen_9pfs_front_free agains. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43249disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: 9p/xen: protect xen_9pfs_front_free agains

CVE-2026-43250 - In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: udc: fix DMA and SG cleanup

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: udc: fix DMA and SG cleanup. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43250disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: udc: fix DMA and SG cleanup

CVE-2026-43253 - In the Linux kernel, the following vulnerability has been resolved: iommu/amd: move wait_on_sem() out of spinl

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: iommu/amd: move wait_on_sem() out of spinl. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43253disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: iommu/amd: move wait_on_sem() out of spinl

CVE-2026-43256 - In the Linux kernel, the following vulnerability has been resolved: media: qcom: camss: vfe: Fix out-of-bounds

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: media: qcom: camss: vfe: Fix out-of-bounds. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-43256disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: media: qcom: camss: vfe: Fix out-of-bounds

CVE-2026-43258 - In the Linux kernel, the following vulnerability has been resolved: alpha: fix user-space corruption during me

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: alpha: fix user-space corruption during me. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable dos pattern.

cve CVE-2026-43258disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: alpha: fix user-space corruption during me

CVE-2026-43278 - In the Linux kernel, the following vulnerability has been resolved: dm: clear cloned request bio pointer when

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dm: clear cloned request bio pointer when. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43278disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: dm: clear cloned request bio pointer when

CVE-2026-43279 - In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Add sanity check for OOB

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Add sanity check for OOB. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43279disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Add sanity check for OOB

CVE-2026-43283 - In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ec_bhf: Fix dma_free_cohere

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ec_bhf: Fix dma_free_cohere. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43283disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ec_bhf: Fix dma_free_cohere

CVE-2026-5081 - Apache::Session::Generate::ModUniqueId versions from 1.54 through 1.94 for Perl session ids are insecure

critical

Critical remediation recipe for Apache::Session::Generate::ModUniqueId versions from 1.54 through 1.94 for Perl session ids are insecure. Upgrade to version 1.54 and remove the vulnerable authz pattern.

cve CVE-2026-5081disclosed 2026-05-06a.k.a. Apache::Session::Generate::ModUniqueId versions from 1.54 through 1.94 for Perl session ids are insecure

CVE-2026-23479 - Redis is an in-memory data structure store

high

High remediation recipe for Redis is an in-memory data structure store. Upgrade to patched in version 8.6.3. and remove the vulnerable authz pattern.

cve CVE-2026-23479disclosed 2026-05-05a.k.a. Redis is an in-memory data structure store

CVE-2026-23631 - Redis is an in-memory data structure store

high

High remediation recipe for Redis is an in-memory data structure store. Upgrade to patched in version 8.6.3. and remove the vulnerable authz pattern.

cve CVE-2026-23631disclosed 2026-05-05a.k.a. Redis is an in-memory data structure store

CVE-2026-25243 - Redis is an in-memory data structure store

high

High remediation recipe for Redis is an in-memory data structure store. Upgrade to patched in version 8.6.3. and remove the vulnerable authz pattern.

cve CVE-2026-25243disclosed 2026-05-05a.k.a. Redis is an in-memory data structure store

CVE-2026-28780 - Heap-based Buffer Overflow vulnerability in mod_proxy_ajp of Apache HTTP Server

critical

Critical remediation recipe for Heap-based Buffer Overflow vulnerability in mod_proxy_ajp of Apache HTTP Server. Upgrade to upgrade to version 2.4.67 and remove the vulnerable authz pattern.

cve CVE-2026-28780disclosed 2026-05-05a.k.a. Heap-based Buffer Overflow vulnerability in mod_proxy_ajp of Apache HTTP Server

CVE-2026-35397 - Jupyter Server is the backend for Jupyter web applications

high

High remediation recipe for Jupyter Server is the backend for Jupyter web applications. Upgrade to Version 2.18.0 contains a fix. As a workaround and remove the vulnerable path-traversal pattern.

cve CVE-2026-35397disclosed 2026-05-05a.k.a. Jupyter Server is the backend for Jupyter web applications

CVE-2026-35579 - CoreDNS is a DNS server written in Go. In versions prior to 1.14.3, the gRPC, QUIC, DoH, and DoH3 transport im

critical

Critical remediation recipe for CoreDNS is a DNS server written in Go. In versions prior to 1.14.3, the gRPC, QUIC, DoH, and DoH3 transport im. Upgrade to fixed in version 1.14.3. As a workaround and remove the vulnerable command-injection pattern.

cve CVE-2026-35579disclosed 2026-05-05a.k.a. CoreDNS is a DNS server written in Go. In versions prior to 1.14.3, the gRPC, QUIC, DoH, and DoH3 transport im

CVE-2026-42997 - An issue was discovered in idrac in OpenStack Ironic before 35.0.1

high

High remediation recipe for An issue was discovered in idrac in OpenStack Ironic before 35.0.1. Upgrade to fixed versions are 26.1.6 and remove the vulnerable authz pattern.

cve CVE-2026-42997disclosed 2026-05-05a.k.a. An issue was discovered in idrac in OpenStack Ironic before 35.0.1

CVE-2026-43071 - In the Linux kernel, the following vulnerability has been resolved: dcache: Limit the minimal number of bucket

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dcache: Limit the minimal number of bucket. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43071disclosed 2026-05-05a.k.a. In the Linux kernel, the following vulnerability has been resolved: dcache: Limit the minimal number of bucket

CVE-2026-43869 - Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift

high

High remediation recipe for Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift. Upgrade to upgrade to version 0.23.0 and remove the vulnerable cert-validation pattern.

cve CVE-2026-43869disclosed 2026-05-05a.k.a. Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift

CVE-2026-6322 - fast-uri normalize() decoded percent-encoded authority delimiters inside the host component and then re-emitte

high

High remediation recipe for fast-uri normalize() decoded percent-encoded authority delimiters inside the host component and then re-emitte. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-6322disclosed 2026-05-05a.k.a. fast-uri normalize() decoded percent-encoded authority delimiters inside the host component and then re-emitte

CVE-2026-6918 - In Eclipse Open9J versions 0.21 to 0.58, a pre-authentication remote attacker can crash JITServer by sending a

high

High remediation recipe for In Eclipse Open9J versions 0.21 to 0.58, a pre-authentication remote attacker can crash JITServer by sending a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-6918disclosed 2026-05-05a.k.a. In Eclipse Open9J versions 0.21 to 0.58, a pre-authentication remote attacker can crash JITServer by sending a

CVE-2025-70069 - An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp and

high

High remediation recipe for An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-70069disclosed 2026-05-04a.k.a. An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp and

CVE-2026-23918 - Double Free and possible RCE vulnerability in Apache HTTP Server with the HTTP/2 protocol

high

High remediation recipe for Double Free and possible RCE vulnerability in Apache HTTP Server with the HTTP/2 protocol. Upgrade to upgrade to version 2.4.67 and remove the vulnerable command-injection pattern.

cve CVE-2026-23918disclosed 2026-05-04a.k.a. Double Free and possible RCE vulnerability in Apache HTTP Server with the HTTP/2 protocol

CVE-2026-24082 - Memory Corruption when copying data from a freed source while executing performance counter deselect operation

high

High remediation recipe for Memory Corruption when copying data from a freed source while executing performance counter deselect operation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-24082disclosed 2026-05-04a.k.a. Memory Corruption when copying data from a freed source while executing performance counter deselect operation

CVE-2026-29004 - BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client (udhcpc6) DNS

high

High remediation recipe for BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client (udhcpc6) DNS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-29004disclosed 2026-05-04a.k.a. BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client (udhcpc6) DNS

CVE-2026-37459 - An integer underflow in FRRouting (FRR) stable/10.0 to stable/10.6 allows attackers to cause a Denial of Servi

high

High remediation recipe for An integer underflow in FRRouting (FRR) stable/10.0 to stable/10.6 allows attackers to cause a Denial of Servi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-37459disclosed 2026-05-04a.k.a. An integer underflow in FRRouting (FRR) stable/10.0 to stable/10.6 allows attackers to cause a Denial of Servi

CVE-2026-40682 - XML External Entity (XXE) via Unsanitized Dictionary Parsing in Apache OpenNLP DictionaryEntryPersistor Versio

critical

Critical remediation recipe for XML External Entity (XXE) via Unsanitized Dictionary Parsing in Apache OpenNLP DictionaryEntryPersistor Versio. Upgrade to upgrade to 2.5.9. 3.x users should upgrade to 3.0.0-M3. Users who canno and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-40682disclosed 2026-05-04a.k.a. XML External Entity (XXE) via Unsanitized Dictionary Parsing in Apache OpenNLP DictionaryEntryPersistor Versio

CVE-2026-42027 - Arbitrary Class Instantiation via Model Manifest in Apache OpenNLP ExtensionLoader Versions Affected: before 1

critical

Critical remediation recipe for Arbitrary Class Instantiation via Model Manifest in Apache OpenNLP ExtensionLoader Versions Affected: before 1. Upgrade to upgrade to 2.5.9. and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-42027disclosed 2026-05-04a.k.a. Arbitrary Class Instantiation via Model Manifest in Apache OpenNLP ExtensionLoader Versions Affected: before 1

CVE-2026-42151 - Prometheus is an open-source monitoring system and time series database

high

High remediation recipe for Prometheus is an open-source monitoring system and time series database. Upgrade to patched in versions 3.5.3 and 3.11.3. and remove the vulnerable command-injection pattern.

cve CVE-2026-42151disclosed 2026-05-04a.k.a. Prometheus is an open-source monitoring system and time series database

CVE-2026-42154 - Prometheus is an open-source monitoring system and time series database

high

High remediation recipe for Prometheus is an open-source monitoring system and time series database. Upgrade to patched in versions 3.5.3 and 3.11.3. and remove the vulnerable command-injection pattern.

cve CVE-2026-42154disclosed 2026-05-04a.k.a. Prometheus is an open-source monitoring system and time series database

CVE-2026-42440 - OOM Denial of Service via Unbounded Array Allocation in Apache OpenNLP AbstractModelReader Versions Affected:

high

High remediation recipe for OOM Denial of Service via Unbounded Array Allocation in Apache OpenNLP AbstractModelReader Versions Affected:. Upgrade to upgrade to 2.5.9. and remove the vulnerable command-injection pattern.

cve CVE-2026-42440disclosed 2026-05-04a.k.a. OOM Denial of Service via Unbounded Array Allocation in Apache OpenNLP AbstractModelReader Versions Affected:

CVE-2026-6266 - A flaw was found in the AAP gateway. The user auto-link strategy, introduced in AAP 2.6, automatically links a

high

High remediation recipe for A flaw was found in the AAP gateway. The user auto-link strategy, introduced in AAP 2.6, automatically links a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-6266disclosed 2026-05-04a.k.a. A flaw was found in the AAP gateway. The user auto-link strategy, introduced in AAP 2.6, automatically links a

CVE-2026-31703 - In the Linux kernel, the following vulnerability has been resolved: writeback: Fix use after free in inode_swi

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: writeback: Fix use after free in inode_swi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-31703disclosed 2026-05-01a.k.a. In the Linux kernel, the following vulnerability has been resolved: writeback: Fix use after free in inode_swi

CVE-2026-31709 - In the Linux kernel, the following vulnerability has been resolved: smb: client: validate the whole DACL befor

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: validate the whole DACL befor. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-31709disclosed 2026-05-01a.k.a. In the Linux kernel, the following vulnerability has been resolved: smb: client: validate the whole DACL befor

CVE-2026-37457 - An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_ut

high

High remediation recipe for An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_ut. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-37457disclosed 2026-05-01a.k.a. An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_ut

CVE-2026-43001 - An issue was discovered in OpenStack Keystone before 29.0.2

high

High remediation recipe for An issue was discovered in OpenStack Keystone before 29.0.2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-43001disclosed 2026-05-01a.k.a. An issue was discovered in OpenStack Keystone before 29.0.2

CVE-2026-43011 - In the Linux kernel, the following vulnerability has been resolved: net/x25: Fix potential double free of skb

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/x25: Fix potential double free of skb. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-43011disclosed 2026-05-01a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/x25: Fix potential double free of skb

CVE-2026-43033 - In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - Do not place hiseq at

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - Do not place hiseq at. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43033disclosed 2026-05-01a.k.a. In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - Do not place hiseq at

CVE-2026-43037 - In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: clear skb2->cb[] in ip4ip6_err

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: clear skb2->cb[] in ip4ip6_err. Upgrade to fixed 40-byte stack buffer and remove the vulnerable authz pattern.

cve CVE-2026-43037disclosed 2026-05-01a.k.a. In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: clear skb2->cb[] in ip4ip6_err

CVE-2026-43038 - In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2->cb[] in ip6_err_ge

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2->cb[] in ip6_err_ge. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-43038disclosed 2026-05-01a.k.a. In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2->cb[] in ip6_err_ge

CVE-2026-5403 - SBC codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code exe

high

High remediation recipe for SBC codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code exe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-5403disclosed 2026-05-01a.k.a. SBC codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code exe

CVE-2026-5405 - RDP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and poss

high

High remediation recipe for RDP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and poss. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-5405disclosed 2026-05-01a.k.a. RDP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and poss

CVE-2026-5656 - Profile import path traversal in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and pos

high

High remediation recipe for Profile import path traversal in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and pos. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-5656disclosed 2026-05-01a.k.a. Profile import path traversal in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and pos

CVE-2026-7598 - A security vulnerability has been detected in libssh2 up to 1.11.1

high

High remediation recipe for A security vulnerability has been detected in libssh2 up to 1.11.1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-7598disclosed 2026-05-01a.k.a. A security vulnerability has been detected in libssh2 up to 1.11.1

CVE-2026-31693 - In the Linux kernel, the following vulnerability has been resolved: cifs: some missing initializations on repl

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: cifs: some missing initializations on repl. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-31693disclosed 2026-04-30a.k.a. In the Linux kernel, the following vulnerability has been resolved: cifs: some missing initializations on repl

CVE-2026-7246 - Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit() functio

high

High remediation recipe for Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit() functio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-7246disclosed 2026-04-30a.k.a. Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit() functio

CVE-2026-37555 - An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec

high

High remediation recipe for An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec. Upgrade to fixed with and remove the vulnerable dos pattern.

cve CVE-2026-37555disclosed 2026-04-29a.k.a. An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec

CVE-2026-42198 - pgjdbc is an open source postgresql JDBC Driver

high

High remediation recipe for pgjdbc is an open source postgresql JDBC Driver. Upgrade to version 42.2.0 to before version 42.7.11 and remove the vulnerable command-injection pattern.

cve CVE-2026-42198disclosed 2026-04-29a.k.a. pgjdbc is an open source postgresql JDBC Driver

CVE-2024-54013 - Penetration Testing engineers at Amazon have identified a security flaw related to request handling in the web

high

High remediation recipe for Penetration Testing engineers at Amazon have identified a security flaw related to request handling in the web. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2024-54013disclosed 2026-04-28a.k.a. Penetration Testing engineers at Amazon have identified a security flaw related to request handling in the web

CVE-2025-48431 - Mismatched Memory Management Routines vulnerability in Apache Thrift c_glib language bindings

high

High remediation recipe for Mismatched Memory Management Routines vulnerability in Apache Thrift c_glib language bindings. Upgrade to upgrade to version 0.23.0 and remove the vulnerable dos pattern.

cve CVE-2025-48431disclosed 2026-04-28a.k.a. Mismatched Memory Management Routines vulnerability in Apache Thrift c_glib language bindings

CVE-2026-40976 - In certain circumstances, Spring Boot's default web security is ineffective allowing unauthorized access to al

critical

Critical remediation recipe for In certain circumstances, Spring Boot's default web security is ineffective allowing unauthorized access to al. Upgrade to upgrade to 4.0.6 or later per vendor advisory. and remove the vulnerable authz pattern.

cve CVE-2026-40976disclosed 2026-04-28a.k.a. In certain circumstances, Spring Boot's default web security is ineffective allowing unauthorized access to al

CVE-2026-41603 - Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift

high

High remediation recipe for Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift. Upgrade to upgrade to version 0.23.0 and remove the vulnerable cert-validation pattern.

cve CVE-2026-41603disclosed 2026-04-28a.k.a. Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift

CVE-2026-41604 - Out-of-bounds Read vulnerability in Apache Thrift

high

High remediation recipe for Out-of-bounds Read vulnerability in Apache Thrift. Upgrade to upgrade to version 0.23.0 and remove the vulnerable authz pattern.

cve CVE-2026-41604disclosed 2026-04-28a.k.a. Out-of-bounds Read vulnerability in Apache Thrift

CVE-2026-41605 - Integer Overflow or Wraparound vulnerability in Apache Thrift

high

High remediation recipe for Integer Overflow or Wraparound vulnerability in Apache Thrift. Upgrade to upgrade to version 0.23.0 and remove the vulnerable authz pattern.

cve CVE-2026-41605disclosed 2026-04-28a.k.a. Integer Overflow or Wraparound vulnerability in Apache Thrift

CVE-2026-7320 - Information disclosure due to incorrect boundary conditions in the Audio/Video component

high

High remediation recipe for Information disclosure due to incorrect boundary conditions in the Audio/Video component. Upgrade to fixed in Firefox 150.0.1 and remove the vulnerable authz pattern.

cve CVE-2026-7320disclosed 2026-04-28a.k.a. Information disclosure due to incorrect boundary conditions in the Audio/Video component

CVE-2026-7322 - Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0

high

High remediation recipe for Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Upgrade to fixed in Firefox 150.0.1 and remove the vulnerable authz pattern.

cve CVE-2026-7322disclosed 2026-04-28a.k.a. Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0

CVE-2026-7323 - Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0

high

High remediation recipe for Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Upgrade to fixed in Firefox 150.0.1 and remove the vulnerable authz pattern.

cve CVE-2026-7323disclosed 2026-04-28a.k.a. Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0

CVE-2026-7324 - Memory safety bugs present in Thunderbird 150.0.0

high

High remediation recipe for Memory safety bugs present in Thunderbird 150.0.0. Upgrade to fixed in Firefox 150.0.1 and Thunderbird 150.0.1. and remove the vulnerable authz pattern.

cve CVE-2026-7324disclosed 2026-04-28a.k.a. Memory safety bugs present in Thunderbird 150.0.0

CVE-2026-3006 - Successful exploitation of the race condition vulnerability could allow an attacker to trigger a kernel heap o

high

High remediation recipe for Successful exploitation of the race condition vulnerability could allow an attacker to trigger a kernel heap o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3006disclosed 2026-04-27a.k.a. Successful exploitation of the race condition vulnerability could allow an attacker to trigger a kernel heap o

CVE-2026-40022 - When authentication is enabled on the Apache Camel embedded HTTP server or embedded management server (camel-p

high

High remediation recipe for When authentication is enabled on the Apache Camel embedded HTTP server or embedded management server (camel-p. Upgrade to upgrade to version 4.20.0 and remove the vulnerable ssrf pattern.

cve CVE-2026-40022disclosed 2026-04-27a.k.a. When authentication is enabled on the Apache Camel embedded HTTP server or embedded management server (camel-p

CVE-2026-6785 - Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Th

high

High remediation recipe for Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Th. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.

cve CVE-2026-6785disclosed 2026-04-26a.k.a. Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Th

CVE-2026-6786 - Memory safety bugs present in Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149

high

High remediation recipe for Memory safety bugs present in Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.

cve CVE-2026-6786disclosed 2026-04-26a.k.a. Memory safety bugs present in Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149

CVE-2026-31682 - In the Linux kernel, the following vulnerability has been resolved: bridge: br_nd_send: linearize skb before p

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bridge: br_nd_send: linearize skb before p. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-31682disclosed 2026-04-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: bridge: br_nd_send: linearize skb before p

CVE-2026-31685 - In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_eui64: reject invalid MAC

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_eui64: reject invalid MAC. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable command-injection pattern.

cve CVE-2026-31685disclosed 2026-04-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_eui64: reject invalid MAC

CVE-2026-6951 - Versions of the package simple-git before 3.36.0 are vulnerable to Remote Code Execution (RCE) due to an incom

critical

Critical remediation recipe for Versions of the package simple-git before 3.36.0 are vulnerable to Remote Code Execution (RCE) due to an incom. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-6951disclosed 2026-04-25a.k.a. Versions of the package simple-git before 3.36.0 are vulnerable to Remote Code Execution (RCE) due to an incom

CVE-2026-21728 - Tempo queries with large limits can cause large memory allocations which can impact the availability of the se

high

High remediation recipe for Tempo queries with large limits can cause large memory allocations which can impact the availability of the se. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-21728disclosed 2026-04-24a.k.a. Tempo queries with large limits can cause large memory allocations which can impact the availability of the se

CVE-2026-31607 - In the Linux kernel, the following vulnerability has been resolved: usbip: validate number_of_packets in usbip

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: usbip: validate number_of_packets in usbip. Upgrade to fixed at URB allocation time based on the and remove the vulnerable command-injection pattern.

cve CVE-2026-31607disclosed 2026-04-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: usbip: validate number_of_packets in usbip

CVE-2026-31637 - In the Linux kernel, the following vulnerability has been resolved: rxrpc: reject undecryptable rxkad response

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rxrpc: reject undecryptable rxkad response. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-31637disclosed 2026-04-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: rxrpc: reject undecryptable rxkad response

CVE-2026-31641 - In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix RxGK token loading to check bou

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix RxGK token loading to check bou. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-31641disclosed 2026-04-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix RxGK token loading to check bou

CVE-2026-31649 - In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix integer underflow in chai

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix integer underflow in chai. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-31649disclosed 2026-04-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix integer underflow in chai

CVE-2026-31657 - In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways b

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways b. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-31657disclosed 2026-04-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways b

CVE-2026-31659 - In the Linux kernel, the following vulnerability has been resolved: batman-adv: reject oversized global TT res

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: batman-adv: reject oversized global TT res. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-31659disclosed 2026-04-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: batman-adv: reject oversized global TT res

CVE-2026-31663 - In the Linux kernel, the following vulnerability has been resolved: xfrm: hold dev ref until after transport_f

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfrm: hold dev ref until after transport_f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-31663disclosed 2026-04-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: xfrm: hold dev ref until after transport_f

CVE-2026-31668 - In the Linux kernel, the following vulnerability has been resolved: seg6: separate dst_cache for input and out

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: seg6: separate dst_cache for input and out. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-31668disclosed 2026-04-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: seg6: separate dst_cache for input and out

CVE-2026-31669 - In the Linux kernel, the following vulnerability has been resolved: mptcp: fix slab-use-after-free in __inet_l

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mptcp: fix slab-use-after-free in __inet_l. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-31669disclosed 2026-04-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: mptcp: fix slab-use-after-free in __inet_l

CVE-2026-40466 - Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache A

high

High remediation recipe for Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache A. Upgrade to upgrade to version 5.19.6 or 6.2.5 and remove the vulnerable command-injection pattern.

cve CVE-2026-40466disclosed 2026-04-24a.k.a. Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache A

CVE-2026-41044 - Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache A

high

High remediation recipe for Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache A. Upgrade to upgrade to version 6.2.5 or 5.19.6 and remove the vulnerable command-injection pattern.

cve CVE-2026-41044disclosed 2026-04-24a.k.a. Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache A

CVE-2026-41316 - ERB is a templating system for Ruby. Ruby 2.7.0 (before ERB 2.2.0 was published on rubygems.org) introduced an

high

High remediation recipe for ERB is a templating system for Ruby. Ruby 2.7.0 (before ERB 2.2.0 was published on rubygems.org) introduced an. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-41316disclosed 2026-04-24a.k.a. ERB is a templating system for Ruby. Ruby 2.7.0 (before ERB 2.2.0 was published on rubygems.org) introduced an

CVE-2026-5367 - A flaw was found in OVN (Open Virtual Network)

high

High remediation recipe for A flaw was found in OVN (Open Virtual Network). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-5367disclosed 2026-04-24a.k.a. A flaw was found in OVN (Open Virtual Network)

CVE-2026-33999 - A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatib

high

High remediation recipe for A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatib. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-33999disclosed 2026-04-23a.k.a. A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatib

CVE-2026-34001 - A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering

high

High remediation recipe for A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-34001disclosed 2026-04-23a.k.a. A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering

CVE-2026-34003 - A flaw was found in the X.Org X server's XKB key types request validation

high

High remediation recipe for A flaw was found in the X.Org X server's XKB key types request validation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-34003disclosed 2026-04-23a.k.a. A flaw was found in the X.Org X server's XKB key types request validation

CVE-2026-41176 - Rclone is a command-line program to sync files and directories to and from different cloud storage providers

critical

Critical remediation recipe for Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Upgrade to version 1.45.0 and prior to version 1.73.5 and remove the vulnerable authz pattern.

cve CVE-2026-41176disclosed 2026-04-23a.k.a. Rclone is a command-line program to sync files and directories to and from different cloud storage providers

CVE-2026-41179 - Rclone is a command-line program to sync files and directories to and from different cloud storage providers

critical

Critical remediation recipe for Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Upgrade to version 1.48.0 and prior to version 1.73.5 and remove the vulnerable authz pattern.

cve CVE-2026-41179disclosed 2026-04-23a.k.a. Rclone is a command-line program to sync files and directories to and from different cloud storage providers

CVE-2026-22754 - Vulnerability in Spring Spring Security. If an application uses <sec:intercept-url servlet-path=/servlet-path

high

High remediation recipe for Vulnerability in Spring Spring Security. If an application uses <sec:intercept-url servlet-path=/servlet-path. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-22754disclosed 2026-04-22a.k.a. Vulnerability in Spring Spring Security. If an application uses <sec:intercept-url servlet-path=/servlet-path

CVE-2026-31431 - In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating o

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-31431disclosed 2026-04-22a.k.a. In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating o

CVE-2026-31436 - In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix possible wrong descri

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix possible wrong descri. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-31436disclosed 2026-04-22a.k.a. In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix possible wrong descri

CVE-2026-31448 - In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by resid

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by resid. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable dos pattern.

cve CVE-2026-31448disclosed 2026-04-22a.k.a. In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by resid

CVE-2026-31474 - In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix tx.buf use-after-free in i

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix tx.buf use-after-free in i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-31474disclosed 2026-04-22a.k.a. In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix tx.buf use-after-free in i

CVE-2026-31478 - In the Linux kernel, the following vulnerability has been resolved: ksmbd: replace hardcoded hdr2_len with off

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ksmbd: replace hardcoded hdr2_len with off. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-31478disclosed 2026-04-22a.k.a. In the Linux kernel, the following vulnerability has been resolved: ksmbd: replace hardcoded hdr2_len with off

CVE-2026-31488 - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Do not skip unrelated mod

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Do not skip unrelated mod. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-31488disclosed 2026-04-22a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Do not skip unrelated mod

CVE-2026-31504 - In the Linux kernel, the following vulnerability has been resolved: net: fix fanout UAF in packet_release() vi

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: fix fanout UAF in packet_release() vi. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-31504disclosed 2026-04-22a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: fix fanout UAF in packet_release() vi

CVE-2026-40542 - Missing critical step in authentication in Apache HttpClient 5.6 allows an attacker to cause the client to acc

high

High remediation recipe for Missing critical step in authentication in Apache HttpClient 5.6 allows an attacker to cause the client to acc. Upgrade to upgrade to version 5.6.1 and remove the vulnerable authz pattern.

cve CVE-2026-40542disclosed 2026-04-22a.k.a. Missing critical step in authentication in Apache HttpClient 5.6 allows an attacker to cause the client to acc

CVE-2026-40575 - OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers

critical

Critical remediation recipe for OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Upgrade to patched in and remove the vulnerable command-injection pattern.

cve CVE-2026-40575disclosed 2026-04-22a.k.a. OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers

CVE-2026-6846 - A flaw was found in binutils. A heap-buffer-overflow vulnerability exists when processing a specially crafted

high

High remediation recipe for A flaw was found in binutils. A heap-buffer-overflow vulnerability exists when processing a specially crafted. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-6846disclosed 2026-04-22a.k.a. A flaw was found in binutils. A heap-buffer-overflow vulnerability exists when processing a specially crafted

CVE-2026-6857 - A flaw was found in camel-infinispan. This vulnerability involves unsafe deserialization in the ProtoStream re

high

High remediation recipe for A flaw was found in camel-infinispan. This vulnerability involves unsafe deserialization in the ProtoStream re. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-6857disclosed 2026-04-22a.k.a. A flaw was found in camel-infinispan. This vulnerability involves unsafe deserialization in the ProtoStream re

CVE-2026-40244 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

high

High remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to fixed in other locations by the recent CVE-2026-34589 batch and remove the vulnerable authz pattern.

cve CVE-2026-40244disclosed 2026-04-21a.k.a. OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

CVE-2026-40895 - follow-redirects is an open source, drop-in replacement for Node's http and https modules that automatical

high

High remediation recipe for follow-redirects is an open source, drop-in replacement for Node's http and https modules that automatical. Upgrade to fixed in 1.16.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-40895disclosed 2026-04-21a.k.a. follow-redirects is an open source, drop-in replacement for Node's http and https modules that automatical

CVE-2026-40906 - Electric is a Postgres sync engine. From 1.1.12 to before 1.5.0, the order_by parameter in the ElectricSQL /v1

critical

Critical remediation recipe for Electric is a Postgres sync engine. From 1.1.12 to before 1.5.0, the order_by parameter in the ElectricSQL /v1. Upgrade to fixed in 1.5.0. and remove the vulnerable authz pattern.

cve CVE-2026-40906disclosed 2026-04-21a.k.a. Electric is a Postgres sync engine. From 1.1.12 to before 1.5.0, the order_by parameter in the ElectricSQL /v1

CVE-2026-6746 - Use-after-free in the DOM: Core & HTML component

high

High remediation recipe for Use-after-free in the DOM: Core & HTML component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.

cve CVE-2026-6746disclosed 2026-04-21a.k.a. Use-after-free in the DOM: Core & HTML component

CVE-2026-6747 - Use-after-free in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thund

high

High remediation recipe for Use-after-free in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thund. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.

cve CVE-2026-6747disclosed 2026-04-21a.k.a. Use-after-free in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thund

CVE-2026-6748 - Uninitialized memory in the Audio/Video: Web Codecs component

critical

Critical remediation recipe for Uninitialized memory in the Audio/Video: Web Codecs component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.

cve CVE-2026-6748disclosed 2026-04-21a.k.a. Uninitialized memory in the Audio/Video: Web Codecs component

CVE-2026-6749 - Information disclosure due to uninitialized memory in the Graphics: Canvas2D component

high

High remediation recipe for Information disclosure due to uninitialized memory in the Graphics: Canvas2D component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.

cve CVE-2026-6749disclosed 2026-04-21a.k.a. Information disclosure due to uninitialized memory in the Graphics: Canvas2D component

CVE-2026-6750 - Privilege escalation in the Graphics: WebRender component

high

High remediation recipe for Privilege escalation in the Graphics: WebRender component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.

cve CVE-2026-6750disclosed 2026-04-21a.k.a. Privilege escalation in the Graphics: WebRender component

CVE-2026-6751 - Uninitialized memory in the Audio/Video: Web Codecs component

high

High remediation recipe for Uninitialized memory in the Audio/Video: Web Codecs component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.

cve CVE-2026-6751disclosed 2026-04-21a.k.a. Uninitialized memory in the Audio/Video: Web Codecs component

CVE-2026-6752 - Incorrect boundary conditions in the WebRTC component

high

High remediation recipe for Incorrect boundary conditions in the WebRTC component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.

cve CVE-2026-6752disclosed 2026-04-21a.k.a. Incorrect boundary conditions in the WebRTC component

CVE-2026-6753 - Incorrect boundary conditions in the WebRTC component

high

High remediation recipe for Incorrect boundary conditions in the WebRTC component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.

cve CVE-2026-6753disclosed 2026-04-21a.k.a. Incorrect boundary conditions in the WebRTC component

CVE-2026-6784 - Memory safety bugs present in Firefox 149 and Thunderbird 149

high

High remediation recipe for Memory safety bugs present in Firefox 149 and Thunderbird 149. Upgrade to fixed in Firefox 150 and Thunderbird 150. and remove the vulnerable authz pattern.

cve CVE-2026-6784disclosed 2026-04-21a.k.a. Memory safety bugs present in Firefox 149 and Thunderbird 149

CVE-2026-33557 - A possible security vulnerability has been identified in Apache Kafka

critical

Critical remediation recipe for A possible security vulnerability has been identified in Apache Kafka. Upgrade to fixed and will correctly validate the JWT token. and remove the vulnerable crypto pattern.

cve CVE-2026-33557disclosed 2026-04-20a.k.a. A possible security vulnerability has been identified in Apache Kafka

CVE-2026-3605 - An authenticated user with access to a kvv2 path through a policy containing a glob may be able to delete secr

high

High remediation recipe for An authenticated user with access to a kvv2 path through a policy containing a glob may be able to delete secr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3605disclosed 2026-04-17a.k.a. An authenticated user with access to a kvv2 path through a policy containing a glob may be able to delete secr

CVE-2026-40066 - Anviz CX2 Lite and CX7 are vulnerable to unverified update packages that can be uploaded

high

High remediation recipe for Anviz CX2 Lite and CX7 are vulnerable to unverified update packages that can be uploaded. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-40066disclosed 2026-04-17a.k.a. Anviz CX2 Lite and CX7 are vulnerable to unverified update packages that can be uploaded

CVE-2026-4525 - If a Vault auth mount is configured to pass through the Authorization header, and the Authorization header

high

High remediation recipe for If a Vault auth mount is configured to pass through the Authorization header, and the Authorization header. Upgrade to Fixed in 2.0.0 and remove the vulnerable authz pattern.

cve CVE-2026-4525disclosed 2026-04-17a.k.a. If a Vault auth mount is configured to pass through the Authorization header, and the Authorization header

CVE-2026-5720 - miniupnpd contains an integer underflow vulnerability in SOAPAction header parsing that allows remote attacker

critical

Critical remediation recipe for miniupnpd contains an integer underflow vulnerability in SOAPAction header parsing that allows remote attacker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-5720disclosed 2026-04-17a.k.a. miniupnpd contains an integer underflow vulnerability in SOAPAction header parsing that allows remote attacker

CVE-2026-5807 - Vault is vulnerable to a denial-of-service condition where an unauthenticated attacker can repeatedly initiate

high

High remediation recipe for Vault is vulnerable to a denial-of-service condition where an unauthenticated attacker can repeatedly initiate. Upgrade to fixed in Vault Community Edition 2.0.0 and Vault Enterprise 2.0.0. and remove the vulnerable authz pattern.

cve CVE-2026-5807disclosed 2026-04-17a.k.a. Vault is vulnerable to a denial-of-service condition where an unauthenticated attacker can repeatedly initiate

CVE-2025-54502 - Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privilege

high

High remediation recipe for Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privilege. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-54502disclosed 2026-04-16a.k.a. Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privilege

CVE-2026-40170 - ngtcp2 is a C implementation of the IETF QUIC protocol

high

High remediation recipe for ngtcp2 is a C implementation of the IETF QUIC protocol. Upgrade to fixed 1024-byte stack buffer without bounds checking. When qlog is and remove the vulnerable authz pattern.

cve CVE-2026-40170disclosed 2026-04-16a.k.a. ngtcp2 is a C implementation of the IETF QUIC protocol

CVE-2026-41035 - In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort call, leading t

high

High remediation recipe for In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort call, leading t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-41035disclosed 2026-04-16a.k.a. In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort call, leading t

CVE-2026-41082 - In OCaml opam before 2.5.1, a .install field containing a destination filepath can use ../ to reach a parent d

high

High remediation recipe for In OCaml opam before 2.5.1, a .install field containing a destination filepath can use ../ to reach a parent d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-41082disclosed 2026-04-16a.k.a. In OCaml opam before 2.5.1, a .install field containing a destination filepath can use ../ to reach a parent d

CVE-2025-41118 - Pyroscope is an open-source continuous profiling database

critical

Critical remediation recipe for Pyroscope is an open-source continuous profiling database. Upgrade to fixed in versions and remove the vulnerable command-injection pattern.

cve CVE-2025-41118disclosed 2026-04-15a.k.a. Pyroscope is an open-source continuous profiling database

CVE-2026-20186 - A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execu

critical

Critical remediation recipe for A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-20186disclosed 2026-04-15a.k.a. A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execu

CVE-2026-33805 - @fastify/reply-from v12.6.1 and earlier and @fastify/http-proxy v11.4.3 and earlier process the client's Conne

high

High remediation recipe for @fastify/reply-from v12.6.1 and earlier and @fastify/http-proxy v11.4.3 and earlier process the client's Conne. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-33805disclosed 2026-04-15a.k.a. @fastify/reply-from v12.6.1 and earlier and @fastify/http-proxy v11.4.3 and earlier process the client's Conne

CVE-2026-33806 - Impact: Fastify applications using schema.body.content for per-content-type body validation can have validatio

high

High remediation recipe for Impact: Fastify applications using schema.body.content for per-content-type body validation can have validatio. Upgrade to Upgrade to fastify v5.8.5 or later. and remove the vulnerable authz pattern.

cve CVE-2026-33806disclosed 2026-04-15a.k.a. Impact: Fastify applications using schema.body.content for per-content-type body validation can have validatio

CVE-2026-34632 - Adobe Photoshop Installer was affected by an Uncontrolled Search Path Element vulnerability that could have re

high

High remediation recipe for Adobe Photoshop Installer was affected by an Uncontrolled Search Path Element vulnerability that could have re. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34632disclosed 2026-04-15a.k.a. Adobe Photoshop Installer was affected by an Uncontrolled Search Path Element vulnerability that could have re

CVE-2026-6384 - A flaw was found in gimp. This buffer overflow vulnerability in the GIF image loading component's ReadJeffsIm

high

High remediation recipe for A flaw was found in gimp. This buffer overflow vulnerability in the GIF image loading component's ReadJeffsIm. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-6384disclosed 2026-04-15a.k.a. A flaw was found in gimp. This buffer overflow vulnerability in the GIF image loading component's ReadJeffsIm

CVE-2026-6388 - A flaw was found in ArgoCD Image Updater

critical

Critical remediation recipe for A flaw was found in ArgoCD Image Updater. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-6388disclosed 2026-04-15a.k.a. A flaw was found in ArgoCD Image Updater

CVE-2026-2332 - In Eclipse Jetty, the HTTP/1.1 parser is vulnerable to request smuggling when chunk extensions are used, simil

high

High remediation recipe for In Eclipse Jetty, the HTTP/1.1 parser is vulnerable to request smuggling when chunk extensions are used, simil. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable request-smuggling pattern.

cve CVE-2026-2332disclosed 2026-04-14a.k.a. In Eclipse Jetty, the HTTP/1.1 parser is vulnerable to request smuggling when chunk extensions are used, simil

CVE-2026-23666 - Improper input validation in .NET Framework allows an unauthorized attacker to deny service over a network

high

High remediation recipe for Improper input validation in .NET Framework allows an unauthorized attacker to deny service over a network. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-23666disclosed 2026-04-14a.k.a. Improper input validation in .NET Framework allows an unauthorized attacker to deny service over a network

CVE-2026-26171 - Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network

high

High remediation recipe for Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-26171disclosed 2026-04-14a.k.a. Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network

CVE-2026-32178 - Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a

high

High remediation recipe for Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-32178disclosed 2026-04-14a.k.a. Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a

CVE-2026-32203 - Stack-based buffer overflow in .NET and Visual Studio allows an unauthorized attacker to deny service over a n

high

High remediation recipe for Stack-based buffer overflow in .NET and Visual Studio allows an unauthorized attacker to deny service over a n. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-32203disclosed 2026-04-14a.k.a. Stack-based buffer overflow in .NET and Visual Studio allows an unauthorized attacker to deny service over a n

CVE-2026-33414 - Podman is a tool for managing OCI containers and pods

high

High remediation recipe for Podman is a tool for managing OCI containers and pods. Upgrade to patched in version 5.8.2. and remove the vulnerable command-injection pattern.

cve CVE-2026-33414disclosed 2026-04-14a.k.a. Podman is a tool for managing OCI containers and pods

CVE-2026-0233 - A certificate validation vulnerability in Palo Alto Networks Autonomous Digital Experience Manager on Windows

high

High remediation recipe for A certificate validation vulnerability in Palo Alto Networks Autonomous Digital Experience Manager on Windows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-0233disclosed 2026-04-13a.k.a. A certificate validation vulnerability in Palo Alto Networks Autonomous Digital Experience Manager on Windows

CVE-2026-0234 - An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM plat

critical

Critical remediation recipe for An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM plat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-0234disclosed 2026-04-13a.k.a. An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM plat

CVE-2026-1462 - A vulnerability in the TFSMLayer class of the keras package, version 3.13.0, allows attacker-controlled Te

high

High remediation recipe for A vulnerability in the TFSMLayer class of the keras package, version 3.13.0, allows attacker-controlled Te. Upgrade to version 3.13.0 and remove the vulnerable deserialization pattern.

cve CVE-2026-1462disclosed 2026-04-13a.k.a. A vulnerability in the TFSMLayer class of the keras package, version 3.13.0, allows attacker-controlled Te

CVE-2026-31419 - In the Linux kernel, the following vulnerability has been resolved: net: bonding: fix use-after-free in bond_x

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: bonding: fix use-after-free in bond_x. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-31419disclosed 2026-04-13a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: bonding: fix use-after-free in bond_x

CVE-2026-33901 - ImageMagick is free and open-source software used for editing and manipulating digital images

high

High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to fixed in versions 6.9.13-44 and 7.1.2-19. and remove the vulnerable command-injection pattern.

cve CVE-2026-33901disclosed 2026-04-13a.k.a. ImageMagick is free and open-source software used for editing and manipulating digital images

CVE-2026-33908 - ImageMagick is free and open-source software used for editing and manipulating digital images

high

High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to fixed in versions 6.9.13-44 and 7.1.2-19. and remove the vulnerable command-injection pattern.

cve CVE-2026-33908disclosed 2026-04-13a.k.a. ImageMagick is free and open-source software used for editing and manipulating digital images

CVE-2026-4786 - Mitgation of CVE-2026-4519 was incomplete

high

High remediation recipe for Mitgation of CVE-2026-4519 was incomplete. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-4786disclosed 2026-04-13a.k.a. Mitgation of CVE-2026-4519 was incomplete

CVE-2026-5936 - An attacker can control a server-side HTTP request by supplying a crafted URL, causing the server to initiate

high

High remediation recipe for An attacker can control a server-side HTTP request by supplying a crafted URL, causing the server to initiate. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-5936disclosed 2026-04-13a.k.a. An attacker can control a server-side HTTP request by supplying a crafted URL, causing the server to initiate

CVE-2026-6100 - Use-after-free (UAF) was possible in the lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile w

high

High remediation recipe for Use-after-free (UAF) was possible in the lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile w. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-6100disclosed 2026-04-13a.k.a. Use-after-free (UAF) was possible in the lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile w

CVE-2019-25695 - R 3.4.4 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by inje

high

High remediation recipe for R 3.4.4 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by inje. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2019-25695disclosed 2026-04-12a.k.a. R 3.4.4 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by inje

CVE-2026-32146 - Improper path validation vulnerability in the Gleam compiler's handling of git dependencies allows arbitrary f

high

High remediation recipe for Improper path validation vulnerability in the Gleam compiler's handling of git dependencies allows arbitrary f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-32146disclosed 2026-04-11a.k.a. Improper path validation vulnerability in the Gleam compiler's handling of git dependencies allows arbitrary f

CVE-2026-4150 - GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-4150disclosed 2026-04-11a.k.a. GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability

CVE-2026-4151 - GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-4151disclosed 2026-04-11a.k.a. GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability

CVE-2026-4152 - GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-4152disclosed 2026-04-11a.k.a. GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-4153 - GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-4153disclosed 2026-04-11a.k.a. GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-4154 - GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-4154disclosed 2026-04-11a.k.a. GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability

CVE-2026-34481 - Apache Log4j's JsonTemplateLayout https://logging.apache.org/log4j/2.x/manual/json-template-layout.html , in v

high

High remediation recipe for Apache Log4j's JsonTemplateLayout https://logging.apache.org/log4j/2.x/manual/json-template-layout.html , in v. Upgrade to upgrade to Apache Log4j JSON Template Layout 2.25.4 and remove the vulnerable authz pattern.

cve CVE-2026-34481disclosed 2026-04-10a.k.a. Apache Log4j's JsonTemplateLayout https://logging.apache.org/log4j/2.x/manual/json-template-layout.html , in v

CVE-2026-40217 - LiteLLM through 2026-04-08 allows remote attackers to execute arbitrary code via bytecode rewriting at the /gu

high

High remediation recipe for LiteLLM through 2026-04-08 allows remote attackers to execute arbitrary code via bytecode rewriting at the /gu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-40217disclosed 2026-04-10a.k.a. LiteLLM through 2026-04-08 allows remote attackers to execute arbitrary code via bytecode rewriting at the /gu

CVE-2025-13914 - A Key Exchange without Entity Authentication vulnerability in the SSH implementation of Juniper Networks Apstr

high

High remediation recipe for A Key Exchange without Entity Authentication vulnerability in the SSH implementation of Juniper Networks Apstr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-13914disclosed 2026-04-09a.k.a. A Key Exchange without Entity Authentication vulnerability in the SSH implementation of Juniper Networks Apstr

CVE-2026-29146 - Padding Oracle vulnerability in Apache Tomcat's EncryptInterceptor with default configuration

high

High remediation recipe for Padding Oracle vulnerability in Apache Tomcat's EncryptInterceptor with default configuration. Upgrade to upgrade to version 11.0.19 and remove the vulnerable command-injection pattern.

cve CVE-2026-29146disclosed 2026-04-09a.k.a. Padding Oracle vulnerability in Apache Tomcat's EncryptInterceptor with default configuration

CVE-2026-33771 - A Weak Password Requirements vulnerability in the password management function of Juniper Networks CTP OS migh

high

High remediation recipe for A Weak Password Requirements vulnerability in the password management function of Juniper Networks CTP OS migh. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-33771disclosed 2026-04-09a.k.a. A Weak Password Requirements vulnerability in the password management function of Juniper Networks CTP OS migh

CVE-2026-34486 - Missing Encryption of Sensitive Data vulnerability in Apache Tomcat due to the fix for CVE-2026-29146 allowing

high

High remediation recipe for Missing Encryption of Sensitive Data vulnerability in Apache Tomcat due to the fix for CVE-2026-29146 allowing. Upgrade to upgrade to version 11.0.21 and remove the vulnerable command-injection pattern.

cve CVE-2026-34486disclosed 2026-04-09a.k.a. Missing Encryption of Sensitive Data vulnerability in Apache Tomcat due to the fix for CVE-2026-29146 allowing

CVE-2026-34734 - HDF5 is software for managing data. In 1.14.1-2 and earlier, a heap-use-after-free was found in the h5dump hel

high

High remediation recipe for HDF5 is software for managing data. In 1.14.1-2 and earlier, a heap-use-after-free was found in the h5dump hel. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-34734disclosed 2026-04-09a.k.a. HDF5 is software for managing data. In 1.14.1-2 and earlier, a heap-use-after-free was found in the h5dump hel

CVE-2026-34971 - Wasmtime is a runtime for WebAssembly. From 32.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Cranelift

high

High remediation recipe for Wasmtime is a runtime for WebAssembly. From 32.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Cranelift. Upgrade to fixed in 36.0.7 and remove the vulnerable authz pattern.

cve CVE-2026-34971disclosed 2026-04-09a.k.a. Wasmtime is a runtime for WebAssembly. From 32.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Cranelift

CVE-2026-35204 - Helm is a package manager for Charts for Kubernetes

high

High remediation recipe for Helm is a package manager for Charts for Kubernetes. Upgrade to fixed in 4.1.4. and remove the vulnerable authz pattern.

cve CVE-2026-35204disclosed 2026-04-09a.k.a. Helm is a package manager for Charts for Kubernetes

CVE-2026-35205 - Helm is a package manager for Charts for Kubernetes

high

High remediation recipe for Helm is a package manager for Charts for Kubernetes. Upgrade to fixed in 4.1.4. and remove the vulnerable crypto pattern.

cve CVE-2026-35205disclosed 2026-04-09a.k.a. Helm is a package manager for Charts for Kubernetes

CVE-2026-4660 - HashiCorp’s go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain gi

high

High remediation recipe for HashiCorp’s go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain gi. Upgrade to fixed in go-getter v1.8.6. This vulnerability does not affect the go- and remove the vulnerable path-traversal pattern.

cve CVE-2026-4660disclosed 2026-04-09a.k.a. HashiCorp’s go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain gi

CVE-2026-27140 - SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code exe

high

High remediation recipe for SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code exe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-27140disclosed 2026-04-08a.k.a. SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code exe

CVE-2026-32589 - A flaw was found in Red Hat Quay's container image upload process

high

High remediation recipe for A flaw was found in Red Hat Quay's container image upload process. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-32589disclosed 2026-04-08a.k.a. A flaw was found in Red Hat Quay's container image upload process

CVE-2026-32590 - A flaw was found in Red Hat Quay's handling of resumable container image layer uploads

high

High remediation recipe for A flaw was found in Red Hat Quay's handling of resumable container image layer uploads. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-32590disclosed 2026-04-08a.k.a. A flaw was found in Red Hat Quay's handling of resumable container image layer uploads

CVE-2026-33810 - When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly ap

high

High remediation recipe for When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly ap. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-33810disclosed 2026-04-08a.k.a. When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly ap

CVE-2026-5795 - In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal

high

High remediation recipe for In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-5795disclosed 2026-04-08a.k.a. In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal

CVE-2025-14821 - A flaw was found in libssh. This vulnerability allows local man-in-the-middle attacks, security downgrades of

high

High remediation recipe for A flaw was found in libssh. This vulnerability allows local man-in-the-middle attacks, security downgrades of. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-14821disclosed 2026-04-07a.k.a. A flaw was found in libssh. This vulnerability allows local man-in-the-middle attacks, security downgrades of

CVE-2026-20884 - An integer overflow vulnerability exists in the deflate_dng_load_raw functionality of LibRaw Commit 8dc68e2

high

High remediation recipe for An integer overflow vulnerability exists in the deflate_dng_load_raw functionality of LibRaw Commit 8dc68e2. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-20884disclosed 2026-04-07a.k.a. An integer overflow vulnerability exists in the deflate_dng_load_raw functionality of LibRaw Commit 8dc68e2

CVE-2026-20889 - A heap-based buffer overflow vulnerability exists in the x3f_thumb_loader functionality of LibRaw Commit d2031

critical

Critical remediation recipe for A heap-based buffer overflow vulnerability exists in the x3f_thumb_loader functionality of LibRaw Commit d2031. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20889disclosed 2026-04-07a.k.a. A heap-based buffer overflow vulnerability exists in the x3f_thumb_loader functionality of LibRaw Commit d2031

CVE-2026-20911 - A heap-based buffer overflow vulnerability exists in the HuffTable::initval functionality of LibRaw Commit 0b5

critical

Critical remediation recipe for A heap-based buffer overflow vulnerability exists in the HuffTable::initval functionality of LibRaw Commit 0b5. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20911disclosed 2026-04-07a.k.a. A heap-based buffer overflow vulnerability exists in the HuffTable::initval functionality of LibRaw Commit 0b5

CVE-2026-21413 - A heap-based buffer overflow vulnerability exists in the lossless_jpeg_load_raw functionality of LibRaw Commit

critical

Critical remediation recipe for A heap-based buffer overflow vulnerability exists in the lossless_jpeg_load_raw functionality of LibRaw Commit. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-21413disclosed 2026-04-07a.k.a. A heap-based buffer overflow vulnerability exists in the lossless_jpeg_load_raw functionality of LibRaw Commit

CVE-2026-24450 - An integer overflow vulnerability exists in the uncompressed_fp_dng_load_raw functionality of LibRaw Commit 8d

high

High remediation recipe for An integer overflow vulnerability exists in the uncompressed_fp_dng_load_raw functionality of LibRaw Commit 8d. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-24450disclosed 2026-04-07a.k.a. An integer overflow vulnerability exists in the uncompressed_fp_dng_load_raw functionality of LibRaw Commit 8d

CVE-2026-24660 - A heap-based buffer overflow vulnerability exists in the x3f_load_huffman functionality of LibRaw Commit d2031

high

High remediation recipe for A heap-based buffer overflow vulnerability exists in the x3f_load_huffman functionality of LibRaw Commit d2031. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-24660disclosed 2026-04-07a.k.a. A heap-based buffer overflow vulnerability exists in the x3f_load_huffman functionality of LibRaw Commit d2031

CVE-2026-28808 - Incorrect Authorization vulnerability in Erlang OTP (inets modules) allows unauthenticated access to CGI scrip

critical

Critical remediation recipe for Incorrect Authorization vulnerability in Erlang OTP (inets modules) allows unauthenticated access to CGI scrip. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-28808disclosed 2026-04-07a.k.a. Incorrect Authorization vulnerability in Erlang OTP (inets modules) allows unauthenticated access to CGI scrip

CVE-2026-33816 - Memory-safety vulnerability in github.com/jackc/pgx/v5

critical

Critical remediation recipe for Memory-safety vulnerability in github.com/jackc/pgx/v5. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-33816disclosed 2026-04-07a.k.a. Memory-safety vulnerability in github.com/jackc/pgx/v5

CVE-2026-34045 - Podman Desktop is a graphical tool for developing on containers and Kubernetes

high

High remediation recipe for Podman Desktop is a graphical tool for developing on containers and Kubernetes. Upgrade to fixed in 1.26.2. and remove the vulnerable dos pattern.

cve CVE-2026-34045disclosed 2026-04-07a.k.a. Podman Desktop is a graphical tool for developing on containers and Kubernetes

CVE-2026-34078 - Flatpak is a Linux application sandboxing and distribution framework

critical

Critical remediation recipe for Flatpak is a Linux application sandboxing and distribution framework. Upgrade to fixed in 1.16.4. and remove the vulnerable path-traversal pattern.

cve CVE-2026-34078disclosed 2026-04-07a.k.a. Flatpak is a Linux application sandboxing and distribution framework

CVE-2026-34580 - Botan is a C++ cryptography library. In 3.11.0, the function Certificate_Store::certificate_known had a mislea

high

High remediation recipe for Botan is a C++ cryptography library. In 3.11.0, the function Certificate_Store::certificate_known had a mislea. Upgrade to fixed in 3.11.1. and remove the vulnerable cert-validation pattern.

cve CVE-2026-34580disclosed 2026-04-07a.k.a. Botan is a C++ cryptography library. In 3.11.0, the function Certificate_Store::certificate_known had a mislea

CVE-2026-4740 - A flaw was found in Open Cluster Management (OCM), the technology underlying Red Hat Advanced Cluster Manageme

high

High remediation recipe for A flaw was found in Open Cluster Management (OCM), the technology underlying Red Hat Advanced Cluster Manageme. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-4740disclosed 2026-04-07a.k.a. A flaw was found in Open Cluster Management (OCM), the technology underlying Red Hat Advanced Cluster Manageme

CVE-2026-5731 - Memory safety bugs present in Firefox ESR 115.34.0, Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149

critical

Critical remediation recipe for Memory safety bugs present in Firefox ESR 115.34.0, Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149. Upgrade to fixed in Firefox 149.0.2 and remove the vulnerable authz pattern.

cve CVE-2026-5731disclosed 2026-04-07a.k.a. Memory safety bugs present in Firefox ESR 115.34.0, Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149

CVE-2026-5732 - Incorrect boundary conditions, integer overflow in the Graphics: Text component

high

High remediation recipe for Incorrect boundary conditions, integer overflow in the Graphics: Text component. Upgrade to fixed in Firefox 149.0.2 and remove the vulnerable authz pattern.

cve CVE-2026-5732disclosed 2026-04-07a.k.a. Incorrect boundary conditions, integer overflow in the Graphics: Text component

CVE-2026-5733 - Incorrect boundary conditions in the Graphics: WebGPU component

high

High remediation recipe for Incorrect boundary conditions in the Graphics: WebGPU component. Upgrade to fixed in Firefox 149.0.2 and Thunderbird 149.0.2. and remove the vulnerable authz pattern.

cve CVE-2026-5733disclosed 2026-04-07a.k.a. Incorrect boundary conditions in the Graphics: WebGPU component

CVE-2026-5734 - Memory safety bugs present in Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149.0.1 and Thunderbird 14

critical

Critical remediation recipe for Memory safety bugs present in Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149.0.1 and Thunderbird 14. Upgrade to fixed in Firefox 149.0.2 and remove the vulnerable authz pattern.

cve CVE-2026-5734disclosed 2026-04-07a.k.a. Memory safety bugs present in Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149.0.1 and Thunderbird 14

CVE-2026-5735 - Memory safety bugs present in Firefox 149.0.1 and Thunderbird 149.0.1

critical

Critical remediation recipe for Memory safety bugs present in Firefox 149.0.1 and Thunderbird 149.0.1. Upgrade to fixed in Firefox 149.0.2 and Thunderbird 149.0.2. and remove the vulnerable authz pattern.

cve CVE-2026-5735disclosed 2026-04-07a.k.a. Memory safety bugs present in Firefox 149.0.1 and Thunderbird 149.0.1

CVE-2026-34379 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

high

High remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to version by casting an unaligned uint8_t and remove the vulnerable command-injection pattern.

cve CVE-2026-34379disclosed 2026-04-06a.k.a. OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

CVE-2026-34588 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

high

High remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to fixed in 3.2.7 and remove the vulnerable authz pattern.

cve CVE-2026-34588disclosed 2026-04-06a.k.a. OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

CVE-2026-34982 - Vim is an open source, command line text editor

high

High remediation recipe for Vim is an open source, command line text editor. Upgrade to version 9.2.0276 and remove the vulnerable command-injection pattern.

cve CVE-2026-34982disclosed 2026-04-06a.k.a. Vim is an open source, command line text editor

CVE-2026-35030 - LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format

critical

Critical remediation recipe for LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Upgrade to Fixed in v1.83.0. and remove the vulnerable authz pattern.

cve CVE-2026-35030disclosed 2026-04-06a.k.a. LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format

CVE-2026-35172 - Distribution is a toolkit to pack, ship, store, and deliver container content

high

High remediation recipe for Distribution is a toolkit to pack, ship, store, and deliver container content. Upgrade to fixed in 3.1.0. and remove the vulnerable authz pattern.

cve CVE-2026-35172disclosed 2026-04-06a.k.a. Distribution is a toolkit to pack, ship, store, and deliver container content

CVE-2026-0545 - In mlflow/mlflow, the FastAPI job endpoints under /ajax-api/3.0/jobs/* are not protected by authentication o

critical

Critical remediation recipe for In mlflow/mlflow, the FastAPI job endpoints under /ajax-api/3.0/jobs/* are not protected by authentication o. Upgrade to version of the repository. If job execution is enabled and remove the vulnerable command-injection pattern.

cve CVE-2026-0545disclosed 2026-04-03a.k.a. In mlflow/mlflow, the FastAPI job endpoints under /ajax-api/3.0/jobs/* are not protected by authentication o

CVE-2026-23428 - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of share_conf in

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of share_conf in. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-23428disclosed 2026-04-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of share_conf in

CVE-2026-23450 - In the Linux kernel, the following vulnerability has been resolved: net/smc: fix NULL dereference and UAF in s

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/smc: fix NULL dereference and UAF in s. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable dos pattern.

cve CVE-2026-23450disclosed 2026-04-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/smc: fix NULL dereference and UAF in s

CVE-2026-23455 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: check for ze

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: check for ze. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-23455disclosed 2026-04-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: check for ze

CVE-2026-31402 - In the Linux kernel, the following vulnerability has been resolved: nfsd: fix heap overflow in NFSv4.0 LOCK re

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: nfsd: fix heap overflow in NFSv4.0 LOCK re. Upgrade to fixed 112-byte inline buffer and remove the vulnerable authz pattern.

cve CVE-2026-31402disclosed 2026-04-03a.k.a. In the Linux kernel, the following vulnerability has been resolved: nfsd: fix heap overflow in NFSv4.0 LOCK re

CVE-2026-35535 - In Sudo through 1.9.17p2 before 3e474c2, a failure of a setuid, setgid, or setgroups call, during a privilege

high

High remediation recipe for In Sudo through 1.9.17p2 before 3e474c2, a failure of a setuid, setgid, or setgroups call, during a privilege. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-35535disclosed 2026-04-03a.k.a. In Sudo through 1.9.17p2 before 3e474c2, a failure of a setuid, setgid, or setgroups call, during a privilege

CVE-2026-34785 - Rack is a modular Ruby web server interface

high

High remediation recipe for Rack is a modular Ruby web server interface. Upgrade to patched in versions 2.2.23 and remove the vulnerable authz pattern.

cve CVE-2026-34785disclosed 2026-04-02a.k.a. Rack is a modular Ruby web server interface

CVE-2026-34827 - Rack is a modular Ruby web server interface

high

High remediation recipe for Rack is a modular Ruby web server interface. Upgrade to patched in versions 3.1.21 and 3.2.6. and remove the vulnerable dos pattern.

cve CVE-2026-34827disclosed 2026-04-02a.k.a. Rack is a modular Ruby web server interface

CVE-2026-34829 - Rack is a modular Ruby web server interface

high

High remediation recipe for Rack is a modular Ruby web server interface. Upgrade to patched in versions 2.2.23 and remove the vulnerable dos pattern.

cve CVE-2026-34829disclosed 2026-04-02a.k.a. Rack is a modular Ruby web server interface

CVE-2026-35385 - In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contrary to som

high

High remediation recipe for In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contrary to som. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-35385disclosed 2026-04-02a.k.a. In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contrary to som

CVE-2026-3872 - A flaw was found in Keycloak. This issue allows an attacker, who controls another path on the same web server,

high

High remediation recipe for A flaw was found in Keycloak. This issue allows an attacker, who controls another path on the same web server,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-3872disclosed 2026-04-02a.k.a. A flaw was found in Keycloak. This issue allows an attacker, who controls another path on the same web server,

CVE-2026-4282 - A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper type and nam

high

High remediation recipe for A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper type and nam. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-4282disclosed 2026-04-02a.k.a. A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper type and nam

CVE-2026-4634 - A flaw was found in Keycloak. An unauthenticated attacker can exploit this vulnerability by sending a speciall

high

High remediation recipe for A flaw was found in Keycloak. An unauthenticated attacker can exploit this vulnerability by sending a speciall. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-4634disclosed 2026-04-02a.k.a. A flaw was found in Keycloak. An unauthenticated attacker can exploit this vulnerability by sending a speciall

CVE-2026-4636 - A flaw was found in Keycloak. An authenticated user with the uma_protection role can bypass User-Managed Acces

high

High remediation recipe for A flaw was found in Keycloak. An authenticated user with the uma_protection role can bypass User-Managed Acces. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-4636disclosed 2026-04-02a.k.a. A flaw was found in Keycloak. An authenticated user with the uma_protection role can bypass User-Managed Acces

CVE-2026-20160 - A vulnerability in Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an unauthenticated, remote a

critical

Critical remediation recipe for A vulnerability in Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an unauthenticated, remote a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20160disclosed 2026-04-01a.k.a. A vulnerability in Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an unauthenticated, remote a

CVE-2026-27489 - Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability

high

High remediation recipe for Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Upgrade to version 1.21.0 and remove the vulnerable path-traversal pattern.

cve CVE-2026-27489disclosed 2026-04-01a.k.a. Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability

CVE-2026-34545 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

high

High remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to version 3.4.0 to before version 3.4.7 and remove the vulnerable authz pattern.

cve CVE-2026-34545disclosed 2026-04-01a.k.a. OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

CVE-2026-35093 - A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain

high

High remediation recipe for A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-35093disclosed 2026-04-01a.k.a. A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain

CVE-2026-34040 - Moby is an open source container framework

high

High remediation recipe for Moby is an open source container framework. Upgrade to version 29.3.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-34040disclosed 2026-03-31a.k.a. Moby is an open source container framework

CVE-2026-4800 - Impact: The fix for CVE-2021-23337 (https://github.com/advisories/GHSA-35jh-r3h4-6jhm) added validation for th

high

High remediation recipe for Impact: The fix for CVE-2021-23337 (https://github.com/advisories/GHSA-35jh-r3h4-6jhm) added validation for th. Upgrade to upgrade to version 4.18.0. and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-4800disclosed 2026-03-31a.k.a. Impact: The fix for CVE-2021-23337 (https://github.com/advisories/GHSA-35jh-r3h4-6jhm) added validation for th

CVE-2026-5201 - A flaw was found in the gdk-pixbuf library

high

High remediation recipe for A flaw was found in the gdk-pixbuf library. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-5201disclosed 2026-03-31a.k.a. A flaw was found in the gdk-pixbuf library

CVE-2025-15036 - A path traversal vulnerability exists in the extract_archive_to_dir function within the mlflow/pyfunc/dbcon

critical

Critical remediation recipe for A path traversal vulnerability exists in the extract_archive_to_dir function within the mlflow/pyfunc/dbcon. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2025-15036disclosed 2026-03-30a.k.a. A path traversal vulnerability exists in the extract_archive_to_dir function within the mlflow/pyfunc/dbcon

CVE-2026-2370 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18

high

High remediation recipe for GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2370disclosed 2026-03-30a.k.a. GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18

CVE-2026-33984 - FreeRDP is a free implementation of the Remote Desktop Protocol

high

High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.24.2 and remove the vulnerable authz pattern.

cve CVE-2026-33984disclosed 2026-03-30a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-33986 - FreeRDP is a free implementation of the Remote Desktop Protocol

high

High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.24.2 and remove the vulnerable authz pattern.

cve CVE-2026-33986disclosed 2026-03-30a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-34714 - Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default

critical

Critical remediation recipe for Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-34714disclosed 2026-03-30a.k.a. Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default

CVE-2025-15381 - In the latest version of mlflow/mlflow, when the basic-auth app is enabled, tracing and assessment endpoints

high

High remediation recipe for In the latest version of mlflow/mlflow, when the basic-auth app is enabled, tracing and assessment endpoints. Upgrade to version of mlflow and remove the vulnerable ssrf pattern.

cve CVE-2025-15381disclosed 2026-03-27a.k.a. In the latest version of mlflow/mlflow, when the basic-auth app is enabled, tracing and assessment endpoints

CVE-2025-59032 - ManageSieve AUTHENTICATE command crashes when using literal as SASL initial response

high

High remediation recipe for ManageSieve AUTHENTICATE command crashes when using literal as SASL initial response. Upgrade to upgrade to a fixed version. No publicly available exploits are known. and remove the vulnerable dos pattern.

cve CVE-2025-59032disclosed 2026-03-27a.k.a. ManageSieve AUTHENTICATE command crashes when using literal as SASL initial response

CVE-2026-24031 - Dovecot SQL based authentication can be bypassed when auth_username_chars is cleared by admin

high

High remediation recipe for Dovecot SQL based authentication can be bypassed when auth_username_chars is cleared by admin. Upgrade to fixed version. No publicly available exploits are known. and remove the vulnerable authz pattern.

cve CVE-2026-24031disclosed 2026-03-27a.k.a. Dovecot SQL based authentication can be bypassed when auth_username_chars is cleared by admin

CVE-2026-27856 - Doveadm credentials are verified using direct comparison which is susceptible to timing oracle attack

high

High remediation recipe for Doveadm credentials are verified using direct comparison which is susceptible to timing oracle attack. Upgrade to fixed version. No publicly available exploits are known. and remove the vulnerable authz pattern.

cve CVE-2026-27856disclosed 2026-03-27a.k.a. Doveadm credentials are verified using direct comparison which is susceptible to timing oracle attack

CVE-2026-27858 - Attacker can send a specifically crafted message before authentication that causes managesieve to allocate lar

high

High remediation recipe for Attacker can send a specifically crafted message before authentication that causes managesieve to allocate lar. Upgrade to fixed version. No publicly available exploits are known. and remove the vulnerable command-injection pattern.

cve CVE-2026-27858disclosed 2026-03-27a.k.a. Attacker can send a specifically crafted message before authentication that causes managesieve to allocate lar

CVE-2026-27876 - A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execu

critical

Critical remediation recipe for A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-27876disclosed 2026-03-27a.k.a. A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execu

CVE-2026-27880 - The OpenFeature feature toggle evaluation endpoint reads unbounded values into memory, which can cause out-of-

high

High remediation recipe for The OpenFeature feature toggle evaluation endpoint reads unbounded values into memory, which can cause out-of-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-27880disclosed 2026-03-27a.k.a. The OpenFeature feature toggle evaluation endpoint reads unbounded values into memory, which can cause out-of-

CVE-2026-32695 - Traefik is an HTTP reverse proxy and load balancer

high

High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-32695disclosed 2026-03-27a.k.a. Traefik is an HTTP reverse proxy and load balancer

CVE-2026-33433 - Traefik is an HTTP reverse proxy and load balancer

high

High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to version of that header to impersonate any identity to the backend. T and remove the vulnerable authz pattern.

cve CVE-2026-33433disclosed 2026-03-27a.k.a. Traefik is an HTTP reverse proxy and load balancer

CVE-2026-33757 - OpenBao is an open source identity-based secrets management system

critical

Critical remediation recipe for OpenBao is an open source identity-based secrets management system. Upgrade to version 2.5.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-33757disclosed 2026-03-27a.k.a. OpenBao is an open source identity-based secrets management system

CVE-2026-33870 - Netty is an asynchronous, event-driven network application framework

high

High remediation recipe for Netty is an asynchronous, event-driven network application framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable request-smuggling pattern.

cve CVE-2026-33870disclosed 2026-03-27a.k.a. Netty is an asynchronous, event-driven network application framework

CVE-2026-33871 - Netty is an asynchronous, event-driven network application framework

high

High remediation recipe for Netty is an asynchronous, event-driven network application framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-33871disclosed 2026-03-27a.k.a. Netty is an asynchronous, event-driven network application framework

CVE-2026-1961 - A flaw was found in Foreman. A remote attacker could exploit a command injection vulnerability in Foreman's We

high

High remediation recipe for A flaw was found in Foreman. A remote attacker could exploit a command injection vulnerability in Foreman's We. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-1961disclosed 2026-03-26a.k.a. A flaw was found in Foreman. A remote attacker could exploit a command injection vulnerability in Foreman's We

CVE-2026-28377 - A vulnerability in Grafana Tempo exposes the S3 SSE-C encryption key in plaintext through the /status/config e

high

High remediation recipe for A vulnerability in Grafana Tempo exposes the S3 SSE-C encryption key in plaintext through the /status/config e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-28377disclosed 2026-03-26a.k.a. A vulnerability in Grafana Tempo exposes the S3 SSE-C encryption key in plaintext through the /status/config e

CVE-2026-32285 - The Delete function fails to properly validate offsets when processing malformed JSON input

high

High remediation recipe for The Delete function fails to properly validate offsets when processing malformed JSON input. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-32285disclosed 2026-03-26a.k.a. The Delete function fails to properly validate offsets when processing malformed JSON input

CVE-2026-32286 - The DataRow.Decode function fails to properly validate field lengths

high

High remediation recipe for The DataRow.Decode function fails to properly validate field lengths. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-32286disclosed 2026-03-26a.k.a. The DataRow.Decode function fails to properly validate field lengths

CVE-2026-32748 - Squid is a caching proxy for the Web. Prior to version 7.5, due to premature release of resource during expect

high

High remediation recipe for Squid is a caching proxy for the Web. Prior to version 7.5, due to premature release of resource during expect. Upgrade to version 7.5 and remove the vulnerable command-injection pattern.

cve CVE-2026-32748disclosed 2026-03-26a.k.a. Squid is a caching proxy for the Web. Prior to version 7.5, due to premature release of resource during expect

CVE-2026-33526 - Squid is a caching proxy for the Web. Prior to version 7.5, due to heap Use-After-Free, Squid is vulnerable to

high

High remediation recipe for Squid is a caching proxy for the Web. Prior to version 7.5, due to heap Use-After-Free, Squid is vulnerable to. Upgrade to version 7.5 and remove the vulnerable dos pattern.

cve CVE-2026-33526disclosed 2026-03-26a.k.a. Squid is a caching proxy for the Web. Prior to version 7.5, due to heap Use-After-Free, Squid is vulnerable to

CVE-2026-4926 - Impact: A bad regular expression is generated any time you have multiple sequential optional groups (curly bra

high

High remediation recipe for Impact: A bad regular expression is generated any time you have multiple sequential optional groups (curly bra. Upgrade to Fixed in version 8.4.0. and remove the vulnerable dos pattern.

cve CVE-2026-4926disclosed 2026-03-26a.k.a. Impact: A bad regular expression is generated any time you have multiple sequential optional groups (curly bra

CVE-2025-67030 - Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils

high

High remediation recipe for Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-67030disclosed 2026-03-25a.k.a. Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils

CVE-2026-1519 - If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may

high

High remediation recipe for If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-1519disclosed 2026-03-25a.k.a. If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may

CVE-2026-23392 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: release flowtable af

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: release flowtable af. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-23392disclosed 2026-03-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: release flowtable af

CVE-2026-27889 - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system

high

High remediation recipe for NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Upgrade to version 2.2.0 and prior to versions 2.11.14 and 2.12.5 and remove the vulnerable dos pattern.

cve CVE-2026-27889disclosed 2026-03-25a.k.a. NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system

CVE-2026-29785 - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system

high

High remediation recipe for NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-29785disclosed 2026-03-25a.k.a. NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system

CVE-2026-3104 - A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domai

high

High remediation recipe for A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domai. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3104disclosed 2026-03-25a.k.a. A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domai

CVE-2026-33216 - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system

high

High remediation recipe for NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-33216disclosed 2026-03-25a.k.a. NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system

CVE-2026-33217 - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system

high

High remediation recipe for NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-33217disclosed 2026-03-25a.k.a. NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system

CVE-2026-33218 - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system

high

High remediation recipe for NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-33218disclosed 2026-03-25a.k.a. NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system

CVE-2026-33247 - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system

high

High remediation recipe for NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-33247disclosed 2026-03-25a.k.a. NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system

CVE-2026-3608 - Sending a maliciously crafted message to the kea-ctrl-agent, kea-dhcp-ddns, kea-dhcp4, or kea-dhcp6 daemons ov

high

High remediation recipe for Sending a maliciously crafted message to the kea-ctrl-agent, kea-dhcp-ddns, kea-dhcp4, or kea-dhcp6 daemons ov. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3608disclosed 2026-03-25a.k.a. Sending a maliciously crafted message to the kea-ctrl-agent, kea-dhcp-ddns, kea-dhcp4, or kea-dhcp6 daemons ov

CVE-2026-27651 - When the ngx_mail_auth_http_module module is enabled on NGINX Plus or NGINX Open Source, undisclosed requests

high

High remediation recipe for When the ngx_mail_auth_http_module module is enabled on NGINX Plus or NGINX Open Source, undisclosed requests. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-27651disclosed 2026-03-24a.k.a. When the ngx_mail_auth_http_module module is enabled on NGINX Plus or NGINX Open Source, undisclosed requests

CVE-2026-27654 - NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_dav_module module that might allow an at

high

High remediation recipe for NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_dav_module module that might allow an at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-27654disclosed 2026-03-24a.k.a. NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_dav_module module that might allow an at

CVE-2026-27784 - The 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module module, which mi

high

High remediation recipe for The 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module module, which mi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-27784disclosed 2026-03-24a.k.a. The 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module module, which mi

CVE-2026-32647 - NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module module, which might allow an

high

High remediation recipe for NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module module, which might allow an. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-32647disclosed 2026-03-24a.k.a. NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module module, which might allow an

CVE-2026-33195 - Active Storage allows users to attach cloud and local files in Rails applications

critical

Critical remediation recipe for Active Storage allows users to attach cloud and local files in Rails applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-33195disclosed 2026-03-24a.k.a. Active Storage allows users to attach cloud and local files in Rails applications

CVE-2026-4371 - A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory

high

High remediation recipe for A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory. Upgrade to fixed in Thunderbird 149 and Thunderbird 140.9. and remove the vulnerable dos pattern.

cve CVE-2026-4371disclosed 2026-03-24a.k.a. A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory

CVE-2026-4684 - Race condition, use-after-free in the Graphics: WebRender component

high

High remediation recipe for Race condition, use-after-free in the Graphics: WebRender component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4684disclosed 2026-03-24a.k.a. Race condition, use-after-free in the Graphics: WebRender component

CVE-2026-4685 - Incorrect boundary conditions in the Graphics: Canvas2D component

high

High remediation recipe for Incorrect boundary conditions in the Graphics: Canvas2D component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4685disclosed 2026-03-24a.k.a. Incorrect boundary conditions in the Graphics: Canvas2D component

CVE-2026-4686 - Incorrect boundary conditions in the Graphics: Canvas2D component

high

High remediation recipe for Incorrect boundary conditions in the Graphics: Canvas2D component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4686disclosed 2026-03-24a.k.a. Incorrect boundary conditions in the Graphics: Canvas2D component

CVE-2026-4687 - Sandbox escape due to incorrect boundary conditions in the Telemetry component

high

High remediation recipe for Sandbox escape due to incorrect boundary conditions in the Telemetry component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4687disclosed 2026-03-24a.k.a. Sandbox escape due to incorrect boundary conditions in the Telemetry component

CVE-2026-4688 - Sandbox escape due to use-after-free in the Disability Access APIs component

critical

Critical remediation recipe for Sandbox escape due to use-after-free in the Disability Access APIs component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4688disclosed 2026-03-24a.k.a. Sandbox escape due to use-after-free in the Disability Access APIs component

CVE-2026-4689 - Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component

critical

Critical remediation recipe for Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4689disclosed 2026-03-24a.k.a. Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component

CVE-2026-4690 - Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component

high

High remediation recipe for Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4690disclosed 2026-03-24a.k.a. Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component

CVE-2026-4691 - Use-after-free in the CSS Parsing and Computation component

critical

Critical remediation recipe for Use-after-free in the CSS Parsing and Computation component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4691disclosed 2026-03-24a.k.a. Use-after-free in the CSS Parsing and Computation component

CVE-2026-4692 - Sandbox escape in the Responsive Design Mode component

critical

Critical remediation recipe for Sandbox escape in the Responsive Design Mode component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4692disclosed 2026-03-24a.k.a. Sandbox escape in the Responsive Design Mode component

CVE-2026-4693 - Incorrect boundary conditions in the Audio/Video: Playback component

high

High remediation recipe for Incorrect boundary conditions in the Audio/Video: Playback component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4693disclosed 2026-03-24a.k.a. Incorrect boundary conditions in the Audio/Video: Playback component

CVE-2026-4694 - Incorrect boundary conditions, integer overflow in the Graphics component

high

High remediation recipe for Incorrect boundary conditions, integer overflow in the Graphics component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4694disclosed 2026-03-24a.k.a. Incorrect boundary conditions, integer overflow in the Graphics component

CVE-2026-4695 - Incorrect boundary conditions in the Audio/Video: Web Codecs component

high

High remediation recipe for Incorrect boundary conditions in the Audio/Video: Web Codecs component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4695disclosed 2026-03-24a.k.a. Incorrect boundary conditions in the Audio/Video: Web Codecs component

CVE-2026-4696 - Use-after-free in the Layout: Text and Fonts component

critical

Critical remediation recipe for Use-after-free in the Layout: Text and Fonts component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4696disclosed 2026-03-24a.k.a. Use-after-free in the Layout: Text and Fonts component

CVE-2026-4697 - Incorrect boundary conditions in the Audio/Video: Web Codecs component

high

High remediation recipe for Incorrect boundary conditions in the Audio/Video: Web Codecs component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4697disclosed 2026-03-24a.k.a. Incorrect boundary conditions in the Audio/Video: Web Codecs component

CVE-2026-4699 - Incorrect boundary conditions in the Layout: Text and Fonts component

high

High remediation recipe for Incorrect boundary conditions in the Layout: Text and Fonts component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4699disclosed 2026-03-24a.k.a. Incorrect boundary conditions in the Layout: Text and Fonts component

CVE-2026-4700 - Mitigation bypass in the Networking: HTTP component

critical

Critical remediation recipe for Mitigation bypass in the Networking: HTTP component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4700disclosed 2026-03-24a.k.a. Mitigation bypass in the Networking: HTTP component

CVE-2026-4720 - Memory safety bugs present in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148

critical

Critical remediation recipe for Memory safety bugs present in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4720disclosed 2026-03-24a.k.a. Memory safety bugs present in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148

CVE-2026-4721 - Memory safety bugs present in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Th

critical

Critical remediation recipe for Memory safety bugs present in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Th. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4721disclosed 2026-03-24a.k.a. Memory safety bugs present in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Th

CVE-2026-4729 - Memory safety bugs present in Firefox 148 and Thunderbird 148

critical

Critical remediation recipe for Memory safety bugs present in Firefox 148 and Thunderbird 148. Upgrade to fixed in Firefox 149 and Thunderbird 149. and remove the vulnerable authz pattern.

cve CVE-2026-4729disclosed 2026-03-24a.k.a. Memory safety bugs present in Firefox 148 and Thunderbird 148

CVE-2026-4775 - A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerabili

high

High remediation recipe for A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerabili. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-4775disclosed 2026-03-24a.k.a. A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerabili

CVE-2026-4598 - Versions of the package jsrsasign before 11.1.1 are vulnerable to Infinite loop via the bnModInverse function

high

High remediation recipe for Versions of the package jsrsasign before 11.1.1 are vulnerable to Infinite loop via the bnModInverse function. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-4598disclosed 2026-03-23a.k.a. Versions of the package jsrsasign before 11.1.1 are vulnerable to Infinite loop via the bnModInverse function

CVE-2026-4599 - Versions of the package jsrsasign from 7.0.0 and before 11.1.1 are vulnerable to Incomplete Comparison with Mi

critical

Critical remediation recipe for Versions of the package jsrsasign from 7.0.0 and before 11.1.1 are vulnerable to Incomplete Comparison with Mi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-4599disclosed 2026-03-23a.k.a. Versions of the package jsrsasign from 7.0.0 and before 11.1.1 are vulnerable to Incomplete Comparison with Mi

CVE-2026-4600 - Versions of the package jsrsasign before 11.1.1 are vulnerable to Improper Verification of Cryptographic Signa

high

High remediation recipe for Versions of the package jsrsasign before 11.1.1 are vulnerable to Improper Verification of Cryptographic Signa. Upgrade to fixed r=1 and remove the vulnerable cert-validation pattern.

cve CVE-2026-4600disclosed 2026-03-23a.k.a. Versions of the package jsrsasign before 11.1.1 are vulnerable to Improper Verification of Cryptographic Signa

CVE-2026-4601 - Versions of the package jsrsasign before 11.1.1 are vulnerable to Missing Cryptographic Step via the KJUR.cryp

high

High remediation recipe for Versions of the package jsrsasign before 11.1.1 are vulnerable to Missing Cryptographic Step via the KJUR.cryp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-4601disclosed 2026-03-23a.k.a. Versions of the package jsrsasign before 11.1.1 are vulnerable to Missing Cryptographic Step via the KJUR.cryp

CVE-2026-4602 - Versions of the package jsrsasign before 11.1.1 are vulnerable to Incorrect Conversion between Numeric Types d

high

High remediation recipe for Versions of the package jsrsasign before 11.1.1 are vulnerable to Incorrect Conversion between Numeric Types d. Upgrade to version between Numeric Types due to handling negative exponents in and remove the vulnerable command-injection pattern.

cve CVE-2026-4602disclosed 2026-03-23a.k.a. Versions of the package jsrsasign before 11.1.1 are vulnerable to Incorrect Conversion between Numeric Types d

CVE-2026-23272 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: unconditionally bump

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: unconditionally bump. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-23272disclosed 2026-03-20a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: unconditionally bump

CVE-2026-23274 - In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_IDLETIMER: reject rev0 reuse

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_IDLETIMER: reject rev0 reuse. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-23274disclosed 2026-03-20a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_IDLETIMER: reject rev0 reuse

CVE-2026-23278 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: always walk all pend

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: always walk all pend. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-23278disclosed 2026-03-20a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: always walk all pend

CVE-2026-23536 - A security issue was discovered in the Feast Feature Server's /read-document endpoint that allows an unauthe

high

High remediation recipe for A security issue was discovered in the Feast Feature Server's /read-document endpoint that allows an unauthe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-23536disclosed 2026-03-20a.k.a. A security issue was discovered in the Feast Feature Server's /read-document endpoint that allows an unauthe

CVE-2026-32829 - lz4_flex is a pure Rust implementation of LZ4 compression/decompression

high

High remediation recipe for lz4_flex is a pure Rust implementation of LZ4 compression/decompression. Upgrade to fixed in versions 0.11.6 and 0.12.1. and remove the vulnerable authz pattern.

cve CVE-2026-32829disclosed 2026-03-20a.k.a. lz4_flex is a pure Rust implementation of LZ4 compression/decompression

CVE-2026-33150 - libfuse is the reference implementation of the Linux FUSE

high

High remediation recipe for libfuse is the reference implementation of the Linux FUSE. Upgrade to version 3.18.0 to before version 3.18.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-33150disclosed 2026-03-20a.k.a. libfuse is the reference implementation of the Linux FUSE

CVE-2026-33210 - Ruby JSON is a JSON implementation for Ruby

critical

Critical remediation recipe for Ruby JSON is a JSON implementation for Ruby. Upgrade to version 2.14.0 to before versions 2.15.2.1 and remove the vulnerable dos pattern.

cve CVE-2026-33210disclosed 2026-03-20a.k.a. Ruby JSON is a JSON implementation for Ruby

CVE-2006-10003 - XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack

critical

Critical remediation recipe for XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2006-10003disclosed 2026-03-19a.k.a. XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack

CVE-2026-3029 - A path traversal and arbitrary file write vulnerability exist in the embedded get function in '_main_.py' in P

high

High remediation recipe for A path traversal and arbitrary file write vulnerability exist in the embedded get function in '_main_.py' in P. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-3029disclosed 2026-03-19a.k.a. A path traversal and arbitrary file write vulnerability exist in the embedded get function in '_main_.py' in P

CVE-2026-4342 - A security issue was discovered in ingress-nginx where a combination of Ingress annotations can be used to inj

high

High remediation recipe for A security issue was discovered in ingress-nginx where a combination of Ingress annotations can be used to inj. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-4342disclosed 2026-03-19a.k.a. A security issue was discovered in ingress-nginx where a combination of Ingress annotations can be used to inj

CVE-2026-4424 - A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processin

high

High remediation recipe for A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-4424disclosed 2026-03-19a.k.a. A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processin

CVE-2025-15031 - A vulnerability in MLflow's pyfunc extraction process allows for arbitrary file writes due to improper handlin

critical

Critical remediation recipe for A vulnerability in MLflow's pyfunc extraction process allows for arbitrary file writes due to improper handlin. Upgrade to version of MLflow and poses a high and remove the vulnerable path-traversal pattern.

cve CVE-2025-15031disclosed 2026-03-18a.k.a. A vulnerability in MLflow's pyfunc extraction process allows for arbitrary file writes due to improper handlin

CVE-2026-2092 - A flaw was found in Keycloak. Keycloak's Security Assertion Markup Language (SAML) broker endpoint does not pr

high

High remediation recipe for A flaw was found in Keycloak. Keycloak's Security Assertion Markup Language (SAML) broker endpoint does not pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2092disclosed 2026-03-18a.k.a. A flaw was found in Keycloak. Keycloak's Security Assertion Markup Language (SAML) broker endpoint does not pr

CVE-2026-23242 - In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix potential NULL pointer deref

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix potential NULL pointer deref. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-23242disclosed 2026-03-18a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix potential NULL pointer deref

CVE-2026-23243 - In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative data_len in ib_

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative data_len in ib_. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-23243disclosed 2026-03-18a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative data_len in ib_

CVE-2026-23262 - In the Linux kernel, the following vulnerability has been resolved: gve: Fix stats report corruption on queue

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: gve: Fix stats report corruption on queue. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-23262disclosed 2026-03-18a.k.a. In the Linux kernel, the following vulnerability has been resolved: gve: Fix stats report corruption on queue

CVE-2026-2603 - A flaw was found in Keycloak. A remote attacker could bypass security controls by sending a valid SAML respons

high

High remediation recipe for A flaw was found in Keycloak. A remote attacker could bypass security controls by sending a valid SAML respons. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2603disclosed 2026-03-18a.k.a. A flaw was found in Keycloak. A remote attacker could bypass security controls by sending a valid SAML respons

CVE-2026-26740 - Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the

high

High remediation recipe for Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-26740disclosed 2026-03-18a.k.a. Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the

CVE-2026-27135 - nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C

high

High remediation recipe for nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. Upgrade to version 2 in C. Prior to version 1.68.1 and remove the vulnerable authz pattern.

cve CVE-2026-27135disclosed 2026-03-18a.k.a. nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C

CVE-2026-28500 - Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability

high

High remediation recipe for Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Upgrade to patched versions are available. and remove the vulnerable command-injection pattern.

cve CVE-2026-28500disclosed 2026-03-18a.k.a. Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability

CVE-2026-33001 - Jenkins 2.554 and earlier, LTS 2.541.2 and earlier does not safely handle symbolic links during the extraction

high

High remediation recipe for Jenkins 2.554 and earlier, LTS 2.541.2 and earlier does not safely handle symbolic links during the extraction. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-33001disclosed 2026-03-18a.k.a. Jenkins 2.554 and earlier, LTS 2.541.2 and earlier does not safely handle symbolic links during the extraction

CVE-2026-32981 - A path traversal vulnerability was identified in Ray Dashboard (default port 8265) in Ray versions prior to 2

high

High remediation recipe for A path traversal vulnerability was identified in Ray Dashboard (default port 8265) in Ray versions prior to 2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-32981disclosed 2026-03-17a.k.a. A path traversal vulnerability was identified in Ray Dashboard (default port 8265) in Ray versions prior to 2

CVE-2026-3564 - A condition in the ScreenConnect server component may allow an actor with access to server-level cryptographic

critical

Critical remediation recipe for A condition in the ScreenConnect server component may allow an actor with access to server-level cryptographic. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3564disclosed 2026-03-17a.k.a. A condition in the ScreenConnect server component may allow an actor with access to server-level cryptographic

CVE-2026-2920 - GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2920disclosed 2026-03-16a.k.a. GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-2921 - GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2921disclosed 2026-03-16a.k.a. GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability

CVE-2026-2922 - GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability

high

High remediation recipe for GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2922disclosed 2026-03-16a.k.a. GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability

CVE-2026-2923 - GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability

high

High remediation recipe for GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2923disclosed 2026-03-16a.k.a. GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability

CVE-2026-3081 - GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3081disclosed 2026-03-16a.k.a. GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-3082 - GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3082disclosed 2026-03-16a.k.a. GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-3083 - GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability

high

High remediation recipe for GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3083disclosed 2026-03-16a.k.a. GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability

CVE-2026-3084 - GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability

high

High remediation recipe for GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3084disclosed 2026-03-16a.k.a. GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability

CVE-2026-3085 - GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3085disclosed 2026-03-16a.k.a. GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-3086 - GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability

high

High remediation recipe for GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3086disclosed 2026-03-16a.k.a. GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability

CVE-2026-3644 - The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete

high

High remediation recipe for The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3644disclosed 2026-03-16a.k.a. The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete

CVE-2026-4177 - YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-seve

critical

Critical remediation recipe for YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-seve. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-4177disclosed 2026-03-16a.k.a. YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-seve

CVE-2026-31806 - FreeRDP is a free implementation of the Remote Desktop Protocol

critical

Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.24.0. and remove the vulnerable authz pattern.

cve CVE-2026-31806disclosed 2026-03-13a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-4111 - A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within t

high

High remediation recipe for A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-4111disclosed 2026-03-13a.k.a. A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within t

CVE-2023-43010 - The issue was addressed with improved memory handling

high

High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in iOS 17.2 and iPadOS 17.2 and remove the vulnerable authz pattern.

cve CVE-2023-43010disclosed 2026-03-12a.k.a. The issue was addressed with improved memory handling

CVE-2026-1528 - ImpactA server can reply with a WebSocket frame using the 64-bit length form and an extremely large length

high

High remediation recipe for ImpactA server can reply with a WebSocket frame using the 64-bit length form and an extremely large length. Upgrade to Patched in the undici version v7.24.0 and v6.24.0. Users should upgrade and remove the vulnerable authz pattern.

cve CVE-2026-1528disclosed 2026-03-12a.k.a. ImpactA server can reply with a WebSocket frame using the 64-bit length form and an extremely large length

CVE-2026-3497 - Vulnerability in the OpenSSH GSSAPI delta included in various Linux distributions

high

High remediation recipe for Vulnerability in the OpenSSH GSSAPI delta included in various Linux distributions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3497disclosed 2026-03-12a.k.a. Vulnerability in the OpenSSH GSSAPI delta included in various Linux distributions

CVE-2026-24294 - Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally

high

High remediation recipe for Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-24294disclosed 2026-03-10a.k.a. Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally

CVE-2026-26130 - Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny s

high

High remediation recipe for Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny s. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-26130disclosed 2026-03-10a.k.a. Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny s

CVE-2026-28691 - ImageMagick is free and open-source software used for editing and manipulating digital images

high

High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to fixed in 7.1.2-16 and 6.9.13-41. and remove the vulnerable command-injection pattern.

cve CVE-2026-28691disclosed 2026-03-10a.k.a. ImageMagick is free and open-source software used for editing and manipulating digital images

CVE-2026-28693 - ImageMagick is free and open-source software used for editing and manipulating digital images

high

High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to fixed in 7.1.2-16 and 6.9.13-41. and remove the vulnerable command-injection pattern.

cve CVE-2026-28693disclosed 2026-03-10a.k.a. ImageMagick is free and open-source software used for editing and manipulating digital images

CVE-2026-31837 - Istio is an open platform to connect, manage, and secure microservices

high

High remediation recipe for Istio is an open platform to connect, manage, and secure microservices. Upgrade to fixed in 1.29.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-31837disclosed 2026-03-10a.k.a. Istio is an open platform to connect, manage, and secure microservices

CVE-2026-0846 - A vulnerability in the filestring() function of the nltk.util module in nltk version 3.9.2 allows arbitrar

high

High remediation recipe for A vulnerability in the filestring() function of the nltk.util module in nltk version 3.9.2 allows arbitrar. Upgrade to version 3.9.2 allows arbitrary file read due to improper validation and remove the vulnerable path-traversal pattern.

cve CVE-2026-0846disclosed 2026-03-09a.k.a. A vulnerability in the filestring() function of the nltk.util module in nltk version 3.9.2 allows arbitrar

CVE-2026-25960 - vLLM is an inference and serving engine for large language models (LLMs)

high

High remediation recipe for vLLM is an inference and serving engine for large language models (LLMs). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-25960disclosed 2026-03-09a.k.a. vLLM is an inference and serving engine for large language models (LLMs)

CVE-2026-3823 - EHG2408 series switch developed by Atop Technologies has a Stack-based Buffer Overflow vulnerability, allowing

critical

Critical remediation recipe for EHG2408 series switch developed by Atop Technologies has a Stack-based Buffer Overflow vulnerability, allowing. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3823disclosed 2026-03-09a.k.a. EHG2408 series switch developed by Atop Technologies has a Stack-based Buffer Overflow vulnerability, allowing

CVE-2026-24281 - Hostname verification in Apache ZooKeeper ZKTrustManager falls back to reverse DNS (PTR) when IP SAN validatio

high

High remediation recipe for Hostname verification in Apache ZooKeeper ZKTrustManager falls back to reverse DNS (PTR) when IP SAN validatio. Upgrade to upgrade to version 3.8.6 or 3.9.5 and remove the vulnerable cert-validation pattern.

cve CVE-2026-24281disclosed 2026-03-07a.k.a. Hostname verification in Apache ZooKeeper ZKTrustManager falls back to reverse DNS (PTR) when IP SAN validatio

CVE-2026-24308 - Improper handling of configuration values in ZKConfig in Apache ZooKeeper 3.8.5 and 3.9.4 on all platforms all

high

High remediation recipe for Improper handling of configuration values in ZKConfig in Apache ZooKeeper 3.8.5 and 3.9.4 on all platforms all. Upgrade to upgrade to version 3.8.6 or 3.9.5 which fixes this issue. and remove the vulnerable authz pattern.

cve CVE-2026-24308disclosed 2026-03-07a.k.a. Improper handling of configuration values in ZKConfig in Apache ZooKeeper 3.8.5 and 3.9.4 on all platforms all

CVE-2026-25679 - url.Parse insufficiently validated the host/authority component and accepted some invalid URLs

high

High remediation recipe for url.Parse insufficiently validated the host/authority component and accepted some invalid URLs. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-25679disclosed 2026-03-06a.k.a. url.Parse insufficiently validated the host/authority component and accepted some invalid URLs

CVE-2026-26017 - CoreDNS is a DNS server that chains plugins

high

High remediation recipe for CoreDNS is a DNS server that chains plugins. Upgrade to version 1.14.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-26017disclosed 2026-03-06a.k.a. CoreDNS is a DNS server that chains plugins

CVE-2026-26018 - CoreDNS is a DNS server that chains plugins

high

High remediation recipe for CoreDNS is a DNS server that chains plugins. Upgrade to version 1.14.2 and remove the vulnerable dos pattern.

cve CVE-2026-26018disclosed 2026-03-06a.k.a. CoreDNS is a DNS server that chains plugins

CVE-2026-27137 - When verifying a certificate chain which contains a certificate containing multiple email address constraints

high

High remediation recipe for When verifying a certificate chain which contains a certificate containing multiple email address constraints. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-27137disclosed 2026-03-06a.k.a. When verifying a certificate chain which contains a certificate containing multiple email address constraints

CVE-2026-29063 - Immutable.js provides many Persistent Immutable data structures

critical

Critical remediation recipe for Immutable.js provides many Persistent Immutable data structures. Upgrade to patched in versions 3.8.3 and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-29063disclosed 2026-03-06a.k.a. Immutable.js provides many Persistent Immutable data structures

CVE-2025-45691 - An Arbitrary File Read vulnerability exists in the ImageTextPromptValue class in Exploding Gradients RAGAS v0

high

High remediation recipe for An Arbitrary File Read vulnerability exists in the ImageTextPromptValue class in Exploding Gradients RAGAS v0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2025-45691disclosed 2026-03-05a.k.a. An Arbitrary File Read vulnerability exists in the ImageTextPromptValue class in Exploding Gradients RAGAS v0

CVE-2026-1605 - In Eclipse Jetty, versions 12.0.0-12.0.31 and 12.1.0-12.0.5, class GzipHandler exposes a vulnerability when a

high

High remediation recipe for In Eclipse Jetty, versions 12.0.0-12.0.31 and 12.1.0-12.0.5, class GzipHandler exposes a vulnerability when a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-1605disclosed 2026-03-05a.k.a. In Eclipse Jetty, versions 12.0.0-12.0.31 and 12.1.0-12.0.5, class GzipHandler exposes a vulnerability when a

CVE-2026-25048 - xgrammar is an open-source library for efficient, flexible, and portable structured generation

high

High remediation recipe for xgrammar is an open-source library for efficient, flexible, and portable structured generation. Upgrade to version 0.1.32 and remove the vulnerable command-injection pattern.

cve CVE-2026-25048disclosed 2026-03-05a.k.a. xgrammar is an open-source library for efficient, flexible, and portable structured generation

CVE-2026-29054 - Traefik is an HTTP reverse proxy and load balancer

high

High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to version 2.11.9 to 2.11.37 and from version 3.1.3 to 3.6.8 and remove the vulnerable authz pattern.

cve CVE-2026-29054disclosed 2026-03-05a.k.a. Traefik is an HTTP reverse proxy and load balancer

CVE-2026-3009 - A security flaw in the IdentityBrokerService.performLogin endpoint of Keycloak allows authentication to procee

high

High remediation recipe for A security flaw in the IdentityBrokerService.performLogin endpoint of Keycloak allows authentication to procee. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-3009disclosed 2026-03-05a.k.a. A security flaw in the IdentityBrokerService.performLogin endpoint of Keycloak allows authentication to procee

CVE-2026-3047 - A flaw was found in org.keycloak.broker.saml

high

High remediation recipe for A flaw was found in org.keycloak.broker.saml. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3047disclosed 2026-03-05a.k.a. A flaw was found in org.keycloak.broker.saml

CVE-2025-71238 - In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix bsg_done() causing doub

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix bsg_done() causing doub. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2025-71238disclosed 2026-03-04a.k.a. In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix bsg_done() causing doub

CVE-2026-23233 - In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid mapping wrong physical

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid mapping wrong physical. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-23233disclosed 2026-03-04a.k.a. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid mapping wrong physical

CVE-2026-23234 - In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fs_write_end_i

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fs_write_end_i. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-23234disclosed 2026-03-04a.k.a. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fs_write_end_i

CVE-2026-23235 - In the Linux kernel, the following vulnerability has been resolved: f2fs: fix out-of-bounds access in sysfs at

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: f2fs: fix out-of-bounds access in sysfs at. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2026-23235disclosed 2026-03-04a.k.a. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix out-of-bounds access in sysfs at

CVE-2026-23236 - In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-23236disclosed 2026-03-04a.k.a. In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory

CVE-2026-27446 - Missing Authentication for Critical Function (CWE-306) vulnerability in Apache Artemis, Apache ActiveMQ Artemi

critical

Critical remediation recipe for Missing Authentication for Critical Function (CWE-306) vulnerability in Apache Artemis, Apache ActiveMQ Artemi. Upgrade to upgrade to Apache Artemis version 2.52.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-27446disclosed 2026-03-04a.k.a. Missing Authentication for Critical Function (CWE-306) vulnerability in Apache Artemis, Apache ActiveMQ Artemi

CVE-2026-27622 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

high

High remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to fixed in v3.2.6 and remove the vulnerable authz pattern.

cve CVE-2026-27622disclosed 2026-03-03a.k.a. OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma

CVE-2026-3336 - Improper certificate validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass certifica

high

High remediation recipe for Improper certificate validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass certifica. Upgrade to upgrade to AWS-LC version 1.69.0. and remove the vulnerable cert-validation pattern.

cve CVE-2026-3336disclosed 2026-03-02a.k.a. Improper certificate validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass certifica

CVE-2026-3338 - Improper signature validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass signature v

high

High remediation recipe for Improper signature validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass signature v. Upgrade to upgrade to AWS-LC version 1.69.0. and remove the vulnerable crypto pattern.

cve CVE-2026-3338disclosed 2026-03-02a.k.a. Improper signature validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass signature v

CVE-2026-2293 - A NestJS application using @nestjs/platform-fastify can allow bypass of authentication/authorization middlewar

critical

Critical remediation recipe for A NestJS application using @nestjs/platform-fastify can allow bypass of authentication/authorization middlewar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2293disclosed 2026-02-27a.k.a. A NestJS application using @nestjs/platform-fastify can allow bypass of authentication/authorization middlewar

CVE-2026-28364 - In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime/intern.c)

high

High remediation recipe for In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime/intern.c). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-28364disclosed 2026-02-27a.k.a. In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime/intern.c)

CVE-2026-1693 - The OAuth grant type Resource Owner Password Credentials (ROPC) flow is still used by the werbservices used by

high

High remediation recipe for The OAuth grant type Resource Owner Password Credentials (ROPC) flow is still used by the werbservices used by. Upgrade to version 12.0.0 through 16.3.3 included despite being deprecated. It and remove the vulnerable credential-leak pattern.

cve CVE-2026-1693disclosed 2026-02-26a.k.a. The OAuth grant type Resource Owner Password Credentials (ROPC) flow is still used by the werbservices used by

CVE-2026-26103 - A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUK

high

High remediation recipe for A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUK. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-26103disclosed 2026-02-25a.k.a. A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUK

CVE-2026-26965 - FreeRDP is a free implementation of the Remote Desktop Protocol

high

High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.23.0 and remove the vulnerable authz pattern.

cve CVE-2026-26965disclosed 2026-02-25a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-27148 - Storybook is a frontend workshop for building user interface components and pages in isolation

critical

Critical remediation recipe for Storybook is a frontend workshop for building user interface components and pages in isolation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-27148disclosed 2026-02-25a.k.a. Storybook is a frontend workshop for building user interface components and pages in isolation

CVE-2026-27595 - Parse Dashboard is a standalone dashboard for managing Parse Server apps

high

High remediation recipe for Parse Dashboard is a standalone dashboard for managing Parse Server apps. Upgrade to version 9.0.0-alpha.8 adds authentication and remove the vulnerable authz pattern.

cve CVE-2026-27595disclosed 2026-02-25a.k.a. Parse Dashboard is a standalone dashboard for managing Parse Server apps

CVE-2026-27608 - Parse Dashboard is a standalone dashboard for managing Parse Server apps

high

High remediation recipe for Parse Dashboard is a standalone dashboard for managing Parse Server apps. Upgrade to version 9.0.0-alpha.8 adds per-app authorization checks and restrict and remove the vulnerable command-injection pattern.

cve CVE-2026-27608disclosed 2026-02-25a.k.a. Parse Dashboard is a standalone dashboard for managing Parse Server apps

CVE-2026-25794 - ImageMagick is free and open-source software used for editing and manipulating digital images

high

High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to version 7.1.2-15 and remove the vulnerable command-injection pattern.

cve CVE-2026-25794disclosed 2026-02-24a.k.a. ImageMagick is free and open-source software used for editing and manipulating digital images

CVE-2026-25965 - ImageMagick is free and open-source software used for editing and manipulating digital images

high

High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-25965disclosed 2026-02-24a.k.a. ImageMagick is free and open-source software used for editing and manipulating digital images

CVE-2026-25985 - ImageMagick is free and open-source software used for editing and manipulating digital images

high

High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-25985disclosed 2026-02-24a.k.a. ImageMagick is free and open-source software used for editing and manipulating digital images

CVE-2026-2757 - Incorrect boundary conditions in the WebRTC: Audio/Video component

critical

Critical remediation recipe for Incorrect boundary conditions in the WebRTC: Audio/Video component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2757disclosed 2026-02-24a.k.a. Incorrect boundary conditions in the WebRTC: Audio/Video component

CVE-2026-2759 - Incorrect boundary conditions in the Graphics: ImageLib component

critical

Critical remediation recipe for Incorrect boundary conditions in the Graphics: ImageLib component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2759disclosed 2026-02-24a.k.a. Incorrect boundary conditions in the Graphics: ImageLib component

CVE-2026-2760 - Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component

critical

Critical remediation recipe for Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2760disclosed 2026-02-24a.k.a. Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component

CVE-2026-2761 - Sandbox escape in the Graphics: WebRender component

critical

Critical remediation recipe for Sandbox escape in the Graphics: WebRender component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2761disclosed 2026-02-24a.k.a. Sandbox escape in the Graphics: WebRender component

CVE-2026-2768 - Sandbox escape in the Storage: IndexedDB component

critical

Critical remediation recipe for Sandbox escape in the Storage: IndexedDB component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2768disclosed 2026-02-24a.k.a. Sandbox escape in the Storage: IndexedDB component

CVE-2026-2769 - Use-after-free in the Storage: IndexedDB component

high

High remediation recipe for Use-after-free in the Storage: IndexedDB component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2769disclosed 2026-02-24a.k.a. Use-after-free in the Storage: IndexedDB component

CVE-2026-2770 - Use-after-free in the DOM: Bindings (WebIDL) component

critical

Critical remediation recipe for Use-after-free in the DOM: Bindings (WebIDL) component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2770disclosed 2026-02-24a.k.a. Use-after-free in the DOM: Bindings (WebIDL) component

CVE-2026-2771 - Undefined behavior in the DOM: Core & HTML component

critical

Critical remediation recipe for Undefined behavior in the DOM: Core & HTML component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2771disclosed 2026-02-24a.k.a. Undefined behavior in the DOM: Core & HTML component

CVE-2026-2772 - Use-after-free in the Audio/Video: Playback component

critical

Critical remediation recipe for Use-after-free in the Audio/Video: Playback component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2772disclosed 2026-02-24a.k.a. Use-after-free in the Audio/Video: Playback component

CVE-2026-2773 - Incorrect boundary conditions in the Web Audio component

critical

Critical remediation recipe for Incorrect boundary conditions in the Web Audio component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2773disclosed 2026-02-24a.k.a. Incorrect boundary conditions in the Web Audio component

CVE-2026-2774 - Integer overflow in the Audio/Video component

critical

Critical remediation recipe for Integer overflow in the Audio/Video component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2774disclosed 2026-02-24a.k.a. Integer overflow in the Audio/Video component

CVE-2026-2775 - Mitigation bypass in the DOM: HTML Parser component

critical

Critical remediation recipe for Mitigation bypass in the DOM: HTML Parser component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2775disclosed 2026-02-24a.k.a. Mitigation bypass in the DOM: HTML Parser component

CVE-2026-2776 - Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

critical

Critical remediation recipe for Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2776disclosed 2026-02-24a.k.a. Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

CVE-2026-2777 - Privilege escalation in the Messaging System component

critical

Critical remediation recipe for Privilege escalation in the Messaging System component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2777disclosed 2026-02-24a.k.a. Privilege escalation in the Messaging System component

CVE-2026-2778 - Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component

critical

Critical remediation recipe for Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2778disclosed 2026-02-24a.k.a. Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component

CVE-2026-2792 - Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147

critical

Critical remediation recipe for Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2792disclosed 2026-02-24a.k.a. Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147

CVE-2026-2793 - Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Th

critical

Critical remediation recipe for Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Th. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2793disclosed 2026-02-24a.k.a. Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Th

CVE-2026-2794 - Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android

high

High remediation recipe for Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android. Upgrade to fixed in Firefox 148. and remove the vulnerable authz pattern.

cve CVE-2026-2794disclosed 2026-02-24a.k.a. Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android

CVE-2026-2798 - Use-after-free in the DOM: Core & HTML component

high

High remediation recipe for Use-after-free in the DOM: Core & HTML component. Upgrade to fixed in Firefox 148 and Thunderbird 148. and remove the vulnerable authz pattern.

cve CVE-2026-2798disclosed 2026-02-24a.k.a. Use-after-free in the DOM: Core & HTML component

CVE-2026-2799 - Use-after-free in the DOM: Core & HTML component

critical

Critical remediation recipe for Use-after-free in the DOM: Core & HTML component. Upgrade to fixed in Firefox 148 and Thunderbird 148. and remove the vulnerable authz pattern.

cve CVE-2026-2799disclosed 2026-02-24a.k.a. Use-after-free in the DOM: Core & HTML component

CVE-2026-2807 - Memory safety bugs present in Firefox 147 and Thunderbird 147

critical

Critical remediation recipe for Memory safety bugs present in Firefox 147 and Thunderbird 147. Upgrade to fixed in Firefox 148 and Thunderbird 148. and remove the vulnerable authz pattern.

cve CVE-2026-2807disclosed 2026-02-24a.k.a. Memory safety bugs present in Firefox 147 and Thunderbird 147

CVE-2025-14905 - A flaw was found in the 389-ds-base server

high

High remediation recipe for A flaw was found in the 389-ds-base server. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-14905disclosed 2026-02-23a.k.a. A flaw was found in the 389-ds-base server

CVE-2025-67733 - Valkey is a distributed key-value database

high

High remediation recipe for Valkey is a distributed key-value database. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-67733disclosed 2026-02-23a.k.a. Valkey is a distributed key-value database

CVE-2026-21863 - Valkey is a distributed key-value database

high

High remediation recipe for Valkey is a distributed key-value database. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-21863disclosed 2026-02-23a.k.a. Valkey is a distributed key-value database

CVE-2026-27623 - Valkey is a distributed key-value database

high

High remediation recipe for Valkey is a distributed key-value database. Upgrade to version 9.0.0 and prior to version 9.0.3 and remove the vulnerable authz pattern.

cve CVE-2026-27623disclosed 2026-02-23a.k.a. Valkey is a distributed key-value database

CVE-2019-25434 - SpotAuditor 5.3.1.0 contains a denial of service vulnerability that allows unauthenticated attackers to crash

high

High remediation recipe for SpotAuditor 5.3.1.0 contains a denial of service vulnerability that allows unauthenticated attackers to crash. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2019-25434disclosed 2026-02-20a.k.a. SpotAuditor 5.3.1.0 contains a denial of service vulnerability that allows unauthenticated attackers to crash

CVE-2026-0797 - GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-0797disclosed 2026-02-20a.k.a. GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-2033 - MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability

high

High remediation recipe for MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2033disclosed 2026-02-20a.k.a. MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability

CVE-2026-2044 - GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability

high

High remediation recipe for GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2044disclosed 2026-02-20a.k.a. GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability

CVE-2026-2045 - GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

high

High remediation recipe for GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2045disclosed 2026-02-20a.k.a. GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

CVE-2026-2047 - GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2047disclosed 2026-02-20a.k.a. GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-2048 - GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

high

High remediation recipe for GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2048disclosed 2026-02-20a.k.a. GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

CVE-2026-2492 - TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

high

High remediation recipe for TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2492disclosed 2026-02-20a.k.a. TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

CVE-2026-25896 - fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C+

critical

Critical remediation recipe for fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C+. Upgrade to fixed in 5.3.5. and remove the vulnerable xss pattern.

cve CVE-2026-25896disclosed 2026-02-20a.k.a. fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C+

CVE-2026-2635 - MLflow Use of Default Password Authentication Bypass Vulnerability

high

High remediation recipe for MLflow Use of Default Password Authentication Bypass Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-2635disclosed 2026-02-20a.k.a. MLflow Use of Default Password Authentication Bypass Vulnerability

CVE-2026-2818 - A zip-slip path traversal vulnerability in Spring Data Geode's import snapshot functionality allows attackers

high

High remediation recipe for A zip-slip path traversal vulnerability in Spring Data Geode's import snapshot functionality allows attackers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-2818disclosed 2026-02-20a.k.a. A zip-slip path traversal vulnerability in Spring Data Geode's import snapshot functionality allows attackers

CVE-2026-24834 - Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machine

critical

Critical remediation recipe for Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machine. Upgrade to Version 3.27.0 patches the issue. and remove the vulnerable command-injection pattern.

cve CVE-2026-24834disclosed 2026-02-19a.k.a. Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machine

CVE-2026-26200 - HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an h5 file parsed

high

High remediation recipe for HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an h5 file parsed. Upgrade to version 1.14.4-2 and remove the vulnerable authz pattern.

cve CVE-2026-26200disclosed 2026-02-19a.k.a. HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an h5 file parsed

CVE-2026-26278 - fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C+

high

High remediation recipe for fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C+. Upgrade to Version 5.3.6 fixes the issue. As a workaround and remove the vulnerable command-injection pattern.

cve CVE-2026-26278disclosed 2026-02-19a.k.a. fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C+

CVE-2025-71231 - In the Linux kernel, the following vulnerability has been resolved: crypto: iaa - Fix out-of-bounds index in f

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: iaa - Fix out-of-bounds index in f. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2025-71231disclosed 2026-02-18a.k.a. In the Linux kernel, the following vulnerability has been resolved: crypto: iaa - Fix out-of-bounds index in f

CVE-2026-22860 - Rack is a modular Ruby web server interface

high

High remediation recipe for Rack is a modular Ruby web server interface. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-22860disclosed 2026-02-18a.k.a. Rack is a modular Ruby web server interface

CVE-2026-23216 - In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-23216disclosed 2026-02-18a.k.a. In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in

CVE-2026-23221 - In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driver_

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driver_. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-23221disclosed 2026-02-18a.k.a. In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driver_

CVE-2026-23222 - In the Linux kernel, the following vulnerability has been resolved: crypto: omap - Allocate OMAP_CRYPTO_FORCE_

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: omap - Allocate OMAP_CRYPTO_FORCE_. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable command-injection pattern.

cve CVE-2026-23222disclosed 2026-02-18a.k.a. In the Linux kernel, the following vulnerability has been resolved: crypto: omap - Allocate OMAP_CRYPTO_FORCE_

CVE-2026-23230 - In the Linux kernel, the following vulnerability has been resolved: smb: client: split cached_fid bitfields to

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: split cached_fid bitfields to. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-23230disclosed 2026-02-18a.k.a. In the Linux kernel, the following vulnerability has been resolved: smb: client: split cached_fid bitfields to

CVE-2026-24708 - An issue was discovered in OpenStack Nova before 30.2.2, 31 before 31.2.1, and 32 before 32.1.1

high

High remediation recipe for An issue was discovered in OpenStack Nova before 30.2.2, 31 before 31.2.1, and 32 before 32.1.1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-24708disclosed 2026-02-18a.k.a. An issue was discovered in OpenStack Nova before 30.2.2, 31 before 31.2.1, and 32 before 32.1.1

CVE-2026-24734 - Improper Input Validation vulnerability in Apache Tomcat Native, Apache Tomcat

high

High remediation recipe for Improper Input Validation vulnerability in Apache Tomcat Native, Apache Tomcat. Upgrade to upgrade to versions 1.3.5 or later or 2.0.12 or later and remove the vulnerable cert-validation pattern.

cve CVE-2026-24734disclosed 2026-02-17a.k.a. Improper Input Validation vulnerability in Apache Tomcat Native, Apache Tomcat

CVE-2026-2447 - Heap buffer overflow in libvpx. This vulnerability was fixed in Firefox 147.0.4, Firefox ESR 140.7.1, Firefox

high

High remediation recipe for Heap buffer overflow in libvpx. This vulnerability was fixed in Firefox 147.0.4, Firefox ESR 140.7.1, Firefox. Upgrade to fixed in Firefox 147.0.4 and remove the vulnerable authz pattern.

cve CVE-2026-2447disclosed 2026-02-16a.k.a. Heap buffer overflow in libvpx. This vulnerability was fixed in Firefox 147.0.4, Firefox ESR 140.7.1, Firefox

CVE-2026-23169 - In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race in mptcp_pm_nl_flush_addrs

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race in mptcp_pm_nl_flush_addrs. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable dos pattern.

cve CVE-2026-23169disclosed 2026-02-14a.k.a. In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race in mptcp_pm_nl_flush_addrs

CVE-2026-23180 - In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: add bounds check for if_id i

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: add bounds check for if_id i. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-23180disclosed 2026-02-14a.k.a. In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: add bounds check for if_id i

CVE-2026-23185 - In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mld: cancel mlo_scan_start_

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mld: cancel mlo_scan_start_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-23185disclosed 2026-02-14a.k.a. In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mld: cancel mlo_scan_start_

CVE-2026-23193 - In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-23193disclosed 2026-02-14a.k.a. In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in

CVE-2026-23198 - In the Linux kernel, the following vulnerability has been resolved: KVM: Don't clobber irqfd routing type when

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: Don't clobber irqfd routing type when. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-23198disclosed 2026-02-14a.k.a. In the Linux kernel, the following vulnerability has been resolved: KVM: Don't clobber irqfd routing type when

CVE-2026-23111 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix inverted genmask

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix inverted genmask. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-23111disclosed 2026-02-13a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix inverted genmask

CVE-2023-31313 - An unintended proxy or intermediary in the AMD power management firmware (PMFW) could allow a privileged attac

high

High remediation recipe for An unintended proxy or intermediary in the AMD power management firmware (PMFW) could allow a privileged attac. Upgrade to ROCm 6.4.2 and remove the vulnerable authz pattern.

cve CVE-2023-31313disclosed 2026-02-12a.k.a. An unintended proxy or intermediary in the AMD power management firmware (PMFW) could allow a privileged attac

CVE-2026-2004 - Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an

high

High remediation recipe for Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2004disclosed 2026-02-12a.k.a. Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an

CVE-2026-2005 - Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the oper

high

High remediation recipe for Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the oper. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2005disclosed 2026-02-12a.k.a. Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the oper

CVE-2026-2006 - Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to iss

high

High remediation recipe for Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to iss. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2006disclosed 2026-02-12a.k.a. Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to iss

CVE-2026-2007 - Heap buffer overflow in PostgreSQL pg_trgm allows a database user to achieve unknown impacts via a crafted inp

high

High remediation recipe for Heap buffer overflow in PostgreSQL pg_trgm allows a database user to achieve unknown impacts via a crafted inp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-2007disclosed 2026-02-12a.k.a. Heap buffer overflow in PostgreSQL pg_trgm allows a database user to achieve unknown impacts via a crafted inp

CVE-2020-37196 - Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the

high

High remediation recipe for Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37196disclosed 2026-02-11a.k.a. Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the

CVE-2020-37197 - Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the

high

High remediation recipe for Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37197disclosed 2026-02-11a.k.a. Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the

CVE-2020-37199 - NBMonitor 1.6.6.0 contains a denial of service vulnerability in its registration key input that allows attacke

high

High remediation recipe for NBMonitor 1.6.6.0 contains a denial of service vulnerability in its registration key input that allows attacke. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37199disclosed 2026-02-11a.k.a. NBMonitor 1.6.6.0 contains a denial of service vulnerability in its registration key input that allows attacke

CVE-2020-37200 - NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration key input that allows att

high

High remediation recipe for NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration key input that allows att. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37200disclosed 2026-02-11a.k.a. NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration key input that allows att

CVE-2020-37201 - NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration name input that allows at

high

High remediation recipe for NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration name input that allows at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37201disclosed 2026-02-11a.k.a. NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration name input that allows at

CVE-2020-37204 - RemShutdown 2.9.0.0 contains a denial of service vulnerability in its registration key input that allows attac

high

High remediation recipe for RemShutdown 2.9.0.0 contains a denial of service vulnerability in its registration key input that allows attac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37204disclosed 2026-02-11a.k.a. RemShutdown 2.9.0.0 contains a denial of service vulnerability in its registration key input that allows attac

CVE-2020-37205 - RemShutdown 2.9.0.0 contains a denial of service vulnerability that allows attackers to crash the application

high

High remediation recipe for RemShutdown 2.9.0.0 contains a denial of service vulnerability that allows attackers to crash the application. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37205disclosed 2026-02-11a.k.a. RemShutdown 2.9.0.0 contains a denial of service vulnerability that allows attackers to crash the application

CVE-2020-37206 - ShareAlarmPro contains a denial of service vulnerability that allows attackers to crash the application by sup

high

High remediation recipe for ShareAlarmPro contains a denial of service vulnerability that allows attackers to crash the application by sup. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37206disclosed 2026-02-11a.k.a. ShareAlarmPro contains a denial of service vulnerability that allows attackers to crash the application by sup

CVE-2020-37207 - SpotDialup 1.6.7 contains a denial of service vulnerability in the registration key input field that allows at

high

High remediation recipe for SpotDialup 1.6.7 contains a denial of service vulnerability in the registration key input field that allows at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37207disclosed 2026-02-11a.k.a. SpotDialup 1.6.7 contains a denial of service vulnerability in the registration key input field that allows at

CVE-2020-37208 - SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attac

high

High remediation recipe for SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37208disclosed 2026-02-11a.k.a. SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attac

CVE-2020-37209 - SpotFTP 3.0.0.0 contains a denial of service vulnerability in the registration name input field that allows at

high

High remediation recipe for SpotFTP 3.0.0.0 contains a denial of service vulnerability in the registration name input field that allows at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37209disclosed 2026-02-11a.k.a. SpotFTP 3.0.0.0 contains a denial of service vulnerability in the registration name input field that allows at

CVE-2020-37210 - SpotIE 2.9.5 contains a denial of service vulnerability in the registration key input that allows attackers to

high

High remediation recipe for SpotIE 2.9.5 contains a denial of service vulnerability in the registration key input that allows attackers to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37210disclosed 2026-02-11a.k.a. SpotIE 2.9.5 contains a denial of service vulnerability in the registration key input that allows attackers to

CVE-2020-37211 - SpotIM 2.2 contains a denial of service vulnerability that allows attackers to crash the application by inputt

high

High remediation recipe for SpotIM 2.2 contains a denial of service vulnerability that allows attackers to crash the application by inputt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37211disclosed 2026-02-11a.k.a. SpotIM 2.2 contains a denial of service vulnerability that allows attackers to crash the application by inputt

CVE-2020-37212 - SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field that allows atta

high

High remediation recipe for SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field that allows atta. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2020-37212disclosed 2026-02-11a.k.a. SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field that allows atta

CVE-2026-1669 - Arbitrary file read in the model loading mechanism (HDF5 integration) in Keras versions 3.0.0 through 3.13.1 o

high

High remediation recipe for Arbitrary file read in the model loading mechanism (HDF5 integration) in Keras versions 3.0.0 through 3.13.1 o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-1669disclosed 2026-02-11a.k.a. Arbitrary file read in the model loading mechanism (HDF5 integration) in Keras versions 3.0.0 through 3.13.1 o

CVE-2026-1837 - A specially-crafted file can cause libjxl's decoder to write pixel data to uninitialized unallocated memory

high

High remediation recipe for A specially-crafted file can cause libjxl's decoder to write pixel data to uninitialized unallocated memory. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-1837disclosed 2026-02-11a.k.a. A specially-crafted file can cause libjxl's decoder to write pixel data to uninitialized unallocated memory

CVE-2026-20652 - The issue was addressed with improved memory handling

high

High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.3 and remove the vulnerable authz pattern.

cve CVE-2026-20652disclosed 2026-02-11a.k.a. The issue was addressed with improved memory handling

CVE-2026-26157 - A flaw was found in BusyBox. Incomplete path sanitization in its archive extraction utilities allows an attack

high

High remediation recipe for A flaw was found in BusyBox. Incomplete path sanitization in its archive extraction utilities allows an attack. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-26157disclosed 2026-02-11a.k.a. A flaw was found in BusyBox. Incomplete path sanitization in its archive extraction utilities allows an attack

CVE-2026-26158 - A flaw was found in BusyBox. This vulnerability allows an attacker to modify files outside of the intended ext

high

High remediation recipe for A flaw was found in BusyBox. This vulnerability allows an attacker to modify files outside of the intended ext. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-26158disclosed 2026-02-11a.k.a. A flaw was found in BusyBox. This vulnerability allows an attacker to modify files outside of the intended ext

CVE-2025-35998 - Missing protection mechanism for alternate hardware interface in the Intel(R) Quick Assist Technology for some

high

High remediation recipe for Missing protection mechanism for alternate hardware interface in the Intel(R) Quick Assist Technology for some. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-35998disclosed 2026-02-10a.k.a. Missing protection mechanism for alternate hardware interface in the Intel(R) Quick Assist Technology for some

CVE-2026-25506 - MUNGE is an authentication service for creating and validating user credentials

high

High remediation recipe for MUNGE is an authentication service for creating and validating user credentials. Upgrade to fixed in 0.5.18. and remove the vulnerable authz pattern.

cve CVE-2026-25506disclosed 2026-02-10a.k.a. MUNGE is an authentication service for creating and validating user credentials

CVE-2026-25646 - LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network

high

High remediation recipe for LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network. Upgrade to fixed in 1.6.55. and remove the vulnerable dos pattern.

cve CVE-2026-25646disclosed 2026-02-10a.k.a. LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network

CVE-2026-1486 - A flaw was found in Keycloak. A vulnerability exists in the jwt-authorization-grant flow where the server fail

high

High remediation recipe for A flaw was found in Keycloak. A vulnerability exists in the jwt-authorization-grant flow where the server fail. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-1486disclosed 2026-02-09a.k.a. A flaw was found in Keycloak. A vulnerability exists in the jwt-authorization-grant flow where the server fail

CVE-2026-1529 - A flaw was found in Keycloak. An attacker can exploit this vulnerability by modifying the organization ID and

high

High remediation recipe for A flaw was found in Keycloak. An attacker can exploit this vulnerability by modifying the organization ID and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-1529disclosed 2026-02-09a.k.a. A flaw was found in Keycloak. An attacker can exploit this vulnerability by modifying the organization ID and

CVE-2026-24678 - FreeRDP is a free implementation of the Remote Desktop Protocol

high

High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.22.0. and remove the vulnerable authz pattern.

cve CVE-2026-24678disclosed 2026-02-09a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-23074 - In the Linux kernel, the following vulnerability has been resolved: net/sched: Enforce that teql can only be u

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/sched: Enforce that teql can only be u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-23074disclosed 2026-02-04a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/sched: Enforce that teql can only be u

CVE-2026-25536 - MCP TypeScript SDK is the official TypeScript SDK for Model Context Protocol servers and clients

high

High remediation recipe for MCP TypeScript SDK is the official TypeScript SDK for Model Context Protocol servers and clients. Upgrade to version 1.10.0 to 1.25.3 and remove the vulnerable mcp-auth pattern.

cve CVE-2026-25536disclosed 2026-02-04a.k.a. MCP TypeScript SDK is the official TypeScript SDK for Model Context Protocol servers and clients

CVE-2026-1530 - A flaw was found in fog-kubevirt. This vulnerability allows a remote attacker to perform a Man-in-the-Middle (

high

High remediation recipe for A flaw was found in fog-kubevirt. This vulnerability allows a remote attacker to perform a Man-in-the-Middle (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-1530disclosed 2026-02-02a.k.a. A flaw was found in fog-kubevirt. This vulnerability allows a remote attacker to perform a Man-in-the-Middle (

CVE-2026-1531 - A flaw was found in foreman_kubevirt. When configuring the connection to OpenShift, the system disables SSL ve

high

High remediation recipe for A flaw was found in foreman_kubevirt. When configuring the connection to OpenShift, the system disables SSL ve. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-1531disclosed 2026-02-02a.k.a. A flaw was found in foreman_kubevirt. When configuring the connection to OpenShift, the system disables SSL ve

CVE-2026-1761 - A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multi

high

High remediation recipe for A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-1761disclosed 2026-02-02a.k.a. A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multi

CVE-2026-22778 - vLLM is an inference and serving engine for large language models (LLMs)

critical

Critical remediation recipe for vLLM is an inference and serving engine for large language models (LLMs). Upgrade to fixed in 0.14.1. and remove the vulnerable authz pattern.

cve CVE-2026-22778disclosed 2026-02-02a.k.a. vLLM is an inference and serving engine for large language models (LLMs)

CVE-2024-4027 - A flaw was found in Undertow. Servlets using a method that calls HttpServletRequestImpl.getParameterNames() ca

high

High remediation recipe for A flaw was found in Undertow. Servlets using a method that calls HttpServletRequestImpl.getParameterNames() ca. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2024-4027disclosed 2026-01-30a.k.a. A flaw was found in Undertow. Servlets using a method that calls HttpServletRequestImpl.getParameterNames() ca

CVE-2025-61140 - The value function in jsonpath 1.1.1 lib/index.js is vulnerable to Prototype Pollution

critical

Critical remediation recipe for The value function in jsonpath 1.1.1 lib/index.js is vulnerable to Prototype Pollution. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable prototype-pollution pattern.

cve CVE-2025-61140disclosed 2026-01-28a.k.a. The value function in jsonpath 1.1.1 lib/index.js is vulnerable to Prototype Pollution

CVE-2025-61726 - The net/url package does not set a limit on the number of query parameters in a query

high

High remediation recipe for The net/url package does not set a limit on the number of query parameters in a query. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-61726disclosed 2026-01-28a.k.a. The net/url package does not set a limit on the number of query parameters in a query

CVE-2026-21720 - Every uncached /avatar/:hash request spawns a goroutine that refreshes the Gravatar image

high

High remediation recipe for Every uncached /avatar/:hash request spawns a goroutine that refreshes the Gravatar image. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-21720disclosed 2026-01-27a.k.a. Every uncached /avatar/:hash request spawns a goroutine that refreshes the Gravatar image

CVE-2026-21721 - The dashboard permissions API does not verify the target dashboard scope and only checks the dashboards.permis

high

High remediation recipe for The dashboard permissions API does not verify the target dashboard scope and only checks the dashboards.permis. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-21721disclosed 2026-01-27a.k.a. The dashboard permissions API does not verify the target dashboard scope and only checks the dashboards.permis

CVE-2026-24869 - Use-after-free in the Layout: Scrolling and Overflow component

high

High remediation recipe for Use-after-free in the Layout: Scrolling and Overflow component. Upgrade to fixed in Firefox 147.0.2. and remove the vulnerable authz pattern.

cve CVE-2026-24869disclosed 2026-01-27a.k.a. Use-after-free in the Layout: Scrolling and Overflow component

CVE-2026-24881 - In GnuPG before 2.5.17, a crafted CMS (S/MIME) EnvelopedData message carrying an oversized wrapped session key

high

High remediation recipe for In GnuPG before 2.5.17, a crafted CMS (S/MIME) EnvelopedData message carrying an oversized wrapped session key. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-24881disclosed 2026-01-27a.k.a. In GnuPG before 2.5.17, a crafted CMS (S/MIME) EnvelopedData message carrying an oversized wrapped session key

CVE-2026-24882 - In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the PKDECRYPT co

high

High remediation recipe for In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the PKDECRYPT co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-24882disclosed 2026-01-27a.k.a. In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the PKDECRYPT co

CVE-2025-14459 - A flaw was found in KubeVirt Containerized Data Importer (CDI)

high

High remediation recipe for A flaw was found in KubeVirt Containerized Data Importer (CDI). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-14459disclosed 2026-01-26a.k.a. A flaw was found in KubeVirt Containerized Data Importer (CDI)

CVE-2026-23864 - Multiple denial of service vulnerabilities exist in React Server Components, affecting the following packages:

high

High remediation recipe for Multiple denial of service vulnerabilities exist in React Server Components, affecting the following packages:. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-23864disclosed 2026-01-26a.k.a. Multiple denial of service vulnerabilities exist in React Server Components, affecting the following packages:

CVE-2025-15059 - GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

high

High remediation recipe for GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-15059disclosed 2026-01-23a.k.a. GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-0603 - A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injectio

high

High remediation recipe for A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injectio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-0603disclosed 2026-01-23a.k.a. A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injectio

CVE-2026-1260 - Invalid memory access in Sentencepiece versions less than 0.2.1 when using a vulnerable model file, which is n

high

High remediation recipe for Invalid memory access in Sentencepiece versions less than 0.2.1 when using a vulnerable model file, which is n. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-1260disclosed 2026-01-22a.k.a. Invalid memory access in Sentencepiece versions less than 0.2.1 when using a vulnerable model file, which is n

CVE-2026-20736 - Gitea does not properly verify repository context when deleting attachments

high

High remediation recipe for Gitea does not properly verify repository context when deleting attachments. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-20736disclosed 2026-01-22a.k.a. Gitea does not properly verify repository context when deleting attachments

CVE-2025-13878 - Malformed BRID/HHIT records can cause named to terminate unexpectedly

high

High remediation recipe for Malformed BRID/HHIT records can cause named to terminate unexpectedly. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-13878disclosed 2026-01-21a.k.a. Malformed BRID/HHIT records can cause named to terminate unexpectedly

CVE-2026-22822 - External Secrets Operator reads information from a third-party service and automatically injects the values as

high

High remediation recipe for External Secrets Operator reads information from a third-party service and automatically injects the values as. Upgrade to version 0.20.2 and prior to version 1.2.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-22822disclosed 2026-01-21a.k.a. External Secrets Operator reads information from a third-party service and automatically injects the values as

CVE-2026-24046 - Backstage is an open framework for building developer portals

high

High remediation recipe for Backstage is an open framework for building developer portals. Upgrade to fixed in and remove the vulnerable path-traversal pattern.

cve CVE-2026-24046disclosed 2026-01-21a.k.a. Backstage is an open framework for building developer portals

CVE-2026-22797 - An issue was discovered in OpenStack keystonemiddleware 10.5 through 10.7 before 10.7.2, 10.8 and 10.9 before

critical

Critical remediation recipe for An issue was discovered in OpenStack keystonemiddleware 10.5 through 10.7 before 10.7.2, 10.8 and 10.9 before. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-22797disclosed 2026-01-19a.k.a. An issue was discovered in OpenStack keystonemiddleware 10.5 through 10.7 before 10.7.2, 10.8 and 10.9 before

CVE-2026-23530 - FreeRDP is a free implementation of the Remote Desktop Protocol

critical

Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.

cve CVE-2026-23530disclosed 2026-01-19a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-23531 - FreeRDP is a free implementation of the Remote Desktop Protocol

critical

Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.

cve CVE-2026-23531disclosed 2026-01-19a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-23532 - FreeRDP is a free implementation of the Remote Desktop Protocol

critical

Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.

cve CVE-2026-23532disclosed 2026-01-19a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-23533 - FreeRDP is a free implementation of the Remote Desktop Protocol

critical

Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.

cve CVE-2026-23533disclosed 2026-01-19a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-23534 - FreeRDP is a free implementation of the Remote Desktop Protocol

critical

Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.

cve CVE-2026-23534disclosed 2026-01-19a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-23883 - FreeRDP is a free implementation of the Remote Desktop Protocol

critical

Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.

cve CVE-2026-23883disclosed 2026-01-19a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-23884 - FreeRDP is a free implementation of the Remote Desktop Protocol

critical

Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.

cve CVE-2026-23884disclosed 2026-01-19a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2021-47814 - NBMonitor 1.6.8 contains a denial of service vulnerability that allows attackers to crash the application by o

high

High remediation recipe for NBMonitor 1.6.8 contains a denial of service vulnerability that allows attackers to crash the application by o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2021-47814disclosed 2026-01-16a.k.a. NBMonitor 1.6.8 contains a denial of service vulnerability that allows attackers to crash the application by o

CVE-2026-0532 - External Control of File Name or Path (CWE-73) combined with Server-Side Request Forgery (CWE-918) can allow a

high

High remediation recipe for External Control of File Name or Path (CWE-73) combined with Server-Side Request Forgery (CWE-918) can allow a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-0532disclosed 2026-01-14a.k.a. External Control of File Name or Path (CWE-73) combined with Server-Side Request Forgery (CWE-918) can allow a

CVE-2026-22853 - FreeRDP is a free implementation of the Remote Desktop Protocol

critical

Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.20.1. and remove the vulnerable authz pattern.

cve CVE-2026-22853disclosed 2026-01-14a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-22855 - FreeRDP is a free implementation of the Remote Desktop Protocol

critical

Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.20.1. and remove the vulnerable authz pattern.

cve CVE-2026-22855disclosed 2026-01-14a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-22858 - FreeRDP is a free implementation of the Remote Desktop Protocol

critical

Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.20.1. and remove the vulnerable authz pattern.

cve CVE-2026-22858disclosed 2026-01-14a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-22859 - FreeRDP is a free implementation of the Remote Desktop Protocol

critical

Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.20.1. and remove the vulnerable authz pattern.

cve CVE-2026-22859disclosed 2026-01-14a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2025-71089 - In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIG_X86 is set

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIG_X86 is set. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2025-71089disclosed 2026-01-13a.k.a. In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIG_X86 is set

CVE-2026-0877 - Mitigation bypass in the DOM: Security component

high

High remediation recipe for Mitigation bypass in the DOM: Security component. Upgrade to fixed in Firefox 147 and remove the vulnerable authz pattern.

cve CVE-2026-0877disclosed 2026-01-13a.k.a. Mitigation bypass in the DOM: Security component

CVE-2026-0878 - Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component

high

High remediation recipe for Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. Upgrade to fixed in Firefox 147 and remove the vulnerable authz pattern.

cve CVE-2026-0878disclosed 2026-01-13a.k.a. Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component

CVE-2026-0879 - Sandbox escape due to incorrect boundary conditions in the Graphics component

critical

Critical remediation recipe for Sandbox escape due to incorrect boundary conditions in the Graphics component. Upgrade to fixed in Firefox 147 and remove the vulnerable authz pattern.

cve CVE-2026-0879disclosed 2026-01-13a.k.a. Sandbox escape due to incorrect boundary conditions in the Graphics component

CVE-2026-0880 - Sandbox escape due to integer overflow in the Graphics component

high

High remediation recipe for Sandbox escape due to integer overflow in the Graphics component. Upgrade to fixed in Firefox 147 and remove the vulnerable authz pattern.

cve CVE-2026-0880disclosed 2026-01-13a.k.a. Sandbox escape due to integer overflow in the Graphics component

CVE-2026-0881 - Sandbox escape in the Messaging System component

critical

Critical remediation recipe for Sandbox escape in the Messaging System component. Upgrade to fixed in Firefox 147 and Thunderbird 147. and remove the vulnerable authz pattern.

cve CVE-2026-0881disclosed 2026-01-13a.k.a. Sandbox escape in the Messaging System component

CVE-2026-0882 - Use-after-free in the IPC component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox

high

High remediation recipe for Use-after-free in the IPC component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox. Upgrade to fixed in Firefox 147 and remove the vulnerable authz pattern.

cve CVE-2026-0882disclosed 2026-01-13a.k.a. Use-after-free in the IPC component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox

CVE-2026-0891 - Memory safety bugs present in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146

high

High remediation recipe for Memory safety bugs present in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146. Upgrade to fixed in Firefox 147 and remove the vulnerable authz pattern.

cve CVE-2026-0891disclosed 2026-01-13a.k.a. Memory safety bugs present in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146

CVE-2025-15514 - Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability in the multi

high

High remediation recipe for Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability in the multi. Upgrade to version 0.13.5 contain a null pointer dereference vulnerability in t and remove the vulnerable dos pattern.

cve CVE-2025-15514disclosed 2026-01-12a.k.a. Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability in the multi

CVE-2025-68493 - Missing XML Validation vulnerability in Apache Struts, Apache Struts

high

High remediation recipe for Missing XML Validation vulnerability in Apache Struts, Apache Struts. Upgrade to upgrade to version 6.1.1 and remove the vulnerable authz pattern.

cve CVE-2025-68493disclosed 2026-01-11a.k.a. Missing XML Validation vulnerability in Apache Struts, Apache Struts

CVE-2025-61686 - React Router is a router for React. In @react-router/node versions 7.0.0 through 7.9.3, @remix-run/deno prior

critical

Critical remediation recipe for React Router is a router for React. In @react-router/node versions 7.0.0 through 7.9.3, @remix-run/deno prior. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-61686disclosed 2026-01-10a.k.a. React Router is a router for React. In @react-router/node versions 7.0.0 through 7.9.3, @remix-run/deno prior

CVE-2025-13761 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.3, and 18.7 before

high

High remediation recipe for GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.3, and 18.7 before. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-13761disclosed 2026-01-09a.k.a. GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.3, and 18.7 before

CVE-2025-13772 - GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.5.5, 18.6 before 18.6.3

high

High remediation recipe for GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.5.5, 18.6 before 18.6.3. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-13772disclosed 2026-01-09a.k.a. GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.5.5, 18.6 before 18.6.3

CVE-2025-9222 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2.2 before 18.5.5, 18.6 before 1

high

High remediation recipe for GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2.2 before 18.5.5, 18.6 before 1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2025-9222disclosed 2026-01-09a.k.a. GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2.2 before 18.5.5, 18.6 before 1

CVE-2025-50334 - An issue in Technitium DNS Server v.13.5 allows a remote attacker to cause a denial of service via the rate-li

high

High remediation recipe for An issue in Technitium DNS Server v.13.5 allows a remote attacker to cause a denial of service via the rate-li. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-50334disclosed 2026-01-08a.k.a. An issue in Technitium DNS Server v.13.5 allows a remote attacker to cause a denial of service via the rate-li

CVE-2026-0719 - A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME and other

high

High remediation recipe for A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME and other. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-0719disclosed 2026-01-08a.k.a. A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME and other

CVE-2026-22184 - zlib versions up to and including 1.3.1.2 include a global buffer overflow in the untgz utility located under

high

High remediation recipe for zlib versions up to and including 1.3.1.2 include a global buffer overflow in the untgz utility located under. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-22184disclosed 2026-01-07a.k.a. zlib versions up to and including 1.3.1.2 include a global buffer overflow in the untgz utility located under

CVE-2025-67268 - gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/driver_nmea2

critical

Critical remediation recipe for gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/driver_nmea2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-67268disclosed 2026-01-02a.k.a. gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/driver_nmea2

CVE-2025-67269 - An integer underflow vulnerability exists in the nextstate() function in gpsd/packet.c of gpsd versions pr

high

High remediation recipe for An integer underflow vulnerability exists in the nextstate() function in gpsd/packet.c of gpsd versions pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-67269disclosed 2026-01-02a.k.a. An integer underflow vulnerability exists in the nextstate() function in gpsd/packet.c of gpsd versions pr

CVE-2025-2515 - A vulnerability was found in BlueChi, a multi-node systemd service controller used in RHIVOS

high

High remediation recipe for A vulnerability was found in BlueChi, a multi-node systemd service controller used in RHIVOS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-2515disclosed 2025-12-24a.k.a. A vulnerability was found in BlueChi, a multi-node systemd service controller used in RHIVOS

CVE-2025-68263 - In the Linux kernel, the following vulnerability has been resolved: ksmbd: ipc: fix use-after-free in ipc_msg_

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ksmbd: ipc: fix use-after-free in ipc_msg_. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2025-68263disclosed 2025-12-16a.k.a. In the Linux kernel, the following vulnerability has been resolved: ksmbd: ipc: fix use-after-free in ipc_msg_

CVE-2025-14523 - A flaw in libsoup’s HTTP header handling allows multiple Host: headers in a request and returns the last occur

high

High remediation recipe for A flaw in libsoup’s HTTP header handling allows multiple Host: headers in a request and returns the last occur. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-14523disclosed 2025-12-11a.k.a. A flaw in libsoup’s HTTP header handling allows multiple Host: headers in a request and returns the last occur

CVE-2025-66287 - A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to i

high

High remediation recipe for A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-66287disclosed 2025-12-04a.k.a. A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to i

CVE-2025-13947 - A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can

high

High remediation recipe for A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-13947disclosed 2025-12-03a.k.a. A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can

CVE-2025-13601 - A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the

high

High remediation recipe for A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-13601disclosed 2025-11-26a.k.a. A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the

CVE-2025-13502 - A flaw was found in WebKitGTK and WPE WebKit

high

High remediation recipe for A flaw was found in WebKitGTK and WPE WebKit. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-13502disclosed 2025-11-25a.k.a. A flaw was found in WebKitGTK and WPE WebKit

CVE-2025-13609 - A vulnerability has been identified in keylime where an attacker can exploit this flaw by registering a new ag

high

High remediation recipe for A vulnerability has been identified in keylime where an attacker can exploit this flaw by registering a new ag. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-13609disclosed 2025-11-24a.k.a. A vulnerability has been identified in keylime where an attacker can exploit this flaw by registering a new ag

CVE-2025-41115 - SCIM provisioning was introduced in Grafana Enterprise and Grafana Cloud in April to improve how organizations

critical

Critical remediation recipe for SCIM provisioning was introduced in Grafana Enterprise and Grafana Cloud in April to improve how organizations. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable supply-chain pattern.

cve CVE-2025-41115disclosed 2025-11-21a.k.a. SCIM provisioning was introduced in Grafana Enterprise and Grafana Cloud in April to improve how organizations

CVE-2025-61662 - A Use-After-Free vulnerability has been discovered in GRUB's gettext module

high

High remediation recipe for A Use-After-Free vulnerability has been discovered in GRUB's gettext module. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-61662disclosed 2025-11-18a.k.a. A Use-After-Free vulnerability has been discovered in GRUB's gettext module

CVE-2025-59088 - If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration,

high

High remediation recipe for If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2025-59088disclosed 2025-11-12a.k.a. If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration,

CVE-2025-30398 - Missing authorization in Nuance PowerScribe allows an unauthorized attacker to disclose information over a net

high

High remediation recipe for Missing authorization in Nuance PowerScribe allows an unauthorized attacker to disclose information over a net. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-30398disclosed 2025-11-11a.k.a. Missing authorization in Nuance PowerScribe allows an unauthorized attacker to disclose information over a net

CVE-2025-10230 - A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are pa

critical

Critical remediation recipe for A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are pa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-10230disclosed 2025-11-07a.k.a. A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are pa

CVE-2025-43433 - The issue was addressed with improved memory handling

high

High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.1 and remove the vulnerable authz pattern.

cve CVE-2025-43433disclosed 2025-11-04a.k.a. The issue was addressed with improved memory handling

CVE-2025-62230 - A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client resource cleanup

high

High remediation recipe for A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client resource cleanup. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-62230disclosed 2025-10-30a.k.a. A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client resource cleanup

CVE-2025-62231 - A flaw was identified in the X.Org X server’s X Keyboard (Xkb) extension where improper bounds checking in the

high

High remediation recipe for A flaw was identified in the X.Org X server’s X Keyboard (Xkb) extension where improper bounds checking in the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-62231disclosed 2025-10-30a.k.a. A flaw was identified in the X.Org X server’s X Keyboard (Xkb) extension where improper bounds checking in the

CVE-2025-40082 - In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hf

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hf. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.

cve CVE-2025-40082disclosed 2025-10-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hf

CVE-2025-12105 - A flaw was found in the asynchronous message queue handling of the libsoup library, widely used by GNOME and W

high

High remediation recipe for A flaw was found in the asynchronous message queue handling of the libsoup library, widely used by GNOME and W. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-12105disclosed 2025-10-23a.k.a. A flaw was found in the asynchronous message queue handling of the libsoup library, widely used by GNOME and W

CVE-2023-53673 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: call disconnect call

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: call disconnect call. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2023-53673disclosed 2025-10-07a.k.a. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: call disconnect call

CVE-2025-11021 - A flaw was found in the cookie date handling logic of the libsoup HTTP library, widely used by GNOME and other

high

High remediation recipe for A flaw was found in the cookie date handling logic of the libsoup HTTP library, widely used by GNOME and other. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-11021disclosed 2025-09-26a.k.a. A flaw was found in the cookie date handling logic of the libsoup HTTP library, widely used by GNOME and other

CVE-2025-9900 - A flaw was found in Libtiff. This vulnerability is a write-what-where condition, triggered when the library

high

High remediation recipe for A flaw was found in Libtiff. This vulnerability is a write-what-where condition, triggered when the library. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2025-9900disclosed 2025-09-23a.k.a. A flaw was found in Libtiff. This vulnerability is a write-what-where condition, triggered when the library

CVE-2025-5962 - A flaw was found in the Lightspeed history service

high

High remediation recipe for A flaw was found in the Lightspeed history service. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-5962disclosed 2025-09-22a.k.a. A flaw was found in the Lightspeed history service

CVE-2025-4953 - A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during

high

High remediation recipe for A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-4953disclosed 2025-09-16a.k.a. A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during

CVE-2025-9566 - There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when

high

High remediation recipe for There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-9566disclosed 2025-09-05a.k.a. There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when

CVE-2025-8067 - A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-B

high

High remediation recipe for A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-B. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-8067disclosed 2025-08-28a.k.a. A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-B

CVE-2023-32256 - A flaw was found in the Linux kernel's ksmbd component

high

High remediation recipe for A flaw was found in the Linux kernel's ksmbd component. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2023-32256disclosed 2025-08-01a.k.a. A flaw was found in the Linux kernel's ksmbd component

CVE-2025-31277 - The issue was addressed with improved memory handling

high

High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 18.6 and remove the vulnerable authz pattern.

cve CVE-2025-31277disclosed 2025-07-30a.k.a. The issue was addressed with improved memory handling

CVE-2025-4056 - A flaw was found in GLib. A denial of service on Windows platforms may occur if an application attempts to spa

high

High remediation recipe for A flaw was found in GLib. A denial of service on Windows platforms may occur if an application attempts to spa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-4056disclosed 2025-07-28a.k.a. A flaw was found in GLib. A denial of service on Windows platforms may occur if an application attempts to spa

CVE-2025-6018 - A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Auth

high

High remediation recipe for A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Auth. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-6018disclosed 2025-07-23a.k.a. A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Auth

CVE-2025-23266 - NVIDIA Container Toolkit for all platforms contains a vulnerability in some hooks used to initialize the conta

critical

Critical remediation recipe for NVIDIA Container Toolkit for all platforms contains a vulnerability in some hooks used to initialize the conta. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-23266disclosed 2025-07-17a.k.a. NVIDIA Container Toolkit for all platforms contains a vulnerability in some hooks used to initialize the conta

CVE-2025-6965 - There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed

high

High remediation recipe for There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed. Upgrade to version 3.50.2 or above. and remove the vulnerable authz pattern.

cve CVE-2025-6965disclosed 2025-07-15a.k.a. There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed

CVE-2025-7424 - A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input da

high

High remediation recipe for A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input da. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-7424disclosed 2025-07-10a.k.a. A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input da

CVE-2025-7425 - A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts interna

high

High remediation recipe for A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts interna. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-7425disclosed 2025-07-10a.k.a. A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts interna

CVE-2025-7345 - A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’

high

High remediation recipe for A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-7345disclosed 2025-07-08a.k.a. A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’

CVE-2025-5318 - A flaw was found in the libssh library in versions less than 0.11.2

high

High remediation recipe for A flaw was found in the libssh library in versions less than 0.11.2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-5318disclosed 2025-06-24a.k.a. A flaw was found in the libssh library in versions less than 0.11.2

CVE-2025-6019 - A Local Privilege Escalation (LPE) vulnerability was found in libblockdev

high

High remediation recipe for A Local Privilege Escalation (LPE) vulnerability was found in libblockdev. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-6019disclosed 2025-06-19a.k.a. A Local Privilege Escalation (LPE) vulnerability was found in libblockdev

CVE-2025-4404 - A privilege escalation from host to domain vulnerability was found in the FreeIPA project

critical

Critical remediation recipe for A privilege escalation from host to domain vulnerability was found in the FreeIPA project. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-4404disclosed 2025-06-17a.k.a. A privilege escalation from host to domain vulnerability was found in the FreeIPA project

CVE-2025-49176 - A flaw was found in the Big Requests extension

high

High remediation recipe for A flaw was found in the Big Requests extension. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-49176disclosed 2025-06-17a.k.a. A flaw was found in the Big Requests extension

CVE-2025-49179 - A flaw was found in the X Record extension

high

High remediation recipe for A flaw was found in the X Record extension. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-49179disclosed 2025-06-17a.k.a. A flaw was found in the X Record extension

CVE-2025-49180 - A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validat

high

High remediation recipe for A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-49180disclosed 2025-06-17a.k.a. A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validat

CVE-2025-6020 - A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper pr

high

High remediation recipe for A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2025-6020disclosed 2025-06-17a.k.a. A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper pr

CVE-2025-49794 - A use-after-free vulnerability was found in libxml2

critical

Critical remediation recipe for A use-after-free vulnerability was found in libxml2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-49794disclosed 2025-06-16a.k.a. A use-after-free vulnerability was found in libxml2

CVE-2025-49795 - A NULL pointer dereference vulnerability was found in libxml2 when processing XPath XML expressions

high

High remediation recipe for A NULL pointer dereference vulnerability was found in libxml2 when processing XPath XML expressions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-49795disclosed 2025-06-16a.k.a. A NULL pointer dereference vulnerability was found in libxml2 when processing XPath XML expressions

CVE-2025-49796 - A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger

critical

Critical remediation recipe for A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-49796disclosed 2025-06-16a.k.a. A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger

CVE-2025-6021 - A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can

high

High remediation recipe for A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-6021disclosed 2025-06-12a.k.a. A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can

CVE-2025-5914 - A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar

high

High remediation recipe for A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-5914disclosed 2025-06-09a.k.a. A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar

CVE-2025-48796 - A flaw was found in GIMP. The GIMP ani_load_image() function is vulnerable to a stack-based overflow

high

High remediation recipe for A flaw was found in GIMP. The GIMP ani_load_image() function is vulnerable to a stack-based overflow. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-48796disclosed 2025-05-27a.k.a. A flaw was found in GIMP. The GIMP ani_load_image() function is vulnerable to a stack-based overflow

CVE-2025-48797 - A flaw was found in GIMP when processing certain TGA image files

high

High remediation recipe for A flaw was found in GIMP when processing certain TGA image files. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-48797disclosed 2025-05-27a.k.a. A flaw was found in GIMP when processing certain TGA image files

CVE-2025-48798 - A flaw was found in GIMP when processing XCF image files

high

High remediation recipe for A flaw was found in GIMP when processing XCF image files. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-48798disclosed 2025-05-27a.k.a. A flaw was found in GIMP when processing XCF image files

CVE-2025-5222 - A stack buffer overflow was found in Internationl components for unicode (ICU )

high

High remediation recipe for A stack buffer overflow was found in Internationl components for unicode (ICU ). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-5222disclosed 2025-05-27a.k.a. A stack buffer overflow was found in Internationl components for unicode (ICU )

CVE-2025-5024 - A flaw was found in gnome-remote-desktop

high

High remediation recipe for A flaw was found in gnome-remote-desktop. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-5024disclosed 2025-05-22a.k.a. A flaw was found in gnome-remote-desktop

CVE-2025-37924 - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in kerberos auth

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in kerberos auth. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2025-37924disclosed 2025-05-20a.k.a. In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in kerberos auth

CVE-2025-31223 - The issue was addressed with improved checks

high

High remediation recipe for The issue was addressed with improved checks. Upgrade to fixed in Safari 18.5 and remove the vulnerable authz pattern.

cve CVE-2025-31223disclosed 2025-05-12a.k.a. The issue was addressed with improved checks

CVE-2025-37822 - In the Linux kernel, the following vulnerability has been resolved: riscv: uprobes: Add missing fence.i after

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: riscv: uprobes: Add missing fence.i after. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2025-37822disclosed 2025-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: riscv: uprobes: Add missing fence.i after

CVE-2025-37778 - In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix dangling pointer in krb_authent

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix dangling pointer in krb_authent. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2025-37778disclosed 2025-05-01a.k.a. In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix dangling pointer in krb_authent

CVE-2025-3891 - A flaw was found in the mod_auth_openidc module for Apache httpd

high

High remediation recipe for A flaw was found in the mod_auth_openidc module for Apache httpd. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-3891disclosed 2025-04-29a.k.a. A flaw was found in the mod_auth_openidc module for Apache httpd

CVE-2025-46397 - A flaw was found in xfig. This vulnerability allows possible code execution via local input manipulation via b

high

High remediation recipe for A flaw was found in xfig. This vulnerability allows possible code execution via local input manipulation via b. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-46397disclosed 2025-04-23a.k.a. A flaw was found in xfig. This vulnerability allows possible code execution via local input manipulation via b

CVE-2025-32911 - A use-after-free type vulnerability was found in libsoup, in the soup_message_headers_get_content_disposition(

critical

Critical remediation recipe for A use-after-free type vulnerability was found in libsoup, in the soup_message_headers_get_content_disposition(. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-32911disclosed 2025-04-15a.k.a. A use-after-free type vulnerability was found in libsoup, in the soup_message_headers_get_content_disposition(

CVE-2025-32906 - A flaw was found in libsoup, where the soup_headers_parse_request() function may be vulnerable to an out-of-bo

high

High remediation recipe for A flaw was found in libsoup, where the soup_headers_parse_request() function may be vulnerable to an out-of-bo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-32906disclosed 2025-04-14a.k.a. A flaw was found in libsoup, where the soup_headers_parse_request() function may be vulnerable to an out-of-bo

CVE-2025-32908 - A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers

high

High remediation recipe for A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-32908disclosed 2025-04-14a.k.a. A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers

CVE-2025-32913 - A flaw was found in libsoup, where the soup_message_headers_get_content_disposition() function is vulnerable t

high

High remediation recipe for A flaw was found in libsoup, where the soup_message_headers_get_content_disposition() function is vulnerable t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-32913disclosed 2025-04-14a.k.a. A flaw was found in libsoup, where the soup_message_headers_get_content_disposition() function is vulnerable t

CVE-2025-32914 - A flaw was found in libsoup, where the soup_multipart_new_from_message() function is vulnerable to an out-of-b

high

High remediation recipe for A flaw was found in libsoup, where the soup_multipart_new_from_message() function is vulnerable to an out-of-b. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-32914disclosed 2025-04-14a.k.a. A flaw was found in libsoup, where the soup_multipart_new_from_message() function is vulnerable to an out-of-b

CVE-2025-2784 - A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via th

high

High remediation recipe for A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-2784disclosed 2025-04-03a.k.a. A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via th

CVE-2025-3155 - A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary script

high

High remediation recipe for A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary script. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-3155disclosed 2025-04-03a.k.a. A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary script

CVE-2025-32049 - A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause

high

High remediation recipe for A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-32049disclosed 2025-04-03a.k.a. A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause

CVE-2025-24196 - A type confusion issue was addressed with improved memory handling

high

High remediation recipe for A type confusion issue was addressed with improved memory handling. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-24196disclosed 2025-03-31a.k.a. A type confusion issue was addressed with improved memory handling

CVE-2025-24207 - A permissions issue was addressed with additional restrictions

critical

Critical remediation recipe for A permissions issue was addressed with additional restrictions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-24207disclosed 2025-03-31a.k.a. A permissions issue was addressed with additional restrictions

CVE-2025-24211 - This issue was addressed with improved memory handling

critical

Critical remediation recipe for This issue was addressed with improved memory handling. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-24211disclosed 2025-03-31a.k.a. This issue was addressed with improved memory handling

CVE-2025-24246 - An injection issue was addressed with improved validation

critical

Critical remediation recipe for An injection issue was addressed with improved validation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-24246disclosed 2025-03-31a.k.a. An injection issue was addressed with improved validation

CVE-2025-24250 - This issue was addressed with improved access restrictions

critical

Critical remediation recipe for This issue was addressed with improved access restrictions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-24250disclosed 2025-03-31a.k.a. This issue was addressed with improved access restrictions

CVE-2025-24253 - This issue was addressed with improved handling of symlinks

critical

Critical remediation recipe for This issue was addressed with improved handling of symlinks. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2025-24253disclosed 2025-03-31a.k.a. This issue was addressed with improved handling of symlinks

CVE-2025-31183 - The issue was addressed with improved restriction of data container access

critical

Critical remediation recipe for The issue was addressed with improved restriction of data container access. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-31183disclosed 2025-03-31a.k.a. The issue was addressed with improved restriction of data container access

CVE-2024-8176 - A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive entity expan

high

High remediation recipe for A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive entity expan. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2024-8176disclosed 2025-03-14a.k.a. A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive entity expan

CVE-2025-23368 - A flaw was found in Wildfly Elytron integration

high

High remediation recipe for A flaw was found in Wildfly Elytron integration. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-23368disclosed 2025-03-04a.k.a. A flaw was found in Wildfly Elytron integration

CVE-2024-45782 - A flaw was found in the HFS filesystem. When reading an HFS volume's name at grub_fs_mount(), the HFS filesyst

high

High remediation recipe for A flaw was found in the HFS filesystem. When reading an HFS volume's name at grub_fs_mount(), the HFS filesyst. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2024-45782disclosed 2025-03-03a.k.a. A flaw was found in the HFS filesystem. When reading an HFS volume's name at grub_fs_mount(), the HFS filesyst

CVE-2025-0678 - A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module uses user-con

high

High remediation recipe for A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module uses user-con. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-0678disclosed 2025-03-03a.k.a. A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module uses user-con

CVE-2025-0689 - When reading data from disk, the grub's UDF filesystem module utilizes the user controlled data length metadat

high

High remediation recipe for When reading data from disk, the grub's UDF filesystem module utilizes the user controlled data length metadat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2025-0689disclosed 2025-03-03a.k.a. When reading data from disk, the grub's UDF filesystem module utilizes the user controlled data length metadat

CVE-2025-1125 - When reading data from a hfs filesystem, grub's hfs filesystem module uses user-controlled parameters from the

high

High remediation recipe for When reading data from a hfs filesystem, grub's hfs filesystem module uses user-controlled parameters from the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2025-1125disclosed 2025-03-03a.k.a. When reading data from a hfs filesystem, grub's hfs filesystem module uses user-controlled parameters from the

CVE-2025-26988 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozy Vis

critical

Critical remediation recipe for Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozy Vis. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-26988disclosed 2025-03-03a.k.a. Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozy Vis

CVE-2025-26594 - A use-after-free flaw was found in X.Org and Xwayland

high

High remediation recipe for A use-after-free flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-26594disclosed 2025-02-25a.k.a. A use-after-free flaw was found in X.Org and Xwayland

CVE-2025-26595 - A buffer overflow flaw was found in X.Org and Xwayland

high

High remediation recipe for A buffer overflow flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-26595disclosed 2025-02-25a.k.a. A buffer overflow flaw was found in X.Org and Xwayland

CVE-2025-26596 - A heap overflow flaw was found in X.Org and Xwayland

high

High remediation recipe for A heap overflow flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-26596disclosed 2025-02-25a.k.a. A heap overflow flaw was found in X.Org and Xwayland

CVE-2025-26597 - A buffer overflow flaw was found in X.Org and Xwayland

high

High remediation recipe for A buffer overflow flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-26597disclosed 2025-02-25a.k.a. A buffer overflow flaw was found in X.Org and Xwayland

CVE-2025-26598 - An out-of-bounds write flaw was found in X.Org and Xwayland

high

High remediation recipe for An out-of-bounds write flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-26598disclosed 2025-02-25a.k.a. An out-of-bounds write flaw was found in X.Org and Xwayland

CVE-2025-26599 - An access to an uninitialized pointer flaw was found in X.Org and Xwayland

high

High remediation recipe for An access to an uninitialized pointer flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-26599disclosed 2025-02-25a.k.a. An access to an uninitialized pointer flaw was found in X.Org and Xwayland

CVE-2025-26600 - A use-after-free flaw was found in X.Org and Xwayland

high

High remediation recipe for A use-after-free flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-26600disclosed 2025-02-25a.k.a. A use-after-free flaw was found in X.Org and Xwayland

CVE-2025-26601 - A use-after-free flaw was found in X.Org and Xwayland

high

High remediation recipe for A use-after-free flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-26601disclosed 2025-02-25a.k.a. A use-after-free flaw was found in X.Org and Xwayland

CVE-2025-0624 - A flaw was found in grub2. During the network boot process, when trying to search for the configuration file,

high

High remediation recipe for A flaw was found in grub2. During the network boot process, when trying to search for the configuration file,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-0624disclosed 2025-02-19a.k.a. A flaw was found in grub2. During the network boot process, when trying to search for the configuration file,

CVE-2025-1244 - A command injection flaw was found in the text editor Emacs

high

High remediation recipe for A command injection flaw was found in the text editor Emacs. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-1244disclosed 2025-02-12a.k.a. A command injection flaw was found in the text editor Emacs

CVE-2024-11218 - A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using

high

High remediation recipe for A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2024-11218disclosed 2025-01-22a.k.a. A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using

CVE-2024-45331 - A incorrect privilege assignment vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.3, FortiAnalyzer 7

high

High remediation recipe for A incorrect privilege assignment vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.3, FortiAnalyzer 7. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2024-45331disclosed 2025-01-16a.k.a. A incorrect privilege assignment vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.3, FortiAnalyzer 7

CVE-2024-12084 - A heap-based buffer overflow flaw was found in the rsync daemon

critical

Critical remediation recipe for A heap-based buffer overflow flaw was found in the rsync daemon. Upgrade to fixed SUM_LENGTH and remove the vulnerable authz pattern.

cve CVE-2024-12084disclosed 2025-01-15a.k.a. A heap-based buffer overflow flaw was found in the rsync daemon

CVE-2024-12085 - A flaw was found in rsync which could be triggered when rsync compares file checksums

high

High remediation recipe for A flaw was found in rsync which could be triggered when rsync compares file checksums. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2024-12085disclosed 2025-01-14a.k.a. A flaw was found in rsync which could be triggered when rsync compares file checksums

CVE-2024-48884 - A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet For

high

High remediation recipe for A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet For. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2024-48884disclosed 2025-01-14a.k.a. A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet For

CVE-2025-0306 - A vulnerability was found in Ruby. The Ruby interpreter is vulnerable to the Marvin Attack

high

High remediation recipe for A vulnerability was found in Ruby. The Ruby interpreter is vulnerable to the Marvin Attack. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2025-0306disclosed 2025-01-09a.k.a. A vulnerability was found in Ruby. The Ruby interpreter is vulnerable to the Marvin Attack

CVE-2024-9675 - A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the

high

High remediation recipe for A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2024-9675disclosed 2024-10-09a.k.a. A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the

CVE-2024-8418 - A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processi

high

High remediation recipe for A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2024-8418disclosed 2024-09-04a.k.a. A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processi

CVE-2024-21522 - All versions of the package audify are vulnerable to Improper Validation of Array Index when frameSize is prov

high

High remediation recipe for All versions of the package audify are vulnerable to Improper Validation of Array Index when frameSize is prov. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2024-21522disclosed 2024-07-10a.k.a. All versions of the package audify are vulnerable to Improper Validation of Array Index when frameSize is prov

CVE-2024-21523 - All versions of the package images are vulnerable to Denial of Service (DoS) due to providing unexpected input

high

High remediation recipe for All versions of the package images are vulnerable to Denial of Service (DoS) due to providing unexpected input. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2024-21523disclosed 2024-07-10a.k.a. All versions of the package images are vulnerable to Denial of Service (DoS) due to providing unexpected input

CVE-2024-23667 - An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana

high

High remediation recipe for An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2024-23667disclosed 2024-06-03a.k.a. An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana

CVE-2024-23668 - An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana

high

High remediation recipe for An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2024-23668disclosed 2024-06-03a.k.a. An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana

CVE-2024-23670 - An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana

high

High remediation recipe for An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2024-23670disclosed 2024-06-03a.k.a. An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana

CVE-2024-35862 - In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_is_

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_is_. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2024-35862disclosed 2024-05-19a.k.a. In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_is_

CVE-2024-3727 - A flaw was found in the github.com/containers/image library

high

High remediation recipe for A flaw was found in the github.com/containers/image library. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2024-3727disclosed 2024-05-14a.k.a. A flaw was found in the github.com/containers/image library

CVE-2024-22257 - In Spring Security, versions 5.7.x prior to 5.7.12, 5.8.x prior to 5.8.11, versions 6.0.x prior to 6.0.9, vers

high

High remediation recipe for In Spring Security, versions 5.7.x prior to 5.7.12, 5.8.x prior to 5.8.11, versions 6.0.x prior to 6.0.9, vers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2024-22257disclosed 2024-03-18a.k.a. In Spring Security, versions 5.7.x prior to 5.7.12, 5.8.x prior to 5.8.11, versions 6.0.x prior to 6.0.9, vers

CVE-2023-42789 - A out-of-bounds write vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2.5, Fort

critical

Critical remediation recipe for A out-of-bounds write vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2.5, Fort. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2023-42789disclosed 2024-03-12a.k.a. A out-of-bounds write vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2.5, Fort

CVE-2023-42790 - A stack-based buffer overflow vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2

high

High remediation recipe for A stack-based buffer overflow vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2023-42790disclosed 2024-03-12a.k.a. A stack-based buffer overflow vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2

CVE-2024-21626 - runc is a CLI tool for spawning and running containers on Linux according to the OCI specification

high

High remediation recipe for runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2024-21626disclosed 2024-01-31a.k.a. runc is a CLI tool for spawning and running containers on Linux according to the OCI specification

CVE-2023-40547 - A remote code execution vulnerability was found in Shim

high

High remediation recipe for A remote code execution vulnerability was found in Shim. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2023-40547disclosed 2024-01-25a.k.a. A remote code execution vulnerability was found in Shim

CVE-2023-38950 - A path traversal vulnerability in the iclock API of ZKTeco BioTime v8.5.5 allows unauthenticated attackers to

high

High remediation recipe for A path traversal vulnerability in the iclock API of ZKTeco BioTime v8.5.5 allows unauthenticated attackers to. Upgrade to fixed in version 9.0.120240617.19506 of ZKBioTime. and remove the vulnerable path-traversal pattern.

cve CVE-2023-38950disclosed 2023-08-03a.k.a. A path traversal vulnerability in the iclock API of ZKTeco BioTime v8.5.5 allows unauthenticated attackers to

CVE-2023-3640 - A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU d

high

High remediation recipe for A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2023-3640disclosed 2023-07-24a.k.a. A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU d

CVE-2023-2373 - A vulnerability was identified in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6

high

High remediation recipe for A vulnerability was identified in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2023-2373disclosed 2023-04-28a.k.a. A vulnerability was identified in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6

CVE-2023-2374 - A security flaw has been discovered in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6

high

High remediation recipe for A security flaw has been discovered in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2023-2374disclosed 2023-04-28a.k.a. A security flaw has been discovered in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6

CVE-2023-2375 - A weakness has been identified in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6

high

High remediation recipe for A weakness has been identified in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2023-2375disclosed 2023-04-28a.k.a. A weakness has been identified in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6

CVE-2023-2376 - A security vulnerability has been detected in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6

high

High remediation recipe for A security vulnerability has been detected in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2023-2376disclosed 2023-04-28a.k.a. A security vulnerability has been detected in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6

CVE-2023-2377 - A vulnerability was detected in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6

high

High remediation recipe for A vulnerability was detected in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2023-2377disclosed 2023-04-28a.k.a. A vulnerability was detected in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6

CVE-2023-2378 - A flaw has been found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6

high

High remediation recipe for A flaw has been found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2023-2378disclosed 2023-04-28a.k.a. A flaw has been found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6

CVE-2022-30065 - A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when pr

high

High remediation recipe for A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2022-30065disclosed 2022-05-18a.k.a. A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when pr

CVE-2022-26258 - D-Link DIR-820L 1.05B03 was discovered to contain remote command execution (RCE) vulnerability via HTTP POST t

critical

Critical remediation recipe for D-Link DIR-820L 1.05B03 was discovered to contain remote command execution (RCE) vulnerability via HTTP POST t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2022-26258disclosed 2022-03-28a.k.a. D-Link DIR-820L 1.05B03 was discovered to contain remote command execution (RCE) vulnerability via HTTP POST t

CVE-2021-42237 - Sitecore XP 7.5 Initial Release to Sitecore XP 8.2 Update-7 is vulnerable to an insecure deserialization attac

critical

Critical remediation recipe for Sitecore XP 7.5 Initial Release to Sitecore XP 8.2 Update-7 is vulnerable to an insecure deserialization attac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2021-42237disclosed 2021-11-05a.k.a. Sitecore XP 7.5 Initial Release to Sitecore XP 8.2 Update-7 is vulnerable to an insecure deserialization attac

CVE-2021-29441 - Nacos is a platform designed for dynamic service discovery and configuration and service management

high

High remediation recipe for Nacos is a platform designed for dynamic service discovery and configuration and service management. Upgrade to version 1.4.1 and remove the vulnerable authz pattern.

cve CVE-2021-29441disclosed 2021-04-27a.k.a. Nacos is a platform designed for dynamic service discovery and configuration and service management

CVE-2020-24881 - SSRF exists in osTicket before 1.14.3, where an attacker can add malicious file to server or perform port scan

critical

Critical remediation recipe for SSRF exists in osTicket before 1.14.3, where an attacker can add malicious file to server or perform port scan. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2020-24881disclosed 2020-11-02a.k.a. SSRF exists in osTicket before 1.14.3, where an attacker can add malicious file to server or perform port scan

CVE-2020-26867 - ARC Informatique PcVue prior to version 12.0.17 is vulnerable due to the deserialization of untrusted data, wh

critical

Critical remediation recipe for ARC Informatique PcVue prior to version 12.0.17 is vulnerable due to the deserialization of untrusted data, wh. Upgrade to version 12.0.17 is vulnerable due to the deserialization of untruste and remove the vulnerable deserialization pattern.

cve CVE-2020-26867disclosed 2020-10-12a.k.a. ARC Informatique PcVue prior to version 12.0.17 is vulnerable due to the deserialization of untrusted data, wh

CVE-2020-26868 - ARC Informatique PcVue prior to version 12.0.17 is vulnerable to a denial-of-service attack due to the ability

high

High remediation recipe for ARC Informatique PcVue prior to version 12.0.17 is vulnerable to a denial-of-service attack due to the ability. Upgrade to version 12.0.17 is vulnerable to a denial-of-service attack due to t and remove the vulnerable authz pattern.

cve CVE-2020-26868disclosed 2020-10-12a.k.a. ARC Informatique PcVue prior to version 12.0.17 is vulnerable to a denial-of-service attack due to the ability

CVE-2020-26869 - ARC Informatique PcVue prior to version 12.0.17 is vulnerable to information exposure, allowing unauthorized u

high

High remediation recipe for ARC Informatique PcVue prior to version 12.0.17 is vulnerable to information exposure, allowing unauthorized u. Upgrade to version 12.0.17 is vulnerable to information exposure and remove the vulnerable authz pattern.

cve CVE-2020-26869disclosed 2020-10-12a.k.a. ARC Informatique PcVue prior to version 12.0.17 is vulnerable to information exposure, allowing unauthorized u

CVE-2019-14749 - An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1

high

High remediation recipe for An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2019-14749disclosed 2019-08-07a.k.a. An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1

CVE-2018-10902 - It was found that the raw midi kernel driver does not protect against concurrent access which leads to a doubl

high

High remediation recipe for It was found that the raw midi kernel driver does not protect against concurrent access which leads to a doubl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2018-10902disclosed 2018-08-21a.k.a. It was found that the raw midi kernel driver does not protect against concurrent access which leads to a doubl

CVE-2018-1259 - Spring Data Commons, versions 1.13 prior to 1.13.12 and 2.0 prior to 2.0.7, used in combination with XMLBeam 1

high

High remediation recipe for Spring Data Commons, versions 1.13 prior to 1.13.12 and 2.0 prior to 2.0.7, used in combination with XMLBeam 1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2018-1259disclosed 2018-05-11a.k.a. Spring Data Commons, versions 1.13 prior to 1.13.12 and 2.0 prior to 2.0.7, used in combination with XMLBeam 1

CVE-2018-1274 - Spring Data Commons, versions 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a propert

high

High remediation recipe for Spring Data Commons, versions 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a propert. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2018-1274disclosed 2018-04-18a.k.a. Spring Data Commons, versions 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a propert

CVE-2018-1273 - Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain

critical

Critical remediation recipe for Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2018-1273disclosed 2018-04-11a.k.a. Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain

CVE-2018-7195 - Enhancesoft osTicket before 1.10.2 allows remote attackers to reset arbitrary passwords (when an associated e-

high

High remediation recipe for Enhancesoft osTicket before 1.10.2 allows remote attackers to reset arbitrary passwords (when an associated e-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2018-7195disclosed 2018-03-27a.k.a. Enhancesoft osTicket before 1.10.2 allows remote attackers to reset arbitrary passwords (when an associated e-

CVE-2016-6650 - EMC RecoverPoint versions prior to 5.0 and EMC RecoverPoint for Virtual Machines versions prior to 5.0 have an

high

High remediation recipe for EMC RecoverPoint versions prior to 5.0 and EMC RecoverPoint for Virtual Machines versions prior to 5.0 have an. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2016-6650disclosed 2017-03-21a.k.a. EMC RecoverPoint versions prior to 5.0 and EMC RecoverPoint for Virtual Machines versions prior to 5.0 have an

general/source7 recipes

CVE-2026-13547 - Hanwang e-Face General Management Platform 6 unrestricted file upload

high

High unrestricted file upload in Hanwang e-Face General Management Platform 6. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13547disclosed 2026-06-29a.k.a. Hanwang e-Face General Management Platform 6 unrestricted file upload

CVE-2026-11703 - Missing SNI/ALPN binding on TLS session binding bypass

high

High TLS session binding bypass in Missing SNI/ALPN binding on. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-11703disclosed 2026-06-25a.k.a. Missing SNI/ALPN binding on TLS session binding bypass

CVE-2026-6325 - Out-of-bounds write in SetSuitesHashSigAlgo out-of-bounds write

high

High out-of-bounds write in Out-of-bounds write in SetSuitesHashSigAlgo. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-6325disclosed 2026-06-25a.k.a. Out-of-bounds write in SetSuitesHashSigAlgo out-of-bounds write

CVE-2026-6731 - X.509 name constraint bypass certificate constraint bypass

high

High certificate constraint bypass in X.509 name constraint bypass. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-6731disclosed 2026-06-25a.k.a. X.509 name constraint bypass certificate constraint bypass

CVE-2026-7511 - PKCS7_verify signer confusion allows signature verification bypass

high

High signature verification bypass in PKCS7_verify signer confusion allows. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-7511disclosed 2026-06-25a.k.a. PKCS7_verify signer confusion allows signature verification bypass

CVE-2024-54013 - Penetration Testing engineers at security control bypass

high

High security control bypass in Penetration Testing engineers at. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2024-54013disclosed 2026-04-28a.k.a. Penetration Testing engineers at security control bypass

CVE-2026-3256 - HTTP Session versions before security control bypass

critical

Critical security control bypass in HTTP Session versions before. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-3256disclosed 2026-03-28a.k.a. HTTP Session versions before security control bypass

go133 recipes

CVE-2026-50551 - SiYuan: Stored XSS to RCE via Unsanitized Attribute View Asset Cell Content

critical

Critical remediation recipe for SiYuan: Stored XSS to RCE via Unsanitized Attribute View Asset Cell Content. Upgrade to 0.0.0-20260628153353-2d5d72223df4 and remove the vulnerable command-injection pattern.

cve CVE-2026-50551disclosed 2026-07-10a.k.a. SiYuan: Stored XSS to RCE via Unsanitized Attribute View Asset Cell Content

CVE-2026-54063 - Excelize: Unbounded Row Index Allocation in Worksheet Parser (checkSheet OOM/Panic DoS)

high

High remediation recipe for Excelize: Unbounded Row Index Allocation in Worksheet Parser (checkSheet OOM/Panic DoS). Upgrade to 2.11.0 and remove the vulnerable dos pattern.

cve CVE-2026-54063disclosed 2026-07-10a.k.a. Excelize: Unbounded Row Index Allocation in Worksheet Parser (checkSheet OOM/Panic DoS)

CVE-2026-54066 - SiYuan: Path Traversal via Double URL Encoding in /assets/*path (publish mode arbitrary file─read), Incomplete fix of CV

high

High remediation recipe for SiYuan: Path Traversal via Double URL Encoding in /assets/*path (publish mode arbitrary file─read), Incomplete fix of CV. Upgrade to 0.0.0-20260628153353-2d5d72223df4 and remove the vulnerable path-traversal pattern.

cve CVE-2026-54066disclosed 2026-07-10a.k.a. SiYuan: Path Traversal via Double URL Encoding in /assets/*path (publish mode arbitrary file─read), Incomplete fix of CV

CVE-2026-54067 - SiYuan: Stored XSS to RCE via CSS-snippet <style> breakout in renderSnippet()

critical

Critical remediation recipe for SiYuan: Stored XSS to RCE via CSS-snippet <style> breakout in renderSnippet(). Upgrade to 0.0.0-20260628153353-2d5d72223df4 and remove the vulnerable command-injection pattern.

cve CVE-2026-54067disclosed 2026-07-10a.k.a. SiYuan: Stored XSS to RCE via CSS-snippet <style> breakout in renderSnippet()

CVE-2026-54069 - SiYuan: Unauthenticated Admin API Access via Blanket chrome-extension:// Origin Allowlist

critical

Critical remediation recipe for SiYuan: Unauthenticated Admin API Access via Blanket chrome-extension:// Origin Allowlist. Upgrade to 0.0.0-20260628153353-2d5d72223df4 and remove the vulnerable authz pattern.

cve CVE-2026-54069disclosed 2026-07-10a.k.a. SiYuan: Unauthenticated Admin API Access via Blanket chrome-extension:// Origin Allowlist

CVE-2026-54070 - SiYuan: Stored XSS in Bazaar marketplace via package README event handlers

high

High remediation recipe for SiYuan: Stored XSS in Bazaar marketplace via package README event handlers. Upgrade to 0.0.0-20260628153353-2d5d72223df4 and remove the vulnerable xss pattern.

cve CVE-2026-54070disclosed 2026-07-10a.k.a. SiYuan: Stored XSS in Bazaar marketplace via package README event handlers

CVE-2026-54072 - Authorizer: Unvalidated redirect_uri in /authorize leaks OAuth2 tokens to attacker-controlled URL

critical

Critical remediation recipe for Authorizer: Unvalidated redirect_uri in /authorize leaks OAuth2 tokens to attacker-controlled URL. Upgrade to 0.0.0-20260409051328-bd3f5baf6d3d and remove the vulnerable mcp-auth pattern.

cve CVE-2026-54072disclosed 2026-07-10a.k.a. Authorizer: Unvalidated redirect_uri in /authorize leaks OAuth2 tokens to attacker-controlled URL

CVE-2026-54088 - File Browser: Command Injection via Authentication Hook Shell Substitution (Pre-Authentication RCE)

critical

Critical remediation recipe for File Browser: Command Injection via Authentication Hook Shell Substitution (Pre-Authentication RCE). Upgrade to 2.63.6 and remove the vulnerable command-injection pattern.

cve CVE-2026-54088disclosed 2026-07-10a.k.a. File Browser: Command Injection via Authentication Hook Shell Substitution (Pre-Authentication RCE)

CVE-2026-54089 - File Browser: Authentication Bypass via Proxy Auth Header Forgery

critical

Critical remediation recipe for File Browser: Authentication Bypass via Proxy Auth Header Forgery. Upgrade to Vendor-fixed release and remove the vulnerable auth-bypass pattern.

cve CVE-2026-54089disclosed 2026-07-10a.k.a. File Browser: Authentication Bypass via Proxy Auth Header Forgery

CVE-2026-54158 - SiYuan: Stored XSS to RCE via attribute-view cell rendering in genAVValueHTML()

critical

Critical remediation recipe for SiYuan: Stored XSS to RCE via attribute-view cell rendering in genAVValueHTML(). Upgrade to 0.0.0-20260628153353-2d5d72223df4 and remove the vulnerable command-injection pattern.

cve CVE-2026-54158disclosed 2026-07-10a.k.a. SiYuan: Stored XSS to RCE via attribute-view cell rendering in genAVValueHTML()

CVE-2026-54174 - melange: Incomplete package integrity verification allows data section substitution

high

High remediation recipe for melange: Incomplete package integrity verification allows data section substitution. Upgrade to 0.50.4, 1.2.9 and remove the vulnerable authz pattern.

cve CVE-2026-54174disclosed 2026-07-10a.k.a. melange: Incomplete package integrity verification allows data section substitution

CVE-2026-55229 - Gotenberg is a Docker-powered stateless API for PDF files

high

High remediation recipe for Gotenberg is a Docker-powered stateless API for PDF files. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55229disclosed 2026-07-10a.k.a. Gotenberg is a Docker-powered stateless API for PDF files

CVE-2026-55882 - Tilt defines dev environments as code for microservice apps on Kubernetes

high

High remediation recipe for Tilt defines dev environments as code for microservice apps on Kubernetes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55882disclosed 2026-07-10a.k.a. Tilt defines dev environments as code for microservice apps on Kubernetes

CVE-2026-56254 - In @capgo/capacitor-updater (Cap-go/capgo) before 12.128.2, the end-to-end encryption scheme distributes the p

high

High remediation recipe for In @capgo/capacitor-updater (Cap-go/capgo) before 12.128.2, the end-to-end encryption scheme distributes the p. Upgrade to 12.128.2 and remove the vulnerable crypto pattern.

cve CVE-2026-56254disclosed 2026-07-10a.k.a. In @capgo/capacitor-updater (Cap-go/capgo) before 12.128.2, the end-to-end encryption scheme distributes the p

CVE-2026-56261 - Crawl4AI before 0.8.7 contains a server-side request forgery (SSRF) vulnerability in the Docker API server's /

critical

Critical remediation recipe for Crawl4AI before 0.8.7 contains a server-side request forgery (SSRF) vulnerability in the Docker API server's /. Upgrade to 0.8.7 and remove the vulnerable ssrf pattern.

cve CVE-2026-56261disclosed 2026-07-10a.k.a. Crawl4AI before 0.8.7 contains a server-side request forgery (SSRF) vulnerability in the Docker API server's /

CVE-2026-56279 - Capgo before 12.128.2 contains an information disclosure vulnerability in the get_orgs_v7(userid) RPC function

high

High remediation recipe for Capgo before 12.128.2 contains an information disclosure vulnerability in the get_orgs_v7(userid) RPC function. Upgrade to 12.128.2 and remove the vulnerable authz pattern.

cve CVE-2026-56279disclosed 2026-07-10a.k.a. Capgo before 12.128.2 contains an information disclosure vulnerability in the get_orgs_v7(userid) RPC function

CVE-2026-56305 - Capgo before 12.128.2 contains an authentication bypass vulnerability in the password change endpoint that all

high

High remediation recipe for Capgo before 12.128.2 contains an authentication bypass vulnerability in the password change endpoint that all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-56305disclosed 2026-07-10a.k.a. Capgo before 12.128.2 contains an authentication bypass vulnerability in the password change endpoint that all

CVE-2026-56335 - Capgo before 12.128.2 contains an authorization bypass vulnerability where write-scoped API keys can directly

high

High remediation recipe for Capgo before 12.128.2 contains an authorization bypass vulnerability where write-scoped API keys can directly. Upgrade to 12.128.2 and remove the vulnerable authz pattern.

cve CVE-2026-56335disclosed 2026-07-10a.k.a. Capgo before 12.128.2 contains an authorization bypass vulnerability where write-scoped API keys can directly

CVE-2026-59161 - Excelize is a Go language library for reading and writing Microsoft Excel spreadsheets

high

High remediation recipe for Excelize is a Go language library for reading and writing Microsoft Excel spreadsheets. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59161disclosed 2026-07-10a.k.a. Excelize is a Go language library for reading and writing Microsoft Excel spreadsheets

CVE-2026-50553 - Note Mark: Path traversal via unsanitized book/note slug in migrate export (sibling of GHSA-g49p)

high

High remediation recipe for Note Mark: Path traversal via unsanitized book/note slug in migrate export (sibling of GHSA-g49p). Upgrade to 0.0.0-20260601210719-67b7de04308a and remove the vulnerable path-traversal pattern.

cve CVE-2026-50553disclosed 2026-07-09a.k.a. Note Mark: Path traversal via unsanitized book/note slug in migrate export (sibling of GHSA-g49p)

CVE-2026-59726 - Ruflo is an agent meta-harness for Claude Code and Codex

critical

Critical remediation recipe for Ruflo is an agent meta-harness for Claude Code and Codex. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59726disclosed 2026-07-09a.k.a. Ruflo is an agent meta-harness for Claude Code and Codex

CVE-2026-59832 - SiYuan is an open-source personal knowledge management system

high

High remediation recipe for SiYuan is an open-source personal knowledge management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59832disclosed 2026-07-09a.k.a. SiYuan is an open-source personal knowledge management system

CVE-2026-50197 - Skipper: opaAuthorizeRequestWithBody filter bypasses OPA policy on Transfer-Encoding — chunked / HTTP/2 requests

high

High remediation recipe for Skipper: opaAuthorizeRequestWithBody filter bypasses OPA policy on Transfer-Encoding — chunked / HTTP/2 requests. Upgrade to 0.26.10 and remove the vulnerable command-injection pattern.

cve CVE-2026-50197disclosed 2026-07-08a.k.a. Skipper: opaAuthorizeRequestWithBody filter bypasses OPA policy on Transfer-Encoding — chunked / HTTP/2 requests

CVE-2026-52831 - Nuclio: Unsanitized cron trigger event headers/body injected into CronJob shell command leads to persistent RCE

critical

Critical remediation recipe for Nuclio: Unsanitized cron trigger event headers/body injected into CronJob shell command leads to persistent RCE. Upgrade to 0.0.0-20260601075854-3356b86a8bfa and remove the vulnerable command-injection pattern.

cve CVE-2026-52831disclosed 2026-07-08a.k.a. Nuclio: Unsanitized cron trigger event headers/body injected into CronJob shell command leads to persistent RCE

CVE-2026-53649 - Joro: Unauthenticated Cross-Origin Plugin Upload Leads to RCE

critical

Critical remediation recipe for Joro: Unauthenticated Cross-Origin Plugin Upload Leads to RCE. Upgrade to 0.0.0-20260601151442-5c0ca35db828 and remove the vulnerable command-injection pattern.

cve CVE-2026-53649disclosed 2026-07-08a.k.a. Joro: Unauthenticated Cross-Origin Plugin Upload Leads to RCE

CVE-2026-54784 - CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core

high

High remediation recipe for CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54784disclosed 2026-07-08a.k.a. CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core

CVE-2026-33655 - New API: SSRF Protection Bypass via Unresolved Hostname in Notification URLs

high

High remediation recipe for New API: SSRF Protection Bypass via Unresolved Hostname in Notification URLs. Upgrade to 0.12.0-alpha.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-33655disclosed 2026-07-07a.k.a. New API: SSRF Protection Bypass via Unresolved Hostname in Notification URLs

CVE-2026-53552 - Goploy: Cross-namespace IDOR and RCE via body-supplied row id in project and project_file handlers

critical

Critical remediation recipe for Goploy: Cross-namespace IDOR and RCE via body-supplied row id in project and project_file handlers. Upgrade to Vendor-fixed release and remove the vulnerable command-injection pattern.

cve CVE-2026-53552disclosed 2026-07-07a.k.a. Goploy: Cross-namespace IDOR and RCE via body-supplied row id in project and project_file handlers

CVE-2026-53553 - Goploy: Arbitrary File Read via Path Traversal in /deploy/fileDiff allows Remote Server Compromise

high

High remediation recipe for Goploy: Arbitrary File Read via Path Traversal in /deploy/fileDiff allows Remote Server Compromise. Upgrade to Vendor-fixed release and remove the vulnerable command-injection pattern.

cve CVE-2026-53553disclosed 2026-07-07a.k.a. Goploy: Arbitrary File Read via Path Traversal in /deploy/fileDiff allows Remote Server Compromise

CVE-2026-20896 - Gitea Docker image versions up to and including 1.26.2 use REVERSE_PROXY_TRUSTED_PROXIES=* by default, allowin

critical

Critical remediation recipe for Gitea Docker image versions up to and including 1.26.2 use REVERSE_PROXY_TRUSTED_PROXIES=* by default, allowin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-20896disclosed 2026-07-03a.k.a. Gitea Docker image versions up to and including 1.26.2 use REVERSE_PROXY_TRUSTED_PROXIES=* by default, allowin

CVE-2026-44454 - Coder vulnerable to workspace auto-creation via crafted URL parameters without user consent

high

High remediation recipe for Coder vulnerable to workspace auto-creation via crafted URL parameters without user consent. Upgrade to 2.29.7, 2.30.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-44454disclosed 2026-07-02a.k.a. Coder vulnerable to workspace auto-creation via crafted URL parameters without user consent

CVE-2026-14363 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in The Wiki

critical

Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in The Wiki. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14363disclosed 2026-07-01a.k.a. Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in The Wiki

CVE-2026-53488 - containerd is an open-source container runtime

high

High remediation recipe for containerd is an open-source container runtime. Upgrade to fixed in versions 1.7.33 and remove the vulnerable command-injection pattern.

cve CVE-2026-53488disclosed 2026-07-01a.k.a. containerd is an open-source container runtime

CVE-2026-58521 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in The Wiki

critical

Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in The Wiki. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58521disclosed 2026-07-01a.k.a. Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in The Wiki

CVE-2026-27957 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

high

High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to fixed in 4.0.0-beta.464. and remove the vulnerable command-injection pattern.

cve CVE-2026-27957disclosed 2026-06-30a.k.a. Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

CVE-2026-49478 - Fulcio has OIDC Discovery Redirect Following Allows SSRF and JWKS Substitution for Meta-Issuer Paths, with Kubernetes Se

high

High remediation recipe for Fulcio has OIDC Discovery Redirect Following Allows SSRF and JWKS Substitution for Meta-Issuer Paths, with Kubernetes Se. Upgrade to 1.8.6 and remove the vulnerable ssrf pattern.

cve CVE-2026-49478disclosed 2026-06-30a.k.a. Fulcio has OIDC Discovery Redirect Following Allows SSRF and JWKS Substitution for Meta-Issuer Paths, with Kubernetes Se

CVE-2026-49821 - Fission: Cross-namespace Environment reference in Package allows build-time command execution and SA token exfiltration

high

High remediation recipe for Fission: Cross-namespace Environment reference in Package allows build-time command execution and SA token exfiltration. Upgrade to 1.24.0 and remove the vulnerable ssrf pattern.

cve CVE-2026-49821disclosed 2026-06-30a.k.a. Fission: Cross-namespace Environment reference in Package allows build-time command execution and SA token exfiltration

CVE-2026-49822 - Fission: Cross-namespace event leakage via KubernetesWatchTrigger allows persistent tenant surveillance

high

High remediation recipe for Fission: Cross-namespace event leakage via KubernetesWatchTrigger allows persistent tenant surveillance. Upgrade to 1.24.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-49822disclosed 2026-06-30a.k.a. Fission: Cross-namespace event leakage via KubernetesWatchTrigger allows persistent tenant surveillance

CVE-2026-49823 - Fission: Cross-namespace Package read via unvalidated PackageRef in Function admission webhook

high

High remediation recipe for Fission: Cross-namespace Package read via unvalidated PackageRef in Function admission webhook. Upgrade to 1.24.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-49823disclosed 2026-06-30a.k.a. Fission: Cross-namespace Package read via unvalidated PackageRef in Function admission webhook

CVE-2026-49824 - Fission: Cross-namespace Environment reference via unvalidated EnvironmentRef in Function admission webhook

high

High remediation recipe for Fission: Cross-namespace Environment reference via unvalidated EnvironmentRef in Function admission webhook. Upgrade to 1.24.0 and remove the vulnerable ssrf pattern.

cve CVE-2026-49824disclosed 2026-06-30a.k.a. Fission: Cross-namespace Environment reference via unvalidated EnvironmentRef in Function admission webhook

CVE-2026-50545 - Fission Environment CRD PodSpec Injection Leading to Node Escape and Cluster Takeover

critical

Critical remediation recipe for Fission Environment CRD PodSpec Injection Leading to Node Escape and Cluster Takeover. Upgrade to 1.24.0 and remove the vulnerable cert-validation pattern.

cve CVE-2026-50545disclosed 2026-06-30a.k.a. Fission Environment CRD PodSpec Injection Leading to Node Escape and Cluster Takeover

CVE-2026-50563 - Fission Container Executor Function PodSpec Injection Leading to Node Escape

critical

Critical remediation recipe for Fission Container Executor Function PodSpec Injection Leading to Node Escape. Upgrade to 1.24.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-50563disclosed 2026-06-30a.k.a. Fission Container Executor Function PodSpec Injection Leading to Node Escape

CVE-2026-50564 - Fission Environment CRD podspec passthrough enables hostPID/hostNetwork/privileged pods, node escape

critical

Critical remediation recipe for Fission Environment CRD podspec passthrough enables hostPID/hostNetwork/privileged pods, node escape. Upgrade to 1.24.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-50564disclosed 2026-06-30a.k.a. Fission Environment CRD podspec passthrough enables hostPID/hostNetwork/privileged pods, node escape

CVE-2026-50566 - Fission: Environment Runtime.Container and Builder.Container SecurityContext bypass allows privileged pod creation

critical

Critical remediation recipe for Fission: Environment Runtime.Container and Builder.Container SecurityContext bypass allows privileged pod creation. Upgrade to 1.24.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-50566disclosed 2026-06-30a.k.a. Fission: Environment Runtime.Container and Builder.Container SecurityContext bypass allows privileged pod creation

CVE-2026-56219 - Capgo before 12.128.2 contains a NULL-auth bypass vulnerability in the public.get_org_user_access_rbac functio

high

High remediation recipe for Capgo before 12.128.2 contains a NULL-auth bypass vulnerability in the public.get_org_user_access_rbac functio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56219disclosed 2026-06-30a.k.a. Capgo before 12.128.2 contains a NULL-auth bypass vulnerability in the public.get_org_user_access_rbac functio

CVE-2026-56230 - Capgo before 12.128.2 contains a broken object level authorization vulnerability in middlewareKey() that accep

high

High remediation recipe for Capgo before 12.128.2 contains a broken object level authorization vulnerability in middlewareKey() that accep. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56230disclosed 2026-06-30a.k.a. Capgo before 12.128.2 contains a broken object level authorization vulnerability in middlewareKey() that accep

CVE-2026-56233 - Capgo before 12.128.2 contains a path traversal vulnerability in the builder upload proxy that allows authenti

high

High remediation recipe for Capgo before 12.128.2 contains a path traversal vulnerability in the builder upload proxy that allows authenti. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-56233disclosed 2026-06-30a.k.a. Capgo before 12.128.2 contains a path traversal vulnerability in the builder upload proxy that allows authenti

CVE-2026-56247 - Capgo before 12.128.2 allows org admins to assign org-scoped RBAC roles at app scope without validating role s

high

High remediation recipe for Capgo before 12.128.2 allows org admins to assign org-scoped RBAC roles at app scope without validating role s. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56247disclosed 2026-06-30a.k.a. Capgo before 12.128.2 allows org admins to assign org-scoped RBAC roles at app scope without validating role s

CVE-2026-56249 - Capgo before 12.128.2 contains an authorization bypass vulnerability in the channel creation endpoint that all

high

High remediation recipe for Capgo before 12.128.2 contains an authorization bypass vulnerability in the channel creation endpoint that all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56249disclosed 2026-06-30a.k.a. Capgo before 12.128.2 contains an authorization bypass vulnerability in the channel creation endpoint that all

CVE-2026-56286 - Capgo before 12.128.2 contains an authentication bypass vulnerability in the account deletion endpoint that al

high

High remediation recipe for Capgo before 12.128.2 contains an authentication bypass vulnerability in the account deletion endpoint that al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-56286disclosed 2026-06-30a.k.a. Capgo before 12.128.2 contains an authentication bypass vulnerability in the account deletion endpoint that al

CVE-2026-56300 - Capgo before 12.128.2 contains unauthenticated security definer RPC functions get_user_id and get_org_perm_for

high

High remediation recipe for Capgo before 12.128.2 contains unauthenticated security definer RPC functions get_user_id and get_org_perm_for. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56300disclosed 2026-06-30a.k.a. Capgo before 12.128.2 contains unauthenticated security definer RPC functions get_user_id and get_org_perm_for

CVE-2026-56320 - Capgo before 12.128.2 contains an authorization flaw in POST /private/create_device that accepts a caller-supp

high

High remediation recipe for Capgo before 12.128.2 contains an authorization flaw in POST /private/create_device that accepts a caller-supp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56320disclosed 2026-06-30a.k.a. Capgo before 12.128.2 contains an authorization flaw in POST /private/create_device that accepts a caller-supp

CVE-2026-58165 - OpenZiti through 2.0.0, fixed in commit 3027fdf, contains a privilege escalation vulnerability that allows aut

high

High remediation recipe for OpenZiti through 2.0.0, fixed in commit 3027fdf, contains a privilege escalation vulnerability that allows aut. Upgrade to fixed in commit 3027fdf and remove the vulnerable authz pattern.

cve CVE-2026-58165disclosed 2026-06-30a.k.a. OpenZiti through 2.0.0, fixed in commit 3027fdf, contains a privilege escalation vulnerability that allows aut

CVE-2026-44840 - Dgraph Vulnerable to DQL Injection via checkUserPassword GraphQL Query

high

High remediation recipe for Dgraph Vulnerable to DQL Injection via checkUserPassword GraphQL Query. Upgrade to 25.3.4 and remove the vulnerable command-injection pattern.

cve CVE-2026-44840disclosed 2026-06-29a.k.a. Dgraph Vulnerable to DQL Injection via checkUserPassword GraphQL Query

CVE-2026-49338 - gonic playlist path traversal

high

High-severity gonic path traversal in Subsonic playlist endpoints. Upgrade to 0.21.0+ and constrain playlist paths and ownership checks before filesystem access.

cve CVE-2026-49338disclosed 2026-06-27a.k.a. gonic playlist path traversal

CVE-2026-49339 - gonic playlist ownership bypass

high

High-severity gonic access control failure in playlist retrieval and deletion. Upgrade to 0.21.0+ and enforce ownership checks after canonical path resolution.

cve CVE-2026-49339disclosed 2026-06-27a.k.a. gonic playlist ownership bypass

CVE-2026-49340 - gonic playlist arbitrary file write

high

High-severity gonic arbitrary file write in playlist create/update handlers. Upgrade to 0.21.0+ and enforce contained paths plus least-privilege directory creation.

cve CVE-2026-49340disclosed 2026-06-27a.k.a. gonic playlist arbitrary file write

CVE-2026-45405 - Dokku is a docker-powered PaaS. Prior to 0.38.2, the git:from-archive and certs:add commands extract user-supp

critical

Critical remediation recipe for Dokku is a docker-powered PaaS. Prior to 0.38.2, the git:from-archive and certs:add commands extract user-supp. Upgrade to fixed in 0.38.2. and remove the vulnerable command-injection pattern.

cve CVE-2026-45405disclosed 2026-06-26a.k.a. Dokku is a docker-powered PaaS. Prior to 0.38.2, the git:from-archive and certs:add commands extract user-supp

CVE-2026-45406 - Dokku is a docker-powered PaaS. Prior to 0.38.2, the openresty-vhosts plugin copies files from an app's openre

critical

Critical remediation recipe for Dokku is a docker-powered PaaS. Prior to 0.38.2, the openresty-vhosts plugin copies files from an app's openre. Upgrade to fixed in 0.38.2. and remove the vulnerable command-injection pattern.

cve CVE-2026-45406disclosed 2026-06-26a.k.a. Dokku is a docker-powered PaaS. Prior to 0.38.2, the openresty-vhosts plugin copies files from an app's openre

CVE-2026-46386 - OpenProject is open-source, web-based project management software

critical

Critical remediation recipe for OpenProject is open-source, web-based project management software. Upgrade to fixed in . and remove the vulnerable command-injection pattern.

cve CVE-2026-46386disclosed 2026-06-26a.k.a. OpenProject is open-source, web-based project management software

CVE-2026-48749 - Incus has an arbitrary file read+write on host via rootfs/ symlink in malicious image

critical

Critical remediation recipe for Incus has an arbitrary file read+write on host via rootfs/ symlink in malicious image. Upgrade to 7.2.0 and remove the vulnerable path-traversal pattern.

cve CVE-2026-48749disclosed 2026-06-26a.k.a. Incus has an arbitrary file read+write on host via rootfs/ symlink in malicious image

CVE-2026-48750 - Incus has an arbitrary file write on host via exec-output symlink in crafted image

critical

Critical remediation recipe for Incus has an arbitrary file write on host via exec-output symlink in crafted image. Upgrade to 7.2.0 and remove the vulnerable path-traversal pattern.

cve CVE-2026-48750disclosed 2026-06-26a.k.a. Incus has an arbitrary file write on host via exec-output symlink in crafted image

CVE-2026-48751 - Incus has a restricted project bypass leading to arbitrary command execution

critical

Critical remediation recipe for Incus has a restricted project bypass leading to arbitrary command execution. Upgrade to 7.2.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-48751disclosed 2026-06-26a.k.a. Incus has a restricted project bypass leading to arbitrary command execution

CVE-2026-48752 - Incus has arbitrary file read+write on host via templates/ symlink in malicious image

critical

Critical remediation recipe for Incus has arbitrary file read+write on host via templates/ symlink in malicious image. Upgrade to 7.2.0 and remove the vulnerable path-traversal pattern.

cve CVE-2026-48752disclosed 2026-06-26a.k.a. Incus has arbitrary file read+write on host via templates/ symlink in malicious image

CVE-2026-48753 - Incus has an arbitrary file write via path traversal in S3 multipart upload

critical

Critical remediation recipe for Incus has an arbitrary file write via path traversal in S3 multipart upload. Upgrade to 7.1.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-48753disclosed 2026-06-26a.k.a. Incus has an arbitrary file write via path traversal in S3 multipart upload

CVE-2026-48755 - Incus has an argument injection in backup compression algorithm leading to AFW and ACE

critical

Critical remediation recipe for Incus has an argument injection in backup compression algorithm leading to AFW and ACE. Upgrade to 7.2.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-48755disclosed 2026-06-26a.k.a. Incus has an argument injection in backup compression algorithm leading to AFW and ACE

CVE-2026-48769 - Incus has an arbitrary file write on its client due to trusted image hash

critical

Critical remediation recipe for Incus has an arbitrary file write on its client due to trusted image hash. Upgrade to 7.2.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-48769disclosed 2026-06-26a.k.a. Incus has an arbitrary file write on its client due to trusted image hash

CVE-2026-48788 - Remark42: Cross-Site Scripting (XSS) on /api/v1/img via content-type spoofing

high

High remediation recipe for Remark42: Cross-Site Scripting (XSS) on /api/v1/img via content-type spoofing. Upgrade to 1.16.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-48788disclosed 2026-06-26a.k.a. Remark42: Cross-Site Scripting (XSS) on /api/v1/img via content-type spoofing

CVE-2026-49258 - Nebula Mesh: Web UI lacks ownership checks, enabling cross-operator access to hosts and networks (read, block, delete)

high

High remediation recipe for Nebula Mesh: Web UI lacks ownership checks, enabling cross-operator access to hosts and networks (read, block, delete). Upgrade to Vendor-fixed release and remove the vulnerable command-injection pattern.

cve CVE-2026-49258disclosed 2026-06-26a.k.a. Nebula Mesh: Web UI lacks ownership checks, enabling cross-operator access to hosts and networks (read, block, delete)

CVE-2026-53519 - Nezha dashboard path traversal leaks JWT secret

critical

Critical Nezha pre-auth path traversal where dashboard prefix confusion can disclose config.yaml and JWT secrets. Upgrade to 2.0.13+ and enforce segment-aware static file containment.

cve CVE-2026-53519disclosed 2026-06-26a.k.a. Nezha pre-auth dashboard config disclosure

CVE-2026-53576 - Kestra is an open-source, event-driven orchestration platform

critical

Critical remediation recipe for Kestra is an open-source, event-driven orchestration platform. Upgrade to fixed in 1.0.45 and 1.3.21. and remove the vulnerable command-injection pattern.

cve CVE-2026-53576disclosed 2026-06-26a.k.a. Kestra is an open-source, event-driven orchestration platform

CVE-2026-54350 - Budibase is an open-source low-code platform

critical

Critical remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.12. and remove the vulnerable command-injection pattern.

cve CVE-2026-54350disclosed 2026-06-26a.k.a. Budibase is an open-source low-code platform

CVE-2026-54636 - Dokku is a docker-powered PaaS. Prior to 0.38.7, the cron plugin utilizes commands in the app.json file to man

critical

Critical remediation recipe for Dokku is a docker-powered PaaS. Prior to 0.38.7, the cron plugin utilizes commands in the app.json file to man. Upgrade to fixed in 0.38.7. and remove the vulnerable command-injection pattern.

cve CVE-2026-54636disclosed 2026-06-26a.k.a. Dokku is a docker-powered PaaS. Prior to 0.38.7, the cron plugin utilizes commands in the app.json file to man

GHSA-q6xx-5vr8-p898 - Nezha WebSocket stream ownership bypass

critical

Critical Nezha cross-tenant terminal and file-manager hijack where WebSocket stream UUIDs are not bound to their creator. Upgrade to 2.0.10+ and enforce stream ownership before WebSocket upgrade.

ghsa GHSA-q6xx-5vr8-p898disclosed 2026-06-26a.k.a. Nezha terminal file-manager stream hijack

CVE-2026-39829 - golang.org/x/crypto/ssh: Invoking pathological RSA/DSA parameters may cause DoS

high

High remediation recipe for golang.org/x/crypto/ssh: Invoking pathological RSA/DSA parameters may cause DoS. Upgrade to 0.52.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-39829disclosed 2026-06-25a.k.a. golang.org/x/crypto/ssh: Invoking pathological RSA/DSA parameters may cause DoS

CVE-2026-46597 - golang.org/x/crypto/ssh: Invoking byte arithmetic causes underflow and panic

high

High remediation recipe for golang.org/x/crypto/ssh: Invoking byte arithmetic causes underflow and panic. Upgrade to 0.52.0 and remove the vulnerable dos pattern.

cve CVE-2026-46597disclosed 2026-06-25a.k.a. golang.org/x/crypto/ssh: Invoking byte arithmetic causes underflow and panic

CVE-2026-48702 - Rekor has an OOM Condition due to Unbounded gzip Decompression in Alpine APK Parsing Logic

high

High remediation recipe for Rekor has an OOM Condition due to Unbounded gzip Decompression in Alpine APK Parsing Logic. Upgrade to 1.5.2 and remove the vulnerable ssrf pattern.

cve CVE-2026-48702disclosed 2026-06-25a.k.a. Rekor has an OOM Condition due to Unbounded gzip Decompression in Alpine APK Parsing Logic

CVE-2026-53145 - In the Linux kernel, the following vulnerability has been resolved: drm/gem: Try to fix change_handle ioctl, a

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/gem: Try to fix change_handle ioctl, a. Upgrade to fixed now. Very clearly that and remove the vulnerable authz pattern.

cve CVE-2026-53145disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: drm/gem: Try to fix change_handle ioctl, a

CVE-2026-53176 - In the Linux kernel, the following vulnerability has been resolved: IB/isert: Reject login PDUs shorter than I

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: IB/isert: Reject login PDUs shorter than I. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-53176disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: IB/isert: Reject login PDUs shorter than I

CVE-2026-6325 - Out-of-bounds write in SetSuitesHashSigAlgo when processing an oversized signature algorithms list, allowing a

high

High remediation recipe for Out-of-bounds write in SetSuitesHashSigAlgo when processing an oversized signature algorithms list, allowing a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.

cve CVE-2026-6325disclosed 2026-06-25a.k.a. Out-of-bounds write in SetSuitesHashSigAlgo when processing an oversized signature algorithms list, allowing a

CVE-2026-50189 - Appsmith is a platform to build admin panels, internal tools, and dashboards

high

High remediation recipe for Appsmith is a platform to build admin panels, internal tools, and dashboards. Upgrade to fixed in 2.1. and remove the vulnerable authz pattern.

cve CVE-2026-50189disclosed 2026-06-24a.k.a. Appsmith is a platform to build admin panels, internal tools, and dashboards

CVE-2026-53090 - In the Linux kernel, the following vulnerability has been resolved: bpf: Fix ld_{abs,ind} failure path analysi

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: Fix ld_{abs,ind} failure path analysi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-53090disclosed 2026-06-24a.k.a. In the Linux kernel, the following vulnerability has been resolved: bpf: Fix ld_{abs,ind} failure path analysi

CVE-2023-54365 - Traefik before 2.10.5 and 3.0.0-beta4 is affected by a denial-of-service vulnerability in HTTP/2 request handl

high

High remediation recipe for Traefik before 2.10.5 and 3.0.0-beta4 is affected by a denial-of-service vulnerability in HTTP/2 request handl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2023-54365disclosed 2026-06-23a.k.a. Traefik before 2.10.5 and 3.0.0-beta4 is affected by a denial-of-service vulnerability in HTTP/2 request handl

CVE-2026-52806 - Gogs vulnerable to RCE via git rebase --exec argument injection in pull request merge

critical

Critical remediation recipe for Gogs vulnerable to RCE via git rebase --exec argument injection in pull request merge. Upgrade to 0.14.3 and remove the vulnerable command-injection pattern.

cve CVE-2026-52806disclosed 2026-06-23a.k.a. Gogs vulnerable to RCE via git rebase --exec argument injection in pull request merge

CVE-2026-53754 - Crawl4AI is an open-source LLM friendly web crawler & scraper

high

High remediation recipe for Crawl4AI is an open-source LLM friendly web crawler & scraper. Upgrade to fixed in 0.8.8. and remove the vulnerable command-injection pattern.

cve CVE-2026-53754disclosed 2026-06-23a.k.a. Crawl4AI is an open-source LLM friendly web crawler & scraper

CVE-2026-53755 - Crawl4AI is an open-source LLM friendly web crawler & scraper

high

High remediation recipe for Crawl4AI is an open-source LLM friendly web crawler & scraper. Upgrade to fixed in 0.8.9. and remove the vulnerable command-injection pattern.

cve CVE-2026-53755disclosed 2026-06-23a.k.a. Crawl4AI is an open-source LLM friendly web crawler & scraper

CVE-2026-49396 - Nezha has cross-site GET request that can trigger stored cron commands on a victim's agents

high

High remediation recipe for Nezha has cross-site GET request that can trigger stored cron commands on a victim's agents. Upgrade to 2.0.14 and remove the vulnerable command-injection pattern.

cve CVE-2026-49396disclosed 2026-06-10a.k.a. Nezha has cross-site GET request that can trigger stored cron commands on a victim's agents

CVE-2026-47724 - nebula-mesh API ownership authorization bypass

critical

Critical nebula-mesh API authorization bypass across operator, host, network, firewall, and mobile-bundle endpoints. Upgrade to 0.3.4+, add per-resource ownership checks, and verify non-owner operators receive 403.

cve CVE-2026-47724disclosed 2026-06-08a.k.a. nebula-mesh API ownership authorization bypass

CVE-2026-47252 - Anyquery browser plugin AppleScript/JXA injection

critical

Critical Anyquery browser-plugin code injection through unescaped URLs passed into AppleScript/JXA. Upgrade affected plugin modules, remove script-source string interpolation, and restrict SQL write access to browser tab tables.

cve CVE-2026-47252disclosed 2026-06-07a.k.a. Anyquery AppleScript/JXA URL injection

CVE-2026-46243 - In the Linux kernel, the following vulnerability has been resolved: smb: client: reject userspace cifs.spnego

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: reject userspace cifs.spnego. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46243disclosed 2026-06-01a.k.a. In the Linux kernel, the following vulnerability has been resolved: smb: client: reject userspace cifs.spnego

CVE-2026-48119 - Nezha service-monitor result forgery

high

High-severity Nezha authorization flaw where authenticated agents can forge service-monitor results for other users' services. Upgrade to Nezha 2.0.12+ or the patched 1.x commit, enforce ownership checks on inbound task results, and review cross-tenant monitoring integrity.

cve CVE-2026-48119disclosed 2026-06-01a.k.a. Nezha service-monitor result forgery

CVE-2026-46384 - iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, several Avro decoder paths read attacker-controlled

high

High remediation recipe for iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, several Avro decoder paths read attacker-controlled. Upgrade to fixed in 2.33.0. and remove the vulnerable dos pattern.

cve CVE-2026-46384disclosed 2026-05-29a.k.a. iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, several Avro decoder paths read attacker-controlled

CVE-2026-46385 - iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, the Avro array and map decoders looped over an attac

high

High remediation recipe for iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, the Avro array and map decoders looped over an attac. Upgrade to fixed in 2.33.0. and remove the vulnerable dos pattern.

cve CVE-2026-46385disclosed 2026-05-29a.k.a. iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, the Avro array and map decoders looped over an attac

CVE-2026-46117 - In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Remove user triggerable WARN_ON

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Remove user triggerable WARN_ON. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-46117disclosed 2026-05-28a.k.a. In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Remove user triggerable WARN_ON

CVE-2026-9094 - Casdoor: GetTokenExchangeToken bypass through lack of cross-organization JWT signature check

critical

Critical remediation recipe for Casdoor: GetTokenExchangeToken bypass through lack of cross-organization JWT signature check. Upgrade to 2.387.0 and remove the vulnerable crypto pattern.

cve CVE-2026-9094disclosed 2026-05-28a.k.a. Casdoor: GetTokenExchangeToken bypass through lack of cross-organization JWT signature check

CVE-2026-3473 - Mattermost doesn't validate file ownership and access control

high

High remediation recipe for Mattermost doesn't validate file ownership and access control. Upgrade to 10.11.15, 11.4.5, 11.5.4, 11.6.1 and remove the vulnerable authz pattern.

cve CVE-2026-3473disclosed 2026-05-26a.k.a. Mattermost doesn't validate file ownership and access control

CVE-2026-5308 - Mattermost doesn't enforce request body size limits on plugin HTTP endpoints

high

High remediation recipe for Mattermost doesn't enforce request body size limits on plugin HTTP endpoints. Upgrade to 1.0.1-0.20260410143745-9b41b1fd43c4, 10.11.15, 11.4.5, 11.5.4, 11.6.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-5308disclosed 2026-05-26a.k.a. Mattermost doesn't enforce request body size limits on plugin HTTP endpoints

CVE-2026-5740 - Mattermost doesn't properly validate msgpack-encoded WebSocket frames before memory allocation

high

High remediation recipe for Mattermost doesn't properly validate msgpack-encoded WebSocket frames before memory allocation. Upgrade to 10.11.15, 11.4.5, 11.5.4, 11.6.1, 8.0.0-20260410202636-17939826efa2 and remove the vulnerable dos pattern.

cve CVE-2026-5740disclosed 2026-05-26a.k.a. Mattermost doesn't properly validate msgpack-encoded WebSocket frames before memory allocation

CVE-2026-7374 - KubeVirt has a Link Following vulnerability

critical

Critical remediation recipe for KubeVirt has a Link Following vulnerability. Upgrade to 1.6.6, 1.7.4, 1.8.3 and remove the vulnerable path-traversal pattern.

cve CVE-2026-7374disclosed 2026-05-26a.k.a. KubeVirt has a Link Following vulnerability

CVE-2026-46716 - Nezha Monitoring: RoleMember can run shell on every server (cross-tenant RCE) via POST /api/v1/cron

critical

Critical remediation recipe for Nezha Monitoring: RoleMember can run shell on every server (cross-tenant RCE) via POST /api/v1/cron. Upgrade to 1.14.15-0.20260517022419-d7526351cf97 and remove the vulnerable command-injection pattern.

cve CVE-2026-46716disclosed 2026-05-23a.k.a. Nezha Monitoring: RoleMember can run shell on every server (cross-tenant RCE) via POST /api/v1/cron

CVE-2026-46717 - Nezha Monitoring: RoleMember-reachable SSRF with full response-body reflection via POST /api/v1/notification

high

High remediation recipe for Nezha Monitoring: RoleMember-reachable SSRF with full response-body reflection via POST /api/v1/notification. Upgrade to 1.14.15-0.20260517022419-d06d539d34c1 and remove the vulnerable command-injection pattern.

cve CVE-2026-46717disclosed 2026-05-23a.k.a. Nezha Monitoring: RoleMember-reachable SSRF with full response-body reflection via POST /api/v1/notification

CVE-2026-42595 - Gotenberg Chromium URL SSRF

high

High-severity Gotenberg SSRF through Chromium URL conversion and redirect bypass. Upgrade to 8.32.0+, block metadata/internal egress, and test redirect-aware URL policy.

cve CVE-2026-42595disclosed 2026-05-11a.k.a. Gotenberg Chromium URL SSRF redirect bypass

CVE-2026-42294 - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete

high

High remediation recipe for Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete. Upgrade to patched in versions 3.7.14 and 4.0.5. and remove the vulnerable command-injection pattern.

cve CVE-2026-42294disclosed 2026-05-09a.k.a. Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete

CVE-2026-42296 - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete

high

High remediation recipe for Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete. Upgrade to patched in versions 3.7.14 and 4.0.5. and remove the vulnerable command-injection pattern.

cve CVE-2026-42296disclosed 2026-05-09a.k.a. Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete

CVE-2026-42297 - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete

high

High remediation recipe for Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete. Upgrade to version 4.0.0 to before version 4.0.5 and remove the vulnerable command-injection pattern.

cve CVE-2026-42297disclosed 2026-05-09a.k.a. Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete

CVE-2026-33811 - When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C me

high

High remediation recipe for When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C me. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-33811disclosed 2026-05-07a.k.a. When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C me

CVE-2026-42880 - Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes

critical

Critical remediation recipe for Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Upgrade to patched in versions 3.2.11 and 3.3.9. and remove the vulnerable authz pattern.

cve CVE-2026-42880disclosed 2026-05-07a.k.a. Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes

CVE-2026-44542 - FileBrowser public share DELETE path traversal

critical

Critical FileBrowser public-share DELETE path traversal. Upgrade to the fixed commit, disable public-share delete permissions during rollout, and verify canonical path enforcement.

cve CVE-2026-44542disclosed 2026-05-07a.k.a. FileBrowser public-share DELETE path traversal

CVE-2025-71261 - Harvester's SUSE Virtualization Registration Client Vulnerable to MITM and DOS

high

High remediation recipe for Harvester's SUSE Virtualization Registration Client Vulnerable to MITM and DOS. Upgrade to 1.8.0 and remove the vulnerable command-injection pattern.

cve CVE-2025-71261disclosed 2026-05-06a.k.a. Harvester's SUSE Virtualization Registration Client Vulnerable to MITM and DOS

CVE-2026-43226 - In the Linux kernel, the following vulnerability has been resolved: net/rds: No shortcut out of RDS_CONN_ERROR

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/rds: No shortcut out of RDS_CONN_ERROR. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2026-43226disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: net/rds: No shortcut out of RDS_CONN_ERROR

CVE-2026-41602 - Integer Overflow or Wraparound vulnerability in Apache Thrift TFramedTransport Go language implementation This

high

High remediation recipe for Integer Overflow or Wraparound vulnerability in Apache Thrift TFramedTransport Go language implementation This. Upgrade to upgrade to version 0.23.0 and remove the vulnerable authz pattern.

cve CVE-2026-41602disclosed 2026-04-28a.k.a. Integer Overflow or Wraparound vulnerability in Apache Thrift TFramedTransport Go language implementation This

CVE-2026-40886 - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete

high

High remediation recipe for Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete. Upgrade to fixed in 4.0.5 and 3.7.14. and remove the vulnerable command-injection pattern.

cve CVE-2026-40886disclosed 2026-04-23a.k.a. Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete

CVE-2026-41246 - Contour is a Kubernetes ingress controller using Envoy proxy

high

High remediation recipe for Contour is a Kubernetes ingress controller using Envoy proxy. Upgrade to fixed in v1.33.4 and remove the vulnerable command-injection pattern.

cve CVE-2026-41246disclosed 2026-04-23a.k.a. Contour is a Kubernetes ingress controller using Envoy proxy

CVE-2026-40611 - Let's Encrypt client and ACME library written in Go (Lego)

high

High remediation recipe for Let's Encrypt client and ACME library written in Go (Lego). Upgrade to fixed in 4.34.0. and remove the vulnerable path-traversal pattern.

cve CVE-2026-40611disclosed 2026-04-21a.k.a. Let's Encrypt client and ACME library written in Go (Lego)

CVE-2026-35469 - spdystream is a Go library for multiplexing streams over SPDY connections

high

High remediation recipe for spdystream is a Go library for multiplexing streams over SPDY connections. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-35469disclosed 2026-04-16a.k.a. spdystream is a Go library for multiplexing streams over SPDY connections

CVE-2026-27806 - Fleet Affected by Local Privilege Escalation via Tcl Command Injection in Orbit

high

High remediation recipe for Fleet Affected by Local Privilege Escalation via Tcl Command Injection in Orbit. Upgrade to 4.81.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-27806disclosed 2026-04-08a.k.a. Fleet Affected by Local Privilege Escalation via Tcl Command Injection in Orbit

CVE-2026-39883 - OpenTelemetry-Go is the Go implementation of OpenTelemetry

high

High remediation recipe for OpenTelemetry-Go is the Go implementation of OpenTelemetry. Upgrade to fixed in 1.43.0. and remove the vulnerable authz pattern.

cve CVE-2026-39883disclosed 2026-04-08a.k.a. OpenTelemetry-Go is the Go implementation of OpenTelemetry

CVE-2026-29181 - OpenTelemetry-Go is the Go implementation of OpenTelemetry

high

High remediation recipe for OpenTelemetry-Go is the Go implementation of OpenTelemetry. Upgrade to fixed in 1.41.0. and remove the vulnerable authz pattern.

cve CVE-2026-29181disclosed 2026-04-07a.k.a. OpenTelemetry-Go is the Go implementation of OpenTelemetry

CVE-2026-33815 - pgx contains memory-safety vulnerability

critical

Critical remediation recipe for pgx contains memory-safety vulnerability. Upgrade to 5.9.0 and remove the vulnerable authz pattern.

cve CVE-2026-33815disclosed 2026-04-07a.k.a. pgx contains memory-safety vulnerability

CVE-2026-34742 - The Go MCP SDK used Go's standard encoding/json

high

High remediation recipe for The Go MCP SDK used Go's standard encoding/json. Upgrade to version 1.4.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-34742disclosed 2026-04-02a.k.a. The Go MCP SDK used Go's standard encoding/json

CVE-2026-33487 - goxmlsig provides XML Digital Signatures implemented in Go

high

High remediation recipe for goxmlsig provides XML Digital Signatures implemented in Go. Upgrade to version 1.6.0 and remove the vulnerable crypto pattern.

cve CVE-2026-33487disclosed 2026-03-26a.k.a. goxmlsig provides XML Digital Signatures implemented in Go

CVE-2026-33186 - gRPC-Go is the Go language implementation of gRPC

critical

Critical remediation recipe for gRPC-Go is the Go language implementation of gRPC. Upgrade to version 1.79.3 ensures that any request with a and remove the vulnerable command-injection pattern.

cve CVE-2026-33186disclosed 2026-03-20a.k.a. gRPC-Go is the Go language implementation of gRPC

CVE-2026-28229 - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete

critical

Critical remediation recipe for Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete. Upgrade to fixed in 4.0.2 and 3.7.11. and remove the vulnerable command-injection pattern.

cve CVE-2026-28229disclosed 2026-03-11a.k.a. Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete

CVE-2026-31892 - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete

high

High remediation recipe for Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete. Upgrade to fixed in 4.0.2 and 3.7.11. and remove the vulnerable command-injection pattern.

cve CVE-2026-31892disclosed 2026-03-11a.k.a. Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete

CVE-2026-30861 - WeKnora MCP stdio command injection

critical

Critical WeKnora MCP stdio command-injection risk in versions 0.2.5 through 0.2.9. Upgrade to 0.2.10+, disable user-defined stdio launch, and harden registration and MCP-service policy.

cve CVE-2026-30861disclosed 2026-03-07a.k.a. WeKnora MCP stdio command injection

CVE-2025-15558 - Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that doe

high

High remediation recipe for Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that doe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-15558disclosed 2026-03-04a.k.a. Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that doe

CVE-2026-28400 - Docker Model Runner (DMR) is software used to manage, run, and deploy AI models using Docker

high

High remediation recipe for Docker Model Runner (DMR) is software used to manage, run, and deploy AI models using Docker. Upgrade to version 4.46.0 and remove the vulnerable authz pattern.

cve CVE-2026-28400disclosed 2026-02-27a.k.a. Docker Model Runner (DMR) is software used to manage, run, and deploy AI models using Docker

CVE-2026-28406 - kaniko is a tool to build container images from a Dockerfile, inside a container or Kubernetes cluster

high

High remediation recipe for kaniko is a tool to build container images from a Dockerfile, inside a container or Kubernetes cluster. Upgrade to version 1.25.4 and prior to version 1.25.10 and remove the vulnerable authz pattern.

cve CVE-2026-28406disclosed 2026-02-27a.k.a. kaniko is a tool to build container images from a Dockerfile, inside a container or Kubernetes cluster

CVE-2026-27896 - The Go MCP SDK used Go's standard encoding/json.Unmarshal for JSON-RPC and MCP protocol message parsing in ver

high

High remediation recipe for The Go MCP SDK used Go's standard encoding/json.Unmarshal for JSON-RPC and MCP protocol message parsing in ver. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.

cve CVE-2026-27896disclosed 2026-02-26a.k.a. The Go MCP SDK used Go's standard encoding/json.Unmarshal for JSON-RPC and MCP protocol message parsing in ver

CVE-2025-61732 - A discrepancy between how Go and C/C++ comments were parsed allowed for code smuggling into the resulting cgo

high

High remediation recipe for A discrepancy between how Go and C/C++ comments were parsed allowed for code smuggling into the resulting cgo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-61732disclosed 2026-02-05a.k.a. A discrepancy between how Go and C/C++ comments were parsed allowed for code smuggling into the resulting cgo

CVE-2025-61731 - Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial

high

High remediation recipe for Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-61731disclosed 2026-01-28a.k.a. Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial

CVE-2025-4948 - A flaw was found in the soup_multipart_new_from_message() function of the libsoup HTTP library, which is commo

high

High remediation recipe for A flaw was found in the soup_multipart_new_from_message() function of the libsoup HTTP library, which is commo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-4948disclosed 2025-05-19a.k.a. A flaw was found in the soup_multipart_new_from_message() function of the libsoup HTTP library, which is commo

CVE-2024-52009 - Git credentials are exposed in Atlantis logs

high

High remediation recipe for Git credentials are exposed in Atlantis logs. Upgrade to 0.30.0 and remove the vulnerable command-injection pattern.

cve CVE-2024-52009disclosed 2024-11-08a.k.a. Git credentials are exposed in Atlantis logs

go/gomod27 recipes

CVE-2026-39830 - Go x/crypto ssh unsolicited response deadlock

critical

Critical Go SSH denial-of-service where unsolicited global responses can block the read loop and leak a stuck connection. Upgrade to 0.52.0+ and audit peer-input handling.

cve CVE-2026-39830disclosed 2026-06-25a.k.a. golang.org/x/crypto/ssh unexpected global response deadlock

CVE-2026-39831 - Go x/crypto ssh FIDO presence bypass

critical

Critical Go SSH flaw where FIDO/U2F signature verification does not enforce the user-presence flag. Upgrade to 0.52.0+ and review security-key policy extensions.

cve CVE-2026-39831disclosed 2026-06-25a.k.a. golang.org/x/crypto/ssh FIDO U2F physical presence bypass

CVE-2026-39832 - Go x/crypto ssh agent forwarded constraint loss

critical

Critical Go ssh-agent flaw where forwarding a key strips constraint extensions such as destination restrictions. Upgrade to 0.52.0+ and audit forwarded-agent trust boundaries.

cve CVE-2026-39832disclosed 2026-06-25a.k.a. golang.org/x/crypto ssh agent forwarded key constraint loss

CVE-2026-39833 - Go x/crypto ssh agent confirm constraint bypass

critical

Critical Go ssh-agent flaw where NewKeyring accepts ConfirmBeforeUse constraints but never enforces them. Upgrade to 0.52.0+ and reject unsupported key constraints.

cve CVE-2026-39833disclosed 2026-06-25a.k.a. golang.org/x/crypto ssh agent confirm-before-use bypass

CVE-2026-39834 - Go x/crypto ssh large channel write infinite loop

critical

Critical Go SSH denial-of-service where a single channel write over 4GB can trigger an internal infinite loop. Upgrade to 0.52.0+ and audit large-buffer write paths.

cve CVE-2026-39834disclosed 2026-06-25a.k.a. golang.org/x/crypto/ssh large channel write infinite loop

CVE-2026-42508 - Go x/crypto knownhosts revoked CA bypass

critical

Critical Go knownhosts validation flaw where revoked CA SignatureKey state is not enforced. Upgrade to 0.52.0+ and re-check SSH host key trust policy.

cve CVE-2026-42508disclosed 2026-06-25a.k.a. golang.org/x/crypto/ssh/knownhosts revoked SignatureKey bypass

CVE-2026-46595 - Go x/crypto ssh VerifiedPublicKeyCallback auth bypass

critical

Critical Go x/crypto SSH server authorization bypass where misused callback combinations can skip source-address validation. Upgrade to 0.52.0+ and audit custom server callback wiring.

cve CVE-2026-46595disclosed 2026-06-25a.k.a. golang.org/x/crypto/ssh VerifiedPublicKeyCallback permissions skip enforcement

CVE-2026-48708 - OliveTin template race command contamination

high

High-severity OliveTin race condition where a shared Go text/template instance can cross-contaminate concurrent action executions and crash the process. Upgrade to 3000.13.0+ and isolate template parsing per request.

cve CVE-2026-48708disclosed 2026-06-24a.k.a. OliveTin shared template cross-request command contamination

CVE-2026-42129 - Grafana Loki datasource callResource traversal

high

High-severity Grafana Loki datasource traversal that lets Viewer-role users reach administrative Loki endpoints. Upgrade Grafana to fixed trains, constrain datasource access, and remove unintended internal exposure.

cve CVE-2026-42129disclosed 2026-06-22a.k.a. Grafana Loki datasource resource traversal

CVE-2026-53999 - Radius controller confused-deputy delete

high

High-severity Radius controller cross-tenant deletion via tampered deployment annotations. Upgrade to 0.58.0+, validate tenant ownership on annotation-derived resource IDs, and harden multi-tenant install boundaries.

cve CVE-2026-53999disclosed 2026-06-11a.k.a. Radius controller annotation delete bug

CVE-2026-54090 - File Browser shell metacharacter command injection

high

High-severity File Browser command-execution allowlist bypass when a shell interpreter is configured. Upgrade to 2.33.8+, disable shell-backed exec, and remove execute permission until hardened.

cve CVE-2026-54090disclosed 2026-06-03a.k.a. File Browser exec allowlist bypass

GHSA-hf2g-6j7h-98wg - Klever-Go direct-message goroutine DoS

high

High-severity Klever-Go libp2p direct-message denial of service. Upgrade to 1.7.18+, bound ingress goroutine creation before ProcessReceivedMessage, and test DirectSendID flood controls locally.

ghsa GHSA-hf2g-6j7h-98wgdisclosed 2026-06-02a.k.a. Klever-Go direct-message goroutine DoS

GHSA-rm5c-5x2p-48wr - Klever-Go P2P nil RawData DoS

high

High-severity Klever-Go P2P transaction-interceptor denial of service. Upgrade to 1.7.18+, reject nil transaction RawData before version checks, and add panic-free P2P validation tests.

ghsa GHSA-rm5c-5x2p-48wrdisclosed 2026-06-02a.k.a. Klever-Go P2P nil RawData DoS

GHSA-w4c6-7r69-w7j9 - Klever-Go REST API slow-header DoS

high

High-severity Klever-Go REST API slow-header denial of service. Upgrade to 1.7.18+, replace Gin Engine.Run with explicit HTTP server limits, and add local slow-header regression tests.

ghsa GHSA-w4c6-7r69-w7j9disclosed 2026-06-02a.k.a. Klever-Go REST API slow-header DoS

CVE-2026-44210 - Kata virtiofsd annotation VM escape

high

High-impact Kata Containers virtiofsd argument-injection escape through default-enabled pod annotations. Upgrade Kata, remove dangerous annotation allowances, and verify RuntimeClass admission controls.

cve CVE-2026-44210disclosed 2026-05-20a.k.a. Kata virtiofsd annotation VM escape

CVE-2026-39383 - Gotenberg webhook SSRF

high

High-severity blind SSRF in Gotenberg webhook handling. Upgrade to 8.31.0+ and require explicit webhook allow-lists plus egress controls.

cve CVE-2026-39383disclosed 2026-04-30a.k.a. Gotenberg webhook SSRF

CVE-2026-40280 - Gotenberg SSRF deny-list bypass

critical

Critical Gotenberg SSRF bypass through case-insensitive URL schemes. Upgrade to 8.31.0+ and enforce normalized URL allow-lists plus egress policy.

cve CVE-2026-40280disclosed 2026-04-30a.k.a. Gotenberg deny-list bypass

CVE-2026-40281 - Gotenberg ExifTool argument injection

critical

Critical Gotenberg metadata value newline injection into ExifTool stdin. Upgrade to 8.31.0+ and restrict metadata-write exposure until patched.

cve CVE-2026-40281disclosed 2026-04-30a.k.a. Gotenberg ExifTool injection

CVE-2026-42461 - Arcane Compose template secret disclosure

high

High-severity Arcane authorization gap exposing custom Compose templates and .env secrets. Upgrade to 1.18.0+, require auth on template reads, rotate exposed secrets, and verify API policy fails closed.

cve CVE-2026-42461disclosed 2026-04-30a.k.a. Arcane Compose template secret disclosure

CVE-2026-42560 - go-pkgz/auth Patreon identity collision

critical

Critical Patreon OAuth identity collision in go-pkgz/auth. Upgrade to 1.25.2 or 2.1.2, verify unique Patreon IDs, and clean up any accounts keyed by the shared broken identifier.

cve CVE-2026-42560disclosed 2026-04-30a.k.a. go-pkgz/auth Patreon identity collision

GHSA-rh99-wc69-c255 - Contrast CopyFile policy symlink subversion

high

High-severity Contrast/Kata agent policy gap where CopyFile verification can be subverted through symlinks. Upgrade Contrast to 1.19.1+, regenerate agent policies, and contain host-to-guest CopyFile trust.

ghsa GHSA-rh99-wc69-c255disclosed 2026-04-30a.k.a. Contrast CopyFile policy symlink subversion

CVE-2026-42274 - Heimdall policy interpretation bypass cluster

high

High-severity Heimdall authorization bypass cluster caused by path, host, and encoded-slash interpretation mismatches. Upgrade to 0.17.14+, deny by default, normalize edge requests, and verify rule identity downstream.

cve CVE-2026-42274disclosed 2026-04-25a.k.a. CVE-2026-42273

GHSA-74m3 - zrok WebDAV DriveRoot symlink escape

high

High-severity zrok WebDAV drive backend symlink escape that can expose files outside DriveRoot. Upgrade zrok/v2 to 2.0.2+, remove unsupported v1 shares, and harden shared context roots.

ghsa GHSA-74m3-9qvm-rp9hdisclosed 2026-04-25a.k.a. zrok WebDAV DriveRoot symlink escape

CVE-2026-39858 - Traefik forwarded alias auth bypass

high

High-severity Traefik ForwardAuth and snippet-based authentication bypass through forwarded-header alias spoofing. Upgrade to 2.11.43, 3.6.14, or 3.7.0-rc.2+ and verify auth backends reject underscore-form forwarded headers.

cve CVE-2026-39858disclosed 2026-04-24a.k.a. Traefik forwarded alias spoofing

CVE-2026-41574 - Nhost OAuth email verification bypass

critical

Critical Nhost account takeover through unsafe OAuth email verification and provider linking. Upgrade to the fixed Nhost revision, require verified provider email claims, and audit linked identities.

cve CVE-2026-41574disclosed 2026-04-18a.k.a. GHSA-6g38-8j4p-j3pr

CVE-2026-41589 - Wish SCP path traversal

critical

Critical path traversal in Wish SCP middleware. Upgrade charm.land/wish/v2 to 2.0.1+, replace unsafe root-prefix checks, and verify SCP read/write operations cannot escape their configured root.

cve CVE-2026-41589disclosed 2026-04-18a.k.a. GHSA-xjvp-7243-rg9h

CVE-2026-40884 - goshs empty-username SFTP authentication bypass

critical

Critical goshs SFTP authentication bypass. Upgrade to goshs v2.0.0+ or v2.0.0-beta.6+, reject empty-username SFTP auth, and verify unauthenticated SFTP sessions cannot read or modify files.

cve CVE-2026-40884disclosed 2026-04-14a.k.a. goshs empty-username SFTP authentication bypass

java/maven108 recipes

CVE-2026-44795 - Spinnaker is an open source, multi-cloud continuous delivery platform

high

High remediation recipe for Spinnaker is an open source, multi-cloud continuous delivery platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-44795disclosed 2026-07-10a.k.a. Spinnaker is an open source, multi-cloud continuous delivery platform

CVE-2026-55405 - LangChain4j is a Java library for building LLM-powered applications on the JVM

high

High remediation recipe for LangChain4j is a Java library for building LLM-powered applications on the JVM. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55405disclosed 2026-07-10a.k.a. LangChain4j is a Java library for building LLM-powered applications on the JVM

CVE-2026-49485 - org.hl7.fhir.core: ReDoS via FHIRPath matches()/replaceMatches() in FHIR Validator HTTP Endpoint

high

High remediation recipe for org.hl7.fhir.core: ReDoS via FHIRPath matches()/replaceMatches() in FHIR Validator HTTP Endpoint. Upgrade to 6.9.4.2, 6.9.9 and remove the vulnerable command-injection pattern.

cve CVE-2026-49485disclosed 2026-07-09a.k.a. org.hl7.fhir.core: ReDoS via FHIRPath matches()/replaceMatches() in FHIR Validator HTTP Endpoint

CVE-2026-59826 - Metabase is an open-source business intelligence and embedded analytics tool

critical

Critical remediation recipe for Metabase is an open-source business intelligence and embedded analytics tool. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59826disclosed 2026-07-09a.k.a. Metabase is an open-source business intelligence and embedded analytics tool

CVE-2026-59827 - Metabase is an open-source business intelligence and embedded analytics tool

critical

Critical remediation recipe for Metabase is an open-source business intelligence and embedded analytics tool. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59827disclosed 2026-07-09a.k.a. Metabase is an open-source business intelligence and embedded analytics tool

CVE-2026-49464 - NL Portal: IDOR allows any authenticated user to complete and tamper with another user's taak

high

High remediation recipe for NL Portal: IDOR allows any authenticated user to complete and tamper with another user's taak. Upgrade to 3.0.1 and remove the vulnerable authz pattern.

cve CVE-2026-49464disclosed 2026-07-08a.k.a. NL Portal: IDOR allows any authenticated user to complete and tamper with another user's taak

CVE-2026-49832 - DSpace has possible Remote Code Execution (RCE) through Velocity Templates used by LDN

high

High remediation recipe for DSpace has possible Remote Code Execution (RCE) through Velocity Templates used by LDN. Upgrade to 10.0, 8.4, 9.3 and remove the vulnerable command-injection pattern.

cve CVE-2026-49832disclosed 2026-07-08a.k.a. DSpace has possible Remote Code Execution (RCE) through Velocity Templates used by LDN

CVE-2026-55470 - HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java

high

High remediation recipe for HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55470disclosed 2026-07-08a.k.a. HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java

CVE-2026-55471 - HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java

high

High remediation recipe for HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55471disclosed 2026-07-08a.k.a. HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java

CVE-2026-55760 - Handlebars.java provides logic-less and semantic Mustache templates with Java

high

High remediation recipe for Handlebars.java provides logic-less and semantic Mustache templates with Java. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55760disclosed 2026-07-08a.k.a. Handlebars.java provides logic-less and semantic Mustache templates with Java

CVE-2026-34151 - XWiki Platform Old Core: Resource path traversal via /skin/ action endpoint in Jetty 12+

high

High remediation recipe for XWiki Platform Old Core: Resource path traversal via /skin/ action endpoint in Jetty 12+. Upgrade to 17.10.5, 18.2.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-34151disclosed 2026-07-07a.k.a. XWiki Platform Old Core: Resource path traversal via /skin/ action endpoint in Jetty 12+

CVE-2026-14265 - Deserialization of untrusted data in the RemoteQueryCachePlugin in Amazon Web Services AWS Advanced JDBC Wrapp

high

High remediation recipe for Deserialization of untrusted data in the RemoteQueryCachePlugin in Amazon Web Services AWS Advanced JDBC Wrapp. Upgrade to version 4.0.1 or later. and remove the vulnerable deserialization pattern.

cve CVE-2026-14265disclosed 2026-07-01a.k.a. Deserialization of untrusted data in the RemoteQueryCachePlugin in Amazon Web Services AWS Advanced JDBC Wrapp

CVE-2026-39379 - GeoNetwork has reflected XSS through client-side template injection

high

High remediation recipe for GeoNetwork has reflected XSS through client-side template injection. Upgrade to 4.2.15, 4.4.10 and remove the vulnerable command-injection pattern.

cve CVE-2026-39379disclosed 2026-07-01a.k.a. GeoNetwork has reflected XSS through client-side template injection

CVE-2026-46487 - GeoNetwork has ACL bypass on Elasticsearch search when request body omits query field

high

High remediation recipe for GeoNetwork has ACL bypass on Elasticsearch search when request body omits query field. Upgrade to 4.2.16, 4.4.11 and remove the vulnerable ssrf pattern.

cve CVE-2026-46487disclosed 2026-07-01a.k.a. GeoNetwork has ACL bypass on Elasticsearch search when request body omits query field

CVE-2026-12856 - A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code

high

High remediation recipe for A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-12856disclosed 2026-06-29a.k.a. A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code

CVE-2026-13528 - YunaiV/zhijiantianya ruoyi-vue-pro path traversal

high

High path traversal in YunaiV/zhijiantianya ruoyi-vue-pro. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13528disclosed 2026-06-29a.k.a. YunaiV/zhijiantianya ruoyi-vue-pro path traversal

CVE-2026-47424 - OpenAM Authenticated RCE via Groovy Sandbox Escape

high

High remediation recipe for OpenAM Authenticated RCE via Groovy Sandbox Escape. Upgrade to 16.1.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-47424disclosed 2026-06-29a.k.a. OpenAM Authenticated RCE via Groovy Sandbox Escape

CVE-2026-47426 - OpenAM OAuth Client Impersonation via JWKS Resolver Cache

high

High remediation recipe for OpenAM OAuth Client Impersonation via JWKS Resolver Cache. Upgrade to 16.1.1 and remove the vulnerable mcp-auth pattern.

cve CVE-2026-47426disclosed 2026-06-29a.k.a. OpenAM OAuth Client Impersonation via JWKS Resolver Cache

CVE-2026-13500 - antlr ANTLR4 code injection

high

High code injection in antlr ANTLR4. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13500disclosed 2026-06-28a.k.a. antlr ANTLR4 code injection

CVE-2026-13500 - ANTLR4 grammar action block code injection

high

High-severity ANTLR4 grammar action block code injection. A malicious grammar submitted through a plugin, PR, or tenant extension can inject code into generated parser output and reach CI or runtime execution.

cve CVE-2026-13500disclosed 2026-06-28

CVE-2026-2053 - The WSO2 API Manager's message flow component, when processing WS-Addressing headers, does not sufficiently va

high

High remediation recipe for The WSO2 API Manager's message flow component, when processing WS-Addressing headers, does not sufficiently va. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-2053disclosed 2026-06-26a.k.a. The WSO2 API Manager's message flow component, when processing WS-Addressing headers, does not sufficiently va

CVE-2026-46619 - OpenAM Authentication Bypass via MSISDN LDAP Injection

high

High remediation recipe for OpenAM Authentication Bypass via MSISDN LDAP Injection. Upgrade to 16.1.1 and remove the vulnerable auth-bypass pattern.

cve CVE-2026-46619disclosed 2026-06-26a.k.a. OpenAM Authentication Bypass via MSISDN LDAP Injection

CVE-2026-46623 - OpenAM Account Takeover via Unverified Password Change in OAuth2 Module

high

High remediation recipe for OpenAM Account Takeover via Unverified Password Change in OAuth2 Module. Upgrade to 16.1.1 and remove the vulnerable mcp-auth pattern.

cve CVE-2026-46623disclosed 2026-06-26a.k.a. OpenAM Account Takeover via Unverified Password Change in OAuth2 Module

CVE-2026-53914 - JetBrains Kotlin unsafe deserialization

critical

Critical unsafe deserialization in JetBrains Kotlin. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-53914disclosed 2026-06-26a.k.a. JetBrains Kotlin unsafe deserialization

CVE-2026-12569 - PTC Windchill and FlexPLM Improper Input Validation Vulnerability

highKEV

High remediation recipe for PTC Windchill and FlexPLM Improper Input Validation Vulnerability. Upgrade to Apply mitigations or fixed release per vendor/CISA KEV instructions and remove the vulnerable command-injection pattern.

cve CVE-2026-12569disclosed 2026-06-25a.k.a. PTC Windchill and FlexPLM Improper Input Validation Vulnerability

CVE-2026-12975 - A flaw was found in Apicurio Registry. The ContentTypeUtil.isParsableXml() method creates a SAXParserFactory w

high

High remediation recipe for A flaw was found in Apicurio Registry. The ContentTypeUtil.isParsableXml() method creates a SAXParserFactory w. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-12975disclosed 2026-06-25a.k.a. A flaw was found in Apicurio Registry. The ContentTypeUtil.isParsableXml() method creates a SAXParserFactory w

CVE-2026-12992 - A flaw was found in Apicurio Registry. The WSDLReaderAccessor creates a wsdl4j WSDLReader without disabling th

high

High remediation recipe for A flaw was found in Apicurio Registry. The WSDLReaderAccessor creates a wsdl4j WSDLReader without disabling th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-12992disclosed 2026-06-25a.k.a. A flaw was found in Apicurio Registry. The WSDLReaderAccessor creates a wsdl4j WSDLReader without disabling th

CVE-2026-45051 - OpenAM WebAuthn deserialization RCE

critical

Critical OpenAM WebAuthn Java deserialization RCE when attacker-controlled attributes are read by the authenticator storage path. Upgrade to 16.1.1 and lock WebAuthn storage to server-managed attributes.

cve CVE-2026-45051disclosed 2026-06-24a.k.a. OpenAM WebAuthn authenticator storage deserialization RCE

CVE-2026-45052 - OpenAM Liberty Discovery authz bypass

critical

Critical OpenAM Liberty SOAP receiver authorization bypass that lets unauthenticated callers persist discovery entries with elevated server-side privileges. Upgrade to 16.1.1 and disable Liberty endpoints where unused.

cve CVE-2026-45052disclosed 2026-06-24a.k.a. OpenAM Liberty Discovery anonymous SOAP write bypass

CVE-2026-50193 - jackson-databind contains the general-purpose security control bypass

high

High security control bypass in jackson-databind contains the general-purpose. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-50193disclosed 2026-06-23a.k.a. jackson-databind contains the general-purpose security control bypass

CVE-2026-50193 - jackson-databind deeply nested JsonNode denial of service

high

High remediation recipe for jackson-databind deeply nested JsonNode denial of service. Apply jackson-databind 2.14.0 or later and remove the vulnerable dos pattern.

cve CVE-2026-50193disclosed 2026-06-23a.k.a. jackson-databind deeply nested JsonNode denial of service

CVE-2026-50193 - jackson-databind JsonNode deep nesting denial of service

high

High-severity jackson-databind JsonNode deep nesting denial of service. Small nested JSON payloads can consume outsized CPU/stack resources and take down API nodes.

cve CVE-2026-50193disclosed 2026-06-23

CVE-2026-11745 - Central Dogma Git mirror SSH host-key verification bypass

high

High-severity Central Dogma Git mirror flaw where git+ssh mirrors accept any host key, enabling on-path repository compromise. Upgrade to 0.84.0+, pin host keys, and rotate mirror credentials.

cve CVE-2026-11745disclosed 2026-06-22a.k.a. Central Dogma SSH mirror host-key bypass

CVE-2026-11746 - Central Dogma ZooKeeper replication secret cluster takeover

critical

Critical Central Dogma replication-secret fallback flaw that can let a network attacker join the ZooKeeper-backed replication quorum and execute replicated actions. Upgrade to 0.84.0+, set an explicit secret, and rotate credentials.

cve CVE-2026-11746disclosed 2026-06-22a.k.a. Central Dogma replication secret fallback

CVE-2026-50559 - Quarkus is a Java framework for building cloud-native applications

high

High remediation recipe for Quarkus is a Java framework for building cloud-native applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-50559disclosed 2026-06-19a.k.a. Quarkus is a Java framework for building cloud-native applications

CVE-2026-40987 - Spring Integration remote file sync arbitrary write

high

High-severity Spring Integration remote file synchronizer path handling flaw. Upgrade to the fixed Spring Integration line and verify server-supplied filenames cannot escape the configured local directory.

cve CVE-2026-40987disclosed 2026-06-10a.k.a. Spring Integration remote-file synchronizer arbitrary file write

CVE-2026-40993 - An attacker with write security control bypass

high

High security control bypass in An attacker with write. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-40993disclosed 2026-06-10a.k.a. An attacker with write security control bypass

CVE-2026-40993 - Spring Security JDBC SAML credential deserialization

high

High-severity Spring Security JDBC SAML credential deserialization. A writable SAML metadata table can turn a database-write foothold into credential deserialization and identity-provider trust compromise.

cve CVE-2026-40993disclosed 2026-06-10

CVE-2026-40993 - Spring Security SAML credential BLOB deserialization RCE

high

High remediation recipe for Spring Security SAML credential BLOB deserialization RCE. Apply Spring Security 7.0.6 OSS or 7.0.5.1 enterprise and remove the vulnerable deserialization pattern.

cve CVE-2026-40993disclosed 2026-06-10a.k.a. Spring Security SAML credential BLOB deserialization RCE

CVE-2026-40994 - Spring WS BSP validation disabled by default

high

High-severity Spring Web Services WS-Security validation weakness. Upgrade to the fixed Spring WS release or explicitly force BSP compliance for inbound WSS4J validation.

cve CVE-2026-40994disclosed 2026-06-10a.k.a. Spring Wss4jSecurityInterceptor BSP validation default bypass

CVE-2026-40998 - Spring WS XPath XXE via StreamSource and SAXSource

high

High-severity Spring Web Services XPath XXE exposure. Upgrade to the fixed Spring WS release and verify untrusted XML never reaches Jaxp13XPathTemplate through vulnerable source types.

cve CVE-2026-40998disclosed 2026-06-10a.k.a. Spring Jaxp13XPathTemplate XXE

CVE-2026-41003 - Spring Security generated form XSS

high

High-severity Spring Security generated HTML XSS exposure. Upgrade Spring Security and verify attacker-influenced RelyingPartyRegistration values cannot flow into generated forms without encoding.

cve CVE-2026-41003disclosed 2026-06-09a.k.a. Spring Security generated HTML form XSS

CVE-2026-41838 - IDs for WebSocket sessions security control bypass

high

High security control bypass in IDs for WebSocket sessions. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-41838disclosed 2026-06-09a.k.a. IDs for WebSocket sessions security control bypass

CVE-2026-41848 - Applications may be vulnerable ReDoS

high

High ReDoS in Applications may be vulnerable. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-41848disclosed 2026-06-09a.k.a. Applications may be vulnerable ReDoS

CVE-2026-41851 - Applications which accept user-supplied denial of service

high

High denial of service in Applications which accept user-supplied. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-41851disclosed 2026-06-09a.k.a. Applications which accept user-supplied denial of service

CVE-2026-41842 - Spring versioned resource resolution DoS

high

High-severity Spring MVC and WebFlux static resource resolution DoS. Upgrade Spring Framework and verify versioned file-system resource handlers cannot be tied up by malicious requests.

cve CVE-2026-41842disclosed 2026-06-08a.k.a. Spring MVC/WebFlux versioned resources DoS

CVE-2026-41849 - Spring SpEL integer overflow DoS

high

High-severity Spring Framework SpEL integer overflow denial of service. Upgrade Spring Framework 5.3.x and verify untrusted SpEL evaluation is removed or tightly constrained.

cve CVE-2026-41849disclosed 2026-06-08a.k.a. Spring SpEL integer overflow resource exhaustion

CVE-2026-41850 - Spring SpEL algorithmic DoS

high

High-severity Spring Framework SpEL algorithmic denial of service. Upgrade Spring Framework and verify untrusted expression evaluation is patched and bounded with the new maxOperations control.

cve CVE-2026-41850disclosed 2026-06-08a.k.a. Spring SpEL algorithmic resource exhaustion

CVE-2026-44249 - Netty IPv6 subnet filter bypass

high

High-severity Netty IPv6 access-control bypass in IpSubnetFilterRule. Upgrade netty-handler to 4.1.135.Final or 4.2.15.Final and add deny-by-default regression tests for IPv6 boundary checks.

cve CVE-2026-44249disclosed 2026-06-05a.k.a. Netty IPv6 subnet filter bypass

CVE-2026-44250 - Netty Redis array depth denial of service

high

High-severity Netty RedisArrayAggregator memory exhaustion. Upgrade netty-codec-redis to 4.1.135.Final or 4.2.15.Final and enforce nested-array depth limits on untrusted Redis traffic.

cve CVE-2026-44250disclosed 2026-06-05a.k.a. Netty Redis array depth DoS

CVE-2026-47691 - Netty DNS bailiwick cache poisoning

high

Netty DNS resolver cache-poisoning via insufficient bailiwick checks for NS and CNAME records. Upgrade netty-resolver-dns to 4.1.135.Final or 4.2.15.Final+, align Netty modules, flush resolver caches, and audit DNS-sensitive outbound clients.

cve CVE-2026-47691disclosed 2026-06-05a.k.a. CVE-2026-45674

CVE-2026-50010 - Netty trust manager hostname verification bypass

high

High-severity Netty TLS client flaw where wrapping a plain X509TrustManager can silently disable hostname verification. Upgrade netty-handler and stop passing plain trust managers into forClient() contexts.

cve CVE-2026-50010disclosed 2026-06-05a.k.a. Netty plain trust manager hostname verification bypass

CVE-2026-47065 - ZDRES-232: resolveProxyClass Not Overridden - acceptMatchers Filter Bypass via java.lang.reflect.Proxy Assessm

critical

Critical remediation recipe for ZDRES-232: resolveProxyClass Not Overridden - acceptMatchers Filter Bypass via java.lang.reflect.Proxy Assessm. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-47065disclosed 2026-06-03a.k.a. ZDRES-232: resolveProxyClass Not Overridden - acceptMatchers Filter Bypass via java.lang.reflect.Proxy Assessm

CVE-2026-35563 - Apache Directory LDAP API lacks server certificate verification for LDAP hostnames

high

High remediation recipe for Apache Directory LDAP API lacks server certificate verification for LDAP hostnames. Upgrade to 2.1.8 and remove the vulnerable command-injection pattern.

cve CVE-2026-35563disclosed 2026-06-01a.k.a. Apache Directory LDAP API lacks server certificate verification for LDAP hostnames

CVE-2026-42588 - Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ have a Code Injection issue

high

High remediation recipe for Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ have a Code Injection issue. Upgrade to 5.19.7, 6.2.6 and remove the vulnerable authz pattern.

cve CVE-2026-42588disclosed 2026-06-01a.k.a. Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ have a Code Injection issue

CVE-2026-44825 - Apache Solr has hardcoded credentials in the Basic Authentication setup tool

high

High remediation recipe for Apache Solr has hardcoded credentials in the Basic Authentication setup tool. Upgrade to Vendor-fixed release and remove the vulnerable credential-leak pattern.

cve CVE-2026-44825disclosed 2026-06-01a.k.a. Apache Solr has hardcoded credentials in the Basic Authentication setup tool

CVE-2026-45505 - Apache ActiveMQ Jolokia discovery wrapper bypass

high

High-severity Apache ActiveMQ Classic Jolokia/JMX RCE bypass of the CVE-2026-34197 fix. Upgrade to 5.19.7 or 6.2.6, restrict Jolokia, and prove broker-management operations are admin-only.

cve CVE-2026-45505disclosed 2026-06-01a.k.a. ActiveMQ Jolokia discovery wrapper bypass

CVE-2026-48827 - Apache MINA SSHD bundle sshd-git has a path traversal vulnerability

high

High remediation recipe for Apache MINA SSHD bundle sshd-git has a path traversal vulnerability. Upgrade to 2.18.0, 3.0.0-M4 and remove the vulnerable path-traversal pattern.

cve CVE-2026-48827disclosed 2026-06-01a.k.a. Apache MINA SSHD bundle sshd-git has a path traversal vulnerability

CVE-2026-49157 - Apache ActiveMQ has an Incorrect Default Permissions vulnerability

high

High remediation recipe for Apache ActiveMQ has an Incorrect Default Permissions vulnerability. Upgrade to 5.19.7, 6.2.6 and remove the vulnerable authz pattern.

cve CVE-2026-49157disclosed 2026-06-01a.k.a. Apache ActiveMQ has an Incorrect Default Permissions vulnerability

CVE-2026-49361 - Apache Fluss: Unauthenticated remote attackers can exhaust JVM heap memory using crafted frame headers via TabletServer/

high

High remediation recipe for Apache Fluss: Unauthenticated remote attackers can exhaust JVM heap memory using crafted frame headers via TabletServer/. Upgrade to 0.9.1-incubating and remove the vulnerable dos pattern.

cve CVE-2026-49361disclosed 2026-06-01a.k.a. Apache Fluss: Unauthenticated remote attackers can exhaust JVM heap memory using crafted frame headers via TabletServer/

CVE-2026-42782 - Apache Syncope has an Improper Isolation or Compartmentalization vulnerability

high

High remediation recipe for Apache Syncope has an Improper Isolation or Compartmentalization vulnerability. Upgrade to 4.0.6, 4.1.1 and remove the vulnerable authz pattern.

cve CVE-2026-42782disclosed 2026-05-26a.k.a. Apache Syncope has an Improper Isolation or Compartmentalization vulnerability

CVE-2026-44417 - Apache CXF: Untrusted JMS configuration can lead to RCE

high

High remediation recipe for Apache CXF: Untrusted JMS configuration can lead to RCE. Upgrade to 3.6.11, 4.1.6, 4.2.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-44417disclosed 2026-05-26a.k.a. Apache CXF: Untrusted JMS configuration can lead to RCE

CVE-2026-44930 - Apache CXF has an LDAP injection vulnerability

critical

Critical remediation recipe for Apache CXF has an LDAP injection vulnerability. Upgrade to 3.6.11, 4.1.6, 4.2.1 and remove the vulnerable cert-validation pattern.

cve CVE-2026-44930disclosed 2026-05-26a.k.a. Apache CXF has an LDAP injection vulnerability

CVE-2026-44632 - Yamcs Janino expression RCE

critical

Critical Yamcs algorithm-evaluation code injection through JavaExprAlgorithmExecutionFactory. Upgrade Yamcs, restrict mission-database mutation privileges, and add safe checks around algorithm override routes.

cve CVE-2026-44632disclosed 2026-05-21a.k.a. Yamcs Janino algorithm expression RCE

CVE-2026-6009 - Jaspersoft Reports: Java Deserialization Vulnerability Lleads to Remote Code Execution (RCE)

high

High remediation recipe for Jaspersoft Reports: Java Deserialization Vulnerability Lleads to Remote Code Execution (RCE). Upgrade to 7.0.7 and remove the vulnerable command-injection pattern.

cve CVE-2026-6009disclosed 2026-05-19a.k.a. Jaspersoft Reports: Java Deserialization Vulnerability Lleads to Remote Code Execution (RCE)

CVE-2026-7504 - A flaw was found in Keycloak's URL validation logic during redirect operations

high

High remediation recipe for A flaw was found in Keycloak's URL validation logic during redirect operations. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-7504disclosed 2026-05-19a.k.a. A flaw was found in Keycloak's URL validation logic during redirect operations

CVE-2026-43515 - Apache Tomcat security constraints authorization bypass

critical

Critical Apache Tomcat authorization bypass when multiple method constraints use the same extension pattern. Upgrade Tomcat, collapse ambiguous security constraints, and add route-level tests for protected HTTP methods.

cve CVE-2026-43515disclosed 2026-05-12a.k.a. Tomcat security constraint bypass

CVE-2026-27478 - Unity Catalog JWT issuer bypass

critical

Critical Unity Catalog token-exchange authentication bypass. Upgrade to 0.4.1+, pin trusted issuers and audiences, and add forged-issuer negative tests.

cve CVE-2026-27478disclosed 2026-05-11a.k.a. Unity Catalog JWT issuer validation bypass

CVE-2026-42582 - Netty HTTP/3 QPACK literal unbounded allocation

high

High remediation recipe for Netty HTTP/3 QPACK literal unbounded allocation. Upgrade to 4.2.13.Final and remove the vulnerable cert-validation pattern.

cve CVE-2026-42582disclosed 2026-05-07a.k.a. Netty HTTP/3 QPACK literal unbounded allocation

CVE-2026-44241 - Micronaut has unbounded formattersCache in TimeConverterRegistrar that Allows Memory Exhaustion via Accept-Language Head

high

High remediation recipe for Micronaut has unbounded formattersCache in TimeConverterRegistrar that Allows Memory Exhaustion via Accept-Language Head. Upgrade to 3.10.6, 3.8.14, 4.10.22 and remove the vulnerable authz pattern.

cve CVE-2026-44241disclosed 2026-05-06a.k.a. Micronaut has unbounded formattersCache in TimeConverterRegistrar that Allows Memory Exhaustion via Accept-Language Head

CVE-2026-39852 - Quarkus matrix-parameter authorization bypass

high

High-severity Quarkus path-normalization authorization bypass. Upgrade supported Quarkus streams, add semicolon path regression tests, and audit path-based security policy for protected APIs.

cve CVE-2026-39852disclosed 2026-05-05a.k.a. Quarkus matrix-parameter authorization bypass

CVE-2026-42779 - Apache MINA resolveClass deserialization RCE

critical

Critical Apache MINA deserialization filter bypass in 2.1.x and 2.2.x. Upgrade mina-core to 2.1.12 or 2.2.7+, remove untrusted object deserialization exposure, and verify no vulnerable runtime path remains.

cve CVE-2026-42779disclosed 2026-05-01a.k.a. Apache MINA resolveClass deserialization RCE

CVE-2026-27172 - The ConsulRegistry in the camel-consul component (class org.apache.camel.component.consul.ConsulRegistry and i

high

High remediation recipe for The ConsulRegistry in the camel-consul component (class org.apache.camel.component.consul.ConsulRegistry and i. Upgrade to upgrade to version 4.19.0 and remove the vulnerable authz pattern.

cve CVE-2026-27172disclosed 2026-04-27a.k.a. The ConsulRegistry in the camel-consul component (class org.apache.camel.component.consul.ConsulRegistry and i

CVE-2026-40473 - The camel-mina component's MinaConverter.toObjectInput(IoBuffer) type converter wraps an IoBuffer in a java.io

high

High remediation recipe for The camel-mina component's MinaConverter.toObjectInput(IoBuffer) type converter wraps an IoBuffer in a java.io. Upgrade to version to ObjectInput and remove the vulnerable authz pattern.

cve CVE-2026-40473disclosed 2026-04-27a.k.a. The camel-mina component's MinaConverter.toObjectInput(IoBuffer) type converter wraps an IoBuffer in a java.io

CVE-2026-40858 - The camel-infinispan component's ProtoStream-based remote aggregation repository deserializes data read from a

high

High remediation recipe for The camel-infinispan component's ProtoStream-based remote aggregation repository deserializes data read from a. Upgrade to upgrade to version 4.20.0 and remove the vulnerable authz pattern.

cve CVE-2026-40858disclosed 2026-04-27a.k.a. The camel-infinispan component's ProtoStream-based remote aggregation repository deserializes data read from a

CVE-2026-40860 - JmsBinding.extractBodyFromJms() in camel-jms, and the equivalent JmsBinding class in camel-sjms, deserialized

critical

Critical remediation recipe for JmsBinding.extractBodyFromJms() in camel-jms, and the equivalent JmsBinding class in camel-sjms, deserialized. Upgrade to upgrade to version 4.20.0 and remove the vulnerable deserialization pattern.

cve CVE-2026-40860disclosed 2026-04-27a.k.a. JmsBinding.extractBodyFromJms() in camel-jms, and the equivalent JmsBinding class in camel-sjms, deserialized

CVE-2026-23902 — Apache DolphinScheduler authorization bypass

medium

Incorrect authorization in DolphinScheduler before 3.4.1 allows authenticated users to run workflows with undefined tenants. Upgrade to 3.4.1+.

cve CVE-2026-23902disclosed 2026-04-24a.k.a. DolphinScheduler tenant authorization

CVE-2026-22016 - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac

high

High remediation recipe for Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-22016disclosed 2026-04-21a.k.a. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac

CVE-2026-34282 - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac

high

High remediation recipe for Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-34282disclosed 2026-04-21a.k.a. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac

CVE-2025-14813 - Bouncy Castle for Java GOST 28147 CTR mode reuses keystream after 255 blocks

critical

Critical remediation recipe for Bouncy Castle for Java GOST 28147 CTR mode reuses keystream after 255 blocks. Upgrade to 1.80.2, 1.81.1, 1.84 and remove the vulnerable authz pattern.

cve CVE-2025-14813disclosed 2026-04-17a.k.a. Bouncy Castle for Java GOST 28147 CTR mode reuses keystream after 255 blocks

CVE-2026-40477 - Thymeleaf is a server-side Java template engine for web and standalone environments

critical

Critical remediation recipe for Thymeleaf is a server-side Java template engine for web and standalone environments. Upgrade to fixed in version 3.1.4.RELEASE. and remove the vulnerable authz pattern.

cve CVE-2026-40477disclosed 2026-04-17a.k.a. Thymeleaf is a server-side Java template engine for web and standalone environments

CVE-2026-40478 - Thymeleaf is a server-side Java template engine for web and standalone environments

critical

Critical remediation recipe for Thymeleaf is a server-side Java template engine for web and standalone environments. Upgrade to fixed in version 3.1.4.RELEASE. and remove the vulnerable authz pattern.

cve CVE-2026-40478disclosed 2026-04-17a.k.a. Thymeleaf is a server-side Java template engine for web and standalone environments

CVE-2026-3505 - Allocation of resources without limits or throttling, Uncontrolled Resource Consumption vulnerability in Legio

high

High remediation recipe for Allocation of resources without limits or throttling, Uncontrolled Resource Consumption vulnerability in Legio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-3505disclosed 2026-04-15a.k.a. Allocation of resources without limits or throttling, Uncontrolled Resource Consumption vulnerability in Legio

CVE-2026-5588 - Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc

high

High remediation recipe for Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-5588disclosed 2026-04-15a.k.a. Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc

CVE-2026-5598 - Covert timing channel vulnerability in Legion of the Bouncy Castle Inc

high

High remediation recipe for Covert timing channel vulnerability in Legion of the Bouncy Castle Inc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-5598disclosed 2026-04-15a.k.a. Covert timing channel vulnerability in Legion of the Bouncy Castle Inc

CVE-2026-28367 - Undertow HTTP request smuggling

critical

Critical HTTP request smuggling in Undertow. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-28367disclosed 2026-03-27a.k.a. Undertow HTTP request smuggling

CVE-2026-28368 - Undertow HTTP request smuggling

critical

Critical HTTP request smuggling in Undertow. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-28368disclosed 2026-03-27a.k.a. Undertow HTTP request smuggling

CVE-2026-33701 - OpenTelemetry Java Instrumentation provides OpenTelemetry auto-instrumentation and instrumentation libraries f

critical

Critical remediation recipe for OpenTelemetry Java Instrumentation provides OpenTelemetry auto-instrumentation and instrumentation libraries f. Upgrade to version 16 and earlier and remove the vulnerable authz pattern.

cve CVE-2026-33701disclosed 2026-03-27a.k.a. OpenTelemetry Java Instrumentation provides OpenTelemetry auto-instrumentation and instrumentation libraries f

CVE-2026-33180 - HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java

high

High remediation recipe for HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. Upgrade to version 6.9.0 and remove the vulnerable authz pattern.

cve CVE-2026-33180disclosed 2026-03-20a.k.a. HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java

CVE-2026-33228 - flatted security control bypass

critical

Critical security control bypass in flatted. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-33228disclosed 2026-03-20a.k.a. flatted security control bypass

CVE-2026-29062 - jackson-core contains core low-level incremental (streaming) parser and generator abstractions used by Jacks

high

High remediation recipe for jackson-core contains core low-level incremental (streaming) parser and generator abstractions used by Jacks. Upgrade to version 3.0.0 to before version 3.1.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-29062disclosed 2026-03-06a.k.a. jackson-core contains core low-level incremental (streaming) parser and generator abstractions used by Jacks

CVE-2026-27830 - c3p0, a JDBC Connection pooling library, is vulnerable to attack via maliciously crafted Java-serialized objec

high

High remediation recipe for c3p0, a JDBC Connection pooling library, is vulnerable to attack via maliciously crafted Java-serialized objec. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-27830disclosed 2026-02-26a.k.a. c3p0, a JDBC Connection pooling library, is vulnerable to attack via maliciously crafted Java-serialized objec

CVE-2026-27727 - mchange-commons-java, a library that provides Java utilities, includes code that mirrors early implementations

critical

Critical remediation recipe for mchange-commons-java, a library that provides Java utilities, includes code that mirrors early implementations. Upgrade to version 0.4.0. No known workarounds are available. Versions prior to and remove the vulnerable authz pattern.

cve CVE-2026-27727disclosed 2026-02-25a.k.a. mchange-commons-java, a library that provides Java utilities, includes code that mirrors early implementations

CVE-2026-25747 - Deserialization of Untrusted Data vulnerability in Apache Camel LevelDB component

high

High remediation recipe for Deserialization of Untrusted Data vulnerability in Apache Camel LevelDB component. Upgrade to upgrade to version 4.18.0 and remove the vulnerable deserialization pattern.

cve CVE-2026-25747disclosed 2026-02-23a.k.a. Deserialization of Untrusted Data vulnerability in Apache Camel LevelDB component

CVE-2026-25521 - versions from 2.0.12 to prototype pollution

critical

Critical prototype pollution in versions from 2.0.12 to. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-25521disclosed 2026-02-04a.k.a. versions from 2.0.12 to prototype pollution

CVE-2026-21932 - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac

high

High remediation recipe for Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-21932disclosed 2026-01-20a.k.a. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac

CVE-2026-21945 - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac

high

High remediation recipe for Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-21945disclosed 2026-01-20a.k.a. Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac

CVE-2025-12543 - A flaw was found in the Undertow HTTP server core, which is used in WildFly, JBoss EAP, and other Java applica

critical

Critical remediation recipe for A flaw was found in the Undertow HTTP server core, which is used in WildFly, JBoss EAP, and other Java applica. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-12543disclosed 2026-01-07a.k.a. A flaw was found in the Undertow HTTP server core, which is used in WildFly, JBoss EAP, and other Java applica

CVE-2025-9784 - Undertow MadeYouReset HTTP/2 DDoS Vulnerability

high

High remediation recipe for Undertow MadeYouReset HTTP/2 DDoS Vulnerability. Upgrade to 2.2.38.Final, 2.3.20.Final and remove the vulnerable dos pattern.

cve CVE-2025-9784disclosed 2025-09-02a.k.a. Undertow MadeYouReset HTTP/2 DDoS Vulnerability

CVE-2024-38286 - Apache Tomcat Allocation of Resources Without Limits or Throttling vulnerability

high

High remediation recipe for Apache Tomcat Allocation of Resources Without Limits or Throttling vulnerability. Upgrade to 10.1.25, 11.0.0-M21, 9.0.90 and remove the vulnerable command-injection pattern.

cve CVE-2024-38286disclosed 2024-11-07a.k.a. Apache Tomcat Allocation of Resources Without Limits or Throttling vulnerability

CVE-2022-21952 - A Missing Authentication for Critical Function vulnerability in spacewalk-java of SUSE Manager Server 4.1, SUS

high

High remediation recipe for A Missing Authentication for Critical Function vulnerability in spacewalk-java of SUSE Manager Server 4.1, SUS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2022-21952disclosed 2022-06-22a.k.a. A Missing Authentication for Critical Function vulnerability in spacewalk-java of SUSE Manager Server 4.1, SUS

CVE-2015-1778 - Opendaylight will authenticate any username and password combination

critical

Critical remediation recipe for Opendaylight will authenticate any username and password combination. Upgrade to 0.2.3-Helium-SR3 and remove the vulnerable authz pattern.

cve CVE-2015-1778disclosed 2022-05-17a.k.a. Opendaylight will authenticate any username and password combination

CVE-2016-0750 - Infinispan: Deserialization of untrusted data in the Hot Rod Java client via automatic byte-array deserialization

high

High remediation recipe for Infinispan: Deserialization of untrusted data in the Hot Rod Java client via automatic byte-array deserialization. Upgrade to 9.1.0.Final and remove the vulnerable deserialization pattern.

cve CVE-2016-0750disclosed 2022-05-13a.k.a. Infinispan: Deserialization of untrusted data in the Hot Rod Java client via automatic byte-array deserialization

CVE-2022-23913 - Apache ActiveMQ Artemis Uncontrolled Resource Consumption (DoS)

high

High remediation recipe for Apache ActiveMQ Artemis Uncontrolled Resource Consumption (DoS). Upgrade to 2.19.1 and remove the vulnerable command-injection pattern.

cve CVE-2022-23913disclosed 2022-02-06a.k.a. Apache ActiveMQ Artemis Uncontrolled Resource Consumption (DoS)

CVE-2021-44228 — Log4Shell

criticalKEV

JNDI-lookup RCE in Log4j 2.x. Upgrade to 2.17.1+, set `formatMsgNoLookups=true`, remove `JndiLookup.class` from vendored JARs.

cve CVE-2021-44228disclosed 2021-12-09a.k.a. Log4Shell

CVE-2021-26118 - Apache ActiveMQ Artemis vulnerable to Improper Access Control

high

High remediation recipe for Apache ActiveMQ Artemis vulnerable to Improper Access Control. Upgrade to 2.16.0 and remove the vulnerable authz pattern.

cve CVE-2021-26118disclosed 2021-06-16a.k.a. Apache ActiveMQ Artemis vulnerable to Improper Access Control

CVE-2019-16869 - HTTP Request Smuggling in Netty

high

High remediation recipe for HTTP Request Smuggling in Netty. Upgrade to 4.1.42.Final and remove the vulnerable request-smuggling pattern.

cve CVE-2019-16869disclosed 2019-10-11a.k.a. HTTP Request Smuggling in Netty

CVE-2017-8046 - Malicious PATCH requests submitted to servers using Spring Data REST versions prior to 2.6.9 (Ingalls SR9), ve

critical

Critical remediation recipe for Malicious PATCH requests submitted to servers using Spring Data REST versions prior to 2.6.9 (Ingalls SR9), ve. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2017-8046disclosed 2018-01-04a.k.a. Malicious PATCH requests submitted to servers using Spring Data REST versions prior to 2.6.9 (Ingalls SR9), ve

javascript/npm222 recipes

CVE-2026-49866 - libp2p: CPU DoS via oversized IHAVE and IWANT control message arrays

high

High remediation recipe for libp2p: CPU DoS via oversized IHAVE and IWANT control message arrays. Upgrade to 16.0.0 and remove the vulnerable authz pattern.

cve CVE-2026-49866disclosed 2026-07-10a.k.a. libp2p: CPU DoS via oversized IHAVE and IWANT control message arrays

CVE-2026-55665 - Grist is spreadsheet software using Python as its formula language

high

High remediation recipe for Grist is spreadsheet software using Python as its formula language. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55665disclosed 2026-07-10a.k.a. Grist is spreadsheet software using Python as its formula language

CVE-2026-56667 - ZITADEL is an open source identity management platform

high

High remediation recipe for ZITADEL is an open source identity management platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56667disclosed 2026-07-10a.k.a. ZITADEL is an open source identity management platform

CVE-2026-57214 - RabbitMQ is a messaging and streaming broker

high

High remediation recipe for RabbitMQ is a messaging and streaming broker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57214disclosed 2026-07-10a.k.a. RabbitMQ is a messaging and streaming broker

CVE-2026-13461 - When coupled with the SSL bypass vulnerability, JavaScript can be injected into a WebView in the PayRange vers

critical

Critical remediation recipe for When coupled with the SSL bypass vulnerability, JavaScript can be injected into a WebView in the PayRange vers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13461disclosed 2026-07-09a.k.a. When coupled with the SSL bypass vulnerability, JavaScript can be injected into a WebView in the PayRange vers

CVE-2026-14245 - The miniOrange OTP Login, Verification and SMS Notifications plugin for WordPress is vulnerable to Authenticat

critical

Critical remediation recipe for The miniOrange OTP Login, Verification and SMS Notifications plugin for WordPress is vulnerable to Authenticat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-14245disclosed 2026-07-09a.k.a. The miniOrange OTP Login, Verification and SMS Notifications plugin for WordPress is vulnerable to Authenticat

CVE-2026-55424 - Discourse is an open-source discussion platform

high

High remediation recipe for Discourse is an open-source discussion platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-55424disclosed 2026-07-09a.k.a. Discourse is an open-source discussion platform

CVE-2026-59833 - SiYuan is an open-source personal knowledge management system

high

High remediation recipe for SiYuan is an open-source personal knowledge management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59833disclosed 2026-07-09a.k.a. SiYuan is an open-source personal knowledge management system

CVE-2026-59855 - SiYuan is an open-source personal knowledge management system

high

High remediation recipe for SiYuan is an open-source personal knowledge management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59855disclosed 2026-07-09a.k.a. SiYuan is an open-source personal knowledge management system

CVE-2026-54527 - JupyterLab Git is a Git extension for JupyterLab

critical

Critical remediation recipe for JupyterLab Git is a Git extension for JupyterLab. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54527disclosed 2026-07-08a.k.a. JupyterLab Git is a Git extension for JupyterLab

CVE-2026-55575 - LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript

high

High remediation recipe for LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55575disclosed 2026-07-08a.k.a. LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript

CVE-2026-55596 - Plate is a rich-text editor with AI and shadcn/ui

high

High remediation recipe for Plate is a rich-text editor with AI and shadcn/ui. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55596disclosed 2026-07-08a.k.a. Plate is a rich-text editor with AI and shadcn/ui

CVE-2026-55849 - @cyclonedx/cyclonedx-npm creates CycloneDX Software Bill of Materials from npm projects

high

High remediation recipe for @cyclonedx/cyclonedx-npm creates CycloneDX Software Bill of Materials from npm projects. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55849disclosed 2026-07-08a.k.a. @cyclonedx/cyclonedx-npm creates CycloneDX Software Bill of Materials from npm projects

CVE-2026-55878 - Symfony UX is a JavaScript ecosystem for Symfony

high

High remediation recipe for Symfony UX is a JavaScript ecosystem for Symfony. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55878disclosed 2026-07-08a.k.a. Symfony UX is a JavaScript ecosystem for Symfony

CVE-2026-57256 - When the application opens a PDF and executes JavaScript, it performs abnormal operations on the list box fiel

high

High remediation recipe for When the application opens a PDF and executes JavaScript, it performs abnormal operations on the list box fiel. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57256disclosed 2026-07-08a.k.a. When the application opens a PDF and executes JavaScript, it performs abnormal operations on the list box fiel

CVE-2026-57480 - Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js

high

High remediation recipe for Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-57480disclosed 2026-07-08a.k.a. Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js

CVE-2026-59802 - PasswordPusher before 2.8.1 accepts data URI schemes in URL push payloads due to insufficient validation in th

high

High remediation recipe for PasswordPusher before 2.8.1 accepts data URI schemes in URL push payloads due to insufficient validation in th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59802disclosed 2026-07-08a.k.a. PasswordPusher before 2.8.1 accepts data URI schemes in URL push payloads due to insufficient validation in th

CVE-2026-59869 - js-yaml is a JavaScript YAML parser and dumper

high

High remediation recipe for js-yaml is a JavaScript YAML parser and dumper. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59869disclosed 2026-07-08a.k.a. js-yaml is a JavaScript YAML parser and dumper

CVE-2026-59873 - node-tar is a tar archive manipulation library for Node.js

high

High remediation recipe for node-tar is a tar archive manipulation library for Node.js. Upgrade to fixed in version 7.5.19. and remove the vulnerable authz pattern.

cve CVE-2026-59873disclosed 2026-07-08a.k.a. node-tar is a tar archive manipulation library for Node.js

CVE-2026-59874 - node-tar is a tar archive manipulation library for Node.js

high

High remediation recipe for node-tar is a tar archive manipulation library for Node.js. Upgrade to fixed in version 7.5.18. and remove the vulnerable authz pattern.

cve CVE-2026-59874disclosed 2026-07-08a.k.a. node-tar is a tar archive manipulation library for Node.js

CVE-2026-53512 - Better Auth: OAuth refresh-token replay via missing client authentication on oidc-provider and mcp plugins

critical

Critical remediation recipe for Better Auth: OAuth refresh-token replay via missing client authentication on oidc-provider and mcp plugins. Upgrade to 1.6.11 and remove the vulnerable command-injection pattern.

cve CVE-2026-53512disclosed 2026-07-07a.k.a. Better Auth: OAuth refresh-token replay via missing client authentication on oidc-provider and mcp plugins

CVE-2026-53513 - @better-auth/sso provider registration has server-side request forgery via unvalidated OIDC endpoints

critical

Critical remediation recipe for @better-auth/sso provider registration has server-side request forgery via unvalidated OIDC endpoints. Upgrade to 1.6.11 and remove the vulnerable command-injection pattern.

cve CVE-2026-53513disclosed 2026-07-07a.k.a. @better-auth/sso provider registration has server-side request forgery via unvalidated OIDC endpoints

CVE-2026-53514 - Better Auth vulnerable to unauthorized invitation acceptance via unverified email match in organization plugin

high

High remediation recipe for Better Auth vulnerable to unauthorized invitation acceptance via unverified email match in organization plugin. Upgrade to 1.6.11 and remove the vulnerable command-injection pattern.

cve CVE-2026-53514disclosed 2026-07-07a.k.a. Better Auth vulnerable to unauthorized invitation acceptance via unverified email match in organization plugin

CVE-2026-53516 - Better Auth has an account takeover issue via OAuth auto-link to unverified pre-registered email

high

High remediation recipe for Better Auth has an account takeover issue via OAuth auto-link to unverified pre-registered email. Upgrade to 1.6.11 and remove the vulnerable command-injection pattern.

cve CVE-2026-53516disclosed 2026-07-07a.k.a. Better Auth has an account takeover issue via OAuth auto-link to unverified pre-registered email

CVE-2026-53517 - Better Auth: OAuth refresh-token rotation forks the token family on concurrent redemption

high

High remediation recipe for Better Auth: OAuth refresh-token rotation forks the token family on concurrent redemption. Upgrade to 1.6.0, 1.6.11 and remove the vulnerable command-injection pattern.

cve CVE-2026-53517disclosed 2026-07-07a.k.a. Better Auth: OAuth refresh-token rotation forks the token family on concurrent redemption

CVE-2026-53518 - @better-auth/oauth-provider's OAuth authorization-code grant allows concurrent redemption when two token requests race t

high

High remediation recipe for @better-auth/oauth-provider's OAuth authorization-code grant allows concurrent redemption when two token requests race t. Upgrade to 1.6.11 and remove the vulnerable command-injection pattern.

cve CVE-2026-53518disclosed 2026-07-07a.k.a. @better-auth/oauth-provider's OAuth authorization-code grant allows concurrent redemption when two token requests race t

CVE-2026-56812 - Improper Check for Unusual or Exceptional Conditions vulnerability in phoenixframework phoenix (Presence JavaS

high

High remediation recipe for Improper Check for Unusual or Exceptional Conditions vulnerability in phoenixframework phoenix (Presence JavaS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-56812disclosed 2026-07-07a.k.a. Improper Check for Unusual or Exceptional Conditions vulnerability in phoenixframework phoenix (Presence JavaS

CVE-2026-59800 - 9router: Missing Authorization and OS Command Injection

critical

Critical remediation recipe for 9router: Missing Authorization and OS Command Injection. Upgrade to 0.4.44 and remove the vulnerable command-injection pattern.

cve CVE-2026-59800disclosed 2026-07-02a.k.a. 9router: Missing Authorization and OS Command Injection

CVE-2026-14181 - @fastify/middie versions 9.1.0 through 9.3.2 fail to guard the URL normalization step used by the standalone e

high

High remediation recipe for @fastify/middie versions 9.1.0 through 9.3.2 fail to guard the URL normalization step used by the standalone e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-14181disclosed 2026-07-01a.k.a. @fastify/middie versions 9.1.0 through 9.3.2 fail to guard the URL normalization step used by the standalone e

CVE-2026-11589 - The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not properly validate uploade

high

High remediation recipe for The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not properly validate uploade. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-11589disclosed 2026-06-30a.k.a. The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not properly validate uploade

CVE-2026-48795 - @adonisjs/bodyparser has an incomplete fix for CVE-2026-25754

high

High remediation recipe for @adonisjs/bodyparser has an incomplete fix for CVE-2026-25754. Upgrade to 10.1.5, 11.0.3 and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-48795disclosed 2026-06-30a.k.a. @adonisjs/bodyparser has an incomplete fix for CVE-2026-25754

CVE-2026-49473 - @cedar-policy/authorization-for-expressjs has an authorization bypass via query string manipulation

high

High remediation recipe for @cedar-policy/authorization-for-expressjs has an authorization bypass via query string manipulation. Upgrade to 0.3.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-49473disclosed 2026-06-30a.k.a. @cedar-policy/authorization-for-expressjs has an authorization bypass via query string manipulation

CVE-2026-56264 - Crawl4AI before 0.8.7 contains an arbitrary JavaScript execution vulnerability in the Docker API server's /exe

high

High remediation recipe for Crawl4AI before 0.8.7 contains an arbitrary JavaScript execution vulnerability in the Docker API server's /exe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-56264disclosed 2026-06-30a.k.a. Crawl4AI before 0.8.7 contains an arbitrary JavaScript execution vulnerability in the Docker API server's /exe

CVE-2026-58138 - Orkes Conductor 3.21.21 before 3.30.2 contains an unauthenticated remote code execution vulnerability that all

critical

Critical remediation recipe for Orkes Conductor 3.21.21 before 3.30.2 contains an unauthenticated remote code execution vulnerability that all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-58138disclosed 2026-06-30a.k.a. Orkes Conductor 3.21.21 before 3.30.2 contains an unauthenticated remote code execution vulnerability that all

CVE-2026-10083 - The APCu Manager WordPress plugin before 4.5.0 does not escape APCu object-cache keys before rendering them in

high

High remediation recipe for The APCu Manager WordPress plugin before 4.5.0 does not escape APCu object-cache keys before rendering them in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-10083disclosed 2026-06-29a.k.a. The APCu Manager WordPress plugin before 4.5.0 does not escape APCu object-cache keys before rendering them in

CVE-2026-56017 - JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first me

high

High remediation recipe for JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first me. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-56017disclosed 2026-06-29a.k.a. JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first me

CVE-2026-56018 - JavaScript::Minifier::XS versions before 0.16 for Perl leak memory on every call to minify(), allowing unbound

high

High remediation recipe for JavaScript::Minifier::XS versions before 0.16 for Perl leak memory on every call to minify(), allowing unbound. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-56018disclosed 2026-06-29a.k.a. JavaScript::Minifier::XS versions before 0.16 for Perl leak memory on every call to minify(), allowing unbound

CVE-2026-55487 - pnpm allowBuilds identity spoof

critical

Critical pnpm allowBuilds bypass where alternate identities can evade expected package checks. Upgrade to 10.34.2+ or 11.5.3+ and canonicalize dependency identities before trust decisions.

cve CVE-2026-55487disclosed 2026-06-27a.k.a. pnpm allowBuilds identity spoof

CVE-2026-55697 - pnpm global bin name traversal

critical

Critical pnpm arbitrary file write/delete through crafted global executable names. Upgrade to 10.34.2+ or 11.5.3+ and constrain generated bin paths to the intended root.

cve CVE-2026-55697disclosed 2026-06-27a.k.a. pnpm global bin name traversal

CVE-2026-55698 - pnpm env lockfile short-circuit

critical

Critical pnpm path traversal where project env lockfile handling can short-circuit expected checks. Upgrade to 10.34.2+ or 11.5.3+ and hard-fail on traversal-shaped env lockfile inputs.

cve CVE-2026-55698disclosed 2026-06-27a.k.a. pnpm env lockfile short-circuit

CVE-2026-55700 - pnpm stage download symlink traversal

critical

Critical pnpm path traversal where stage-download symlink targets incorporate crafted package names. Upgrade to 10.34.3+ or 11.5.3+ and enforce final-path containment before symlink creation.

cve CVE-2026-55700disclosed 2026-06-27a.k.a. pnpm stage download symlink traversal

GHSA-72r4-9c5j-mj57 - pnpm better-node-range CPU exhaustion

high

High-severity pnpm denial of service in better-node-range parsing. Upgrade to 10.34.4+ or 11.8.0+ and reject attacker-controlled engine range parsing on untrusted install metadata.

ghsa GHSA-72r4-9c5j-mj57disclosed 2026-06-27a.k.a. pnpm better-node-range parseNodeRange DoS

GHSA-72R4-9C5J-MJ57 - pnpm security control bypass

high

High security control bypass in pnpm. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

ghsa GHSA-72R4-9C5J-MJ57disclosed 2026-06-27a.k.a. GHSA-72R4-9C5J-MJ57

GHSA-fr4h-3cph-29xv - pnpm protocol specifier bypass

high

High-severity pnpm integrity bypass where protocol-style specifiers can short-circuit dependency verification. Upgrade to 10.34.4+ or 11.8.0+ and fail closed on malformed dependency identities.

ghsa GHSA-fr4h-3cph-29xvdisclosed 2026-06-27a.k.a. pnpm protocol specifier short-circuit

GHSA-FR4H-3CPH-29XV - pnpm security control bypass

high

High security control bypass in pnpm. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

ghsa GHSA-FR4H-3CPH-29XVdisclosed 2026-06-27a.k.a. GHSA-FR4H-3CPH-29XV

GHSA-qrv3-253h-g69c - pnpm configDependencies symlink traversal

high

High-severity pnpm path traversal where env lockfile configDependencies names can create symlinks outside node_modules/.pnpm-config. Upgrade to 10.34.4+ or 11.8.0+ and reject traversal-shaped lockfile dependency names.

ghsa GHSA-qrv3-253h-g69cdisclosed 2026-06-27a.k.a. pnpm configDependencies env lockfile path traversal

GHSA-QRV3-253H-G69C - pnpm path traversal

high

High path traversal in pnpm. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

ghsa GHSA-QRV3-253H-G69Cdisclosed 2026-06-27a.k.a. GHSA-QRV3-253H-G69C

CVE-2026-48615 - A flaw in Node.js proxy tunnel error handling could expose proxy credentials in ERR_PROXY_TUNNEL error messa

high

High remediation recipe for A flaw in Node.js proxy tunnel error handling could expose proxy credentials in ERR_PROXY_TUNNEL error messa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-48615disclosed 2026-06-26a.k.a. A flaw in Node.js proxy tunnel error handling could expose proxy credentials in ERR_PROXY_TUNNEL error messa

CVE-2026-48619 - A flaw in Node.js HTTP/2 client allows a server to send an unlimited number of ORIGIN frames, which could lead

high

High remediation recipe for A flaw in Node.js HTTP/2 client allows a server to send an unlimited number of ORIGIN frames, which could lead. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-48619disclosed 2026-06-26a.k.a. A flaw in Node.js HTTP/2 client allows a server to send an unlimited number of ORIGIN frames, which could lead

CVE-2026-48801 - LinkifyIt#match scan loop has quadratic algorithmic complexity

high

High remediation recipe for LinkifyIt#match scan loop has quadratic algorithmic complexity. Upgrade to 5.0.1 and remove the vulnerable authz pattern.

cve CVE-2026-48801disclosed 2026-06-26a.k.a. LinkifyIt#match scan loop has quadratic algorithmic complexity

CVE-2026-48930 - A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebindin

critical

Critical remediation recipe for A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebindin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-48930disclosed 2026-06-26a.k.a. A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebindin

CVE-2026-48933 - A flaw in Node.js WebCrypto implementation can crash the process if the input of subtle.encrypt() is a multi

high

High remediation recipe for A flaw in Node.js WebCrypto implementation can crash the process if the input of subtle.encrypt() is a multi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-48933disclosed 2026-06-26a.k.a. A flaw in Node.js WebCrypto implementation can crash the process if the input of subtle.encrypt() is a multi

CVE-2026-49252 - deepstream is vulnerable to prototype pollution

critical

Critical remediation recipe for deepstream is vulnerable to prototype pollution. Upgrade to 10.0.5 and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-49252disclosed 2026-06-26a.k.a. deepstream is vulnerable to prototype pollution

CVE-2026-49293 - js-toml vulnerable to CPU exhaustion via O(n^2) BigInt construction on radix-prefixed integer literals

high

High remediation recipe for js-toml vulnerable to CPU exhaustion via O(n^2) BigInt construction on radix-prefixed integer literals. Upgrade to 1.1.1 and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-49293disclosed 2026-06-26a.k.a. js-toml vulnerable to CPU exhaustion via O(n^2) BigInt construction on radix-prefixed integer literals

CVE-2026-49357 - Streamable HTTP mode exposes LINE Desktop read/send tools without MCP authentication

high

High remediation recipe for Streamable HTTP mode exposes LINE Desktop read/send tools without MCP authentication. Upgrade to 1.1.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-49357disclosed 2026-06-26a.k.a. Streamable HTTP mode exposes LINE Desktop read/send tools without MCP authentication

CVE-2026-50015 - pnpm malicious patch path traversal

critical

Critical pnpm arbitrary file write/delete via malicious patch file paths. Upgrade to 10.34.0+ or 11.4.0+ and constrain patch extraction and application paths to the intended workspace root.

cve CVE-2026-50015disclosed 2026-06-26a.k.a. pnpm malicious patch path traversal

CVE-2026-50016 - pnpm: Transitive dependency alias path traversal allows project path override via symlink replacement

high

High remediation recipe for pnpm: Transitive dependency alias path traversal allows project path override via symlink replacement. Upgrade to 10.34.0, 11.4.0 and remove the vulnerable path-traversal pattern.

cve CVE-2026-50016disclosed 2026-06-26a.k.a. pnpm: Transitive dependency alias path traversal allows project path override via symlink replacement

CVE-2026-48995 - pnpm is a package manager. Prior to 10.33.4 and 11.0.7, a malicious codeload.github.com server can serve whate

high

High remediation recipe for pnpm is a package manager. Prior to 10.33.4 and 11.0.7, a malicious codeload.github.com server can serve whate. Upgrade to fixed in 10.33.4 and 11.0.7. and remove the vulnerable supply-chain pattern.

cve CVE-2026-48995disclosed 2026-06-25a.k.a. pnpm is a package manager. Prior to 10.33.4 and 11.0.7, a malicious codeload.github.com server can serve whate

CVE-2026-9086 - A flaw was found in Keycloak. A remote attacker with administrative privileges, specifically those with manag

high

High remediation recipe for A flaw was found in Keycloak. A remote attacker with administrative privileges, specifically those with manag. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-9086disclosed 2026-06-25a.k.a. A flaw was found in Keycloak. A remote attacker with administrative privileges, specifically those with manag

CVE-2026-11998 - A flaw in AngularJS' Strict Contextual Escaping (SCE) logic allows bypassing certain SCE policies for resource

high

High remediation recipe for A flaw in AngularJS' Strict Contextual Escaping (SCE) logic allows bypassing certain SCE policies for resource. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-11998disclosed 2026-06-24a.k.a. A flaw in AngularJS' Strict Contextual Escaping (SCE) logic allows bypassing certain SCE policies for resource

CVE-2026-44726 - Deno is a JavaScript, TypeScript, and WebAssembly runtime

high

High remediation recipe for Deno is a JavaScript, TypeScript, and WebAssembly runtime. Upgrade to upgraded to TLS and remove the vulnerable authz pattern.

cve CVE-2026-44726disclosed 2026-06-23a.k.a. Deno is a JavaScript, TypeScript, and WebAssembly runtime

CVE-2026-49401 - Deno is a JavaScript, TypeScript, and WebAssembly runtime

high

High remediation recipe for Deno is a JavaScript, TypeScript, and WebAssembly runtime. Upgrade to fixed in 2.7.14. and remove the vulnerable command-injection pattern.

cve CVE-2026-49401disclosed 2026-06-23a.k.a. Deno is a JavaScript, TypeScript, and WebAssembly runtime

CVE-2026-49402 - Deno is a JavaScript, TypeScript, and WebAssembly runtime

high

High remediation recipe for Deno is a JavaScript, TypeScript, and WebAssembly runtime. Upgrade to fixed in 2.7.10. and remove the vulnerable command-injection pattern.

cve CVE-2026-49402disclosed 2026-06-23a.k.a. Deno is a JavaScript, TypeScript, and WebAssembly runtime

CVE-2026-49241 - The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates

high

High remediation recipe for The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. Upgrade to fixed in 21.2.4. and remove the vulnerable authz pattern.

cve CVE-2026-49241disclosed 2026-06-22a.k.a. The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates

CVE-2026-50168 - Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript

high

High remediation recipe for Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript. Upgrade to fixed in 22.0.0-rc.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-50168disclosed 2026-06-22a.k.a. Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript

CVE-2026-50170 - Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript

high

High remediation recipe for Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript. Upgrade to fixed in 22.0.0-rc.2 and remove the vulnerable authz pattern.

cve CVE-2026-50170disclosed 2026-06-22a.k.a. Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript

CVE-2026-50178 - The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates

high

High remediation recipe for The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. Upgrade to fixed in 21.2.4. and remove the vulnerable authz pattern.

cve CVE-2026-50178disclosed 2026-06-22a.k.a. The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates

CVE-2026-54268 - Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript

high

High remediation recipe for Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript. Upgrade to fixed in 22.0.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-54268disclosed 2026-06-22a.k.a. Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript

CVE-2026-55602 - http-proxy-middleware is node.js http-proxy middleware

high

High remediation recipe for http-proxy-middleware is node.js http-proxy middleware. Upgrade to fixed in 2.0.10 and remove the vulnerable ssrf pattern.

cve CVE-2026-55602disclosed 2026-06-22a.k.a. http-proxy-middleware is node.js http-proxy middleware

CVE-2026-12048 - Stored cross-site scripting in pgAdmin 4's error-rendering and plan-node-rendering paths

critical

Critical remediation recipe for Stored cross-site scripting in pgAdmin 4's error-rendering and plan-node-rendering paths. Upgrade to patched to _.escape Recheck Cond and Exact Heap Blocks at constructi and remove the vulnerable xss pattern.

cve CVE-2026-12048disclosed 2026-06-19a.k.a. Stored cross-site scripting in pgAdmin 4's error-rendering and plan-node-rendering paths

CVE-2026-58399 - @acastellon/auth: Authentication bypass via spoofable headers in validateToken()

critical

Critical remediation recipe for @acastellon/auth: Authentication bypass via spoofable headers in validateToken(). Upgrade to 2.3.0 and remove the vulnerable authz pattern.

cve CVE-2026-58399disclosed 2026-06-18a.k.a. @acastellon/auth: Authentication bypass via spoofable headers in validateToken()

CVE-2026-48779 - ws is an open source WebSocket client and server for Node.js

high

High remediation recipe for ws is an open source WebSocket client and server for Node.js. Upgrade to fixed in versions 5.2.5 and remove the vulnerable command-injection pattern.

cve CVE-2026-48779disclosed 2026-06-17a.k.a. ws is an open source WebSocket client and server for Node.js

CVE-2026-6734 - Impact When using Socks5ProxyAgent security control bypass

high

High security control bypass in Impact When using Socks5ProxyAgent. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-6734disclosed 2026-06-17a.k.a. Impact When using Socks5ProxyAgent security control bypass

CVE-2026-6734 - undici Socks5ProxyAgent cross-origin pool confusion

high

High-severity undici Socks5ProxyAgent cross-origin pool confusion. A shared SOCKS proxy pool can silently send credentials and request bodies for one customer origin to another origin.

cve CVE-2026-6734disclosed 2026-06-17

CVE-2026-6734 - undici Socks5ProxyAgent cross-origin pool reuse

high

High remediation recipe for undici Socks5ProxyAgent cross-origin pool reuse. Apply undici 7.26.0 or 8.2.0 and remove the vulnerable proxy-routing pattern.

cve CVE-2026-6734disclosed 2026-06-17a.k.a. undici Socks5ProxyAgent cross-origin pool reuse

CVE-2026-44486 - Axios is a promise based HTTP client for the browser and Node.js

high

High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 0.32.0 and 1.16.0. and remove the vulnerable authz pattern.

cve CVE-2026-44486disclosed 2026-06-11a.k.a. Axios is a promise based HTTP client for the browser and Node.js

CVE-2026-44487 - Axios is a promise based HTTP client for the browser and Node.js

high

High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 0.32.0 and 1.16.0. and remove the vulnerable authz pattern.

cve CVE-2026-44487disclosed 2026-06-11a.k.a. Axios is a promise based HTTP client for the browser and Node.js

CVE-2026-44488 - Axios is a promise based HTTP client for the browser and Node.js

high

High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 0.32.0 and 1.16.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-44488disclosed 2026-06-11a.k.a. Axios is a promise based HTTP client for the browser and Node.js

CVE-2026-44492 - Axios is a promise based HTTP client for the browser and Node.js

high

High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 0.32.0 and 1.16.0. and remove the vulnerable authz pattern.

cve CVE-2026-44492disclosed 2026-06-11a.k.a. Axios is a promise based HTTP client for the browser and Node.js

CVE-2026-44494 - Axios is a promise based HTTP client for the browser and Node.js

high

High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 1.16.0. and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-44494disclosed 2026-06-11a.k.a. Axios is a promise based HTTP client for the browser and Node.js

CVE-2026-44495 - Axios is a promise based HTTP client for the browser and Node.js

high

High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 0.31.1 and 1.15.2. and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-44495disclosed 2026-06-11a.k.a. Axios is a promise based HTTP client for the browser and Node.js

CVE-2026-44496 - Axios is a promise based HTTP client for the browser and Node.js

high

High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 0.32.0 and 1.16.0. and remove the vulnerable authz pattern.

cve CVE-2026-44496disclosed 2026-06-11a.k.a. Axios is a promise based HTTP client for the browser and Node.js

CVE-2026-46625 - JavaScript Cookie is a JavaScript API for handling cookies, client-side

high

High remediation recipe for JavaScript Cookie is a JavaScript API for handling cookies, client-side. Upgrade to version 3.0.7 and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-46625disclosed 2026-06-10a.k.a. JavaScript Cookie is a JavaScript API for handling cookies, client-side

CVE-2025-71319 - image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanentl

high

High remediation recipe for image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanentl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-71319disclosed 2026-06-09a.k.a. image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanentl

CVE-2026-42570 - Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien

high

High remediation recipe for Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien. Upgrade to version 5.6.3 to before version 5.8.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-42570disclosed 2026-06-09a.k.a. Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien

CVE-2026-47430 - Cordova InAppBrowser callback spoofing on iOS

critical

Critical iOS callback spoofing in cordova-plugin-inappbrowser. Upgrade to 6.0.1+, treat InAppBrowser content as untrusted, and avoid keeping sensitive plugin callbacks pending while third-party pages are loaded.

cve CVE-2026-47430disclosed 2026-06-07a.k.a. Cordova InAppBrowser callback spoofing on iOS

CVE-2026-47684 - Sync-in Server: SSRF protection bypass via IPv4-mapped IPv6 addresses in regExpPrivateIP

high

High remediation recipe for Sync-in Server: SSRF protection bypass via IPv4-mapped IPv6 addresses in regExpPrivateIP. Upgrade to 2.3.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-47684disclosed 2026-06-05a.k.a. Sync-in Server: SSRF protection bypass via IPv4-mapped IPv6 addresses in regExpPrivateIP

CVE-2024-52011 - launch-editor allows users to open files with line numbers in editor from Node.js

high

High remediation recipe for launch-editor allows users to open files with line numbers in editor from Node.js. Upgrade to version 2.9.0 and remove the vulnerable authz pattern.

cve CVE-2024-52011disclosed 2026-06-01a.k.a. launch-editor allows users to open files with line numbers in editor from Node.js

CVE-2026-44724 - systeminformation is a System and OS information library for node.js

high

High remediation recipe for systeminformation is a System and OS information library for node.js. Upgrade to fixed in 5.31.6. and remove the vulnerable command-injection pattern.

cve CVE-2026-44724disclosed 2026-05-27a.k.a. systeminformation is a System and OS information library for node.js

CVE-2026-45357 - LiquidJS has a memory and render limit bypass via unbounded width padding in date filter (strftime)

high

High remediation recipe for LiquidJS has a memory and render limit bypass via unbounded width padding in date filter (strftime). Upgrade to Vendor-fixed release and remove the vulnerable authz pattern.

cve CVE-2026-45357disclosed 2026-05-27a.k.a. LiquidJS has a memory and render limit bypass via unbounded width padding in date filter (strftime)

CVE-2026-45617 - LiquidJS Vulnerable to ReDoS via Quadratic Backtracking in strip_html Filter Regex

high

High remediation recipe for LiquidJS Vulnerable to ReDoS via Quadratic Backtracking in strip_html Filter Regex. Upgrade to 10.26.0 and remove the vulnerable authz pattern.

cve CVE-2026-45617disclosed 2026-05-27a.k.a. LiquidJS Vulnerable to ReDoS via Quadratic Backtracking in strip_html Filter Regex

CVE-2026-42089 - yeoman-environment Vulnerable to Arbitrary Package Installation without User Confirmation

high

High remediation recipe for yeoman-environment Vulnerable to Arbitrary Package Installation without User Confirmation. Upgrade to 6.0.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-42089disclosed 2026-05-26a.k.a. yeoman-environment Vulnerable to Arbitrary Package Installation without User Confirmation

CVE-2026-9277 - shell-quote's quote() function did not validate object-token inputs against the operator model used by pars

high

High remediation recipe for shell-quote's quote() function did not validate object-token inputs against the operator model used by pars. Upgrade to Fixed by replacing the per-character escape with strict shape vali and remove the vulnerable command-injection pattern.

cve CVE-2026-9277disclosed 2026-05-22a.k.a. shell-quote's quote() function did not validate object-token inputs against the operator model used by pars

CVE-2026-47759 - TinyMCE data-mce attribute XSS

high

High-severity TinyMCE stored XSS via unsafe data-mce-* attributes. Upgrade TinyMCE to 5.11.1 LTS, 7.9.3+, or 8.5.1+, and verify stored HTML sanitization.

cve CVE-2026-47759disclosed 2026-05-20a.k.a. TinyMCE data-mce attribute stored XSS

CVE-2026-47760 - TinyMCE nested SVG sanitizer XSS

high

High-severity TinyMCE stored XSS in 6.8.x through 7.0.x caused by SVG namespace sanitizer handling. Upgrade to 7.1.0+ or a newer fixed line and verify rich-text SVG handling.

cve CVE-2026-47760disclosed 2026-05-20a.k.a. TinyMCE nested SVG sanitizer XSS

CVE-2026-47761 - TinyMCE media data-mce-object XSS

high

High-severity TinyMCE stored XSS in the media plugin via data-mce-object and data-mce-p-* attributes. Upgrade to 5.11.1 LTS, 7.9.3+, or 8.5.1+ and recheck rich-media rendering.

cve CVE-2026-47761disclosed 2026-05-20a.k.a. TinyMCE media plugin data-mce-object XSS

CVE-2026-47762 - TinyMCE mce:protected comment XSS

high

High-severity TinyMCE stored XSS through forged mce:protected comments when the protect option is used. Upgrade to 5.11.1 LTS, 7.9.3+, or 8.5.1+ and verify protected-content restoration.

cve CVE-2026-47762disclosed 2026-05-20a.k.a. TinyMCE mce-protected stored XSS

CVE-2026-38728 - smtp-server's command parser memory exhaustion denial-of-service

high

High remediation recipe for smtp-server's command parser memory exhaustion denial-of-service. Upgrade to 3.18.3 and remove the vulnerable dos pattern.

cve CVE-2026-38728disclosed 2026-05-15a.k.a. smtp-server's command parser memory exhaustion denial-of-service

CVE-2026-46477 - FlowiseAI: Dataset create+update mass-assignment allows cross-workspace dataset takeover

high

High remediation recipe for FlowiseAI: Dataset create+update mass-assignment allows cross-workspace dataset takeover. Upgrade to 3.1.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-46477disclosed 2026-05-14a.k.a. FlowiseAI: Dataset create+update mass-assignment allows cross-workspace dataset takeover

CVE-2026-46478 - FlowiseAI: DatasetRow create+update mass-assignment allows cross-workspace row takeover

high

High remediation recipe for FlowiseAI: DatasetRow create+update mass-assignment allows cross-workspace row takeover. Upgrade to 3.1.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-46478disclosed 2026-05-14a.k.a. FlowiseAI: DatasetRow create+update mass-assignment allows cross-workspace row takeover

CVE-2026-46479 - FlowiseAI: Evaluation create+update mass-assignment allows cross-workspace evaluation takeover

high

High remediation recipe for FlowiseAI: Evaluation create+update mass-assignment allows cross-workspace evaluation takeover. Upgrade to 3.1.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-46479disclosed 2026-05-14a.k.a. FlowiseAI: Evaluation create+update mass-assignment allows cross-workspace evaluation takeover

CVE-2026-43997 - vm2 is an open source vm/sandbox for Node.js

critical

Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-43997disclosed 2026-05-13a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-43998 - vm2 is an open source vm/sandbox for Node.js

high

High remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-43998disclosed 2026-05-13a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-43999 - vm2 is an open source vm/sandbox for Node.js

critical

Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-43999disclosed 2026-05-13a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-44001 - vm2 is an open source vm/sandbox for Node.js

high

High remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-44001disclosed 2026-05-13a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-44004 - vm2 is an open source vm/sandbox for Node.js

high

High remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-44004disclosed 2026-05-13a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-44005 - vm2 is an open source vm/sandbox for Node.js

critical

Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-44005disclosed 2026-05-13a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-44006 - vm2 is an open source vm/sandbox for Node.js

critical

Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-44006disclosed 2026-05-13a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-44008 - vm2 is an open source vm/sandbox for Node.js

critical

Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.2. and remove the vulnerable command-injection pattern.

cve CVE-2026-44008disclosed 2026-05-13a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-44009 - vm2 is an open source vm/sandbox for Node.js

critical

Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.2. and remove the vulnerable command-injection pattern.

cve CVE-2026-44009disclosed 2026-05-13a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-44289 - protobufjs compiles protobuf definitions into JavaScript (JS) functions

high

High remediation recipe for protobufjs compiles protobuf definitions into JavaScript (JS) functions. Upgrade to fixed in 7.5.6 and 8.0.2. and remove the vulnerable authz pattern.

cve CVE-2026-44289disclosed 2026-05-13a.k.a. protobufjs compiles protobuf definitions into JavaScript (JS) functions

CVE-2026-44293 - protobufjs compiles protobuf definitions into JavaScript (JS) functions

high

High remediation recipe for protobufjs compiles protobuf definitions into JavaScript (JS) functions. Upgrade to version could include an unsafe expression derived from a schema-con and remove the vulnerable authz pattern.

cve CVE-2026-44293disclosed 2026-05-13a.k.a. protobufjs compiles protobuf definitions into JavaScript (JS) functions

CVE-2026-44578 - Next.js is a React framework for building full-stack web applications

high

High remediation recipe for Next.js is a React framework for building full-stack web applications. Upgrade to fixed in 15.5.16 and 16.2.5. and remove the vulnerable command-injection pattern.

cve CVE-2026-44578disclosed 2026-05-13a.k.a. Next.js is a React framework for building full-stack web applications

CVE-2026-45411 - vm2 is an open source vm/sandbox for Node.js

critical

Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.3. and remove the vulnerable command-injection pattern.

cve CVE-2026-45411disclosed 2026-05-13a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-8389 - JIT miscompilation in the JavaScript Engine: JIT component

high

High remediation recipe for JIT miscompilation in the JavaScript Engine: JIT component. Upgrade to fixed in Firefox 150.0.3. and remove the vulnerable authz pattern.

cve CVE-2026-8389disclosed 2026-05-12a.k.a. JIT miscompilation in the JavaScript Engine: JIT component

CVE-2026-8390 - Use-after-free in the JavaScript: WebAssembly component

high

High remediation recipe for Use-after-free in the JavaScript: WebAssembly component. Upgrade to fixed in Firefox 150.0.3. and remove the vulnerable authz pattern.

cve CVE-2026-8390disclosed 2026-05-12a.k.a. Use-after-free in the JavaScript: WebAssembly component

CVE-2026-42264 - Axios is a promise based HTTP client for the browser and Node.js

high

High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to version 1.0.0 to before version 1.15.2 and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-42264disclosed 2026-05-08a.k.a. Axios is a promise based HTTP client for the browser and Node.js

CVE-2026-41139 - Math.js is an extensive math library for JavaScript and Node.js

high

High remediation recipe for Math.js is an extensive math library for JavaScript and Node.js. Upgrade to version 13.1.0 to before version 15.2.0 and remove the vulnerable authz pattern.

cve CVE-2026-41139disclosed 2026-05-07a.k.a. Math.js is an extensive math library for JavaScript and Node.js

CVE-2026-41672 - xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module

high

High remediation recipe for xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. Upgrade to version 0.6.0 and prior and remove the vulnerable authz pattern.

cve CVE-2026-41672disclosed 2026-05-07a.k.a. xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module

CVE-2026-41673 - xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module

high

High remediation recipe for xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. Upgrade to version 0.6.0 and prior and remove the vulnerable dos pattern.

cve CVE-2026-41673disclosed 2026-05-07a.k.a. xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module

CVE-2026-41674 - xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module

high

High remediation recipe for xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. Upgrade to version 0.6.0 and prior and remove the vulnerable authz pattern.

cve CVE-2026-41674disclosed 2026-05-07a.k.a. xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module

CVE-2026-41675 - xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module

high

High remediation recipe for xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. Upgrade to version 0.6.0 and prior and remove the vulnerable authz pattern.

cve CVE-2026-41675disclosed 2026-05-07a.k.a. xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module

CVE-2026-24118 - vm2 is an open source vm/sandbox for Node.js

critical

Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to version 3.11.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-24118disclosed 2026-05-04a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-24120 - vm2 is an open source vm/sandbox for Node.js

critical

Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to version 3.10.5 and remove the vulnerable command-injection pattern.

cve CVE-2026-24120disclosed 2026-05-04a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-24781 - vm2 is an open source vm/sandbox for Node.js

critical

Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to version 3.11.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-24781disclosed 2026-05-04a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-26332 - vm2 is an open source vm/sandbox for Node.js

critical

Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to version 3.11.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-26332disclosed 2026-05-04a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-26956 - vm2 is an open source vm/sandbox for Node.js

critical

Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to version 3.10.4 and remove the vulnerable command-injection pattern.

cve CVE-2026-26956disclosed 2026-05-04a.k.a. vm2 is an open source vm/sandbox for Node.js

CVE-2026-6321 - fast-uri encoded path traversal

high

fast-uri can normalize encoded dot segments into policy-bypassing paths. Upgrade to 3.1.1+ and audit URL path checks.

cve CVE-2026-6321disclosed 2026-05-04a.k.a. fast-uri percent-encoded dot segment traversal

CVE-2025-14576 - Insufficient validation of node IDs in Qt SVG module allows arbitrary QML/JavaScript code injection when loadi

high

High remediation recipe for Insufficient validation of node IDs in Qt SVG module allows arbitrary QML/JavaScript code injection when loadi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-14576disclosed 2026-04-30a.k.a. Insufficient validation of node IDs in Qt SVG module allows arbitrary QML/JavaScript code injection when loadi

CVE-2026-40897 - Math.js is an extensive math library for JavaScript and Node.js

high

High remediation recipe for Math.js is an extensive math library for JavaScript and Node.js. Upgrade to fixed in 15.2.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-40897disclosed 2026-04-24a.k.a. Math.js is an extensive math library for JavaScript and Node.js

CVE-2026-42033 - Axios is a promise based HTTP client for the browser and Node.js

high

High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 1.15.1 and 0.31.1. and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-42033disclosed 2026-04-24a.k.a. Axios is a promise based HTTP client for the browser and Node.js

CVE-2026-42039 - Axios is a promise based HTTP client for the browser and Node.js

high

High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 1.15.1 and 0.31.1. and remove the vulnerable dos pattern.

cve CVE-2026-42039disclosed 2026-04-24a.k.a. Axios is a promise based HTTP client for the browser and Node.js

CVE-2026-42043 - Axios is a promise based HTTP client for the browser and Node.js

high

High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 1.15.1 and 0.31.1. and remove the vulnerable authz pattern.

cve CVE-2026-42043disclosed 2026-04-24a.k.a. Axios is a promise based HTTP client for the browser and Node.js

CVE-2026-6754 - Use-after-free in the JavaScript Engine component

high

High remediation recipe for Use-after-free in the JavaScript Engine component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.

cve CVE-2026-6754disclosed 2026-04-21a.k.a. Use-after-free in the JavaScript Engine component

CVE-2026-41478 - Saltcorn mobile-sync SQL injection

critical

Critical Saltcorn mobile-sync SQL injection in /sync/load_changes and /sync/deletes. Upgrade to fixed Saltcorn releases, disable exposed sync routes until patched, and verify sync metadata is bound and type-checked.

cve CVE-2026-41478disclosed 2026-04-16a.k.a. Saltcorn mobile-sync SQL injection

CVE-2026-28291 - simple-git enables running native Git commands from JavaScript

high

High remediation recipe for simple-git enables running native Git commands from JavaScript. Upgrade to fixed in version 3.32.0. and remove the vulnerable authz pattern.

cve CVE-2026-28291disclosed 2026-04-13a.k.a. simple-git enables running native Git commands from JavaScript

CVE-2026-5483 - A flaw was found in odh-dashboard in Red Hat Openshift AI

high

High remediation recipe for A flaw was found in odh-dashboard in Red Hat Openshift AI. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-5483disclosed 2026-04-10a.k.a. A flaw was found in odh-dashboard in Red Hat Openshift AI

CVE-2025-62718 - Axios is a promise based HTTP client for the browser and Node.js

critical

Critical remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 1.15.0 and 0.31.0. and remove the vulnerable command-injection pattern.

cve CVE-2025-62718disclosed 2026-04-09a.k.a. Axios is a promise based HTTP client for the browser and Node.js

CVE-2026-39983 - basic-ftp is an FTP client for Node.js. Prior to 5.2.1, basic-ftp allows FTP command injection via CRLF sequen

high

High remediation recipe for basic-ftp is an FTP client for Node.js. Prior to 5.2.1, basic-ftp allows FTP command injection via CRLF sequen. Upgrade to fixed in 5.2.1. and remove the vulnerable command-injection pattern.

cve CVE-2026-39983disclosed 2026-04-09a.k.a. basic-ftp is an FTP client for Node.js. Prior to 5.2.1, basic-ftp allows FTP command injection via CRLF sequen

CVE-2026-39363 - Vite is a frontend tooling framework for JavaScript

high

High remediation recipe for Vite is a frontend tooling framework for JavaScript. Upgrade to fixed in 6.4.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-39363disclosed 2026-04-07a.k.a. Vite is a frontend tooling framework for JavaScript

CVE-2026-39364 - Vite is a frontend tooling framework for JavaScript

high

High remediation recipe for Vite is a frontend tooling framework for JavaScript. Upgrade to fixed in 7.3.2 and 8.0.5. and remove the vulnerable authz pattern.

cve CVE-2026-39364disclosed 2026-04-07a.k.a. Vite is a frontend tooling framework for JavaScript

CVE-2026-34986 - Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, inc

high

High remediation recipe for Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, inc. Upgrade to fixed in 4.1.4 and 3.0.5. and remove the vulnerable crypto pattern.

cve CVE-2026-34986disclosed 2026-04-06a.k.a. Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, inc

CVE-2026-34769 - Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS

high

High remediation recipe for Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. Upgrade to patched in versions 38.8.6 and remove the vulnerable authz pattern.

cve CVE-2026-34769disclosed 2026-04-04a.k.a. Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS

CVE-2026-34771 - Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS

high

High remediation recipe for Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. Upgrade to patched in versions 38.8.6 and remove the vulnerable dos pattern.

cve CVE-2026-34771disclosed 2026-04-04a.k.a. Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS

CVE-2026-34774 - Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS

high

High remediation recipe for Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. Upgrade to patched in versions 39.8.1 and remove the vulnerable dos pattern.

cve CVE-2026-34774disclosed 2026-04-04a.k.a. Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS

CVE-2026-34780 - Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS

high

High remediation recipe for Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. Upgrade to patched in versions 39.8.0 and remove the vulnerable xss pattern.

cve CVE-2026-34780disclosed 2026-04-04a.k.a. Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS

CVE-2026-34601 - xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module

high

High remediation recipe for xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. Upgrade to patched in xmldom version 0.6.0 and and remove the vulnerable authz pattern.

cve CVE-2026-34601disclosed 2026-04-02a.k.a. xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module

CVE-2026-21710 - A flaw in Node.js HTTP request handling causes an uncaught TypeError when a request is received with a heade

high

High remediation recipe for A flaw in Node.js HTTP request handling causes an uncaught TypeError when a request is received with a heade. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-21710disclosed 2026-03-30a.k.a. A flaw in Node.js HTTP request handling causes an uncaught TypeError when a request is received with a heade

CVE-2026-33891 - Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript

high

High remediation recipe for Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript. Upgrade to version 1.4.0 and remove the vulnerable dos pattern.

cve CVE-2026-33891disclosed 2026-03-27a.k.a. Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript

CVE-2026-33894 - Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript

high

High remediation recipe for Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript. Upgrade to version 1.4.0 and remove the vulnerable crypto pattern.

cve CVE-2026-33894disclosed 2026-03-27a.k.a. Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript

CVE-2026-33895 - Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript

high

High remediation recipe for Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript. Upgrade to version 1.4.0 and remove the vulnerable authz pattern.

cve CVE-2026-33895disclosed 2026-03-27a.k.a. Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript

CVE-2026-33896 - Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript

high

High remediation recipe for Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript. Upgrade to version 1.4.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-33896disclosed 2026-03-27a.k.a. Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript

CVE-2026-33937 - Handlebars provides the power necessary to let users build semantic templates

critical

Critical remediation recipe for Handlebars provides the power necessary to let users build semantic templates. Upgrade to Version 4.7.9 fixes the issue. Some workarounds are available. Valid and remove the vulnerable authz pattern.

cve CVE-2026-33937disclosed 2026-03-27a.k.a. Handlebars provides the power necessary to let users build semantic templates

CVE-2026-33938 - Handlebars provides the power necessary to let users build semantic templates

high

High remediation recipe for Handlebars provides the power necessary to let users build semantic templates. Upgrade to Version 4.7.9 fixes the issue. Some workarounds are available. First and remove the vulnerable authz pattern.

cve CVE-2026-33938disclosed 2026-03-27a.k.a. Handlebars provides the power necessary to let users build semantic templates

CVE-2026-33939 - Handlebars provides the power necessary to let users build semantic templates

high

High remediation recipe for Handlebars provides the power necessary to let users build semantic templates. Upgrade to Version 4.7.9 fixes the issue. Some workarounds are available. Wrap and remove the vulnerable dos pattern.

cve CVE-2026-33939disclosed 2026-03-27a.k.a. Handlebars provides the power necessary to let users build semantic templates

CVE-2026-33940 - Handlebars provides the power necessary to let users build semantic templates

high

High remediation recipe for Handlebars provides the power necessary to let users build semantic templates. Upgrade to Version 4.7.9 fixes the issue. Some workarounds are available. First and remove the vulnerable command-injection pattern.

cve CVE-2026-33940disclosed 2026-03-27a.k.a. Handlebars provides the power necessary to let users build semantic templates

CVE-2026-33941 - Handlebars provides the power necessary to let users build semantic templates

high

High remediation recipe for Handlebars provides the power necessary to let users build semantic templates. Upgrade to Version 4.7.9 fixes the issue. Some workarounds are available. First and remove the vulnerable authz pattern.

cve CVE-2026-33941disclosed 2026-03-27a.k.a. Handlebars provides the power necessary to let users build semantic templates

CVE-2026-33943 - Happy DOM is a JavaScript implementation of a web browser without its graphical user interface

high

High remediation recipe for Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. Upgrade to Version 20.8.8 fixes the issue. and remove the vulnerable command-injection pattern.

cve CVE-2026-33943disclosed 2026-03-27a.k.a. Happy DOM is a JavaScript implementation of a web browser without its graphical user interface

CVE-2026-34226 - Happy DOM is a JavaScript implementation of a web browser without its graphical user interface

high

High remediation recipe for Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. Upgrade to Version 20.8.9 fixes the issue. and remove the vulnerable authz pattern.

cve CVE-2026-34226disclosed 2026-03-27a.k.a. Happy DOM is a JavaScript implementation of a web browser without its graphical user interface

CVE-2026-35633 - OpenClaw: Remote media error responses could trigger unbounded memory allocation before failure

high

High remediation recipe for OpenClaw: Remote media error responses could trigger unbounded memory allocation before failure. Upgrade to 2026.3.22 and remove the vulnerable command-injection pattern.

cve CVE-2026-35633disclosed 2026-03-26a.k.a. OpenClaw: Remote media error responses could trigger unbounded memory allocation before failure

CVE-2026-4698 - JIT miscompilation in the JavaScript Engine: JIT component

critical

Critical remediation recipe for JIT miscompilation in the JavaScript Engine: JIT component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.

cve CVE-2026-4698disclosed 2026-03-24a.k.a. JIT miscompilation in the JavaScript Engine: JIT component

CVE-2026-33228 - flatted is a circular JSON parser. Prior to version 3.4.2, the parse() function in flatted can use attacker-co

critical

Critical remediation recipe for flatted is a circular JSON parser. Prior to version 3.4.2, the parse() function in flatted can use attacker-co. Upgrade to version 3.4.2 and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-33228disclosed 2026-03-20a.k.a. flatted is a circular JSON parser. Prior to version 3.4.2, the parse() function in flatted can use attacker-co

CVE-2026-31898 - jsPDF is a library to generate PDFs in JavaScript

high

High remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to version 4.2.1 and remove the vulnerable authz pattern.

cve CVE-2026-31898disclosed 2026-03-18a.k.a. jsPDF is a library to generate PDFs in JavaScript

CVE-2026-31938 - jsPDF is a library to generate PDFs in JavaScript

critical

Critical remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to version 4.2.1 and remove the vulnerable authz pattern.

cve CVE-2026-31938disclosed 2026-03-18a.k.a. jsPDF is a library to generate PDFs in JavaScript

CVE-2026-32304 - Locutus brings stdlibs of other programming languages to JavaScript for educational purposes

critical

Critical remediation recipe for Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. Upgrade to fixed in 3.0.14. and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-32304disclosed 2026-03-13a.k.a. Locutus brings stdlibs of other programming languages to JavaScript for educational purposes

CVE-2026-1526 - The undici WebSocket client is vulnerable to a denial-of-service attack via unbounded memory consumption durin

high

High remediation recipe for The undici WebSocket client is vulnerable to a denial-of-service attack via unbounded memory consumption durin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-1526disclosed 2026-03-12a.k.a. The undici WebSocket client is vulnerable to a denial-of-service attack via unbounded memory consumption durin

CVE-2026-2229 - ImpactThe undici WebSocket client is vulnerable to a denial-of-service attack due to improper validation of th

high

High remediation recipe for ImpactThe undici WebSocket client is vulnerable to a denial-of-service attack due to improper validation of th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-2229disclosed 2026-03-12a.k.a. ImpactThe undici WebSocket client is vulnerable to a denial-of-service attack due to improper validation of th

CVE-2026-32141 - flatted is a circular JSON parser. Prior to 3.4.0, flatted's parse() function uses a recursive revive() phase

high

High remediation recipe for flatted is a circular JSON parser. Prior to 3.4.0, flatted's parse() function uses a recursive revive() phase. Upgrade to fixed in 3.4.0. and remove the vulnerable dos pattern.

cve CVE-2026-32141disclosed 2026-03-12a.k.a. flatted is a circular JSON parser. Prior to 3.4.0, flatted's parse() function uses a recursive revive() phase

CVE-2026-28292 - simple-git, an interface for running git commands in any node.js application, has an issue in versions 3.15

critical

Critical remediation recipe for simple-git, an interface for running git commands in any node.js application, has an issue in versions 3.15. Upgrade to Version 3.23.0 contains an updated fix for the vulnerability. and remove the vulnerable authz pattern.

cve CVE-2026-28292disclosed 2026-03-10a.k.a. simple-git, an interface for running git commands in any node.js application, has an issue in versions 3.15

CVE-2026-30951 - Sequelize is a Node.js ORM tool. Prior to 6.37.8, there is SQL injection via unescaped cast type in JSON/JSONB

high

High remediation recipe for Sequelize is a Node.js ORM tool. Prior to 6.37.8, there is SQL injection via unescaped cast type in JSON/JSONB. Upgrade to fixed in 6.37.8. and remove the vulnerable authz pattern.

cve CVE-2026-30951disclosed 2026-03-10a.k.a. Sequelize is a Node.js ORM tool. Prior to 6.37.8, there is SQL injection via unescaped cast type in JSON/JSONB

CVE-2026-29074 - SVGO, short for SVG Optimizer, is a Node.js library and command-line application for optimizing SVG files

high

High remediation recipe for SVGO, short for SVG Optimizer, is a Node.js library and command-line application for optimizing SVG files. Upgrade to version 2.1.0 to before version 2.8.1 and remove the vulnerable dos pattern.

cve CVE-2026-29074disclosed 2026-03-06a.k.a. SVGO, short for SVG Optimizer, is a Node.js library and command-line application for optimizing SVG files

CVE-2026-29091 - Locutus brings stdlibs of other programming languages to JavaScript for educational purposes

high

High remediation recipe for Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. Upgrade to version 3.0.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-29091disclosed 2026-03-06a.k.a. Locutus brings stdlibs of other programming languages to JavaScript for educational purposes

CVE-2026-3520 - Multer is a node.js middleware for handling multipart/form-data

high

High remediation recipe for Multer is a node.js middleware for handling multipart/form-data. Upgrade to version 2.1.1 allows an attacker to trigger a Denial of Service and remove the vulnerable dos pattern.

cve CVE-2026-3520disclosed 2026-03-04a.k.a. Multer is a node.js middleware for handling multipart/form-data

CVE-2026-2359 - Multer is a node.js middleware for handling multipart/form-data

high

High remediation recipe for Multer is a node.js middleware for handling multipart/form-data. Upgrade to version 2.1.0 allows an attacker to trigger a Denial of Service and remove the vulnerable command-injection pattern.

cve CVE-2026-2359disclosed 2026-02-27a.k.a. Multer is a node.js middleware for handling multipart/form-data

CVE-2026-3304 - Multer is a node.js middleware for handling multipart/form-data

high

High remediation recipe for Multer is a node.js middleware for handling multipart/form-data. Upgrade to version 2.1.0 allows an attacker to trigger a Denial of Service and remove the vulnerable command-injection pattern.

cve CVE-2026-3304disclosed 2026-02-27a.k.a. Multer is a node.js middleware for handling multipart/form-data

CVE-2026-27959 - Koa is middleware for Node.js using ES2017 async functions

high

High remediation recipe for Koa is middleware for Node.js using ES2017 async functions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.

cve CVE-2026-27959disclosed 2026-02-26a.k.a. Koa is middleware for Node.js using ES2017 async functions

CVE-2026-2758 - Use-after-free in the JavaScript: GC component

critical

Critical remediation recipe for Use-after-free in the JavaScript: GC component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2758disclosed 2026-02-24a.k.a. Use-after-free in the JavaScript: GC component

CVE-2026-2762 - Integer overflow in the JavaScript: Standard Library component

critical

Critical remediation recipe for Integer overflow in the JavaScript: Standard Library component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2762disclosed 2026-02-24a.k.a. Integer overflow in the JavaScript: Standard Library component

CVE-2026-2763 - Use-after-free in the JavaScript Engine component

critical

Critical remediation recipe for Use-after-free in the JavaScript Engine component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2763disclosed 2026-02-24a.k.a. Use-after-free in the JavaScript Engine component

CVE-2026-2764 - JIT miscompilation, use-after-free in the JavaScript Engine: JIT component

critical

Critical remediation recipe for JIT miscompilation, use-after-free in the JavaScript Engine: JIT component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2764disclosed 2026-02-24a.k.a. JIT miscompilation, use-after-free in the JavaScript Engine: JIT component

CVE-2026-2765 - Use-after-free in the JavaScript Engine component

critical

Critical remediation recipe for Use-after-free in the JavaScript Engine component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2765disclosed 2026-02-24a.k.a. Use-after-free in the JavaScript Engine component

CVE-2026-2766 - Use-after-free in the JavaScript Engine: JIT component

critical

Critical remediation recipe for Use-after-free in the JavaScript Engine: JIT component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2766disclosed 2026-02-24a.k.a. Use-after-free in the JavaScript Engine: JIT component

CVE-2026-2767 - Use-after-free in the JavaScript: WebAssembly component

critical

Critical remediation recipe for Use-after-free in the JavaScript: WebAssembly component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.

cve CVE-2026-2767disclosed 2026-02-24a.k.a. Use-after-free in the JavaScript: WebAssembly component

CVE-2026-2795 - Use-after-free in the JavaScript: GC component

critical

Critical remediation recipe for Use-after-free in the JavaScript: GC component. Upgrade to fixed in Firefox 148 and Thunderbird 148. and remove the vulnerable authz pattern.

cve CVE-2026-2795disclosed 2026-02-24a.k.a. Use-after-free in the JavaScript: GC component

CVE-2026-2796 - JIT miscompilation in the JavaScript: WebAssembly component

critical

Critical remediation recipe for JIT miscompilation in the JavaScript: WebAssembly component. Upgrade to fixed in Firefox 148 and Thunderbird 148. and remove the vulnerable authz pattern.

cve CVE-2026-2796disclosed 2026-02-24a.k.a. JIT miscompilation in the JavaScript: WebAssembly component

CVE-2026-2797 - Use-after-free in the JavaScript: GC component

critical

Critical remediation recipe for Use-after-free in the JavaScript: GC component. Upgrade to fixed in Firefox 148 and Thunderbird 148. and remove the vulnerable authz pattern.

cve CVE-2026-2797disclosed 2026-02-24a.k.a. Use-after-free in the JavaScript: GC component

CVE-2026-2472 - Stored Cross-Site Scripting (XSS) in the _genai/_evals_visualization component of Google Cloud Vertex AI SDK (

high

High remediation recipe for Stored Cross-Site Scripting (XSS) in the _genai/_evals_visualization component of Google Cloud Vertex AI SDK (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-2472disclosed 2026-02-20a.k.a. Stored Cross-Site Scripting (XSS) in the _genai/_evals_visualization component of Google Cloud Vertex AI SDK (

CVE-2026-25535 - jsPDF is a library to generate PDFs in JavaScript

high

High remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to fixed in jsPDF 4.2.0. As a workaround and remove the vulnerable dos pattern.

cve CVE-2026-25535disclosed 2026-02-19a.k.a. jsPDF is a library to generate PDFs in JavaScript

CVE-2026-25755 - jsPDF is a library to generate PDFs in JavaScript

high

High remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to fixed in jspdf and remove the vulnerable authz pattern.

cve CVE-2026-25755disclosed 2026-02-19a.k.a. jsPDF is a library to generate PDFs in JavaScript

CVE-2026-25940 - jsPDF is a library to generate PDFs in JavaScript

high

High remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to fixed in jsPDF and remove the vulnerable authz pattern.

cve CVE-2026-25940disclosed 2026-02-19a.k.a. jsPDF is a library to generate PDFs in JavaScript

CVE-2026-26280 - systeminformation is a System and OS information library for node.js

high

High remediation recipe for systeminformation is a System and OS information library for node.js. Upgrade to Version 5.30.8 fixes the issue. and remove the vulnerable command-injection pattern.

cve CVE-2026-26280disclosed 2026-02-19a.k.a. systeminformation is a System and OS information library for node.js

CVE-2026-26318 - systeminformation is a System and OS information library for node.js

high

High remediation recipe for systeminformation is a System and OS information library for node.js. Upgrade to Version 5.31.0 fixes the issue. and remove the vulnerable command-injection pattern.

cve CVE-2026-26318disclosed 2026-02-19a.k.a. systeminformation is a System and OS information library for node.js

CVE-2026-26329 - OpenClaw browser upload file read

high

OpenClaw browser uploads can read Gateway host files. Upgrade to 2026.2.14+ and confine uploads to a safe temp root.

cve CVE-2026-26329disclosed 2026-02-15a.k.a. OpenClaw browser upload local file read

CVE-2026-1615 - Versions of the package jsonpath before 1.3.0 are vulnerable to Arbitrary Code Injection via unsafe evaluation

critical

Critical remediation recipe for Versions of the package jsonpath before 1.3.0 are vulnerable to Arbitrary Code Injection via unsafe evaluation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-1615disclosed 2026-02-09a.k.a. Versions of the package jsonpath before 1.3.0 are vulnerable to Arbitrary Code Injection via unsafe evaluation

CVE-2026-25639 - Axios is a promise based HTTP client for the browser and Node.js

high

High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in versions 0.30.3 and 1.13.5. and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-25639disclosed 2026-02-09a.k.a. Axios is a promise based HTTP client for the browser and Node.js

CVE-2026-25640 - Pydantic AI is a Python agent framework for building applications and workflows with Generative AI

high

High remediation recipe for Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. Upgrade to version query parameter from the request URL. This parameter is not and remove the vulnerable command-injection pattern.

cve CVE-2026-25640disclosed 2026-02-06a.k.a. Pydantic AI is a Python agent framework for building applications and workflows with Generative AI

CVE-2026-25521 - Locutus brings stdlibs of other programming languages to JavaScript for educational purposes

high

High remediation recipe for Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. Upgrade to patched in version 2.0.39. and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-25521disclosed 2026-02-04a.k.a. Locutus brings stdlibs of other programming languages to JavaScript for educational purposes

CVE-2026-25223 - Fastify is a fast and low overhead web framework, for Node.js

high

High remediation recipe for Fastify is a fast and low overhead web framework, for Node.js. Upgrade to version 5.7.2 and remove the vulnerable authz pattern.

cve CVE-2026-25223disclosed 2026-02-03a.k.a. Fastify is a fast and low overhead web framework, for Node.js

CVE-2026-24737 - jsPDF is a library to generate PDFs in JavaScript

high

High remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to fixed in jsPDF and remove the vulnerable authz pattern.

cve CVE-2026-24737disclosed 2026-02-02a.k.a. jsPDF is a library to generate PDFs in JavaScript

CVE-2026-25153 - Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides co

high

High remediation recipe for Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides co. Upgrade to upgrade to the latest version and remove the vulnerable authz pattern.

cve CVE-2026-25153disclosed 2026-01-30a.k.a. Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides co

CVE-2025-57283 - The Node.js package browserstack-local 1.5.8 contains a command injection vulnerability

high

High remediation recipe for The Node.js package browserstack-local 1.5.8 contains a command injection vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-57283disclosed 2026-01-28a.k.a. The Node.js package browserstack-local 1.5.8 contains a command injection vulnerability

CVE-2026-24842 - node-tar,a Tar for Node.js, contains a vulnerability in versions prior to 7.5.7 where the security check for h

high

High remediation recipe for node-tar,a Tar for Node.js, contains a vulnerability in versions prior to 7.5.7 where the security check for h. Upgrade to Version 7.5.7 contains a fix for the issue. and remove the vulnerable path-traversal pattern.

cve CVE-2026-24842disclosed 2026-01-28a.k.a. node-tar,a Tar for Node.js, contains a vulnerability in versions prior to 7.5.7 where the security check for h

CVE-2026-0775 - npm cli Incorrect Permission Assignment Local Privilege Escalation Vulnerability

high

High remediation recipe for npm cli Incorrect Permission Assignment Local Privilege Escalation Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-0775disclosed 2026-01-23a.k.a. npm cli Incorrect Permission Assignment Local Privilege Escalation Vulnerability

CVE-2026-24001 - jsdiff is a JavaScript text differencing implementation

high

High remediation recipe for jsdiff is a JavaScript text differencing implementation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-24001disclosed 2026-01-22a.k.a. jsdiff is a JavaScript text differencing implementation

CVE-2025-55130 - A flaw in Node.js’s Permissions model allows attackers to bypass --allow-fs-read and --allow-fs-write rest

critical

Critical remediation recipe for A flaw in Node.js’s Permissions model allows attackers to bypass --allow-fs-read and --allow-fs-write rest. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2025-55130disclosed 2026-01-20a.k.a. A flaw in Node.js’s Permissions model allows attackers to bypass --allow-fs-read and --allow-fs-write rest

CVE-2025-55131 - A flaw in Node.js's buffer allocation logic can expose uninitialized memory when allocations are interrupted,

high

High remediation recipe for A flaw in Node.js's buffer allocation logic can expose uninitialized memory when allocations are interrupted,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-55131disclosed 2026-01-20a.k.a. A flaw in Node.js's buffer allocation logic can expose uninitialized memory when allocations are interrupted,

CVE-2025-59465 - A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggeri

high

High remediation recipe for A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggeri. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-59465disclosed 2026-01-20a.k.a. A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggeri

CVE-2026-23950 - node-tar,a Tar for Node.js, has a race condition vulnerability in versions up to and including 7.5.3

high

High remediation recipe for node-tar,a Tar for Node.js, has a race condition vulnerability in versions up to and including 7.5.3. Upgrade to patch in version 7.5.4 updates and remove the vulnerable path-traversal pattern.

cve CVE-2026-23950disclosed 2026-01-20a.k.a. node-tar,a Tar for Node.js, has a race condition vulnerability in versions up to and including 7.5.3

CVE-2021-47839 - Marky 0.0.1 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious

high

High remediation recipe for Marky 0.0.1 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2021-47839disclosed 2026-01-16a.k.a. Marky 0.0.1 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious

CVE-2026-22774 - Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien

high

High remediation recipe for Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien. Upgrade to fixed in 5.6.2. and remove the vulnerable command-injection pattern.

cve CVE-2026-22774disclosed 2026-01-15a.k.a. Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien

CVE-2026-22775 - Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien

high

High remediation recipe for Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien. Upgrade to fixed in 5.6.2. and remove the vulnerable command-injection pattern.

cve CVE-2026-22775disclosed 2026-01-15a.k.a. Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien

CVE-2025-59057 - React Router is a router for React. In @remix-run/react versions 1.15.0 through 2.17.0

high

High remediation recipe for React Router is a router for React. In @remix-run/react versions 1.15.0 through 2.17.0. Upgrade to patched in and remove the vulnerable xss pattern.

cve CVE-2025-59057disclosed 2026-01-10a.k.a. React Router is a router for React. In @remix-run/react versions 1.15.0 through 2.17.0

CVE-2026-21884 - React Router is a router for React. In @remix-run/react version prior to 2.17.3

high

High remediation recipe for React Router is a router for React. In @remix-run/react version prior to 2.17.3. Upgrade to version prior to 2.17.3. and react-router 7.0.0 through 7.11.0 and remove the vulnerable xss pattern.

cve CVE-2026-21884disclosed 2026-01-10a.k.a. React Router is a router for React. In @remix-run/react version prior to 2.17.3

CVE-2026-22029 - React Router is a router for React. In @remix-run/router version prior to 1.23.2 and react-router 7.0.0 throug

high

High remediation recipe for React Router is a router for React. In @remix-run/router version prior to 1.23.2 and react-router 7.0.0 throug. Upgrade to version prior to 1.23.2 and react-router 7.0.0 through 7.11.0 and remove the vulnerable authz pattern.

cve CVE-2026-22029disclosed 2026-01-10a.k.a. React Router is a router for React. In @remix-run/router version prior to 1.23.2 and react-router 7.0.0 throug

CVE-2025-69263 - pnpm is a package manager. Versions 10.26.2 and below store HTTP tarball dependencies (and git-hosted tarballs

high

High remediation recipe for pnpm is a package manager. Versions 10.26.2 and below store HTTP tarball dependencies (and git-hosted tarballs. Upgrade to fixed in version 10.26.0. and remove the vulnerable supply-chain pattern.

cve CVE-2025-69263disclosed 2026-01-07a.k.a. pnpm is a package manager. Versions 10.26.2 and below store HTTP tarball dependencies (and git-hosted tarballs

CVE-2025-69264 - pnpm is a package manager. Versions 10.0.0 through 10.25 allow git-hosted dependencies to execute arbitrary co

high

High remediation recipe for pnpm is a package manager. Versions 10.0.0 through 10.25 allow git-hosted dependencies to execute arbitrary co. Upgrade to fixed in version 10.26.0. and remove the vulnerable supply-chain pattern.

cve CVE-2025-69264disclosed 2026-01-07a.k.a. pnpm is a package manager. Versions 10.0.0 through 10.25 allow git-hosted dependencies to execute arbitrary co

CVE-2025-68428 - jsPDF is a library to generate PDFs in JavaScript

high

High remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to version 4.0.0 and remove the vulnerable path-traversal pattern.

cve CVE-2025-68428disclosed 2026-01-05a.k.a. jsPDF is a library to generate PDFs in JavaScript

CVE-2025-67288 - An arbitrary file upload vulnerability in Umbraco CMS v16.3.3 allows attackers to execute arbitrary code by up

critical

Critical remediation recipe for An arbitrary file upload vulnerability in Umbraco CMS v16.3.3 allows attackers to execute arbitrary code by up. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-67288disclosed 2025-12-22a.k.a. An arbitrary file upload vulnerability in Umbraco CMS v16.3.3 allows attackers to execute arbitrary code by up

CVE-2025-7443 - The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and Ja

high

High remediation recipe for The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and Ja. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.

cve CVE-2025-7443disclosed 2025-08-01a.k.a. The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and Ja

CVE-2025-8101 - Linkify Allows Prototype Pollution & HTML Attribute Injection (XSS)

high

High remediation recipe for Linkify Allows Prototype Pollution & HTML Attribute Injection (XSS). Upgrade to 4.3.2 and remove the vulnerable prototype-pollution pattern.

cve CVE-2025-8101disclosed 2025-07-26a.k.a. Linkify Allows Prototype Pollution & HTML Attribute Injection (XSS)

CVE-2024-55591 - An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS version

critical

Critical remediation recipe for An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS version. Upgrade to version 7.0.0 through 7.0.16 and FortiProxy version 7.0.0 through 7. and remove the vulnerable auth-bypass pattern.

cve CVE-2024-55591disclosed 2025-01-14a.k.a. An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS version

CVE-2024-21490 - This affects versions of the package angular from 1.3.0; versions of the package angularjs from 1.3.0

high

High remediation recipe for This affects versions of the package angular from 1.3.0; versions of the package angularjs from 1.3.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2024-21490disclosed 2024-02-10a.k.a. This affects versions of the package angular from 1.3.0; versions of the package angularjs from 1.3.0

linux/system6 recipes

CVE-2026-41045 - qSnapper polkit authentication TOCTOU bypass

high

High-severity qSnapper polkit authentication TOCTOU bypass. A local user can cross an authentication race and perform snapshot operations as root.

cve CVE-2026-41045disclosed 2026-06-22

CVE-2026-41046 - qSnapper configName path traversal

high

High-severity qSnapper configName path traversal. A local attacker can point qSnapper at attacker-controlled snapper config and drive root-owned snapshot behavior.

cve CVE-2026-41046disclosed 2026-06-22

CVE-2026-41048 - qSnapper polkit authorization cache cross-method bypass

high

High-severity qSnapper polkit authorization cache cross-method bypass. A user authorized for a low-risk snapshot action can reuse cached approval for destructive root-level actions.

cve CVE-2026-41048disclosed 2026-06-22

CVE-2026-41049 - qSnapper polkit authorization cache cross-user bypass

high

High-severity qSnapper polkit authorization cache cross-user bypass. One privileged user approval can be reused by another local user to execute root-level snapshot actions.

cve CVE-2026-41049disclosed 2026-06-22

CVE-2026-41651 — PackageKit local root exploit

high

TOCTOU in PackageKit allows local privilege escalation to root on unpatched systems. Upgrade to 1.3.5+ and reduce local attack surface.

cve CVE-2026-41651disclosed 2026-04-22a.k.a. pack2theRoot

CVE-2024-3094 — xz-utils backdoor

criticalKEV

Maintainer-implanted backdoor in liblzma reachable through sshd. Roll back to 5.4.x; treat any network-exposed affected host as compromised.

cve CVE-2024-3094disclosed 2024-03-29a.k.a. xz-utils backdoor

npm42 recipes

CVE-2026-54271 - protobufjs-cli JSON descriptor code injection

high

High-severity protobufjs-cli static code-generation flaw where crafted JSON descriptor names can inject code into generated JavaScript. Upgrade protobufjs-cli, reject untrusted JSON descriptors, and isolate codegen.

cve CVE-2026-54271disclosed 2026-06-12a.k.a. protobufjs-cli pbjs JSON descriptor injection

CVE-2026-48068 - grpc-js malformed request server crash

high

High-severity @grpc/grpc-js server crash on malformed HTTP/2 stream initiation. Upgrade to a fixed branch release and keep Node gRPC services from exposing stale vulnerable versions.

cve CVE-2026-48068disclosed 2026-06-11a.k.a. grpc-js malformed request server crash

CVE-2026-48069 - grpc-js malformed compressed message crash

high

High-severity @grpc/grpc-js client and server crash on malformed compressed messages. Upgrade to a fixed branch release and verify every shipped gRPC runtime moves off the vulnerable ranges.

cve CVE-2026-48069disclosed 2026-06-11a.k.a. grpc-js malformed compressed message crash

CVE-2026-11417 - aws-cdk-lib NodejsFunction bundling command injection

high

High-severity command injection in aws-cdk-lib NodejsFunction local bundling. Upgrade aws-cdk-lib, stop passing untrusted bundling fields, and audit custom constructs that build esbuild arguments.

cve CVE-2026-11417disclosed 2026-06-10a.k.a. aws-cdk-lib NodejsFunction local bundling injection

CVE-2026-48063 - Baileys protocolMessage spoofing and state corruption

critical

Critical Baileys spoofing and app-state corruption through malicious protocolMessage payloads. Upgrade to 6.7.22 or 7.0.0-rc12+, and harden event handling until every session is patched.

cve CVE-2026-48063disclosed 2026-06-10a.k.a. Baileys protocolMessage spoofing and state corruption

CVE-2026-54281 - Nest Fastify trailing-slash middleware bypass

high

High-severity Nest Fastify authorization bypass where MiddlewareConsumer.forRoutes() protections can be skipped with a trailing slash. Upgrade @nestjs/platform-fastify and add route-level auth regressions.

cve CVE-2026-54281disclosed 2026-06-08a.k.a. Nest Fastify trailing slash auth bypass

CVE-2026-54257 - Electron Buffer heap under/overflow

critical

Critical Electron npm package defect where incorrect Buffer byte-length calculations can crash apps or misallocate memory. Upgrade electron past 42.3.2 and rebuild shipped desktop packages.

cve CVE-2026-54257disclosed 2026-06-03a.k.a. Electron Buffer byte-length underflow

CVE-2026-33245 - React Router RSC redirect XSS

high

High-severity React Router v7 unstable RSC redirect XSS. Upgrade to 7.13.2+, audit untrusted redirect targets, and add route-level tests that reject scriptable URLs.

cve CVE-2026-33245disclosed 2026-06-02a.k.a. React Router unstable RSC redirect XSS

CVE-2026-34077 - React Router Single Fetch serialization DoS

high

High-severity React Router Framework Mode and Remix Single Fetch serialization DoS. Upgrade react-router to 7.14.0+ or turbo-stream to 3.0.0+, prove whether Single Fetch is exposed, and add bounded-response regression checks.

cve CVE-2026-34077disclosed 2026-06-02a.k.a. React Router Single Fetch serialization DoS

CVE-2026-40181 - React Router protocol-relative open redirect

medium

Moderate-severity React Router open redirect caused by same-origin redirect paths that start with //. Upgrade React Router, centralize redirect validation, and add tests for protocol-relative and encoded URL variants.

cve CVE-2026-40181disclosed 2026-06-02a.k.a. React Router protocol-relative open redirect

CVE-2026-42211 - React Router Framework Mode deserialization RCE

high

High-severity React Router Framework Mode deserialization issue that can become unauthorized RCE when application code already has prototype pollution. Upgrade react-router to 7.14.2+, remove pollution gadgets, and add server-side regression tests.

cve CVE-2026-42211disclosed 2026-06-02a.k.a. React Router Framework Mode deserialization RCE

CVE-2026-42342 - React Router __manifest path-expansion DoS

high

High-severity React Router and Remix Framework Mode resource-exhaustion issue in the __manifest endpoint. Upgrade react-router to 7.15.0+ and @remix-run/server-runtime to 2.17.5+, then add throttling and manifest-endpoint regression checks.

cve CVE-2026-42342disclosed 2026-06-02a.k.a. React Router __manifest path expansion DoS

CVE-2026-47423 - DOMPurify selectedcontent re-clone XSS

high

High-severity DOMPurify sanitization bypass through selectedcontent re-cloning. Upgrade dompurify to 3.4.5+, remove unsafe string-to-HTML sinks, and add sanitizer regression fixtures for attacker-controlled markup.

cve CVE-2026-47423disclosed 2026-06-01a.k.a. DOMPurify selectedcontent re-clone XSS

CVE-2026-47428 - Vitest browser otelCarrier token RCE

critical

Critical Vitest browser-mode inline script injection through otelCarrier. Upgrade @vitest/browser to 4.1.6+ or 5.0.0-beta.3+, keep browser runners local, and disable privileged APIs on networked servers.

cve CVE-2026-47428disclosed 2026-06-01a.k.a. Vitest browser otelCarrier inline script injection

CVE-2026-47429 - Vitest UI API file read and RCE

critical

Critical Vitest UI/API file access and execution exposure, especially on Windows or network-bound servers. Upgrade Vitest to 4.1.0+, bind UI/API locally, and disable privileged operations on exposed test servers.

cve CVE-2026-47429disclosed 2026-06-01a.k.a. Vitest UI file read and execution exposure

CVE-2026-53633 - Vitest Browser Mode CDP API RCE

critical

Critical Vitest Browser Mode API exposure where raw CDP access bypasses write and exec restrictions. Upgrade @vitest/browser, keep the API on loopback, and disable privileged browser APIs on exposed runners.

cve CVE-2026-53633disclosed 2026-06-01a.k.a. Vitest Browser Mode CDP bridge RCE

CVE-2026-49143 - browserstack-runner log handler RCE

high

High-severity browserstack-runner dev-server RCE with no patched package release. Remove or replace browserstack-runner, contain local test servers, and check for the related path-traversal file-read issue.

cve CVE-2026-49143disclosed 2026-05-27a.k.a. browserstack-runner unauthenticated dev-server RCE

CVE-2026-48017 - DbGate loadReader functionName RCE

high

High-severity DbGate server-side code injection in the /runners/load-reader endpoint. Upgrade dbgate-api to 7.1.9+, validate shell API function names, gate load-reader access, and review database-management secrets.

cve CVE-2026-48017disclosed 2026-05-22a.k.a. DbGate loadReader functionName RCE

CVE-2026-44974 - @hapi/content parameter smuggling upload-filter bypass

high

High-severity @hapi/content header parameter-smuggling issue that can bypass upload filename filters. Upgrade to 6.0.2+, reject duplicate Content-Disposition and Content-Type parameters at trust boundaries, and align parser behavior across upload controls.

cve CVE-2026-44974disclosed 2026-05-20a.k.a. @hapi/content duplicate parameter smuggling

CVE-2026-47668 - DbGate JSON script runner unauthenticated RCE

critical

Critical DbGate JSON script runner RCE that can be unauthenticated in anonymous/default deployments. Upgrade dbgate-serve to 7.1.9+, disable anonymous auth, and remove generated-code execution from untrusted request fields.

cve CVE-2026-47668disclosed 2026-05-20a.k.a. DbGate JSON script runner unauthenticated RCE

CVE-2026-47669 - DbGate archive unzip arbitrary write RCE

critical

Critical DbGate Zip Slip in archive unzip handling. Upgrade dbgate to 7.1.9+, constrain extraction paths to the archive workspace, add archive traversal tests, and harden DbGate auth/runtime privileges.

cve CVE-2026-47669disclosed 2026-05-20a.k.a. DbGate Zip Slip arbitrary write RCE

CVE-2026-47670 - DbGate loadReader dynamic import RCE

critical

Critical DbGate loadReader functionName code injection. Upgrade dbgate-api to 7.1.9+, remove request-controlled JavaScript generation, gate reader execution, and rotate secrets if untrusted users had access.

cve CVE-2026-47670disclosed 2026-05-20a.k.a. DbGate loadReader dynamic import RCE

CVE-2026-44990 - sanitize-html xmp raw-text XSS

critical

Critical sanitize-html default sanitizer bypass in version 2.17.3 through xmp raw-text handling. Upgrade to 2.17.4+, verify sanitizer-to-sink rendering paths, and add inert regression fixtures for stored HTML.

cve CVE-2026-44990disclosed 2026-05-13a.k.a. sanitize-html xmp raw-text XSS

CVE-2026-25244 - WebdriverIO BrowserStack branch command injection

critical

Critical command injection in @wdio/browserstack-service git branch metadata handling. Upgrade to 9.24.0+, remove shell interpolation, and harden CI against malicious branch names.

cve CVE-2026-25244disclosed 2026-05-11a.k.a. WebdriverIO BrowserStack git branch command injection

CVE-2026-43898 - SandboxJS Function.caller sandbox escape

critical

Critical SandboxJS sandbox escape via Function.caller leakage. Upgrade to 0.9.6+, remove trusted-secret exposure from sandboxed runtimes, and add isolation policy tests.

cve CVE-2026-43898disclosed 2026-05-11a.k.a. SandboxJS Function.caller sandbox escape

GHSA-v6wj-c83f-v46x - profullstack MCP server command injection

critical

Critical unauthenticated command injection in @profullstack/mcp-server domain_lookup. Remove exposed vulnerable servers, replace shell execution with argv-based process calls, and require MCP auth/bind controls.

ghsa GHSA-v6wj-c83f-v46xdisclosed 2026-05-09a.k.a. profullstack MCP server domain_lookup command injection

CVE-2026-44007 - vm2 NodeVM nesting sandbox escape

critical

Critical vm2 NodeVM nesting sandbox escape. Upgrade to 3.11.1+, remove nesting for untrusted code, and add sandbox policy tests before accepting agent-authored changes.

cve CVE-2026-44007disclosed 2026-05-07a.k.a. vm2 NodeVM nesting sandbox escape

CVE-2026-45109 - Next.js segment-prefetch middleware bypass

high

High-severity Next.js App Router middleware/proxy bypass follow-up for Turbopack builds. Upgrade Next.js, test segment-prefetch route protection, and contain sensitive middleware-gated paths.

cve CVE-2026-45109disclosed 2026-05-07a.k.a. Next.js segment-prefetch middleware bypass follow-up

CVE-2026-45033 - GitHub Copilot CLI nested bare repo RCE

high

High-severity GitHub Copilot CLI arbitrary command execution through nested bare Git repository discovery. Upgrade @github/copilot to 1.0.43+, force safe.bareRepository=explicit, and reject buried bare repos in agent workspaces.

cve CVE-2026-45033disclosed 2026-05-06a.k.a. GitHub Copilot CLI nested bare repository execution

CVE-2026-42349 - Clerk combined authorization bypass

high

High-severity Clerk authorization predicate bypass. Upgrade affected Clerk SDK packages, split combined authorization checks during rollout, and add regression tests for role, permission, billing, and reverification gates.

cve CVE-2026-42349disclosed 2026-04-30a.k.a. Clerk combined authorization bypass

CVE-2026-42449 - n8n-mcp IPv4-mapped IPv6 SSRF

high

High-severity SSRF in n8n-mcp SDK embedder URL validation. Upgrade to 2.47.14+, reject IP-literal n8nApiUrl inputs, and block metadata/private egress.

cve CVE-2026-42449disclosed 2026-04-30a.k.a. n8n-mcp IPv4-mapped IPv6 SSRF

CVE-2026-42231 - n8n XML webhook prototype pollution RCE

critical

Critical n8n RCE via XML webhook body prototype pollution. Upgrade to 1.123.32, 2.17.4, or 2.18.1+ and restrict workflow authors until patched.

cve CVE-2026-42231disclosed 2026-04-29a.k.a. n8n XML webhook prototype pollution RCE

CVE-2026-42232 - n8n XML node prototype pollution RCE

critical

Critical n8n RCE via XML node prototype pollution. Upgrade to 1.123.32, 2.17.4, or 2.18.1+ and restrict XML workflow authors until patched.

cve CVE-2026-42232disclosed 2026-04-29a.k.a. n8n XML node prototype pollution RCE

CVE-2026-41680 - marked tokenizer OOM denial of service

high

High-severity marked tokenizer recursion DoS in versions 18.0.0 and 18.0.1. Upgrade to 18.0.2+, verify untrusted Markdown render paths, and add resource-bounded parser regression tests.

cve CVE-2026-41680disclosed 2026-04-24a.k.a. marked tokenizer OOM DoS

CVE-2026-41242 - protobufjs generated-code RCE

critical

Critical protobufjs generated-code execution through attacker-influenced protobuf descriptors. Upgrade to 7.5.5 or 8.0.1+, block untrusted schema loading, and add descriptor-source tests.

cve CVE-2026-41242disclosed 2026-04-16a.k.a. protobufjs generated-code RCE

CVE-2026-23869 - React Server Components DoS

high

High-severity React Server Components denial of service affecting Next.js App Router and react-server-dom packages. Upgrade fixed framework or RSC package lines, avoid unsafe live DoS probes, and add server-function regression checks.

cve CVE-2026-23869disclosed 2026-04-08a.k.a. React Server Components DoS

CVE-2026-33696 - n8n GSuiteAdmin prototype pollution RCE

critical

Critical n8n prototype pollution in GSuiteAdmin node parameters that can lead to RCE. Upgrade to 1.123.27+, 2.13.3+, or 2.14.1+ and restrict workflow authors until patched.

cve CVE-2026-33696disclosed 2026-03-25a.k.a. n8n GSuiteAdmin node prototype pollution RCE

CVE-2026-27494 - n8n Python Code node sandbox escape

critical

n8n Python Code node sandbox escape when Task Runners are enabled. Upgrade to 1.123.22, 2.9.3, or 2.10.1+, restrict workflow authors, and disable the Code node only as temporary containment.

cve CVE-2026-27494disclosed 2026-02-25a.k.a. n8n Python Code node sandbox escape

CVE-2026-27606 - Rollup path traversal arbitrary write

critical

Critical Rollup arbitrary file write through path traversal in output names. Upgrade to 2.80.0+, 3.30.0+, or 4.59.0+, and harden untrusted build/plugin workflows.

cve CVE-2026-27606disclosed 2026-02-23a.k.a. Rollup arbitrary file write

CVE-2026-25049 - n8n expression escape RCE

critical

Critical n8n RCE via crafted workflow expressions. Upgrade to 1.123.17 or 2.5.2+, restrict workflow authors until patched, and harden n8n workers.

cve CVE-2026-25049disclosed 2026-02-04a.k.a. n8n expression escape RCE

CVE-2025-55182 - React Server Components RCE

criticalKEV

Critical React Server Components pre-authentication RCE affecting react-server-dom packages and downstream frameworks such as Next.js App Router. Upgrade fixed RSC packages/framework lines, refresh lockfiles and images, and rotate secrets for exposed unpatched services.

cve CVE-2025-55182disclosed 2025-12-03a.k.a. React2Shell

CVE-2025-12735 - expr-eval context function RCE

critical

Critical expr-eval code-injection issue. Replace the unpatched original package or move to expr-eval-fork 3.0.1+, restrict evaluator context objects to inert data, and add regression tests for function/member call rejection.

cve CVE-2025-12735disclosed 2025-11-05a.k.a. expr-eval context function RCE

nuget4 recipes

CVE-2026-49451 - Microsoft.OpenAPI: Circular schema references may terminate OpenAPI parsing

high

High remediation recipe for Microsoft.OpenAPI: Circular schema references may terminate OpenAPI parsing. Upgrade to 2.7.5, 3.5.4 and remove the vulnerable command-injection pattern.

cve CVE-2026-49451disclosed 2026-06-30a.k.a. Microsoft.OpenAPI: Circular schema references may terminate OpenAPI parsing

CVE-2026-49218 - ImageMagick: Policy Bypass in DCM decoder could result in image with invalid dimensions

high

High remediation recipe for ImageMagick: Policy Bypass in DCM decoder could result in image with invalid dimensions. Upgrade to 14.14.0 and remove the vulnerable dos pattern.

cve CVE-2026-49218disclosed 2026-06-25a.k.a. ImageMagick: Policy Bypass in DCM decoder could result in image with invalid dimensions

CVE-2026-53460 - ImageMagick: Policy Bypass can Trigger an Out-of-Memory condition

high

High remediation recipe for ImageMagick: Policy Bypass can Trigger an Out-of-Memory condition. Upgrade to 14.14.0 and remove the vulnerable authz pattern.

cve CVE-2026-53460disclosed 2026-06-25a.k.a. ImageMagick: Policy Bypass can Trigger an Out-of-Memory condition

CVE-2026-53461 - ImageMagick has out-of-bounds write in ICON decoder due to incorrect loop

high

High remediation recipe for ImageMagick has out-of-bounds write in ICON decoder due to incorrect loop. Upgrade to 14.14.0 and remove the vulnerable dos pattern.

cve CVE-2026-53461disclosed 2026-06-25a.k.a. ImageMagick has out-of-bounds write in ICON decoder due to incorrect loop

php6 recipes

CVE-2026-13485 - SourceCodester preview course_year_section SQL injection

high

High-severity SourceCodester preview course_year_section SQL injection. A remote unauthenticated SQL injection in a school scheduling app can expose or modify student, class, and staff data.

cve CVE-2026-13485disclosed 2026-06-28

CVE-2026-13486 - SourceCodester preview6 course_year_section SQL injection

high

High-severity SourceCodester preview6 course_year_section SQL injection. A remote unauthenticated SQL injection in a school scheduling app can expose or modify student, class, and staff data.

cve CVE-2026-13486disclosed 2026-06-28

CVE-2026-13487 - SourceCodester archive sy SQL injection

high

High-severity SourceCodester archive sy SQL injection. A remote unauthenticated SQL injection in a school scheduling app can expose or modify student, class, and staff data.

cve CVE-2026-13487disclosed 2026-06-28

CVE-2026-13488 - SourceCodester preview7 course_year_section SQL injection

high

High-severity SourceCodester preview7 course_year_section SQL injection. A remote unauthenticated SQL injection in a school scheduling app can expose or modify student, class, and staff data.

cve CVE-2026-13488disclosed 2026-06-28

CVE-2026-13498 - restaurant-management-system forgotpassword email SQL injection

high

High-severity restaurant-management-system forgotpassword email SQL injection. SQL injection in a password-reset endpoint can expose customer/admin accounts and compromise ordering operations.

cve CVE-2026-13498disclosed 2026-06-28

CVE-2026-58054 - MyBB limited ACP user group privilege escalation

high

High-severity MyBB limited ACP user group privilege escalation. A delegated helpdesk/admin user can promote any account to full forum administrator.

cve CVE-2026-58054disclosed 2026-06-28

php/composer196 recipes

CVE-2025-6784 - The Code Engine plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and includi

high

High remediation recipe for The Code Engine plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and includi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-6784disclosed 2026-07-11a.k.a. The Code Engine plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and includi

CVE-2026-13114 - The Motors – Car Dealership & Classified Listings Plugin plugin for WordPress is vulnerable to Stored Cross-Si

high

High remediation recipe for The Motors – Car Dealership & Classified Listings Plugin plugin for WordPress is vulnerable to Stored Cross-Si. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-13114disclosed 2026-07-11a.k.a. The Motors – Car Dealership & Classified Listings Plugin plugin for WordPress is vulnerable to Stored Cross-Si

CVE-2026-13353 - The WP Ultimate CSV Importer – WordPress Import & Export for CSV, XML & Excel plugin for WordPress is vulnerab

high

High remediation recipe for The WP Ultimate CSV Importer – WordPress Import & Export for CSV, XML & Excel plugin for WordPress is vulnerab. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13353disclosed 2026-07-11a.k.a. The WP Ultimate CSV Importer – WordPress Import & Export for CSV, XML & Excel plugin for WordPress is vulnerab

CVE-2026-13378 - The Form Vibes – Database Manager for Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting

high

High remediation recipe for The Form Vibes – Database Manager for Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-13378disclosed 2026-07-11a.k.a. The Form Vibes – Database Manager for Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting

CVE-2026-13756 - The WP Grid Builder plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and incl

high

High remediation recipe for The WP Grid Builder plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and incl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13756disclosed 2026-07-11a.k.a. The WP Grid Builder plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and incl

CVE-2026-14262 - The Simple JWT Login – Allows you to use JWT on REST endpoints

high

High remediation recipe for The Simple JWT Login – Allows you to use JWT on REST endpoints. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14262disclosed 2026-07-11a.k.a. The Simple JWT Login – Allows you to use JWT on REST endpoints

CVE-2026-15155 - The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable

high

High remediation recipe for The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15155disclosed 2026-07-11a.k.a. The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable

CVE-2026-15335 - The Booking Package plugin for WordPress is vulnerable to generic SQL Injection via 'email' Form Parameter (fo

high

High remediation recipe for The Booking Package plugin for WordPress is vulnerable to generic SQL Injection via 'email' Form Parameter (fo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-15335disclosed 2026-07-11a.k.a. The Booking Package plugin for WordPress is vulnerable to generic SQL Injection via 'email' Form Parameter (fo

CVE-2026-15338 - The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all vers

high

High remediation recipe for The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all vers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15338disclosed 2026-07-11a.k.a. The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all vers

CVE-2026-2354 - The Swiss Toolkit For WP plugin for WordPress is vulnerable to arbitrary file upload due to a flawed file type

high

High remediation recipe for The Swiss Toolkit For WP plugin for WordPress is vulnerable to arbitrary file upload due to a flawed file type. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.

cve CVE-2026-2354disclosed 2026-07-11a.k.a. The Swiss Toolkit For WP plugin for WordPress is vulnerable to arbitrary file upload due to a flawed file type

CVE-2026-3576 - The Planyo Online Reservation System plugin for WordPress is vulnerable to Server-Side Request Forgery leading

high

High remediation recipe for The Planyo Online Reservation System plugin for WordPress is vulnerable to Server-Side Request Forgery leading. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-3576disclosed 2026-07-11a.k.a. The Planyo Online Reservation System plugin for WordPress is vulnerable to Server-Side Request Forgery leading

CVE-2026-4661 - The WP CTA – Sticky CTA Builder, Generate Leads, Promote Sales plugin for WordPress is vulnerable to time-base

high

High remediation recipe for The WP CTA – Sticky CTA Builder, Generate Leads, Promote Sales plugin for WordPress is vulnerable to time-base. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-4661disclosed 2026-07-11a.k.a. The WP CTA – Sticky CTA Builder, Generate Leads, Promote Sales plugin for WordPress is vulnerable to time-base

CVE-2026-6939 - The CorvusPay WooCommerce Payment Gateway plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi

high

High remediation recipe for The CorvusPay WooCommerce Payment Gateway plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-6939disclosed 2026-07-11a.k.a. The CorvusPay WooCommerce Payment Gateway plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi

CVE-2026-7655 - The SureCart plugin for WordPress is vulnerable to privilege escalation via account takeover in versions up to

high

High remediation recipe for The SureCart plugin for WordPress is vulnerable to privilege escalation via account takeover in versions up to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-7655disclosed 2026-07-11a.k.a. The SureCart plugin for WordPress is vulnerable to privilege escalation via account takeover in versions up to

CVE-2026-12685 - The EscortWP escortwp WordPress theme through 3.6.2 was distributed with a vendor-authored, obfuscated backdoo

high

High remediation recipe for The EscortWP escortwp WordPress theme through 3.6.2 was distributed with a vendor-authored, obfuscated backdoo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-12685disclosed 2026-07-10a.k.a. The EscortWP escortwp WordPress theme through 3.6.2 was distributed with a vendor-authored, obfuscated backdoo

CVE-2026-12761 - The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress is vulnerab

critical

Critical remediation recipe for The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress is vulnerab. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-12761disclosed 2026-07-10a.k.a. The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress is vulnerab

CVE-2026-13347 - The Hide My WP Lite plugin for WordPress is vulnerable to Arbitrary File Read in versions up to and including

high

High remediation recipe for The Hide My WP Lite plugin for WordPress is vulnerable to Arbitrary File Read in versions up to and including. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-13347disclosed 2026-07-10a.k.a. The Hide My WP Lite plugin for WordPress is vulnerable to Arbitrary File Read in versions up to and including

CVE-2026-13430 - The Post Export Import with Media plugin for WordPress is vulnerable to Arbitrary File Upload in all versions

high

High remediation recipe for The Post Export Import with Media plugin for WordPress is vulnerable to Arbitrary File Upload in all versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.

cve CVE-2026-13430disclosed 2026-07-10a.k.a. The Post Export Import with Media plugin for WordPress is vulnerable to Arbitrary File Upload in all versions

CVE-2026-14894 - The Super Forms – Drag & Drop Form Builder plugin for WordPress is vulnerable to Arbitrary File Upload in all

critical

Critical remediation recipe for The Super Forms – Drag & Drop Form Builder plugin for WordPress is vulnerable to Arbitrary File Upload in all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.

cve CVE-2026-14894disclosed 2026-07-10a.k.a. The Super Forms – Drag & Drop Form Builder plugin for WordPress is vulnerable to Arbitrary File Upload in all

CVE-2026-15070 - The Salon Booking System – Free Version plugin for WordPress is vulnerable to Cross-Site Request Forgery in al

high

High remediation recipe for The Salon Booking System – Free Version plugin for WordPress is vulnerable to Cross-Site Request Forgery in al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15070disclosed 2026-07-10a.k.a. The Salon Booking System – Free Version plugin for WordPress is vulnerable to Cross-Site Request Forgery in al

CVE-2026-15282 - The Instant Appointment plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type

critical

Critical remediation recipe for The Instant Appointment plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.

cve CVE-2026-15282disclosed 2026-07-10a.k.a. The Instant Appointment plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type

CVE-2026-15288 - The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Improper Input

high

High remediation recipe for The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Improper Input. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15288disclosed 2026-07-10a.k.a. The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Improper Input

CVE-2026-15290 - The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Pl

high

High remediation recipe for The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Pl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-15290disclosed 2026-07-10a.k.a. The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Pl

CVE-2026-15291 - The Chat Help – Click to Chat Button & Form plugin for WordPress is vulnerable to Sensitive Information Exposu

high

High remediation recipe for The Chat Help – Click to Chat Button & Form plugin for WordPress is vulnerable to Sensitive Information Exposu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15291disclosed 2026-07-10a.k.a. The Chat Help – Click to Chat Button & Form plugin for WordPress is vulnerable to Sensitive Information Exposu

CVE-2026-15293 - The WP Business Intelligence Lite plugin for WordPress is vulnerable to authorization bypass in all versions u

high

High remediation recipe for The WP Business Intelligence Lite plugin for WordPress is vulnerable to authorization bypass in all versions u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-15293disclosed 2026-07-10a.k.a. The WP Business Intelligence Lite plugin for WordPress is vulnerable to authorization bypass in all versions u

CVE-2026-15298 - The TelSender plugin for WordPress is vulnerable to DOM-Based Cross-Site Scripting in all versions up to, and

high

High remediation recipe for The TelSender plugin for WordPress is vulnerable to DOM-Based Cross-Site Scripting in all versions up to, and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-15298disclosed 2026-07-10a.k.a. The TelSender plugin for WordPress is vulnerable to DOM-Based Cross-Site Scripting in all versions up to, and

CVE-2026-15300 - The GEO my WP plugin for WordPress was vulnerable to SQL Injection via the 'distance', 'lat', and 'lng' parame

critical

Critical remediation recipe for The GEO my WP plugin for WordPress was vulnerable to SQL Injection via the 'distance', 'lat', and 'lng' parame. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.

cve CVE-2026-15300disclosed 2026-07-10a.k.a. The GEO my WP plugin for WordPress was vulnerable to SQL Injection via the 'distance', 'lat', and 'lng' parame

CVE-2026-1667 - The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to Arbitrary Post Creation and Stored Cross-

high

High remediation recipe for The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to Arbitrary Post Creation and Stored Cross-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-1667disclosed 2026-07-10a.k.a. The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to Arbitrary Post Creation and Stored Cross-

CVE-2026-39903 - Simple Machines Forum 2.1 prior to 2.1.8 and 3.0 prior to 3.0 Alpha 5 contains an authorization bypass vulnera

high

High remediation recipe for Simple Machines Forum 2.1 prior to 2.1.8 and 3.0 prior to 3.0 Alpha 5 contains an authorization bypass vulnera. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-39903disclosed 2026-07-10a.k.a. Simple Machines Forum 2.1 prior to 2.1.8 and 3.0 prior to 3.0 Alpha 5 contains an authorization bypass vulnera

CVE-2026-54159 - prestashop/ps_facetedsearch: PHP Object Injection in faceted search cache allows unauthenticated RCE

critical

Critical remediation recipe for prestashop/ps_facetedsearch: PHP Object Injection in faceted search cache allows unauthenticated RCE. Upgrade to 4.0.4 and remove the vulnerable command-injection pattern.

cve CVE-2026-54159disclosed 2026-07-10a.k.a. prestashop/ps_facetedsearch: PHP Object Injection in faceted search cache allows unauthenticated RCE

CVE-2026-54736 - Phalcon is a high-performance, full-stack PHP framework

high

High remediation recipe for Phalcon is a high-performance, full-stack PHP framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54736disclosed 2026-07-10a.k.a. Phalcon is a high-performance, full-stack PHP framework

CVE-2026-57584 - Phalcon is a high-performance, full-stack PHP framework

high

High remediation recipe for Phalcon is a high-performance, full-stack PHP framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57584disclosed 2026-07-10a.k.a. Phalcon is a high-performance, full-stack PHP framework

CVE-2026-61450 - Grav before 2.0.2 contains a Twig sandbox bypass that allows a page author (any admin.pages user, or anyone ab

high

High remediation recipe for Grav before 2.0.2 contains a Twig sandbox bypass that allows a page author (any admin.pages user, or anyone ab. Upgrade to 2.0.2 and remove the vulnerable template-injection pattern.

cve CVE-2026-61450disclosed 2026-07-10a.k.a. Grav before 2.0.2 contains a Twig sandbox bypass that allows a page author (any admin.pages user, or anyone ab

CVE-2026-11571 - The Everest Forms WordPress plugin before 3.5.0 does not reliably delete temporary CSV files generated during

high

High remediation recipe for The Everest Forms WordPress plugin before 3.5.0 does not reliably delete temporary CSV files generated during. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-11571disclosed 2026-07-09a.k.a. The Everest Forms WordPress plugin before 3.5.0 does not reliably delete temporary CSV files generated during

CVE-2026-12116 - A vulnerability in the Xerte Online Tools allows for RCE through the antivirus binary path in the tools server

critical

Critical remediation recipe for A vulnerability in the Xerte Online Tools allows for RCE through the antivirus binary path in the tools server. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-12116disclosed 2026-07-09a.k.a. A vulnerability in the Xerte Online Tools allows for RCE through the antivirus binary path in the tools server

CVE-2026-12595 - The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via Unverified OAuth Email in a

high

High remediation recipe for The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via Unverified OAuth Email in a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-12595disclosed 2026-07-09a.k.a. The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via Unverified OAuth Email in a

CVE-2026-12597 - The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via the GitHub OAuth callback i

high

High remediation recipe for The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via the GitHub OAuth callback i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-12597disclosed 2026-07-09a.k.a. The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via the GitHub OAuth callback i

CVE-2026-12598 - The LoginPress Pro plugin for WordPress is vulnerable to authentication bypass in versions up to and including

high

High remediation recipe for The LoginPress Pro plugin for WordPress is vulnerable to authentication bypass in versions up to and including. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.

cve CVE-2026-12598disclosed 2026-07-09a.k.a. The LoginPress Pro plugin for WordPress is vulnerable to authentication bypass in versions up to and including

CVE-2026-13441 - The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to Stored Cross-Site

high

High remediation recipe for The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to Stored Cross-Site. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-13441disclosed 2026-07-09a.k.a. The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to Stored Cross-Site

CVE-2026-13492 - The UsersWP plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 1

high

High remediation recipe for The UsersWP plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13492disclosed 2026-07-09a.k.a. The UsersWP plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 1

CVE-2026-14372 - The Bit Form – Contact Form, Payment Forms, Multi Step Forms, Calculator & Custom Form Builder plugin for Word

high

High remediation recipe for The Bit Form – Contact Form, Payment Forms, Multi Step Forms, Calculator & Custom Form Builder plugin for Word. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14372disclosed 2026-07-09a.k.a. The Bit Form – Contact Form, Payment Forms, Multi Step Forms, Calculator & Custom Form Builder plugin for Word

CVE-2026-15000 - The Connect Contact Form 7 and Mailchimp plugin for WordPress is vulnerable to Stored Cross-Site Scripting via

high

High remediation recipe for The Connect Contact Form 7 and Mailchimp plugin for WordPress is vulnerable to Stored Cross-Site Scripting via. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-15000disclosed 2026-07-09a.k.a. The Connect Contact Form 7 and Mailchimp plugin for WordPress is vulnerable to Stored Cross-Site Scripting via

CVE-2026-15158 - The Blocksy Companion plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and i

critical

Critical remediation recipe for The Blocksy Companion plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.

cve CVE-2026-15158disclosed 2026-07-09a.k.a. The Blocksy Companion plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and i

CVE-2026-4275 - The Divi Torque Lite – Divi Theme, Divi Builder & Extra Theme plugin for WordPress is vulnerable to Cross-Site

high

High remediation recipe for The Divi Torque Lite – Divi Theme, Divi Builder & Extra Theme plugin for WordPress is vulnerable to Cross-Site. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-4275disclosed 2026-07-09a.k.a. The Divi Torque Lite – Divi Theme, Divi Builder & Extra Theme plugin for WordPress is vulnerable to Cross-Site

CVE-2026-51924 - An issue in docuForm GmbH Client v.11.11c allows a remote attacker to execute arbitrary code via the file uplo

high

High remediation recipe for An issue in docuForm GmbH Client v.11.11c allows a remote attacker to execute arbitrary code via the file uplo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-51924disclosed 2026-07-09a.k.a. An issue in docuForm GmbH Client v.11.11c allows a remote attacker to execute arbitrary code via the file uplo

CVE-2026-51925 - A Local File Inclusion (LFI) vulnerability exists in docuForm GmbH Client v.11.11c that allows a remote attack

high

High remediation recipe for A Local File Inclusion (LFI) vulnerability exists in docuForm GmbH Client v.11.11c that allows a remote attack. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-51925disclosed 2026-07-09a.k.a. A Local File Inclusion (LFI) vulnerability exists in docuForm GmbH Client v.11.11c that allows a remote attack

CVE-2026-51926 - An issue in docuForm GmbH FSM Client v.11.11c allows a remote attacker to obtain sensitive information via the

high

High remediation recipe for An issue in docuForm GmbH FSM Client v.11.11c allows a remote attacker to obtain sensitive information via the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-51926disclosed 2026-07-09a.k.a. An issue in docuForm GmbH FSM Client v.11.11c allows a remote attacker to obtain sensitive information via the

CVE-2026-52762 - YesWiki: Authenticated (Admin) Server-Side Template Injection to Remote Code Execution via Bazar Semantic Templates

high

High remediation recipe for YesWiki: Authenticated (Admin) Server-Side Template Injection to Remote Code Execution via Bazar Semantic Templates. Upgrade to 4.6.6 and remove the vulnerable template-injection pattern.

cve CVE-2026-52762disclosed 2026-07-09a.k.a. YesWiki: Authenticated (Admin) Server-Side Template Injection to Remote Code Execution via Bazar Semantic Templates

CVE-2026-52766 - YesWiki vulnerable to unauthenticated arbitrary page deletion via {{erasespamedcomments}} action

critical

Critical remediation recipe for YesWiki vulnerable to unauthenticated arbitrary page deletion via {{erasespamedcomments}} action. Upgrade to 4.6.6 and remove the vulnerable authz pattern.

cve CVE-2026-52766disclosed 2026-07-09a.k.a. YesWiki vulnerable to unauthenticated arbitrary page deletion via {{erasespamedcomments}} action

CVE-2026-52767 - YesWiki Vulnerable to Unauthenticated ActivityPub Signature-Verification Bypass via !openssl_verify(...) accepting int(-

high

High remediation recipe for YesWiki Vulnerable to Unauthenticated ActivityPub Signature-Verification Bypass via !openssl_verify(...) accepting int(-. Upgrade to 4.6.6 and remove the vulnerable crypto pattern.

cve CVE-2026-52767disclosed 2026-07-09a.k.a. YesWiki Vulnerable to Unauthenticated ActivityPub Signature-Verification Bypass via !openssl_verify(...) accepting int(-

CVE-2026-52769 - YesWiki has Unauthenticated Server-Side Request Forgery via ActivityPub Signature.keyId

high

High remediation recipe for YesWiki has Unauthenticated Server-Side Request Forgery via ActivityPub Signature.keyId. Upgrade to 4.6.6 and remove the vulnerable ssrf pattern.

cve CVE-2026-52769disclosed 2026-07-09a.k.a. YesWiki has Unauthenticated Server-Side Request Forgery via ActivityPub Signature.keyId

CVE-2026-52770 - YesWiki: SQL Injection possible through public Bazar entry-listing APIs via numeric query/queries filters

high

High remediation recipe for YesWiki: SQL Injection possible through public Bazar entry-listing APIs via numeric query/queries filters. Upgrade to 4.6.6 and remove the vulnerable sql-injection pattern.

cve CVE-2026-52770disclosed 2026-07-09a.k.a. YesWiki: SQL Injection possible through public Bazar entry-listing APIs via numeric query/queries filters

CVE-2026-52771 - YesWiki: Second-Order SQL Injection in Page Delete API via Unescaped Page Tag (ApiController::deletePage)

high

High remediation recipe for YesWiki: Second-Order SQL Injection in Page Delete API via Unescaped Page Tag (ApiController::deletePage). Upgrade to 4.6.6 and remove the vulnerable sql-injection pattern.

cve CVE-2026-52771disclosed 2026-07-09a.k.a. YesWiki: Second-Order SQL Injection in Page Delete API via Unescaped Page Tag (ApiController::deletePage)

CVE-2026-52775 - YesWiki has Authenticated SQL Injection via ReactionManager

high

High remediation recipe for YesWiki has Authenticated SQL Injection via ReactionManager. Upgrade to 4.6.6 and remove the vulnerable sql-injection pattern.

cve CVE-2026-52775disclosed 2026-07-09a.k.a. YesWiki has Authenticated SQL Injection via ReactionManager

CVE-2026-52777 - YesWiki Vulnerable to Authenticated PHP Object Injection in BazarImportAction via unserialize

critical

Critical remediation recipe for YesWiki Vulnerable to Authenticated PHP Object Injection in BazarImportAction via unserialize. Upgrade to 4.6.6 and remove the vulnerable authz pattern.

cve CVE-2026-52777disclosed 2026-07-09a.k.a. YesWiki Vulnerable to Authenticated PHP Object Injection in BazarImportAction via unserialize

CVE-2026-52778 - YesWiki has Unsafe eval() in its Formula Calculato, Leading to Remote Code Execution & Denial of Service

critical

Critical remediation recipe for YesWiki has Unsafe eval() in its Formula Calculato, Leading to Remote Code Execution & Denial of Service. Upgrade to 4.6.6 and remove the vulnerable command-injection pattern.

cve CVE-2026-52778disclosed 2026-07-09a.k.a. YesWiki has Unsafe eval() in its Formula Calculato, Leading to Remote Code Execution & Denial of Service

CVE-2026-53932 - laravel-backup-restore has an OS Command Injection during database restore

high

High remediation recipe for laravel-backup-restore has an OS Command Injection during database restore. Upgrade to 1.9.4 and remove the vulnerable command-injection pattern.

cve CVE-2026-53932disclosed 2026-07-09a.k.a. laravel-backup-restore has an OS Command Injection during database restore

CVE-2026-55212 - Pimcore is an Open Source Data & Experience Management Platform

high

High remediation recipe for Pimcore is an Open Source Data & Experience Management Platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-55212disclosed 2026-07-09a.k.a. Pimcore is an Open Source Data & Experience Management Platform

CVE-2026-5523 - The Divi Form Builder plugin for WordPress is vulnerable to Missing Authorization in versions up to, and inclu

high

High remediation recipe for The Divi Form Builder plugin for WordPress is vulnerable to Missing Authorization in versions up to, and inclu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-5523disclosed 2026-07-09a.k.a. The Divi Form Builder plugin for WordPress is vulnerable to Missing Authorization in versions up to, and inclu

CVE-2026-58143 - Cotonti Siena 0.9.26 and earlier contains a cross-site request forgery vulnerability that allows unauthenticat

high

High remediation recipe for Cotonti Siena 0.9.26 and earlier contains a cross-site request forgery vulnerability that allows unauthenticat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58143disclosed 2026-07-09a.k.a. Cotonti Siena 0.9.26 and earlier contains a cross-site request forgery vulnerability that allows unauthenticat

CVE-2026-59734 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

high

High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-59734disclosed 2026-07-09a.k.a. Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

CVE-2026-59856 - Vim is an open source, command line text editor

high

High remediation recipe for Vim is an open source, command line text editor. Upgrade to fixed in version 9.2.0736. and remove the vulnerable command-injection pattern.

cve CVE-2026-59856disclosed 2026-07-09a.k.a. Vim is an open source, command line text editor

CVE-2026-8848 - The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder plugin for

high

High remediation recipe for The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder plugin for. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-8848disclosed 2026-07-09a.k.a. The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder plugin for

CVE-2026-9253 - The WP Cost Estimation & Payment Forms Builder (E&P Forms) plugin for WordPress is vulnerable to Stored Cross-

high

High remediation recipe for The WP Cost Estimation & Payment Forms Builder (E&P Forms) plugin for WordPress is vulnerable to Stored Cross-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-9253disclosed 2026-07-09a.k.a. The WP Cost Estimation & Payment Forms Builder (E&P Forms) plugin for WordPress is vulnerable to Stored Cross-

CVE-2026-58480 - Blocksy Companion Pro plugin for WordPress before 2.1.47 contains an unauthenticated arbitrary file upload vul

critical

Critical remediation recipe for Blocksy Companion Pro plugin for WordPress before 2.1.47 contains an unauthenticated arbitrary file upload vul. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-58480disclosed 2026-07-08a.k.a. Blocksy Companion Pro plugin for WordPress before 2.1.47 contains an unauthenticated arbitrary file upload vul

CVE-2026-59948 - Composer is a dependency Manager for the PHP language

high

High remediation recipe for Composer is a dependency Manager for the PHP language. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59948disclosed 2026-07-08a.k.a. Composer is a dependency Manager for the PHP language

CVE-2026-27823 - EGroupware has a Remote Code Execution Vulnerability

critical

Critical remediation recipe for EGroupware has a Remote Code Execution Vulnerability. Upgrade to 23.1.20260224, 26.2.20260224 and remove the vulnerable command-injection pattern.

cve CVE-2026-27823disclosed 2026-07-07a.k.a. EGroupware has a Remote Code Execution Vulnerability

CVE-2026-40187 - EGroupware has Authenticated RCE via Malicious eTemplate Upload

high

High remediation recipe for EGroupware has Authenticated RCE via Malicious eTemplate Upload. Upgrade to 23.1.20260601, 26.4.20260413 and remove the vulnerable command-injection pattern.

cve CVE-2026-40187disclosed 2026-07-07a.k.a. EGroupware has Authenticated RCE via Malicious eTemplate Upload

CVE-2026-10750 - The Royal MCP WordPress plugin before 1.4.26 does not perform capability checks on the majority of its MCP too

high

High remediation recipe for The Royal MCP WordPress plugin before 1.4.26 does not perform capability checks on the majority of its MCP too. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-10750disclosed 2026-07-01a.k.a. The Royal MCP WordPress plugin before 1.4.26 does not perform capability checks on the majority of its MCP too

CVE-2026-11387 - The SMS Alert – SMS & OTP for WooCommerce, Order Notifications & Abandoned Cart Recovery plugin for WordPress

critical

Critical remediation recipe for The SMS Alert – SMS & OTP for WooCommerce, Order Notifications & Abandoned Cart Recovery plugin for WordPress. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-11387disclosed 2026-07-01a.k.a. The SMS Alert – SMS & OTP for WooCommerce, Order Notifications & Abandoned Cart Recovery plugin for WordPress

CVE-2026-11568 - The Product Configurator for WooCommerce WordPress plugin before 1.7.3 does not perform any authorisation or p

high

High remediation recipe for The Product Configurator for WooCommerce WordPress plugin before 1.7.3 does not perform any authorisation or p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-11568disclosed 2026-07-01a.k.a. The Product Configurator for WooCommerce WordPress plugin before 1.7.3 does not perform any authorisation or p

CVE-2026-11794 - The Advanced Form Integration — Connect Forms to 200+ Apps WordPress plugin before 2.1.1 does not restrict the

high

High remediation recipe for The Advanced Form Integration — Connect Forms to 200+ Apps WordPress plugin before 2.1.1 does not restrict the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-11794disclosed 2026-07-01a.k.a. The Advanced Form Integration — Connect Forms to 200+ Apps WordPress plugin before 2.1.1 does not restrict the

CVE-2026-11823 - The BookingPress Appointment Booking Pro plugin for WordPress is vulnerable to SQL Injection via the 'store_se

high

High remediation recipe for The BookingPress Appointment Booking Pro plugin for WordPress is vulnerable to SQL Injection via the 'store_se. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-11823disclosed 2026-07-01a.k.a. The BookingPress Appointment Booking Pro plugin for WordPress is vulnerable to SQL Injection via the 'store_se

CVE-2026-11883 - The WebAuthn Provider for Two Factor WordPress plugin before 2.5.6 does not correctly validate the second-fact

high

High remediation recipe for The WebAuthn Provider for Two Factor WordPress plugin before 2.5.6 does not correctly validate the second-fact. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-11883disclosed 2026-07-01a.k.a. The WebAuthn Provider for Two Factor WordPress plugin before 2.5.6 does not correctly validate the second-fact

CVE-2026-12142 - The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Sc

high

High remediation recipe for The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Sc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-12142disclosed 2026-07-01a.k.a. The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Sc

CVE-2026-12158 - The RegistrationMagic – User Registration Forms Plugin plugin for WordPress is vulnerable to Cross-Site Reques

high

High remediation recipe for The RegistrationMagic – User Registration Forms Plugin plugin for WordPress is vulnerable to Cross-Site Reques. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-12158disclosed 2026-07-01a.k.a. The RegistrationMagic – User Registration Forms Plugin plugin for WordPress is vulnerable to Cross-Site Reques

CVE-2026-12224 - The Dokan Pro plugin for WordPress is vulnerable to privilege escalation via update_capabilities REST Endpoint

high

High remediation recipe for The Dokan Pro plugin for WordPress is vulnerable to privilege escalation via update_capabilities REST Endpoint. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-12224disclosed 2026-07-01a.k.a. The Dokan Pro plugin for WordPress is vulnerable to privilege escalation via update_capabilities REST Endpoint

CVE-2026-1239 - The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to unauthori

high

High remediation recipe for The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to unauthori. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-1239disclosed 2026-07-01a.k.a. The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to unauthori

CVE-2026-12923 - The Youtube Showcase plugin for WordPress is vulnerable to Arbitrary Function Call in versions up to and inclu

high

High remediation recipe for The Youtube Showcase plugin for WordPress is vulnerable to Arbitrary Function Call in versions up to and inclu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-12923disclosed 2026-07-01a.k.a. The Youtube Showcase plugin for WordPress is vulnerable to Arbitrary Function Call in versions up to and inclu

CVE-2026-13228 - The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Priv

high

High remediation recipe for The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Priv. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13228disclosed 2026-07-01a.k.a. The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Priv

CVE-2026-13468 - The Visualizer – Tables & Charts Manager with Built-in AI Generator plugin for WordPress is vulnerable to auth

high

High remediation recipe for The Visualizer – Tables & Charts Manager with Built-in AI Generator plugin for WordPress is vulnerable to auth. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13468disclosed 2026-07-01a.k.a. The Visualizer – Tables & Charts Manager with Built-in AI Generator plugin for WordPress is vulnerable to auth

CVE-2026-13706 - Improper input validation vulnerability in Wikimedia Foundation UrlShortener

high

High remediation recipe for Improper input validation vulnerability in Wikimedia Foundation UrlShortener. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-13706disclosed 2026-07-01a.k.a. Improper input validation vulnerability in Wikimedia Foundation UrlShortener

CVE-2026-13731 - The WPBot – AI ChatBot for Live Support, Lead Generation, AI Services plugin for WordPress is vulnerable to St

high

High remediation recipe for The WPBot – AI ChatBot for Live Support, Lead Generation, AI Services plugin for WordPress is vulnerable to St. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-13731disclosed 2026-07-01a.k.a. The WPBot – AI ChatBot for Live Support, Lead Generation, AI Services plugin for WordPress is vulnerable to St

CVE-2026-34099 - Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in job_info.php (l

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in job_info.php (l. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-34099disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in job_info.php (l

CVE-2026-34100 - Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in media.php (line

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in media.php (line. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-34100disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in media.php (line

CVE-2026-34101 - Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in text_file.php (

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in text_file.php (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-34101disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in text_file.php (

CVE-2026-34102 - Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in job_info_get.ph

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in job_info_get.ph. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-34102disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in job_info_get.ph

CVE-2026-34103 - Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in subtitles.php (

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in subtitles.php (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-34103disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in subtitles.php (

CVE-2026-34104 - Guardian language-system passes the name GET parameter directly into an unsanitized SQL query in designer.php

critical

Critical remediation recipe for Guardian language-system passes the name GET parameter directly into an unsanitized SQL query in designer.php. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-34104disclosed 2026-07-01a.k.a. Guardian language-system passes the name GET parameter directly into an unsanitized SQL query in designer.php

CVE-2026-34105 - Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in translate_text

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in translate_text. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-34105disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in translate_text

CVE-2026-34106 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in subtitles.php (line 19

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in subtitles.php (line 19. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34106disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into a PHP exec() call in subtitles.php (line 19

CVE-2026-34107 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in translate.php (line 14

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in translate.php (line 14. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34107disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into a PHP exec() call in translate.php (line 14

CVE-2026-34108 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in text.php (line 15) wit

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in text.php (line 15) wit. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34108disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into a PHP exec() call in text.php (line 15) wit

CVE-2026-34109 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in speech.php (line 18) w

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in speech.php (line 18) w. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34109disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into a PHP exec() call in speech.php (line 18) w

CVE-2026-34110 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in complex_start.php (lin

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in complex_start.php (lin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34110disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into a PHP exec() call in complex_start.php (lin

CVE-2026-34111 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in speechmac_text.php (li

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in speechmac_text.php (li. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34111disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into a PHP exec() call in speechmac_text.php (li

CVE-2026-34112 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in speechmac.php (line 18

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in speechmac.php (line 18. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34112disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into a PHP exec() call in speechmac.php (line 18

CVE-2026-34113 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in speech_text.php (line

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in speech_text.php (line. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34113disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into a PHP exec() call in speech_text.php (line

CVE-2026-34114 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in translate_text.php (li

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in translate_text.php (li. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34114disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into a PHP exec() call in translate_text.php (li

CVE-2026-34115 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in transcribe_amazon.php

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in transcribe_amazon.php. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34115disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into a PHP exec() call in transcribe_amazon.php

CVE-2026-34116 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in transcribe.php (line 1

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in transcribe.php (line 1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34116disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into a PHP exec() call in transcribe.php (line 1

CVE-2026-34117 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in text_to_subtitles.php

critical

Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in text_to_subtitles.php. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-34117disclosed 2026-07-01a.k.a. Guardian language-system passes the id GET parameter directly into a PHP exec() call in text_to_subtitles.php

CVE-2026-57517 - Control Web Panel before 0.9.8.1225 contains a blind SQL injection vulnerability that allows unauthenticated r

critical

Critical remediation recipe for Control Web Panel before 0.9.8.1225 contains a blind SQL injection vulnerability that allows unauthenticated r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-57517disclosed 2026-07-01a.k.a. Control Web Panel before 0.9.8.1225 contains a blind SQL injection vulnerability that allows unauthenticated r

CVE-2026-58025 - Deserialization of untrusted data vulnerability in Wikimedia Foundation MediaWiki

critical

Critical remediation recipe for Deserialization of untrusted data vulnerability in Wikimedia Foundation MediaWiki. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-58025disclosed 2026-07-01a.k.a. Deserialization of untrusted data vulnerability in Wikimedia Foundation MediaWiki

CVE-2026-58036 - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki

high

High remediation recipe for Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58036disclosed 2026-07-01a.k.a. Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki

CVE-2026-6070 - The WP-BusinessDirectory plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Deletion in vers

critical

Critical remediation recipe for The WP-BusinessDirectory plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Deletion in vers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-6070disclosed 2026-07-01a.k.a. The WP-BusinessDirectory plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Deletion in vers

CVE-2026-7517 - The Custom Payment Gateways for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting

high

High remediation recipe for The Custom Payment Gateways for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-7517disclosed 2026-07-01a.k.a. The Custom Payment Gateways for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting

CVE-2026-8857 - A vulnerability in Wikimedia Foundation timeline

high

High remediation recipe for A vulnerability in Wikimedia Foundation timeline. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-8857disclosed 2026-07-01a.k.a. A vulnerability in Wikimedia Foundation timeline

CVE-2026-10513 - The Webmention plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and includi

high

High remediation recipe for The Webmention plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and includi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-10513disclosed 2026-06-30a.k.a. The Webmention plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and includi

CVE-2026-11590 - The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not sanitize user-supplied ar

high

High remediation recipe for The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not sanitize user-supplied ar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-11590disclosed 2026-06-30a.k.a. The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not sanitize user-supplied ar

CVE-2026-12073 - The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to privilege escala

critical

Critical remediation recipe for The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to privilege escala. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-12073disclosed 2026-06-30a.k.a. The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to privilege escala

CVE-2026-12240 - The Export User Data plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file pa

high

High remediation recipe for The Export User Data plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file pa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-12240disclosed 2026-06-30a.k.a. The Export User Data plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file pa

CVE-2026-37106 - An issue in DokuWiki 2025-05-14b Librarian 56.2 allows a remote attacker to create an account via the regist

critical

Critical remediation recipe for An issue in DokuWiki 2025-05-14b Librarian 56.2 allows a remote attacker to create an account via the regist. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-37106disclosed 2026-06-30a.k.a. An issue in DokuWiki 2025-05-14b Librarian 56.2 allows a remote attacker to create an account via the regist

CVE-2026-47198 - Paymenter has URL parameter injection that bypasses paid plan limits at checkout

high

High remediation recipe for Paymenter has URL parameter injection that bypasses paid plan limits at checkout. Upgrade to 1.5.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-47198disclosed 2026-06-30a.k.a. Paymenter has URL parameter injection that bypasses paid plan limits at checkout

CVE-2026-56700 - Grav CMS before 2.0.0-beta.2 contains multiple code-execution vulnerabilities

critical

Critical remediation recipe for Grav CMS before 2.0.0-beta.2 contains multiple code-execution vulnerabilities. Upgrade to fixed in 2.0.0-beta.2. and remove the vulnerable command-injection pattern.

cve CVE-2026-56700disclosed 2026-06-30a.k.a. Grav CMS before 2.0.0-beta.2 contains multiple code-execution vulnerabilities

CVE-2026-57995 - phpMyFAQ before 4.1.5 contains a privilege escalation vulnerability in GroupController::updatePermissions that

high

High remediation recipe for phpMyFAQ before 4.1.5 contains a privilege escalation vulnerability in GroupController::updatePermissions that. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57995disclosed 2026-06-30a.k.a. phpMyFAQ before 4.1.5 contains a privilege escalation vulnerability in GroupController::updatePermissions that

CVE-2026-58376 - Dolibarr through 23.0.3, fixed in commit 14db36e, contains a sql injection vulnerability that allows authentic

high

High remediation recipe for Dolibarr through 23.0.3, fixed in commit 14db36e, contains a sql injection vulnerability that allows authentic. Upgrade to fixed in commit 14db36e and remove the vulnerable command-injection pattern.

cve CVE-2026-58376disclosed 2026-06-30a.k.a. Dolibarr through 23.0.3, fixed in commit 14db36e, contains a sql injection vulnerability that allows authentic

CVE-2026-8141 - The Ajax Load More - Filters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'taxono

high

High remediation recipe for The Ajax Load More - Filters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'taxono. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-8141disclosed 2026-06-30a.k.a. The Ajax Load More - Filters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'taxono

CVE-2026-9711 - The EventON - WordPress Virtual Event Calendar Plugin plugin for WordPress (full) is vulnerable to SQL Injecti

critical

Critical remediation recipe for The EventON - WordPress Virtual Event Calendar Plugin plugin for WordPress (full) is vulnerable to SQL Injecti. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-9711disclosed 2026-06-30a.k.a. The EventON - WordPress Virtual Event Calendar Plugin plugin for WordPress (full) is vulnerable to SQL Injecti

CVE-2026-13555 - A vulnerability was found in itsourcecode Online Hotel Management System 1.0

high

High remediation recipe for A vulnerability was found in itsourcecode Online Hotel Management System 1.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13555disclosed 2026-06-29a.k.a. A vulnerability was found in itsourcecode Online Hotel Management System 1.0

CVE-2026-13565 - A vulnerability was determined in SourceCodester Class and Exam Timetabling System 1.0/1.php

high

High remediation recipe for A vulnerability was determined in SourceCodester Class and Exam Timetabling System 1.0/1.php. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13565disclosed 2026-06-29a.k.a. A vulnerability was determined in SourceCodester Class and Exam Timetabling System 1.0/1.php

CVE-2026-13566 - A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0

high

High remediation recipe for A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13566disclosed 2026-06-29a.k.a. A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0

CVE-2026-13568 - A weakness has been identified in SourceCodester Inventory Management System 1.0

high

High remediation recipe for A weakness has been identified in SourceCodester Inventory Management System 1.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-13568disclosed 2026-06-29a.k.a. A weakness has been identified in SourceCodester Inventory Management System 1.0

CVE-2026-37637 - An issue in Alexantr filemanager v.1.0 allows a remote attacker to execute arbitrary code via the filemanager

critical

Critical remediation recipe for An issue in Alexantr filemanager v.1.0 allows a remote attacker to execute arbitrary code via the filemanager. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-37637disclosed 2026-06-29a.k.a. An issue in Alexantr filemanager v.1.0 allows a remote attacker to execute arbitrary code via the filemanager

CVE-2026-40521 - FrontAccounting before 2.4.20 contains a path traversal vulnerability in the attachment upload handler that al

high

High remediation recipe for FrontAccounting before 2.4.20 contains a path traversal vulnerability in the attachment upload handler that al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-40521disclosed 2026-06-29a.k.a. FrontAccounting before 2.4.20 contains a path traversal vulnerability in the attachment upload handler that al

CVE-2026-41896 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

high

High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to fixed in 4.0.0-beta.474. and remove the vulnerable command-injection pattern.

cve CVE-2026-41896disclosed 2026-06-29a.k.a. Coolify is an open-source and self-hostable tool for managing servers, applications, and databases

CVE-2026-56124 - phpUploader before 2.0.2 contains an unauthenticated information disclosure vulnerability that allows remote a

high

High remediation recipe for phpUploader before 2.0.2 contains an unauthenticated information disclosure vulnerability that allows remote a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-56124disclosed 2026-06-29a.k.a. phpUploader before 2.0.2 contains an unauthenticated information disclosure vulnerability that allows remote a

CVE-2026-10820 - The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content Wor

high

High remediation recipe for The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content Wor. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-10820disclosed 2026-06-27a.k.a. The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content Wor

CVE-2026-48979 - PHP Standard Library: HTTP/2 server-side missing content-length validation enables request smuggling

high

High remediation recipe for PHP Standard Library: HTTP/2 server-side missing content-length validation enables request smuggling. Upgrade to 6.1.2, 6.2.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-48979disclosed 2026-06-26a.k.a. PHP Standard Library: HTTP/2 server-side missing content-length validation enables request smuggling

CVE-2026-49260 - php-weasyprint: shell command injection via configurable WeasyPrint binary path due to inverted is_executable() guard (m

high

High remediation recipe for php-weasyprint: shell command injection via configurable WeasyPrint binary path due to inverted is_executable() guard (m. Upgrade to 2.5.1 and remove the vulnerable prototype-pollution pattern.

cve CVE-2026-49260disclosed 2026-06-26a.k.a. php-weasyprint: shell command injection via configurable WeasyPrint binary path due to inverted is_executable() guard (m

CVE-2026-49286 - PhpWeasyPrint vulnerable to PHAR deserialization via output filename (CVE-2023-28115 case-insensitive bypass)

high

High remediation recipe for PhpWeasyPrint vulnerable to PHAR deserialization via output filename (CVE-2023-28115 case-insensitive bypass). Upgrade to 2.6.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-49286disclosed 2026-06-26a.k.a. PhpWeasyPrint vulnerable to PHAR deserialization via output filename (CVE-2023-28115 case-insensitive bypass)

CVE-2026-49287 - Statamic CMS's unsafe method invocation via collection sorting allows data destruction

high

High remediation recipe for Statamic CMS's unsafe method invocation via collection sorting allows data destruction. Upgrade to 5.73.23, 6.20.0 and remove the vulnerable authz pattern.

cve CVE-2026-49287disclosed 2026-06-26a.k.a. Statamic CMS's unsafe method invocation via collection sorting allows data destruction

CVE-2026-12077 - The Dokan Pro plugin for WordPress is vulnerable to time-based SQL Injection via the via 'latitude' and 'longi

high

High remediation recipe for The Dokan Pro plugin for WordPress is vulnerable to time-based SQL Injection via the via 'latitude' and 'longi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-12077disclosed 2026-06-25a.k.a. The Dokan Pro plugin for WordPress is vulnerable to time-based SQL Injection via the via 'latitude' and 'longi

CVE-2026-40079 - Cacti is an open source performance and fault management framework

critical

Critical remediation recipe for Cacti is an open source performance and fault management framework. Upgrade to version 1.2.31. and remove the vulnerable command-injection pattern.

cve CVE-2026-40079disclosed 2026-06-25a.k.a. Cacti is an open source performance and fault management framework

CVE-2026-40083 - Cacti is an open source performance and fault management framework

high

High remediation recipe for Cacti is an open source performance and fault management framework. Upgrade to fixed in version 1.2.31. and remove the vulnerable command-injection pattern.

cve CVE-2026-40083disclosed 2026-06-25a.k.a. Cacti is an open source performance and fault management framework

CVE-2026-12417 - The SignUp & SignIn plugin for WordPress is vulnerable to Authentication Bypass via Weak Password Reset Valida

critical

Critical remediation recipe for The SignUp & SignIn plugin for WordPress is vulnerable to Authentication Bypass via Weak Password Reset Valida. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-12417disclosed 2026-06-24a.k.a. The SignUp & SignIn plugin for WordPress is vulnerable to Authentication Bypass via Weak Password Reset Valida

CVE-2026-39948 - Cacti is an open source performance and fault management framework

critical

Critical remediation recipe for Cacti is an open source performance and fault management framework. Upgrade to fixed in version 1.2.31. and remove the vulnerable command-injection pattern.

cve CVE-2026-39948disclosed 2026-06-24a.k.a. Cacti is an open source performance and fault management framework

CVE-2026-9643 - The WP Meta SEO plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting via the REQU

high

High remediation recipe for The WP Meta SEO plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting via the REQU. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.

cve CVE-2026-9643disclosed 2026-06-24a.k.a. The WP Meta SEO plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting via the REQU

CVE-2026-48507 - Snipe-IT bulk user lockout privilege escalation

high

High-severity Snipe-IT authorization flaw where users with only users.edit can bulk-change login and reset-related flags for other accounts. Upgrade to 8.6.0 and hard-stop privilege-sensitive fields in bulk user edits.

cve CVE-2026-48507disclosed 2026-06-23a.k.a. Snipe-IT bulk user edit admin lockout

CVE-2026-52845 - Caddy is an extensible server platform that uses TLS by default

high

High remediation recipe for Caddy is an extensible server platform that uses TLS by default. Upgrade to fixed in 2.11.4. and remove the vulnerable authz pattern.

cve CVE-2026-52845disclosed 2026-06-23a.k.a. Caddy is an extensible server platform that uses TLS by default

CVE-2026-54329 - Snipe-IT cross-tenant accessory injection

high

High-severity Snipe-IT FMCS tenant-boundary failure where API accessory creation accepts a foreign company_id. Upgrade to 8.6.2 and enforce server-side tenant ownership on API create paths.

cve CVE-2026-54329disclosed 2026-06-23a.k.a. Snipe-IT cross-tenant accessory injection

CVE-2026-56425 - The Azure Active Directory (AAD) authentication implementation contained multiple weaknesses in its OAuth 2.0

high

High remediation recipe for The Azure Active Directory (AAD) authentication implementation contained multiple weaknesses in its OAuth 2.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-56425disclosed 2026-06-22a.k.a. The Azure Active Directory (AAD) authentication implementation contained multiple weaknesses in its OAuth 2.0

CVE-2026-48908 - A vulnerability in SP Page Builder for Joomla allows unauthenticated users to upload arbitrary files, ultimate

critical

Critical remediation recipe for A vulnerability in SP Page Builder for Joomla allows unauthenticated users to upload arbitrary files, ultimate. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-48908disclosed 2026-06-20a.k.a. A vulnerability in SP Page Builder for Joomla allows unauthenticated users to upload arbitrary files, ultimate

CVE-2026-48939 - A vulnerability in the iCagenda extension for Joomla allows the upload of arbitrary files in the file attachme

critical

Critical remediation recipe for A vulnerability in the iCagenda extension for Joomla allows the upload of arbitrary files in the file attachme. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-48939disclosed 2026-06-20a.k.a. A vulnerability in the iCagenda extension for Joomla allows the upload of arbitrary files in the file attachme

CVE-2026-48062 - CodeIgniter4 ext_in upload validation bypass

critical

Critical CodeIgniter4 upload validation bypass where ext_in trusts MIME-derived extension mapping. Upgrade to 4.7.3+, stop preserving untrusted filenames, and keep uploads out of executable web roots.

cve CVE-2026-48062disclosed 2026-06-11a.k.a. CodeIgniter4 ext_in upload validation bypass

CVE-2026-49741 - TYPO3 form framework privilege escalation and SQL injection

high

High-severity TYPO3 Form Framework privilege-escalation and SQL-injection path through DataHandler bypasses. Upgrade to 14.3.3+, remove direct form_definition writes, and verify backend role boundaries.

cve CVE-2026-49741disclosed 2026-06-09a.k.a. TYPO3 Form Framework DataHandler bypass

CVE-2026-45034 - PHPSpreadsheet PHAR wrapper patch bypass

critical

Critical PHPSpreadsheet bypass of the CVE-2026-34084 stream-wrapper fix. Upgrade phpoffice/phpspreadsheet to 1.30.5+, block all wrapper-style paths before spreadsheet loading, and add PHAR triple-slash regression checks.

cve CVE-2026-45034disclosed 2026-06-07a.k.a. PHPSpreadsheet PHAR wrapper bypass

CVE-2026-47743 - Shopper admin Livewire integrity and disclosure flaws

high

High-severity Shopper admin Livewire IDOR, plaintext password disclosure, and stored XSS. Upgrade shopper/framework to 2.8.0, lock model identifiers, stop round-tripping passwords, and escape barcode rendering.

cve CVE-2026-47743disclosed 2026-06-05a.k.a. Shopper admin Livewire integrity and disclosure flaws

CVE-2026-48907 - A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthen

criticalKEV

Critical remediation recipe for A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthen. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-48907disclosed 2026-06-05a.k.a. A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthen

CVE-2026-41236 - Froxlor SSH key symlink root access

high

High-severity Froxlor customer-to-root privilege escalation through SSH key synchronization symlink handling. Upgrade Froxlor to 2.3.7+, audit customer authorized_keys paths, and close the related TXT zone-file injection incomplete fix.

cve CVE-2026-41236disclosed 2026-05-29a.k.a. Froxlor SSH key symlink root access

CVE-2026-41237 - Froxlor has an incomplete fix for CVE-2026-30932

high

High remediation recipe for Froxlor has an incomplete fix for CVE-2026-30932. Upgrade to 2.3.7 and remove the vulnerable command-injection pattern.

cve CVE-2026-41237disclosed 2026-05-29a.k.a. Froxlor has an incomplete fix for CVE-2026-30932

CVE-2026-47745 - Shopper payment, currency, and carrier authorization bypass

medium

Moderate Shopper admin-table authorization bypass that lets low-privilege users disable payment methods, currencies, or carriers. Upgrade to 2.8.0 and enforce per-action access_setting checks.

cve CVE-2026-47745disclosed 2026-05-29a.k.a. Shopper settings table action authorization bypass

CVE-2026-5394 - Pimcore Platform - SQL Injection in DataObject composite index handling during class definition import/save

high

High remediation recipe for Pimcore Platform - SQL Injection in DataObject composite index handling during class definition import/save. Upgrade to 11.5.17, 12.3.7, 2026.1.3 and remove the vulnerable sql-injection pattern.

cve CVE-2026-5394disclosed 2026-05-28a.k.a. Pimcore Platform - SQL Injection in DataObject composite index handling during class definition import/save

CVE-2026-44739 - Pimcore Vulnerable to SQL Injection in Custom Reports Column Configuration

high

High remediation recipe for Pimcore Vulnerable to SQL Injection in Custom Reports Column Configuration. Upgrade to 11.5.17, 12.3.6, 2026.1.2 and remove the vulnerable sql-injection pattern.

cve CVE-2026-44739disclosed 2026-05-27a.k.a. Pimcore Vulnerable to SQL Injection in Custom Reports Column Configuration

CVE-2026-44741 - Pimcore Admin Classic Bundle Vulnerable to SQL Injection in Translation Grid Date Filter via Unsanitized Property Parame

high

High remediation recipe for Pimcore Admin Classic Bundle Vulnerable to SQL Injection in Translation Grid Date Filter via Unsanitized Property Parame. Upgrade to 1.7.18, 2.3.6 and remove the vulnerable sql-injection pattern.

cve CVE-2026-44741disclosed 2026-05-27a.k.a. Pimcore Admin Classic Bundle Vulnerable to SQL Injection in Translation Grid Date Filter via Unsanitized Property Parame

CVE-2026-45162 - Pimcore has Unsafe PHP Deserialization in Multiple Locations Without allowed_classes Restriction

high

High remediation recipe for Pimcore has Unsafe PHP Deserialization in Multiple Locations Without allowed_classes Restriction. Upgrade to 11.5.17, 12.3.7, 2026.1.3 and remove the vulnerable deserialization pattern.

cve CVE-2026-45162disclosed 2026-05-27a.k.a. Pimcore has Unsafe PHP Deserialization in Multiple Locations Without allowed_classes Restriction

CVE-2026-45260 - Pimcore: Missing Authorization in WebDAV MOVE via unchecked asset move handling

high

High remediation recipe for Pimcore: Missing Authorization in WebDAV MOVE via unchecked asset move handling. Upgrade to 11.5.17, 12.3.7, 2026.1.3 and remove the vulnerable authz pattern.

cve CVE-2026-45260disclosed 2026-05-27a.k.a. Pimcore: Missing Authorization in WebDAV MOVE via unchecked asset move handling

CVE-2026-45704 - Pimcore has a CustomReports Share Bypass

high

High remediation recipe for Pimcore has a CustomReports Share Bypass. Upgrade to 11.5.17, 12.3.6, 2026.1.2 and remove the vulnerable authz pattern.

cve CVE-2026-45704disclosed 2026-05-27a.k.a. Pimcore has a CustomReports Share Bypass

CVE-2026-46636 - Twig cached template sandbox-state bypass

medium

Twig sandbox allow-list bypass when cached Template instances keep an old sandbox-state verdict. Upgrade twig/twig to 3.27.0+, restart long-lived PHP workers, and separate trusted and untrusted Twig environments.

cve CVE-2026-46636disclosed 2026-05-27a.k.a. Twig cached Template sandbox state bypass

CVE-2018-25357 - Dolibarr ERP CRM contains a remote code evaluation vulnerability

critical

Critical remediation recipe for Dolibarr ERP CRM contains a remote code evaluation vulnerability. Upgrade to 6.0.8, 7.0.4 and remove the vulnerable command-injection pattern.

cve CVE-2018-25357disclosed 2026-05-26a.k.a. Dolibarr ERP CRM contains a remote code evaluation vulnerability

CVE-2026-24425 - Twig SourcePolicyInterface callback bypass

high

Twig sandbox callback policy bypass when SourcePolicyInterface enables sandboxing. Upgrade twig/twig to 3.26.0+ or preferably 3.27.0+, and verify callback filters cannot accept arbitrary PHP callables.

cve CVE-2026-24425disclosed 2026-05-20a.k.a. Twig SourcePolicyInterface callback bypass

CVE-2026-45063 - Symfony X509Authenticator DN identity spoofing

high

High-severity Symfony X509Authenticator identity-spoofing flaw in client-certificate Subject DN parsing. Upgrade to fixed Symfony security-http trains and verify mTLS identity mapping does not trust attacker-controlled DN fragments.

cve CVE-2026-45063disclosed 2026-05-20a.k.a. Symfony X509Authenticator DN spoofing

CVE-2026-46640 - Twig macro-reference compilation RCE

high

Twig sandbox bypass and arbitrary PHP code execution through _self.(string) macro-reference compilation. Upgrade twig/twig to 3.26.0+ or preferably 3.27.0+, clear compiled templates, and audit user-controlled template surfaces.

cve CVE-2026-46640disclosed 2026-05-20a.k.a. Twig macro-reference compilation RCE

CVE-2026-47732 - Twig toString sandbox bypass

high

Twig sandbox bypass through unguarded string-coercion sites that can invoke disallowed __toString methods. Upgrade twig/twig to 3.26.0+ or preferably 3.27.0+, and audit sandboxed template contexts.

cve CVE-2026-47732disclosed 2026-05-20a.k.a. Twig __toString sandbox bypass

CVE-2026-47742 - Shopper product Livewire authorization bypass

medium

Moderate Shopper product-admin Livewire authorization bypass. Upgrade shopper/framework to 2.8.0, require edit_products inside sub-form store methods, lock product bindings, and test low-privilege wire requests.

cve CVE-2026-47742disclosed 2026-05-20a.k.a. Shopper product sub-form authorization bypass

CVE-2026-47744 - Shopper team RBAC privilege escalation

critical

Critical Shopper framework team-settings authorization bypass and RBAC privilege escalation. Upgrade shopper/framework to 2.8.0 and verify manage_users authorization on team role writes.

cve CVE-2026-47744disclosed 2026-05-20a.k.a. Shopper team settings RBAC escalation

CVE-2026-46725 - TYPO3 Remote Code Execution in extension Content Element Selector (ceselector)

critical

Critical remediation recipe for TYPO3 Remote Code Execution in extension Content Element Selector (ceselector). Upgrade to 3.0.3, 4.0.2, 5.0.1, 6.0.1 and remove the vulnerable authz pattern.

cve CVE-2026-46725disclosed 2026-05-19a.k.a. TYPO3 Remote Code Execution in extension Content Element Selector (ceselector)

CVE-2026-8727 - TYPO3 Remote Code Execution in extension Site Crawler (crawler)

high

High remediation recipe for TYPO3 Remote Code Execution in extension Site Crawler (crawler). Upgrade to 11.0.13, 12.0.11 and remove the vulnerable authz pattern.

cve CVE-2026-8727disclosed 2026-05-19a.k.a. TYPO3 Remote Code Execution in extension Site Crawler (crawler)

CVE-2026-8827 - TYPO3 SQL Injection in extension Address List (tt_address)

high

High remediation recipe for TYPO3 SQL Injection in extension Address List (tt_address). Upgrade to 10.0.1, 8.1.2, 9.1.1 and remove the vulnerable authz pattern.

cve CVE-2026-8827disclosed 2026-05-19a.k.a. TYPO3 SQL Injection in extension Address List (tt_address)

CVE-2026-6433 - The Custom css-js-php WordPress plugin through 2.0.7 does not properly sanitize user input before using it in

high

High remediation recipe for The Custom css-js-php WordPress plugin through 2.0.7 does not properly sanitize user input before using it in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-6433disclosed 2026-05-11a.k.a. The Custom css-js-php WordPress plugin through 2.0.7 does not properly sanitize user input before using it in

CVE-2025-14179 - In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the PDO

critical

Critical remediation recipe for In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the PDO. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-14179disclosed 2026-05-10a.k.a. In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the PDO

CVE-2026-6104 - In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, when an encoding name containing an embedded NUL b

critical

Critical remediation recipe for In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, when an encoding name containing an embedded NUL b. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-6104disclosed 2026-05-10a.k.a. In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, when an encoding name containing an embedded NUL b

CVE-2026-6722 - In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the SOA

critical

Critical remediation recipe for In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the SOA. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-6722disclosed 2026-05-10a.k.a. In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the SOA

CVE-2026-7262 - In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when a

high

High remediation recipe for In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-7262disclosed 2026-05-10a.k.a. In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when a

CVE-2026-7263 - In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, DOMNode::C14N() method may process the XML data in

high

High remediation recipe for In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, DOMNode::C14N() method may process the XML data in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-7263disclosed 2026-05-10a.k.a. In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, DOMNode::C14N() method may process the XML data in

CVE-2026-7568 - In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the met

high

High remediation recipe for In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the met. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-7568disclosed 2026-05-10a.k.a. In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the met

CVE-2026-3844 - The Breeze Cache plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validat

critical

Critical remediation recipe for The Breeze Cache plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.

cve CVE-2026-3844disclosed 2026-04-23a.k.a. The Breeze Cache plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validat

CVE-2026-41247 - elFinder ImageMagick bg command injection

high

High-severity elFinder command injection in the resize background-color parameter when ImageMagick CLI processing is enabled. Upgrade to 2.1.67+, disable unsafe resize handling during rollout, and add argument-safety tests.

cve CVE-2026-41247disclosed 2026-04-17a.k.a. elFinder resize bg command injection

CVE-2026-40176 - Composer is a dependency manager for PHP

high

High remediation recipe for Composer is a dependency manager for PHP. Upgrade to fixed in Composer 2.2.27 and remove the vulnerable command-injection pattern.

cve CVE-2026-40176disclosed 2026-04-15a.k.a. Composer is a dependency manager for PHP

CVE-2026-40261 - Composer is a dependency manager for PHP

high

High remediation recipe for Composer is a dependency manager for PHP. Upgrade to fixed versions. This issue has been fixed in Composer 2.2.27 and remove the vulnerable command-injection pattern.

cve CVE-2026-40261disclosed 2026-04-15a.k.a. Composer is a dependency manager for PHP

CVE-2026-0740 - The Ninja Forms - File Uploads plugin for WordPress is vulnerable to arbitrary file uploads due to missing fil

critical

Critical remediation recipe for The Ninja Forms - File Uploads plugin for WordPress is vulnerable to arbitrary file uploads due to missing fil. Upgrade to patched in version 3.3.25 and fully patched in version 3.3.27. and remove the vulnerable unsafe-upload pattern.

cve CVE-2026-0740disclosed 2026-04-07a.k.a. The Ninja Forms - File Uploads plugin for WordPress is vulnerable to arbitrary file uploads due to missing fil

CVE-2026-3300 - The Everest Forms Pro plugin for WordPress is vulnerable to Remote Code Execution via PHP Code Injection in al

critical

Critical remediation recipe for The Everest Forms Pro plugin for WordPress is vulnerable to Remote Code Execution via PHP Code Injection in al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-3300disclosed 2026-03-31a.k.a. The Everest Forms Pro plugin for WordPress is vulnerable to Remote Code Execution via PHP Code Injection in al

CVE-2020-37094 - EspoCRM 5.7.0 prior to 5.9.0 contains an authentication token reuse vulnerability that allows authenticated at

high

High remediation recipe for EspoCRM 5.7.0 prior to 5.9.0 contains an authentication token reuse vulnerability that allows authenticated at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2020-37094disclosed 2026-02-03a.k.a. EspoCRM 5.7.0 prior to 5.9.0 contains an authentication token reuse vulnerability that allows authenticated at

CVE-2025-24293 - # Active Storage allowed transformation methods potentially unsafe Active Storage attempts to prevent the use

high

High remediation recipe for # Active Storage allowed transformation methods potentially unsafe Active Storage attempts to prevent the use. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-24293disclosed 2026-01-30a.k.a. # Active Storage allowed transformation methods potentially unsafe Active Storage attempts to prevent the use

CVE-2025-68616 - WeasyPrint helps web developers to create PDF documents

high

High remediation recipe for WeasyPrint helps web developers to create PDF documents. Upgrade to version 68.0 and remove the vulnerable command-injection pattern.

cve CVE-2025-68616disclosed 2026-01-19a.k.a. WeasyPrint helps web developers to create PDF documents

CVE-2025-65518 - Plesk Obsidian versions 8.0.1 through 18.0.73 are vulnerable to a Denial of Service (DoS) condition

high

High remediation recipe for Plesk Obsidian versions 8.0.1 through 18.0.73 are vulnerable to a Denial of Service (DoS) condition. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2025-65518disclosed 2026-01-08a.k.a. Plesk Obsidian versions 8.0.1 through 18.0.73 are vulnerable to a Denial of Service (DoS) condition

CVE-2025-7852 - The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation

critical

Critical remediation recipe for The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.

cve CVE-2025-7852disclosed 2025-07-24a.k.a. The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation

CVE-2020-36847 - The Simple-File-List Plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and includ

critical

Critical remediation recipe for The Simple-File-List Plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and includ. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2020-36847disclosed 2025-07-12a.k.a. The Simple-File-List Plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and includ

CVE-2025-44203 - In HotelDruid 3.0.0 and 3.0.7, the unauthenticated database-setup endpoint creadb.php can be reached before se

high

High remediation recipe for In HotelDruid 3.0.0 and 3.0.7, the unauthenticated database-setup endpoint creadb.php can be reached before se. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-44203disclosed 2025-06-20a.k.a. In HotelDruid 3.0.0 and 3.0.7, the unauthenticated database-setup endpoint creadb.php can be reached before se

CVE-2020-36326 - Object injection in PHPMailer/PHPMailer

critical

Critical remediation recipe for Object injection in PHPMailer/PHPMailer. Upgrade to 6.4.1 and remove the vulnerable deserialization pattern.

cve CVE-2020-36326disclosed 2021-05-04a.k.a. Object injection in PHPMailer/PHPMailer

CVE-2021-25296 - Nagios XI version xi-5.7.5 is affected by OS command injection

high

High remediation recipe for Nagios XI version xi-5.7.5 is affected by OS command injection. Upgrade to version xi-5.7.5 is affected by OS command injection. The vulnerabil and remove the vulnerable command-injection pattern.

cve CVE-2021-25296disclosed 2021-02-15a.k.a. Nagios XI version xi-5.7.5 is affected by OS command injection

CVE-2021-25297 - Nagios XI version xi-5.7.5 is affected by OS command injection

high

High remediation recipe for Nagios XI version xi-5.7.5 is affected by OS command injection. Upgrade to version xi-5.7.5 is affected by OS command injection. The vulnerabil and remove the vulnerable command-injection pattern.

cve CVE-2021-25297disclosed 2021-02-15a.k.a. Nagios XI version xi-5.7.5 is affected by OS command injection

CVE-2021-25298 - Nagios XI version xi-5.7.5 is affected by OS command injection

high

High remediation recipe for Nagios XI version xi-5.7.5 is affected by OS command injection. Upgrade to version xi-5.7.5 is affected by OS command injection. The vulnerabil and remove the vulnerable command-injection pattern.

cve CVE-2021-25298disclosed 2021-02-15a.k.a. Nagios XI version xi-5.7.5 is affected by OS command injection

CVE-2020-25213 - The File Manager (wp-file-manager) plugin before 6.9 for WordPress allows remote attackers to upload and execu

critical

Critical remediation recipe for The File Manager (wp-file-manager) plugin before 6.9 for WordPress allows remote attackers to upload and execu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.

cve CVE-2020-25213disclosed 2020-09-09a.k.a. The File Manager (wp-file-manager) plugin before 6.9 for WordPress allows remote attackers to upload and execu

CVE-2019-19634 - class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension fo

critical

Critical remediation recipe for class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension fo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2019-19634disclosed 2019-12-17a.k.a. class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension fo

CVE-2019-19576 - class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 extension for

critical

Critical remediation recipe for class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 extension for. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2019-19576disclosed 2019-12-04a.k.a. class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 extension for

php/mysql5 recipes

CVE-2026-13485 - SourceCodester preview.php course_year_section SQL injection

high

High remediation recipe for SourceCodester preview.php course_year_section SQL injection. Apply local prepared-statement patch; no upstream fixed release named in NVD and remove the vulnerable sql-injection pattern.

cve CVE-2026-13485disclosed 2026-06-28a.k.a. SourceCodester preview.php course_year_section SQL injection

CVE-2026-13486 - SourceCodester preview6.php course_year_section SQL injection

high

High remediation recipe for SourceCodester preview6.php course_year_section SQL injection. Apply local prepared-statement patch; no upstream fixed release named in NVD and remove the vulnerable sql-injection pattern.

cve CVE-2026-13486disclosed 2026-06-28a.k.a. SourceCodester preview6.php course_year_section SQL injection

CVE-2026-13487 - SourceCodester archive.php sy SQL injection

high

High remediation recipe for SourceCodester archive.php sy SQL injection. Apply local prepared-statement patch; no upstream fixed release named in NVD and remove the vulnerable sql-injection pattern.

cve CVE-2026-13487disclosed 2026-06-28a.k.a. SourceCodester archive.php sy SQL injection

CVE-2026-13488 - SourceCodester preview7.php course_year_section SQL injection

high

High remediation recipe for SourceCodester preview7.php course_year_section SQL injection. Apply local prepared-statement patch; no upstream fixed release named in NVD and remove the vulnerable sql-injection pattern.

cve CVE-2026-13488disclosed 2026-06-28a.k.a. SourceCodester preview7.php course_year_section SQL injection

CVE-2026-58054 - MyBB limited ACP user management administrator escalation

high

High remediation recipe for MyBB limited ACP user management administrator escalation. Apply vendor-patched MyBB release or local group-assignment allowlist patch and remove the vulnerable authz pattern.

cve CVE-2026-58054disclosed 2026-06-28a.k.a. MyBB limited ACP user management administrator escalation

php/webapp17 recipes

CVE-2026-13521 - SourceCodester Class and Exam Timetabling System 1 sql injection

high

High sql injection in SourceCodester Class and Exam Timetabling System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13521disclosed 2026-06-29a.k.a. SourceCodester Class and Exam Timetabling System 1 sql injection

CVE-2026-13526 - SourceCodester Class and Exam Timetabling System 1 sql injection

high

High sql injection in SourceCodester Class and Exam Timetabling System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13526disclosed 2026-06-29a.k.a. SourceCodester Class and Exam Timetabling System 1 sql injection

CVE-2026-13527 - SourceCodester Class and Exam Timetabling System 1 sql injection

high

High sql injection in SourceCodester Class and Exam Timetabling System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13527disclosed 2026-06-29a.k.a. SourceCodester Class and Exam Timetabling System 1 sql injection

CVE-2026-13546 - Feehi CMS missing authentication

high

High missing authentication in Feehi CMS. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13546disclosed 2026-06-29a.k.a. Feehi CMS missing authentication

CVE-2026-13550 - itsourcecode Baptism Information Management System 1 sql injection

high

High sql injection in itsourcecode Baptism Information Management System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13550disclosed 2026-06-29a.k.a. itsourcecode Baptism Information Management System 1 sql injection

CVE-2026-13551 - itsourcecode Baptism Information Management System 1 sql injection

high

High sql injection in itsourcecode Baptism Information Management System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13551disclosed 2026-06-29a.k.a. itsourcecode Baptism Information Management System 1 sql injection

CVE-2026-13552 - itsourcecode Online Hotel Management System 1 sql injection

high

High sql injection in itsourcecode Online Hotel Management System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13552disclosed 2026-06-29a.k.a. itsourcecode Online Hotel Management System 1 sql injection

CVE-2026-13553 - itsourcecode Online Hotel Management System 1 unrestricted file upload

high

High unrestricted file upload in itsourcecode Online Hotel Management System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13553disclosed 2026-06-29a.k.a. itsourcecode Online Hotel Management System 1 unrestricted file upload

CVE-2026-13559 - code-projects Real State Services 1 sql injection

high

High sql injection in code-projects Real State Services 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13559disclosed 2026-06-29a.k.a. code-projects Real State Services 1 sql injection

CVE-2026-13485 - SourceCodester Class and Exam Timetabling System 1 sql injection

high

High sql injection in SourceCodester Class and Exam Timetabling System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13485disclosed 2026-06-28a.k.a. SourceCodester Class and Exam Timetabling System 1 sql injection

CVE-2026-13486 - SourceCodester Class and Exam Timetabling System 1 sql injection

high

High sql injection in SourceCodester Class and Exam Timetabling System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13486disclosed 2026-06-28a.k.a. SourceCodester Class and Exam Timetabling System 1 sql injection

CVE-2026-13487 - SourceCodester Class and Exam Timetabling System 1 sql injection

high

High sql injection in SourceCodester Class and Exam Timetabling System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13487disclosed 2026-06-28a.k.a. SourceCodester Class and Exam Timetabling System 1 sql injection

CVE-2026-13488 - A security flaw has sql injection

high

High sql injection in A security flaw has. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13488disclosed 2026-06-28a.k.a. A security flaw has sql injection

CVE-2026-13498 - yashpokharna2555 restaurent-management-system sql injection

high

High sql injection in yashpokharna2555 restaurent-management-system. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-13498disclosed 2026-06-28a.k.a. yashpokharna2555 restaurent-management-system sql injection

CVE-2026-58054 - MyBB 1.8.40 does not security control bypass

high

High security control bypass in MyBB 1.8.40 does not. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-58054disclosed 2026-06-28a.k.a. MyBB 1.8.40 does not security control bypass

CVE-2026-8095 - The Frontend File Manager Plugin plugin for WordPress arbitrary file write/read

high

High arbitrary file write/read in The Frontend File Manager Plugin plugin for WordPress. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-8095disclosed 2026-06-28a.k.a. The Frontend File Manager Plugin plugin for WordPress arbitrary file write/read

CVE-2026-12415 - The Invoice Generator plugin for WordPress privilege escalation

critical

Critical privilege escalation in The Invoice Generator plugin for WordPress. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-12415disclosed 2026-06-27a.k.a. The Invoice Generator plugin for WordPress privilege escalation

php/wordpress7 recipes

CVE-2026-8095 - WordPress Frontend File Manager arbitrary file deletion

high

High-severity WordPress Frontend File Manager arbitrary file deletion. A low-privilege WordPress user can delete wp-config.php or other server files and turn file deletion into site takeover.

cve CVE-2026-8095disclosed 2026-06-28

CVE-2026-12415 - Invoice Generator unauthenticated account takeover

critical

Critical WordPress Invoice Generator plugin flaw where an unauthenticated AJAX action can change any user's email and enable password-reset takeover. Disable affected versions and add authentication, capability, ownership, and nonce checks.

cve CVE-2026-12415disclosed 2026-06-27a.k.a. Invoice Generator unauthenticated admin email change

CVE-2026-6933 - Premmerce Dev Tools plugin creation RCE

high

High-severity authenticated RCE in Premmerce Dev Tools plugin creation. Remove or disable the unpatched plugin, add capability and nonce checks, constrain namespace generation, and verify no attacker-written plugin files remain.

cve CVE-2026-6933disclosed 2026-06-15a.k.a. Premmerce Dev Tools plugin creation RCE

CVE-2026-8176 - LatePoint agent privilege escalation

high

High-severity LatePoint privilege-escalation chain. Upgrade to 5.5.2+, close IDOR and password-reset flaws, re-check role mapping, and verify no agent can mutate privileged WordPress users.

cve CVE-2026-8176disclosed 2026-06-15a.k.a. LatePoint agent privilege escalation

CVE-2026-8442 - WP Review Slider Pro arbitrary file deletion

high

High-severity arbitrary file deletion in WP Review Slider Pro. Upgrade to 12.7.0+, lock down AJAX handlers, replace prefix checks with canonical path validation, and audit for follow-on code execution risk.

cve CVE-2026-8442disclosed 2026-06-15a.k.a. WP Review Slider Pro arbitrary file deletion

CVE-2026-8443 - WP Review Slider Pro stypes SQL injection

high

High-severity SQL injection in WP Review Slider Pro chart data queries. Upgrade to 12.7.0+, parameterize all dynamic filters, and prove attacker-controlled arrays never reach raw SQL.

cve CVE-2026-8443disclosed 2026-06-15a.k.a. WP Review Slider Pro stypes SQL injection

CVE-2026-8444 - WP Review Slider Pro curselrevs SQL injection

high

High-severity SQL injection in WP Review Slider Pro review lookup logic. Upgrade to 12.7.0+, type-check ID arrays, prepare IN-clause queries correctly, and verify subscriber inputs never reach raw SQL.

cve CVE-2026-8444disclosed 2026-06-15a.k.a. WP Review Slider Pro curselrevs SQL injection

python/pip205 recipes

CVE-2026-14480 - OpenPLC Runtime v3 contains an authenticated arbitrary file write vulnerability in the legacy web UI program‑u

critical

Critical remediation recipe for OpenPLC Runtime v3 contains an authenticated arbitrary file write vulnerability in the legacy web UI program‑u. Upgrade to v4 and remove the vulnerable path-traversal pattern.

cve CVE-2026-14480disclosed 2026-07-10a.k.a. OpenPLC Runtime v3 contains an authenticated arbitrary file write vulnerability in the legacy web UI program‑u

CVE-2026-40006 - Memory Allocation with Excessive Size Value, Allocation of Resources Without Limits or Throttling, Missing Aut

high

High remediation recipe for Memory Allocation with Excessive Size Value, Allocation of Resources Without Limits or Throttling, Missing Aut. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-40006disclosed 2026-07-10a.k.a. Memory Allocation with Excessive Size Value, Allocation of Resources Without Limits or Throttling, Missing Aut

CVE-2026-40007 - Uncontrolled Recursion, Uncontrolled Resource Consumption vulnerability in Apache IoTDB

high

High remediation recipe for Uncontrolled Recursion, Uncontrolled Resource Consumption vulnerability in Apache IoTDB. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-40007disclosed 2026-07-10a.k.a. Uncontrolled Recursion, Uncontrolled Resource Consumption vulnerability in Apache IoTDB

CVE-2026-40008 - Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Apache IoT

critical

Critical remediation recipe for Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Apache IoT. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-40008disclosed 2026-07-10a.k.a. Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Apache IoT

CVE-2026-54071 - BabelDOC: Arbitrary Code Execution via CMap Pickle Deserialization in babeldoc/pdfminer/cmapdb.py

high

High remediation recipe for BabelDOC: Arbitrary Code Execution via CMap Pickle Deserialization in babeldoc/pdfminer/cmapdb.py. Upgrade to 0.6.3 and remove the vulnerable deserialization pattern.

cve CVE-2026-54071disclosed 2026-07-10a.k.a. BabelDOC: Arbitrary Code Execution via CMap Pickle Deserialization in babeldoc/pdfminer/cmapdb.py

CVE-2026-54149 - MaxKB is an open-source AI assistant for enterprise

high

High remediation recipe for MaxKB is an open-source AI assistant for enterprise. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-54149disclosed 2026-07-10a.k.a. MaxKB is an open-source AI assistant for enterprise

CVE-2026-55659 - Grist is spreadsheet software using Python as its formula language

high

High remediation recipe for Grist is spreadsheet software using Python as its formula language. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55659disclosed 2026-07-10a.k.a. Grist is spreadsheet software using Python as its formula language

CVE-2026-59796 - In JetBrains TeamCity before 2026.1.2 pipeline modification was possible due to improper permission checks

high

High remediation recipe for In JetBrains TeamCity before 2026.1.2 pipeline modification was possible due to improper permission checks. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59796disclosed 2026-07-10a.k.a. In JetBrains TeamCity before 2026.1.2 pipeline modification was possible due to improper permission checks

CVE-2026-61437 - PraisonAI (pip package praisonaiagents) before 1.6.78 contains an unsafe dynamic module loading vulnerability

high

High remediation recipe for PraisonAI (pip package praisonaiagents) before 1.6.78 contains an unsafe dynamic module loading vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-61437disclosed 2026-07-10a.k.a. PraisonAI (pip package praisonaiagents) before 1.6.78 contains an unsafe dynamic module loading vulnerability

CVE-2026-61444 - PraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where the agents_file

critical

Critical remediation recipe for PraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where the agents_file. Upgrade to 4.6.78 and remove the vulnerable authz pattern.

cve CVE-2026-61444disclosed 2026-07-10a.k.a. PraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where the agents_file

CVE-2026-49476 - Soup Sieve has Memory Exhaustion via Large Comma-Separated Selector Lists

high

High remediation recipe for Soup Sieve has Memory Exhaustion via Large Comma-Separated Selector Lists. Upgrade to 2.8.4 and remove the vulnerable authz pattern.

cve CVE-2026-49476disclosed 2026-07-09a.k.a. Soup Sieve has Memory Exhaustion via Large Comma-Separated Selector Lists

CVE-2026-49477 - Soup Sieve: Regular Expression Denial of Service (ReDoS) via Selector Parser

high

High remediation recipe for Soup Sieve: Regular Expression Denial of Service (ReDoS) via Selector Parser. Upgrade to 2.8.4 and remove the vulnerable dos pattern.

cve CVE-2026-49477disclosed 2026-07-09a.k.a. Soup Sieve: Regular Expression Denial of Service (ReDoS) via Selector Parser

CVE-2026-54695 - Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents

high

High remediation recipe for Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-54695disclosed 2026-07-09a.k.a. Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents

CVE-2026-54769 - Langroid is a framework for building large-language-model-powered applications

critical

Critical remediation recipe for Langroid is a framework for building large-language-model-powered applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54769disclosed 2026-07-09a.k.a. Langroid is a framework for building large-language-model-powered applications

CVE-2026-55865 - Python Liquid is a Python engine for the Liquid template language

high

High remediation recipe for Python Liquid is a Python engine for the Liquid template language. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55865disclosed 2026-07-09a.k.a. Python Liquid is a Python engine for the Liquid template language

CVE-2026-59214 - Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform

high

High remediation recipe for Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Upgrade to fixed in version 0.10.0. and remove the vulnerable authz pattern.

cve CVE-2026-59214disclosed 2026-07-09a.k.a. Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform

CVE-2026-59216 - Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform

high

High remediation recipe for Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59216disclosed 2026-07-09a.k.a. Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform

CVE-2026-49471 - Serena: Unauthenticated Flask dashboard on fixed port enables DNS rebinding → memory poisoning → RCE

high

High remediation recipe for Serena: Unauthenticated Flask dashboard on fixed port enables DNS rebinding → memory poisoning → RCE. Upgrade to 1.5.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-49471disclosed 2026-07-08a.k.a. Serena: Unauthenticated Flask dashboard on fixed port enables DNS rebinding → memory poisoning → RCE

CVE-2026-49825 - lxml_html_clean.Cleaner does not strip javascript: URLs from namespaced URL attributes

high

High remediation recipe for lxml_html_clean.Cleaner does not strip javascript: URLs from namespaced URL attributes. Upgrade to 0.4.5 and remove the vulnerable command-injection pattern.

cve CVE-2026-49825disclosed 2026-07-08a.k.a. lxml_html_clean.Cleaner does not strip javascript: URLs from namespaced URL attributes

CVE-2026-54499 - Stanza is a Stanford NLP Python library for tokenization, sentence segmentation, NER, and parsing of many huma

high

High remediation recipe for Stanza is a Stanford NLP Python library for tokenization, sentence segmentation, NER, and parsing of many huma. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54499disclosed 2026-07-08a.k.a. Stanza is a Stanford NLP Python library for tokenization, sentence segmentation, NER, and parsing of many huma

CVE-2026-54591 - AsyncSSH is a Python package which provides an asynchronous client and server implementation of the SSHv2 prot

high

High remediation recipe for AsyncSSH is a Python package which provides an asynchronous client and server implementation of the SSHv2 prot. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54591disclosed 2026-07-08a.k.a. AsyncSSH is a Python package which provides an asynchronous client and server implementation of the SSHv2 prot

CVE-2026-54772 - CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core

high

High remediation recipe for CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-54772disclosed 2026-07-08a.k.a. CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core

CVE-2026-55195 - py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and

high

High remediation recipe for py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55195disclosed 2026-07-08a.k.a. py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and

CVE-2026-55206 - py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and

high

High remediation recipe for py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55206disclosed 2026-07-08a.k.a. py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and

CVE-2026-55830 - RestrictedPython is a tool that helps to define a subset of the Python language which allows to provide a prog

high

High remediation recipe for RestrictedPython is a tool that helps to define a subset of the Python language which allows to provide a prog. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-55830disclosed 2026-07-08a.k.a. RestrictedPython is a tool that helps to define a subset of the Python language which allows to provide a prog

CVE-2026-59922 - Mistune is a Python Markdown parser with renderers and plugins

high

High remediation recipe for Mistune is a Python Markdown parser with renderers and plugins. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59922disclosed 2026-07-08a.k.a. Mistune is a Python Markdown parser with renderers and plugins

CVE-2026-59935 - pypdf is a free and open-source pure-python PDF library

high

High remediation recipe for pypdf is a free and open-source pure-python PDF library. Upgrade to fixed in version 6.14.2. and remove the vulnerable command-injection pattern.

cve CVE-2026-59935disclosed 2026-07-08a.k.a. pypdf is a free and open-source pure-python PDF library

CVE-2026-59936 - pypdf is a free and open-source pure-python PDF library

high

High remediation recipe for pypdf is a free and open-source pure-python PDF library. Upgrade to fixed in version 6.14.1. and remove the vulnerable command-injection pattern.

cve CVE-2026-59936disclosed 2026-07-08a.k.a. pypdf is a free and open-source pure-python PDF library

CVE-2026-59937 - pypdf is a free and open-source pure-python PDF library

high

High remediation recipe for pypdf is a free and open-source pure-python PDF library. Upgrade to fixed in version 6.14.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-59937disclosed 2026-07-08a.k.a. pypdf is a free and open-source pure-python PDF library

CVE-2026-59939 - httplib2 is a comprehensive HTTP client library for Python

high

High remediation recipe for httplib2 is a comprehensive HTTP client library for Python. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-59939disclosed 2026-07-08a.k.a. httplib2 is a comprehensive HTTP client library for Python

CVE-2025-46719 - Open WebUI vulnerable to stored XSS via unescaped markdown token in MarkdownTokens.svelte leading to full account takeov

high

High remediation recipe for Open WebUI vulnerable to stored XSS via unescaped markdown token in MarkdownTokens.svelte leading to full account takeov. Upgrade to 0.6.6 and remove the vulnerable command-injection pattern.

cve CVE-2025-46719disclosed 2026-07-07a.k.a. Open WebUI vulnerable to stored XSS via unescaped markdown token in MarkdownTokens.svelte leading to full account takeov

CVE-2026-26192 - Open WebUI vulnerable to Stored XSS via iFrame in citations model

high

High remediation recipe for Open WebUI vulnerable to Stored XSS via iFrame in citations model. Upgrade to 0.7.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-26192disclosed 2026-07-07a.k.a. Open WebUI vulnerable to Stored XSS via iFrame in citations model

CVE-2026-26193 - Open WebUI vulnerable to Stored XSS via iFrame embeds in response messages

high

High remediation recipe for Open WebUI vulnerable to Stored XSS via iFrame embeds in response messages. Upgrade to 0.6.44 and remove the vulnerable command-injection pattern.

cve CVE-2026-26193disclosed 2026-07-07a.k.a. Open WebUI vulnerable to Stored XSS via iFrame embeds in response messages

CVE-2026-14535 - In Trail of Bits fickling versions up to and including 0.1.11, the UnsafeImportsML analysis pass unconditional

high

High remediation recipe for In Trail of Bits fickling versions up to and including 0.1.11, the UnsafeImportsML analysis pass unconditional. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-14535disclosed 2026-07-04a.k.a. In Trail of Bits fickling versions up to and including 0.1.11, the UnsafeImportsML analysis pass unconditional

CVE-2022-37331 - Open Babel has out-of-bounds write in Gaussian coords_type orientation parser

high

High remediation recipe for Open Babel has out-of-bounds write in Gaussian coords_type orientation parser. Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2022-37331disclosed 2026-07-01a.k.a. Open Babel has out-of-bounds write in Gaussian coords_type orientation parser

CVE-2022-41793 - Open Babel has out-of-bounds write in CSR PadString (title field)

high

High remediation recipe for Open Babel has out-of-bounds write in CSR PadString (title field). Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2022-41793disclosed 2026-07-01a.k.a. Open Babel has out-of-bounds write in CSR PadString (title field)

CVE-2022-42885 - Open Babel has uninitialized pointer dereference in GRO residue parser

high

High remediation recipe for Open Babel has uninitialized pointer dereference in GRO residue parser. Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2022-42885disclosed 2026-07-01a.k.a. Open Babel has uninitialized pointer dereference in GRO residue parser

CVE-2022-43467 - Open Babel has out-of-bounds write in PQS coord_file parser

high

High remediation recipe for Open Babel has out-of-bounds write in PQS coord_file parser. Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2022-43467disclosed 2026-07-01a.k.a. Open Babel has out-of-bounds write in PQS coord_file parser

CVE-2022-43607 - Open Babel has out-of-bounds write in MOL2 attribute/value parser

high

High remediation recipe for Open Babel has out-of-bounds write in MOL2 attribute/value parser. Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2022-43607disclosed 2026-07-01a.k.a. Open Babel has out-of-bounds write in MOL2 attribute/value parser

CVE-2022-44451 - Open Babel has uninitialized pointer dereference in MSI atom parser

high

High remediation recipe for Open Babel has uninitialized pointer dereference in MSI atom parser. Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2022-44451disclosed 2026-07-01a.k.a. Open Babel has uninitialized pointer dereference in MSI atom parser

CVE-2022-46280 - Open Babel has uninitialized pointer dereference in PQS pFormat

high

High remediation recipe for Open Babel has uninitialized pointer dereference in PQS pFormat. Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2022-46280disclosed 2026-07-01a.k.a. Open Babel has uninitialized pointer dereference in PQS pFormat

CVE-2022-46289 - Open Babel has out-of-bounds write in ORCA nAtoms parser

high

High remediation recipe for Open Babel has out-of-bounds write in ORCA nAtoms parser. Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2022-46289disclosed 2026-07-01a.k.a. Open Babel has out-of-bounds write in ORCA nAtoms parser

CVE-2022-46290 - Open Babel has out-of-bounds write in ORCA nAtoms parser (second variant)

high

High remediation recipe for Open Babel has out-of-bounds write in ORCA nAtoms parser (second variant). Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2022-46290disclosed 2026-07-01a.k.a. Open Babel has out-of-bounds write in ORCA nAtoms parser (second variant)

CVE-2022-46291 - Open Babel has out-of-bounds write in Gaussian translationVectors[]

high

High remediation recipe for Open Babel has out-of-bounds write in Gaussian translationVectors[]. Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2022-46291disclosed 2026-07-01a.k.a. Open Babel has out-of-bounds write in Gaussian translationVectors[]

CVE-2022-46293 - Open Babel has out-of-bounds write in MOPAC translationVectors[] (FINAL POINT)

high

High remediation recipe for Open Babel has out-of-bounds write in MOPAC translationVectors[] (FINAL POINT). Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2022-46293disclosed 2026-07-01a.k.a. Open Babel has out-of-bounds write in MOPAC translationVectors[] (FINAL POINT)

CVE-2022-46294 - Open Babel has out-of-bounds write in MOPAC IN translationVectors[] (Tv atom)

high

High remediation recipe for Open Babel has out-of-bounds write in MOPAC IN translationVectors[] (Tv atom). Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2022-46294disclosed 2026-07-01a.k.a. Open Babel has out-of-bounds write in MOPAC IN translationVectors[] (Tv atom)

CVE-2022-46295 - Open Babel has out-of-bounds write in MSI translationVectors[]

high

High remediation recipe for Open Babel has out-of-bounds write in MSI translationVectors[]. Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2022-46295disclosed 2026-07-01a.k.a. Open Babel has out-of-bounds write in MSI translationVectors[]

CVE-2025-10997 - Open Babel has heap buffer overflow in ChemKin ChemKinFormat::CheckSpecies

high

High remediation recipe for Open Babel has heap buffer overflow in ChemKin ChemKinFormat::CheckSpecies. Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2025-10997disclosed 2026-07-01a.k.a. Open Babel has heap buffer overflow in ChemKin ChemKinFormat::CheckSpecies

CVE-2026-57516 - Ray prior to 2.56.0 contains an unsafe deserialization vulnerability in the WebDataset reader that allows atta

high

High remediation recipe for Ray prior to 2.56.0 contains an unsafe deserialization vulnerability in the WebDataset reader that allows atta. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-57516disclosed 2026-07-01a.k.a. Ray prior to 2.56.0 contains an unsafe deserialization vulnerability in the WebDataset reader that allows atta

CVE-2026-6682 - In FatFS R0.16 and earlier contains a FAT32 integer overflow bug in mount_volume() where fasize *= fs->n_fats

high

High remediation recipe for In FatFS R0.16 and earlier contains a FAT32 integer overflow bug in mount_volume() where fasize *= fs->n_fats. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.

cve CVE-2026-6682disclosed 2026-07-01a.k.a. In FatFS R0.16 and earlier contains a FAT32 integer overflow bug in mount_volume() where fasize *= fs->n_fats

CVE-2025-10996 - Open Babel has heap buffer overflow in SMILES OBSmilesParser::ParseSmiles

high

High remediation recipe for Open Babel has heap buffer overflow in SMILES OBSmilesParser::ParseSmiles. Upgrade to 3.2.0 and remove the vulnerable authz pattern.

cve CVE-2025-10996disclosed 2026-06-30a.k.a. Open Babel has heap buffer overflow in SMILES OBSmilesParser::ParseSmiles

CVE-2025-71349 - picklescan before 0.0.29 fails to detect the built-in trace.Trace.run function when analyzing pickle files, al

high

High remediation recipe for picklescan before 0.0.29 fails to detect the built-in trace.Trace.run function when analyzing pickle files, al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-71349disclosed 2026-06-30a.k.a. picklescan before 0.0.29 fails to detect the built-in trace.Trace.run function when analyzing pickle files, al

CVE-2025-71350 - picklescan before 0.0.28 fails to detect malicious pickle files using torch.utils.collect_env.run function in

high

High remediation recipe for picklescan before 0.0.28 fails to detect malicious pickle files using torch.utils.collect_env.run function in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-71350disclosed 2026-06-30a.k.a. picklescan before 0.0.28 fails to detect malicious pickle files using torch.utils.collect_env.run function in

CVE-2025-71352 - picklescan before 0.0.29 fails to detect the built-in Python trace.Trace.runctx function when used in pickle f

high

High remediation recipe for picklescan before 0.0.29 fails to detect the built-in Python trace.Trace.runctx function when used in pickle f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-71352disclosed 2026-06-30a.k.a. picklescan before 0.0.29 fails to detect the built-in Python trace.Trace.runctx function when used in pickle f

CVE-2025-71363 - picklescan before 0.0.30 fails to detect cProfile.run function calls in pickle reduce methods, allowing attack

high

High remediation recipe for picklescan before 0.0.30 fails to detect cProfile.run function calls in pickle reduce methods, allowing attack. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2025-71363disclosed 2026-06-30a.k.a. picklescan before 0.0.30 fails to detect cProfile.run function calls in pickle reduce methods, allowing attack

CVE-2025-71368 - picklescan before 0.0.30 fails to detect the doctest.debug_script function when analyzing pickle files, allowi

high

High remediation recipe for picklescan before 0.0.30 fails to detect the doctest.debug_script function when analyzing pickle files, allowi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-71368disclosed 2026-06-30a.k.a. picklescan before 0.0.30 fails to detect the doctest.debug_script function when analyzing pickle files, allowi

CVE-2025-71371 - picklescan before 0.0.29 fails to detect malicious pickle files using code.InteractiveInterpreter.runcode in r

high

High remediation recipe for picklescan before 0.0.29 fails to detect malicious pickle files using code.InteractiveInterpreter.runcode in r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-71371disclosed 2026-06-30a.k.a. picklescan before 0.0.29 fails to detect malicious pickle files using code.InteractiveInterpreter.runcode in r

CVE-2025-71374 - picklescan before 0.0.29 fails to detect the built-in python profile.Profile.run function when used in pickle

high

High remediation recipe for picklescan before 0.0.29 fails to detect the built-in python profile.Profile.run function when used in pickle. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2025-71374disclosed 2026-06-30a.k.a. picklescan before 0.0.29 fails to detect the built-in python profile.Profile.run function when used in pickle

CVE-2026-12243 - NLTK version 3.9.4 is vulnerable to a path traversal attack due to an incomplete fix for GitHub Issue #3504

high

High remediation recipe for NLTK version 3.9.4 is vulnerable to a path traversal attack due to an incomplete fix for GitHub Issue #3504. Upgrade to version 3.9.4 is vulnerable to a path traversal attack due to an inc and remove the vulnerable command-injection pattern.

cve CVE-2026-12243disclosed 2026-06-30a.k.a. NLTK version 3.9.4 is vulnerable to a path traversal attack due to an incomplete fix for GitHub Issue #3504

CVE-2026-57585 - MessagePack is the serializer implementation for Python msgpack.org

high

High remediation recipe for MessagePack is the serializer implementation for Python msgpack.org. Upgrade to fixed in version 1.2.1. and remove the vulnerable dos pattern.

cve CVE-2026-57585disclosed 2026-06-30a.k.a. MessagePack is the serializer implementation for Python msgpack.org

CVE-2026-58116 - LLaMA-Factory through 0.9.5 contains a remote code execution vulnerability that allows attackers with WebUI ac

critical

Critical remediation recipe for LLaMA-Factory through 0.9.5 contains a remote code execution vulnerability that allows attackers with WebUI ac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58116disclosed 2026-06-30a.k.a. LLaMA-Factory through 0.9.5 contains a remote code execution vulnerability that allows attackers with WebUI ac

CVE-2026-58172 - Ocelot through 24.1.0, fixed in commit f156fd4, contains a security control bypass vulnerability that allows d

critical

Critical remediation recipe for Ocelot through 24.1.0, fixed in commit f156fd4, contains a security control bypass vulnerability that allows d. Upgrade to fixed in commit f156fd4 and remove the vulnerable command-injection pattern.

cve CVE-2026-58172disclosed 2026-06-30a.k.a. Ocelot through 24.1.0, fixed in commit f156fd4, contains a security control bypass vulnerability that allows d

CVE-2026-58370 - Woodpecker before 3.15.0 matches the ApprovalAllowedUsers bypass list against pipeline.Author

high

High remediation recipe for Woodpecker before 3.15.0 matches the ApprovalAllowedUsers bypass list against pipeline.Author. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-58370disclosed 2026-06-30a.k.a. Woodpecker before 3.15.0 matches the ApprovalAllowedUsers bypass list against pipeline.Author

CVE-2026-58377 - JeecgBoot through 3.9.2 contains a broken access control vulnerability that allows authenticated low-privilege

high

High remediation recipe for JeecgBoot through 3.9.2 contains a broken access control vulnerability that allows authenticated low-privilege. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-58377disclosed 2026-06-30a.k.a. JeecgBoot through 3.9.2 contains a broken access control vulnerability that allows authenticated low-privilege

CVE-2026-13749 - Improper neutralization in the Snowpark annotation processor callback template in Snowflake CLI versions prior

high

High remediation recipe for Improper neutralization in the Snowpark annotation processor callback template in Snowflake CLI versions prior. Upgrade to version 3.19 and remove the vulnerable authz pattern.

cve CVE-2026-13749disclosed 2026-06-29a.k.a. Improper neutralization in the Snowpark annotation processor callback template in Snowflake CLI versions prior

CVE-2026-57346 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Epiphyt Embed

high

High remediation recipe for Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Epiphyt Embed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-57346disclosed 2026-06-29a.k.a. Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Epiphyt Embed

CVE-2026-57919 - PBackupVSS.exe in Matrix42 Empirum before 25.5 and 26.x before 26.2 creates a named pipe (\\.\pipe\PBackupVSS)

high

High remediation recipe for PBackupVSS.exe in Matrix42 Empirum before 25.5 and 26.x before 26.2 creates a named pipe (\\.\pipe\PBackupVSS). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-57919disclosed 2026-06-29a.k.a. PBackupVSS.exe in Matrix42 Empirum before 25.5 and 26.x before 26.2 creates a named pipe (\\.\pipe\PBackupVSS)

CVE-2026-33646 - mise manages dev tools like node, python, cmake, and terraform

critical

Critical remediation recipe for mise manages dev tools like node, python, cmake, and terraform. Upgrade to fixed in 2026.3.10. and remove the vulnerable authz pattern.

cve CVE-2026-33646disclosed 2026-06-26a.k.a. mise manages dev tools like node, python, cmake, and terraform

CVE-2026-48797 - Backpropagate: backprop ui --auth and backprop ui --share do not enforce authentication

critical

Critical remediation recipe for Backpropagate: backprop ui --auth and backprop ui --share do not enforce authentication. Upgrade to 1.2.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-48797disclosed 2026-06-26a.k.a. Backpropagate: backprop ui --auth and backprop ui --share do not enforce authentication

CVE-2026-48802 - python-engineio has unbound thread allocation that can cause denial of service

high

High remediation recipe for python-engineio has unbound thread allocation that can cause denial of service. Upgrade to 4.13.2 and remove the vulnerable dos pattern.

cve CVE-2026-48802disclosed 2026-06-26a.k.a. python-engineio has unbound thread allocation that can cause denial of service

CVE-2026-48804 - python-socketio: Binary attachment accumulation can cause denial of service

high

High remediation recipe for python-socketio: Binary attachment accumulation can cause denial of service. Upgrade to 5.16.2 and remove the vulnerable dos pattern.

cve CVE-2026-48804disclosed 2026-06-26a.k.a. python-socketio: Binary attachment accumulation can cause denial of service

CVE-2026-48809 - python-engineio has possible denial of service due to maximum payload size sometimes not being enforced

high

High remediation recipe for python-engineio has possible denial of service due to maximum payload size sometimes not being enforced. Upgrade to 4.13.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-48809disclosed 2026-06-26a.k.a. python-engineio has possible denial of service due to maximum payload size sometimes not being enforced

CVE-2026-49257 - mcp-pinot: Unauthenticated tool invocation via default oauth_enabled=False + host 0.0.0.0 bind

critical

Critical remediation recipe for mcp-pinot: Unauthenticated tool invocation via default oauth_enabled=False + host 0.0.0.0 bind. Upgrade to 3.1.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-49257disclosed 2026-06-26a.k.a. mcp-pinot: Unauthenticated tool invocation via default oauth_enabled=False + host 0.0.0.0 bind

CVE-2026-49291 - mcp-memory-service: OAuth read-only clients can write and delete memories through MCP tools/call

high

High remediation recipe for mcp-memory-service: OAuth read-only clients can write and delete memories through MCP tools/call. Upgrade to 10.65.3 and remove the vulnerable command-injection pattern.

cve CVE-2026-49291disclosed 2026-06-26a.k.a. mcp-memory-service: OAuth read-only clients can write and delete memories through MCP tools/call

CVE-2026-49869 - Kestra is an open-source, event-driven orchestration platform

critical

Critical remediation recipe for Kestra is an open-source, event-driven orchestration platform. Upgrade to fixed in 1.0.45 and 1.3.21. and remove the vulnerable command-injection pattern.

cve CVE-2026-49869disclosed 2026-06-26a.k.a. Kestra is an open-source, event-driven orchestration platform

CVE-2026-53284 - In the Linux kernel, the following vulnerability has been resolved: btrfs: only release the dirty pages io tre

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: btrfs: only release the dirty pages io tre. Upgrade to patch in the series and remove the vulnerable command-injection pattern.

cve CVE-2026-53284disclosed 2026-06-26a.k.a. In the Linux kernel, the following vulnerability has been resolved: btrfs: only release the dirty pages io tre

CVE-2026-53194 - In the Linux kernel, the following vulnerability has been resolved: USB: serial: kl5kusb105: fix bulk-out buff

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: USB: serial: kl5kusb105: fix bulk-out buff. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-53194disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: USB: serial: kl5kusb105: fix bulk-out buff

CVE-2026-53228 - In the Linux kernel, the following vulnerability has been resolved: ipv6: sit: reload inner IPv6 header after

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: sit: reload inner IPv6 header after. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-53228disclosed 2026-06-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: ipv6: sit: reload inner IPv6 header after

CVE-2026-55166 - Lemur ACME SSRF and creator-equality IDOR

critical

Critical Lemur flaw where an authenticated user can combine ACME URL SSRF with creator-based authorization gaps to reach AWS IAM and PKI material. Upgrade to 1.9.2+ and harden ACME endpoint validation plus certificate ownership checks.

cve CVE-2026-55166disclosed 2026-06-25a.k.a. Lemur ACME SSRF plus creator-equality IDOR

CVE-2026-57456 - Vim is an open source, command line text editor

high

High remediation recipe for Vim is an open source, command line text editor. Upgrade to fixed in 9.2.0699. and remove the vulnerable command-injection pattern.

cve CVE-2026-57456disclosed 2026-06-25a.k.a. Vim is an open source, command line text editor

CVE-2026-8592 - OS Command Injection vulnerability in the process_string action of Rapid7 InsightConnect AWK Plugin on Linux a

high

High remediation recipe for OS Command Injection vulnerability in the process_string action of Rapid7 InsightConnect AWK Plugin on Linux a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-8592disclosed 2026-06-25a.k.a. OS Command Injection vulnerability in the process_string action of Rapid7 InsightConnect AWK Plugin on Linux a

CVE-2026-44017 - Docling simplifies document processing by parsing diverse formats and providing integrations with the generati

high

High remediation recipe for Docling simplifies document processing by parsing diverse formats and providing integrations with the generati. Upgrade to fixed in 2.91.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-44017disclosed 2026-06-24a.k.a. Docling simplifies document processing by parsing diverse formats and providing integrations with the generati

CVE-2026-49851 - Mistune is a Python Markdown parser with renderers and plugins

high

High remediation recipe for Mistune is a Python Markdown parser with renderers and plugins. Upgrade to fixed in 3.3.0. and remove the vulnerable authz pattern.

cve CVE-2026-49851disclosed 2026-06-24a.k.a. Mistune is a Python Markdown parser with renderers and plugins

CVE-2026-56121 - Feast before 0.63.0 contains an unsafe deserialization vulnerability that allows unauthenticated or unauthoriz

critical

Critical remediation recipe for Feast before 0.63.0 contains an unsafe deserialization vulnerability that allows unauthenticated or unauthoriz. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.

cve CVE-2026-56121disclosed 2026-06-24a.k.a. Feast before 0.63.0 contains an unsafe deserialization vulnerability that allows unauthenticated or unauthoriz

CVE-2026-49444 - n8n is an open source workflow automation platform

high

High remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 1.123.48 and remove the vulnerable command-injection pattern.

cve CVE-2026-49444disclosed 2026-06-23a.k.a. n8n is an open source workflow automation platform

CVE-2026-53753 - Crawl4AI is an open-source LLM friendly web crawler & scraper

critical

Critical remediation recipe for Crawl4AI is an open-source LLM friendly web crawler & scraper. Upgrade to fixed in 0.8.7. and remove the vulnerable command-injection pattern.

cve CVE-2026-53753disclosed 2026-06-23a.k.a. Crawl4AI is an open-source LLM friendly web crawler & scraper

CVE-2026-41523 - vLLM is an inference and serving engine for large language models (LLMs)

high

High remediation recipe for vLLM is an inference and serving engine for large language models (LLMs). Upgrade to fixed in 0.22.0. and remove the vulnerable authz pattern.

cve CVE-2026-41523disclosed 2026-06-22a.k.a. vLLM is an inference and serving engine for large language models (LLMs)

CVE-2026-50269 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

high

High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.0. and remove the vulnerable authz pattern.

cve CVE-2026-50269disclosed 2026-06-22a.k.a. AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

CVE-2026-54273 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

high

High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable authz pattern.

cve CVE-2026-54273disclosed 2026-06-22a.k.a. AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

CVE-2026-54274 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

high

High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable authz pattern.

cve CVE-2026-54274disclosed 2026-06-22a.k.a. AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

CVE-2026-54275 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

high

High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable cert-validation pattern.

cve CVE-2026-54275disclosed 2026-06-22a.k.a. AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

CVE-2026-54277 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

high

High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable authz pattern.

cve CVE-2026-54277disclosed 2026-06-22a.k.a. AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

CVE-2026-54278 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

high

High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable authz pattern.

cve CVE-2026-54278disclosed 2026-06-22a.k.a. AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

CVE-2026-54279 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

high

High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable authz pattern.

cve CVE-2026-54279disclosed 2026-06-22a.k.a. AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

CVE-2026-54280 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

high

High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable command-injection pattern.

cve CVE-2026-54280disclosed 2026-06-22a.k.a. AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

CVE-2026-54293 - NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting

high

High remediation recipe for NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting. Upgrade to fixed in 3.10.0-rc1. and remove the vulnerable command-injection pattern.

cve CVE-2026-54293disclosed 2026-06-22a.k.a. NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting

CVE-2025-71348 - picklescan before 0.0.28 fails to detect malicious pickle files that invoke torch.utils._config_module.load_co

high

High remediation recipe for picklescan before 0.0.28 fails to detect malicious pickle files that invoke torch.utils._config_module.load_co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-71348disclosed 2026-06-21a.k.a. picklescan before 0.0.28 fails to detect malicious pickle files that invoke torch.utils._config_module.load_co

CVE-2025-71357 - picklescan before 0.0.30 fails to detect malicious pickle files using idlelib.pyshell.ModifiedInterpreter.runc

high

High remediation recipe for picklescan before 0.0.30 fails to detect malicious pickle files using idlelib.pyshell.ModifiedInterpreter.runc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-71357disclosed 2026-06-21a.k.a. picklescan before 0.0.30 fails to detect malicious pickle files using idlelib.pyshell.ModifiedInterpreter.runc

CVE-2025-71378 - picklescan before 0.0.30 fails to detect cProfile.runctx function calls in pickle file reduce methods, allowin

high

High remediation recipe for picklescan before 0.0.30 fails to detect cProfile.runctx function calls in pickle file reduce methods, allowin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-71378disclosed 2026-06-21a.k.a. picklescan before 0.0.30 fails to detect cProfile.runctx function calls in pickle file reduce methods, allowin

CVE-2026-50203 - Apache Airflow SFTP provider: Path traversal in SFTPHook.retrieve_directory

critical

Critical remediation recipe for Apache Airflow SFTP provider: Path traversal in SFTPHook.retrieve_directory. Upgrade to 5.8.1 and remove the vulnerable path-traversal pattern.

cve CVE-2026-50203disclosed 2026-06-17a.k.a. Apache Airflow SFTP provider: Path traversal in SFTPHook.retrieve_directory

CVE-2026-45830 - A lack of authorization validation in version 0.4.17 or later of the ChromaDB Python project allows any authen

high

High remediation recipe for A lack of authorization validation in version 0.4.17 or later of the ChromaDB Python project allows any authen. Upgrade to version 0.4.17 or later of the ChromaDB Python project allows any au and remove the vulnerable authz pattern.

cve CVE-2026-45830disclosed 2026-06-12a.k.a. A lack of authorization validation in version 0.4.17 or later of the ChromaDB Python project allows any authen

CVE-2026-45832 - All V1 collection-level endpoints in ChromaDB's Python project pass None for the tenant and database to the au

high

High remediation recipe for All V1 collection-level endpoints in ChromaDB's Python project pass None for the tenant and database to the au. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-45832disclosed 2026-06-12a.k.a. All V1 collection-level endpoints in ChromaDB's Python project pass None for the tenant and database to the au

CVE-2026-45833 - A code injection vulnerability in version 0.4.17 or later of the ChromaDB Python project allows an authenticat

high

High remediation recipe for A code injection vulnerability in version 0.4.17 or later of the ChromaDB Python project allows an authenticat. Upgrade to version 0.4.17 or later of the ChromaDB Python project allows an aut and remove the vulnerable authz pattern.

cve CVE-2026-45833disclosed 2026-06-12a.k.a. A code injection vulnerability in version 0.4.17 or later of the ChromaDB Python project allows an authenticat

CVE-2026-48006 - Netty is a network application framework for development of protocol servers and clients

high

High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-48006disclosed 2026-06-12a.k.a. Netty is a network application framework for development of protocol servers and clients

CVE-2026-11816 - Keras versions prior to 3.14.0 are vulnerable to a path traversal issue in the archive extraction utilities lo

high

High remediation recipe for Keras versions prior to 3.14.0 are vulnerable to a path traversal issue in the archive extraction utilities lo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-11816disclosed 2026-06-11a.k.a. Keras versions prior to 3.14.0 are vulnerable to a path traversal issue in the archive extraction utilities lo

CVE-2026-52860 - Vim is an open source, command line text editor

high

High remediation recipe for Vim is an open source, command line text editor. Upgrade to version 9.2.0597 and remove the vulnerable command-injection pattern.

cve CVE-2026-52860disclosed 2026-06-11a.k.a. Vim is an open source, command line text editor

CVE-2026-41567 - Moby is an open source container framework

high

High remediation recipe for Moby is an open source container framework. Upgrade to fixed in Docker Engine 29.5.1 and moby and remove the vulnerable command-injection pattern.

cve CVE-2026-41567disclosed 2026-06-05a.k.a. Moby is an open source container framework

CVE-2026-10840 - A flaw was found in the OpenShift Pipelines operator

high

High remediation recipe for A flaw was found in the OpenShift Pipelines operator. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-10840disclosed 2026-06-04a.k.a. A flaw was found in the OpenShift Pipelines operator

CVE-2026-5241 - A vulnerability in the LightGlue model loading path of huggingface/transformers version 5.2.0 allows an attack

critical

Critical remediation recipe for A vulnerability in the LightGlue model loading path of huggingface/transformers version 5.2.0 allows an attack. Upgrade to version 5.2.0 allows an attacker-controlled model repository to exec and remove the vulnerable command-injection pattern.

cve CVE-2026-5241disclosed 2026-06-03a.k.a. A vulnerability in the LightGlue model loading path of huggingface/transformers version 5.2.0 allows an attack

CVE-2026-3514 - Prefect has an Authentication Middleware Bypass when URL paths are appended with 'health' or 'ready'

high

High remediation recipe for Prefect has an Authentication Middleware Bypass when URL paths are appended with 'health' or 'ready'. Upgrade to 3.6.22.dev7 and remove the vulnerable auth-bypass pattern.

cve CVE-2026-3514disclosed 2026-06-02a.k.a. Prefect has an Authentication Middleware Bypass when URL paths are appended with 'health' or 'ready'

CVE-2026-44023 - Docling Core remote filename SSRF

high

High-severity docling-core remote filename and destination validation issue. Upgrade to 2.74.1+, block untrusted remote fetch inputs, and verify cache-path containment.

cve CVE-2026-44023disclosed 2026-06-02a.k.a. Docling Core unsafe remote filename resolution

CVE-2026-47117 - OpenMed vulnerable to remote code injection through privacy-filter model loading path

critical

Critical remediation recipe for OpenMed vulnerable to remote code injection through privacy-filter model loading path. Upgrade to 1.5.2 and remove the vulnerable authz pattern.

cve CVE-2026-47117disclosed 2026-06-02a.k.a. OpenMed vulnerable to remote code injection through privacy-filter model loading path

CVE-2026-47214 - Docling HTML backend URI and path handling

high

High-severity Docling HTML backend resource-fetch issue. Upgrade Docling to 2.94.0+, keep local and remote fetch disabled for untrusted HTML, and add document-ingestion SSRF/path-containment tests.

cve CVE-2026-47214disclosed 2026-06-02a.k.a. Docling HTML backend resource fetch hardening

CVE-2026-40961 - Apache Airflow: Authenticated users can bypass the is_safe_url check

high

High remediation recipe for Apache Airflow: Authenticated users can bypass the is_safe_url check. Upgrade to 3.2.2 and remove the vulnerable authz pattern.

cve CVE-2026-40961disclosed 2026-06-01a.k.a. Apache Airflow: Authenticated users can bypass the is_safe_url check

CVE-2026-41084 - Apache Airflow Vulnerable to Authorization Bypass Through User-Controlled Key

high

High remediation recipe for Apache Airflow Vulnerable to Authorization Bypass Through User-Controlled Key. Upgrade to 3.2.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-41084disclosed 2026-06-01a.k.a. Apache Airflow Vulnerable to Authorization Bypass Through User-Controlled Key

CVE-2026-42252 - Apache Airflow vulnerable to Improper Neutralization of Special Elements Used in a Template Engine

critical

Critical remediation recipe for Apache Airflow vulnerable to Improper Neutralization of Special Elements Used in a Template Engine. Upgrade to 3.2.2 and remove the vulnerable authz pattern.

cve CVE-2026-42252disclosed 2026-06-01a.k.a. Apache Airflow vulnerable to Improper Neutralization of Special Elements Used in a Template Engine

CVE-2026-42359 - Apache Airflow has a Deserialization of Untrusted Data vulnerability

high

High remediation recipe for Apache Airflow has a Deserialization of Untrusted Data vulnerability. Upgrade to 3.2.2 and remove the vulnerable deserialization pattern.

cve CVE-2026-42359disclosed 2026-06-01a.k.a. Apache Airflow has a Deserialization of Untrusted Data vulnerability

CVE-2026-45360 - Apache Airflow Vulnerable to Deserialization of Untrusted Data

high

High remediation recipe for Apache Airflow Vulnerable to Deserialization of Untrusted Data. Upgrade to 3.2.2 and remove the vulnerable deserialization pattern.

cve CVE-2026-45360disclosed 2026-06-01a.k.a. Apache Airflow Vulnerable to Deserialization of Untrusted Data

CVE-2026-49121 - AI Tensor Engine for ROCm (AITER) through 0.1.14 contains an unauthenticated remote code execution vulnerabili

high

High remediation recipe for AI Tensor Engine for ROCm (AITER) through 0.1.14 contains an unauthenticated remote code execution vulnerabili. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-49121disclosed 2026-06-01a.k.a. AI Tensor Engine for ROCm (AITER) through 0.1.14 contains an unauthenticated remote code execution vulnerabili

CVE-2026-49298 - Apache Airflow: Execution API JWT leaked via KubernetesExecutor worker command-line args

high

High remediation recipe for Apache Airflow: Execution API JWT leaked via KubernetesExecutor worker command-line args. Upgrade to 3.2.2 and remove the vulnerable authz pattern.

cve CVE-2026-49298disclosed 2026-06-01a.k.a. Apache Airflow: Execution API JWT leaked via KubernetesExecutor worker command-line args

CVE-2026-48526 - PyJWT is a JSON Web Token implementation in Python

high

High remediation recipe for PyJWT is a JSON Web Token implementation in Python. Upgrade to fixed in 2.13.0. and remove the vulnerable authz pattern.

cve CVE-2026-48526disclosed 2026-05-28a.k.a. PyJWT is a JSON Web Token implementation in Python

CVE-2026-49014 - GDAL: scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow

high

High remediation recipe for GDAL: scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow. Upgrade to 3.13.1 and remove the vulnerable authz pattern.

cve CVE-2026-49014disclosed 2026-05-27a.k.a. GDAL: scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow

CVE-2026-49017 - OpenStack Swift: s3api middleware enters an infinite loop when processing a truncated aws-chunked PUT request body

high

High remediation recipe for OpenStack Swift: s3api middleware enters an infinite loop when processing a truncated aws-chunked PUT request body. Upgrade to Vendor-fixed release and remove the vulnerable dos pattern.

cve CVE-2026-49017disclosed 2026-05-27a.k.a. OpenStack Swift: s3api middleware enters an infinite loop when processing a truncated aws-chunked PUT request body

CVE-2026-8450 - HTTP::Daemon versions before 6.17 for Perl allow OS command injection via send_file()

critical

Critical remediation recipe for HTTP::Daemon versions before 6.17 for Perl allow OS command injection via send_file(). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-8450disclosed 2026-05-27a.k.a. HTTP::Daemon versions before 6.17 for Perl allow OS command injection via send_file()

CVE-2026-2651 - MLflow allows unauthorized access to multipart upload endpoints when the --serve-artifacts mode is enabled

critical

Critical remediation recipe for MLflow allows unauthorized access to multipart upload endpoints when the --serve-artifacts mode is enabled. Upgrade to 3.11.0rc1 and remove the vulnerable command-injection pattern.

cve CVE-2026-2651disclosed 2026-05-26a.k.a. MLflow allows unauthorized access to multipart upload endpoints when the --serve-artifacts mode is enabled

CVE-2026-3515 - Prefect has an Argument Injection issue

high

High remediation recipe for Prefect has an Argument Injection issue. Upgrade to Vendor-fixed release and remove the vulnerable command-injection pattern.

cve CVE-2026-3515disclosed 2026-05-26a.k.a. Prefect has an Argument Injection issue

CVE-2026-4372 - HuggingFace transformers vulnerable to remote code execution

high

High remediation recipe for HuggingFace transformers vulnerable to remote code execution. Upgrade to 5.3.0 and remove the vulnerable deserialization pattern.

cve CVE-2026-4372disclosed 2026-05-26a.k.a. HuggingFace transformers vulnerable to remote code execution

CVE-2026-45361 - Apache Airflow providers-google's ComputeEngineSSHHook disables SSH host-key verification by default

high

High remediation recipe for Apache Airflow providers-google's ComputeEngineSSHHook disables SSH host-key verification by default. Upgrade to 22.0.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-45361disclosed 2026-05-26a.k.a. Apache Airflow providers-google's ComputeEngineSSHHook disables SSH host-key verification by default

CVE-2026-48207 - Apache Fory PyFory Deserialization of Untrusted Data

critical

Critical remediation recipe for Apache Fory PyFory Deserialization of Untrusted Data. Upgrade to 1.0.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-48207disclosed 2026-05-21a.k.a. Apache Fory PyFory Deserialization of Untrusted Data

CVE-2026-48989 - Windows-MCP: HTTP transports expose unauthenticated PowerShell control with wildcard CORS

high

High remediation recipe for Windows-MCP: HTTP transports expose unauthenticated PowerShell control with wildcard CORS. Upgrade to 0.7.5 and remove the vulnerable command-injection pattern.

cve CVE-2026-48989disclosed 2026-05-21a.k.a. Windows-MCP: HTTP transports expose unauthenticated PowerShell control with wildcard CORS

CVE-2026-31072 - The JSONSerializer and CBORSerializer in APScheduler (all versions including 3.10.x and 4.0.0a5) are vulnerabl

critical

Critical remediation recipe for The JSONSerializer and CBORSerializer in APScheduler (all versions including 3.10.x and 4.0.0a5) are vulnerabl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-31072disclosed 2026-05-19a.k.a. The JSONSerializer and CBORSerializer in APScheduler (all versions including 3.10.x and 4.0.0a5) are vulnerabl

CVE-2026-46373 - SQLFluff: Recursive Stack Overflow in Parser

high

High remediation recipe for SQLFluff: Recursive Stack Overflow in Parser. Upgrade to 4.1.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-46373disclosed 2026-05-19a.k.a. SQLFluff: Recursive Stack Overflow in Parser

CVE-2026-46374 - SQLFluff: Uncontrolled Resource Consumption in SQLFluff Parser

high

High remediation recipe for SQLFluff: Uncontrolled Resource Consumption in SQLFluff Parser. Upgrade to 4.2.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-46374disclosed 2026-05-19a.k.a. SQLFluff: Uncontrolled Resource Consumption in SQLFluff Parser

CVE-2026-42561 - Python-Multipart is a streaming multipart parser for Python

high

High remediation recipe for Python-Multipart is a streaming multipart parser for Python. Upgrade to fixed in 0.0.27. and remove the vulnerable dos pattern.

cve CVE-2026-42561disclosed 2026-05-13a.k.a. Python-Multipart is a streaming multipart parser for Python

CVE-2026-42584 - Netty is an asynchronous, event-driven network application framework

high

High remediation recipe for Netty is an asynchronous, event-driven network application framework. Upgrade to fixed in 4.2.13.Final and 4.1.133.Final. and remove the vulnerable authz pattern.

cve CVE-2026-42584disclosed 2026-05-13a.k.a. Netty is an asynchronous, event-driven network application framework

CVE-2026-44432 - urllib3 is an HTTP client library for Python

high

High remediation recipe for urllib3 is an HTTP client library for Python. Upgrade to fixed in 2.7.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-44432disclosed 2026-05-13a.k.a. urllib3 is an HTTP client library for Python

CVE-2026-27851 - When safe filter is used with variable expansion, all following pipelines on the same string are incorrectly i

high

High remediation recipe for When safe filter is used with variable expansion, all following pipelines on the same string are incorrectly i. Upgrade to fixed version. No publicly available exploits are known. and remove the vulnerable authz pattern.

cve CVE-2026-27851disclosed 2026-05-12a.k.a. When safe filter is used with variable expansion, all following pipelines on the same string are incorrectly i

CVE-2026-31228 - The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a remote code execution vulnerability in its Kub

critical

Critical remediation recipe for The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a remote code execution vulnerability in its Kub. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-31228disclosed 2026-05-12a.k.a. The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a remote code execution vulnerability in its Kub

CVE-2026-31230 - The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a command-line argument injection vulnerability

critical

Critical remediation recipe for The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a command-line argument injection vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-31230disclosed 2026-05-12a.k.a. The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a command-line argument injection vulnerability

CVE-2026-31236 - The llm CLI tool thru 0.27.1 contains a critical code injection vulnerability via its --functions command-line

critical

Critical remediation recipe for The llm CLI tool thru 0.27.1 contains a critical code injection vulnerability via its --functions command-line. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-31236disclosed 2026-05-12a.k.a. The llm CLI tool thru 0.27.1 contains a critical code injection vulnerability via its --functions command-line

CVE-2026-31253 - flash-attention contains an insecure deserialization vulnerability in its checkpoint loading mechanism

high

High remediation recipe for flash-attention contains an insecure deserialization vulnerability in its checkpoint loading mechanism. Upgrade to Vendor-fixed release and remove the vulnerable command-injection pattern.

cve CVE-2026-31253disclosed 2026-05-11a.k.a. flash-attention contains an insecure deserialization vulnerability in its checkpoint loading mechanism

CVE-2026-43284 - In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on share

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on share. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-43284disclosed 2026-05-08a.k.a. In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on share

CVE-2026-29080 - Rucio has SQL Injection in FilterEngine Oracle JSON Path via DID Search API

critical

Critical remediation recipe for Rucio has SQL Injection in FilterEngine Oracle JSON Path via DID Search API. Upgrade to 35.8.5, 38.5.5, 39.4.2, 40.1.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-29080disclosed 2026-05-06a.k.a. Rucio has SQL Injection in FilterEngine Oracle JSON Path via DID Search API

CVE-2026-29090 - Rucio has SQL Injection in FilterEngine PostgreSQL Query Builder via DID Search API

critical

Critical remediation recipe for Rucio has SQL Injection in FilterEngine PostgreSQL Query Builder via DID Search API. Upgrade to 35.8.5, 38.5.5, 39.4.2, 40.1.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-29090disclosed 2026-05-06a.k.a. Rucio has SQL Injection in FilterEngine PostgreSQL Query Builder via DID Search API

CVE-2026-43114 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo_avx2: don't retu

critical

Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo_avx2: don't retu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-43114disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo_avx2: don't retu

CVE-2026-43232 - In the Linux kernel, the following vulnerability has been resolved: net: wan: farsync: Fix use-after-free bugs

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: wan: farsync: Fix use-after-free bugs. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-43232disclosed 2026-05-06a.k.a. In the Linux kernel, the following vulnerability has been resolved: net: wan: farsync: Fix use-after-free bugs

CVE-2026-40110 - Jupyter Server is the backend for Jupyter web applications

high

High remediation recipe for Jupyter Server is the backend for Jupyter web applications. Upgrade to fixed in version 2.18.0. and remove the vulnerable authz pattern.

cve CVE-2026-40110disclosed 2026-05-05a.k.a. Jupyter Server is the backend for Jupyter web applications

CVE-2026-42601 - ArchiveBox AddView config override RCE

critical

Critical ArchiveBox AddView config override RCE. Upgrade or contain ArchiveBox, disable public unauthenticated add workflows where possible, block per-crawl command config overrides, and verify archive workers cannot receive attacker-controlled tool arguments.

cve CVE-2026-42601disclosed 2026-05-04a.k.a. ArchiveBox AddView config override RCE

CVE-2026-43003 - An issue was discovered in OpenStack ironic-python-agent 1.0.0 through 11.5.0

high

High remediation recipe for An issue was discovered in OpenStack ironic-python-agent 1.0.0 through 11.5.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-43003disclosed 2026-05-01a.k.a. An issue was discovered in OpenStack ironic-python-agent 1.0.0 through 11.5.0

CVE-2026-40048 - The Camel-PQC FileBasedKeyLifecycleManager class deserializes the contents of <keyId>.key files in the confi

high

High remediation recipe for The Camel-PQC FileBasedKeyLifecycleManager class deserializes the contents of <keyId>.key files in the confi. Upgrade to upgrade to version 4.20.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-40048disclosed 2026-04-27a.k.a. The Camel-PQC FileBasedKeyLifecycleManager class deserializes the contents of <keyId>.key files in the confi

CVE-2026-41140 - Poetry is a dependency manager for Python

high

High remediation recipe for Poetry is a dependency manager for Python. Upgrade to fixed in 2.3.4. and remove the vulnerable path-traversal pattern.

cve CVE-2026-41140disclosed 2026-04-24a.k.a. Poetry is a dependency manager for Python

CVE-2026-6859 - A flaw was found in InstructLab. The linux_train.py script hardcodes trust_remote_code=True when loading m

high

High remediation recipe for A flaw was found in InstructLab. The linux_train.py script hardcodes trust_remote_code=True when loading m. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-6859disclosed 2026-04-22a.k.a. A flaw was found in InstructLab. The linux_train.py script hardcodes trust_remote_code=True when loading m

CVE-2026-40938 - Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines

high

High remediation recipe for Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Upgrade to version 1.0.0 and prior to versions 1.0.2 and remove the vulnerable command-injection pattern.

cve CVE-2026-40938disclosed 2026-04-21a.k.a. Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines

CVE-2026-54333 - UEFI Firmware Parser has a stack out-of-bounds write in tiano decompressor MakeTable

critical

Critical remediation recipe for UEFI Firmware Parser has a stack out-of-bounds write in tiano decompressor MakeTable. Upgrade to Vendor-fixed release and remove the vulnerable dos pattern.

cve CVE-2026-54333disclosed 2026-04-16a.k.a. UEFI Firmware Parser has a stack out-of-bounds write in tiano decompressor MakeTable

CVE-2026-54334 - UEFI Firmware Parser has a heap out-of-bounds write in tiano decompressor ReadCLen

critical

Critical remediation recipe for UEFI Firmware Parser has a heap out-of-bounds write in tiano decompressor ReadCLen. Upgrade to Vendor-fixed release and remove the vulnerable dos pattern.

cve CVE-2026-54334disclosed 2026-04-16a.k.a. UEFI Firmware Parser has a heap out-of-bounds write in tiano decompressor ReadCLen

CVE-2026-40192 - Pillow is a Python imaging library. Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed

high

High remediation recipe for Pillow is a Python imaging library. Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.

cve CVE-2026-40192disclosed 2026-04-15a.k.a. Pillow is a Python imaging library. Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed

CVE-2026-40164 - jq is a command-line JSON processor. Before commit 0c7d133c3c7e37c00b6d46b658a02244fdd3c784, jq used MurmurHas

high

High remediation recipe for jq is a command-line JSON processor. Before commit 0c7d133c3c7e37c00b6d46b658a02244fdd3c784, jq used MurmurHas. Upgrade to patched in commit 0c7d133c3c7e37c00b6d46b658a02244fdd3c784. and remove the vulnerable authz pattern.

cve CVE-2026-40164disclosed 2026-04-14a.k.a. jq is a command-line JSON processor. Before commit 0c7d133c3c7e37c00b6d46b658a02244fdd3c784, jq used MurmurHas

CVE-2026-39892 - cryptography is a package designed to expose cryptographic primitives and recipes to Python developers

critical

Critical remediation recipe for cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Upgrade to fixed in 46.0.7. and remove the vulnerable authz pattern.

cve CVE-2026-39892disclosed 2026-04-08a.k.a. cryptography is a package designed to expose cryptographic primitives and recipes to Python developers

CVE-2026-1114 - LoLLMs is vulnerable to Improper Access Control through weak secret key

critical

Critical remediation recipe for LoLLMs is vulnerable to Improper Access Control through weak secret key. Upgrade to 2.2.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-1114disclosed 2026-04-07a.k.a. LoLLMs is vulnerable to Improper Access Control through weak secret key

CVE-2026-34444 - Lupa integrates the runtimes of Lua or LuaJIT2 into CPython

critical

Critical remediation recipe for Lupa integrates the runtimes of Lua or LuaJIT2 into CPython. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-34444disclosed 2026-04-06a.k.a. Lupa integrates the runtimes of Lua or LuaJIT2 into CPython

CVE-2026-35029 - LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format

high

High remediation recipe for LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Upgrade to Fixed in v1.83.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-35029disclosed 2026-04-06a.k.a. LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format

CVE-2026-32871 - FastMCP is a Pythonic way to build MCP servers and clients

critical

Critical remediation recipe for FastMCP is a Pythonic way to build MCP servers and clients. Upgrade to version 3.2.0 and remove the vulnerable path-traversal pattern.

cve CVE-2026-32871disclosed 2026-04-02a.k.a. FastMCP is a Pythonic way to build MCP servers and clients

CVE-2025-15379 - A command injection vulnerability exists in MLflow's model serving container initialization code, specifically

critical

Critical remediation recipe for A command injection vulnerability exists in MLflow's model serving container initialization code, specifically. Upgrade to fixed in version 3.8.2. and remove the vulnerable command-injection pattern.

cve CVE-2025-15379disclosed 2026-03-30a.k.a. A command injection vulnerability exists in MLflow's model serving container initialization code, specifically

CVE-2026-23351 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: split gc into u

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: split gc into u. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.

cve CVE-2026-23351disclosed 2026-03-25a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: split gc into u

CVE-2026-33211 - Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines

critical

Critical remediation recipe for Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Upgrade to version 1.0.0 and prior to versions 1.0.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-33211disclosed 2026-03-24a.k.a. Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines

CVE-2026-32874 - UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+

high

High remediation recipe for UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Upgrade to fixed in version 5.12.0. and remove the vulnerable dos pattern.

cve CVE-2026-32874disclosed 2026-03-20a.k.a. UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+

CVE-2026-32875 - UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+

high

High remediation recipe for UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Upgrade to fixed negative indent. An underflow always occurs for any negative and remove the vulnerable dos pattern.

cve CVE-2026-32875disclosed 2026-03-20a.k.a. UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+

CVE-2026-33231 - NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting

high

High remediation recipe for NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-33231disclosed 2026-03-20a.k.a. NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting

CVE-2026-33236 - NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting

high

High remediation recipe for NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-33236disclosed 2026-03-20a.k.a. NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting

CVE-2026-27459 - pyOpenSSL is a Python wrapper around the OpenSSL library

critical

Critical remediation recipe for pyOpenSSL is a Python wrapper around the OpenSSL library. Upgrade to version 22.0.0 and prior to version 26.0.0 and remove the vulnerable authz pattern.

cve CVE-2026-27459disclosed 2026-03-18a.k.a. pyOpenSSL is a Python wrapper around the OpenSSL library

CVE-2025-14287 - A command injection vulnerability exists in mlflow/mlflow versions before v3.7.0, specifically in the mlflow/

high

High remediation recipe for A command injection vulnerability exists in mlflow/mlflow versions before v3.7.0, specifically in the mlflow/. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-14287disclosed 2026-03-16a.k.a. A command injection vulnerability exists in mlflow/mlflow versions before v3.7.0, specifically in the mlflow/

CVE-2026-27962 - Authlib is a Python library which builds OAuth and OpenID Connect servers

critical

Critical remediation recipe for Authlib is a Python library which builds OAuth and OpenID Connect servers. Upgrade to version 1.6.9 and remove the vulnerable deserialization pattern.

cve CVE-2026-27962disclosed 2026-03-16a.k.a. Authlib is a Python library which builds OAuth and OpenID Connect servers

CVE-2026-28498 - Authlib is a Python library which builds OAuth and OpenID Connect servers

high

High remediation recipe for Authlib is a Python library which builds OAuth and OpenID Connect servers. Upgrade to version 1.6.9 and remove the vulnerable command-injection pattern.

cve CVE-2026-28498disclosed 2026-03-16a.k.a. Authlib is a Python library which builds OAuth and OpenID Connect servers

CVE-2026-32640 - SimpleEval is a library for adding evaluatable expressions into python projects

critical

Critical remediation recipe for SimpleEval is a library for adding evaluatable expressions into python projects. Upgrade to version 1.0.5 has this issue fixed. This vulnerability is fixed in 1 and remove the vulnerable command-injection pattern.

cve CVE-2026-32640disclosed 2026-03-16a.k.a. SimpleEval is a library for adding evaluatable expressions into python projects

CVE-2026-32597 - PyJWT is a JSON Web Token implementation in Python

high

High remediation recipe for PyJWT is a JSON Web Token implementation in Python. Upgrade to fixed in 2.12.0. and remove the vulnerable authz pattern.

cve CVE-2026-32597disclosed 2026-03-13a.k.a. PyJWT is a JSON Web Token implementation in Python

CVE-2026-28356 - multipart is a fast multipart/form-data parser for python

high

High remediation recipe for multipart is a fast multipart/form-data parser for python. Upgrade to fixed in 1.2.2 and remove the vulnerable dos pattern.

cve CVE-2026-28356disclosed 2026-03-12a.k.a. multipart is a fast multipart/form-data parser for python

CVE-2026-32274 - Black is the uncompromising Python code formatter

high

High remediation recipe for Black is the uncompromising Python code formatter. Upgrade to Fixed in Black 26.3.1. and remove the vulnerable authz pattern.

cve CVE-2026-32274disclosed 2026-03-12a.k.a. Black is the uncompromising Python code formatter

CVE-2026-29186 - Backstage is an open framework for building developer portals

high

High remediation recipe for Backstage is an open framework for building developer portals. Upgrade to version 1.14.3 and remove the vulnerable authz pattern.

cve CVE-2026-29186disclosed 2026-03-07a.k.a. Backstage is an open framework for building developer portals

CVE-2026-28802 - Authlib is a Python library which builds OAuth and OpenID Connect servers

critical

Critical remediation recipe for Authlib is a Python library which builds OAuth and OpenID Connect servers. Upgrade to version 1.6.5 to before version 1.6.7 and remove the vulnerable crypto pattern.

cve CVE-2026-28802disclosed 2026-03-06a.k.a. Authlib is a Python library which builds OAuth and OpenID Connect servers

CVE-2025-69534 - Python-Markdown version 3.8 contain a vulnerability where malformed HTML-like sequences can cause html.parser

high

High remediation recipe for Python-Markdown version 3.8 contain a vulnerability where malformed HTML-like sequences can cause html.parser. Upgrade to version 3.8 contain a vulnerability where malformed HTML-like sequen and remove the vulnerable dos pattern.

cve CVE-2025-69534disclosed 2026-03-05a.k.a. Python-Markdown version 3.8 contain a vulnerability where malformed HTML-like sequences can cause html.parser

CVE-2026-0847 - A vulnerability in NLTK versions up to and including 3.9.2 allows arbitrary file read via path traversal in mu

high

High remediation recipe for A vulnerability in NLTK versions up to and including 3.9.2 allows arbitrary file read via path traversal in mu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.

cve CVE-2026-0847disclosed 2026-03-04a.k.a. A vulnerability in NLTK versions up to and including 3.9.2 allows arbitrary file read via path traversal in mu

CVE-2026-25673 - An issue was discovered in 6.0 before 6.0.3, 5.2 before 5.2.12, and 4.2 before 4.2.29

high

High remediation recipe for An issue was discovered in 6.0 before 6.0.3, 5.2 before 5.2.12, and 4.2 before 4.2.29. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-25673disclosed 2026-03-03a.k.a. An issue was discovered in 6.0 before 6.0.3, 5.2 before 5.2.12, and 4.2 before 4.2.29

CVE-2026-26955 - FreeRDP is a free implementation of the Remote Desktop Protocol

high

High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.23.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-26955disclosed 2026-02-25a.k.a. FreeRDP is a free implementation of the Remote Desktop Protocol

CVE-2026-27483 - MindsDB: Path Traversal in /api/files Leading to Remote Code Execution

high

High remediation recipe for MindsDB: Path Traversal in /api/files Leading to Remote Code Execution. Upgrade to 25.9.1.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-27483disclosed 2026-02-24a.k.a. MindsDB: Path Traversal in /api/files Leading to Remote Code Execution

CVE-2025-14009 - A critical vulnerability exists in the NLTK downloader component of nltk/nltk, affecting all versions

high

High remediation recipe for A critical vulnerability exists in the NLTK downloader component of nltk/nltk, affecting all versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-14009disclosed 2026-02-18a.k.a. A critical vulnerability exists in the NLTK downloader component of nltk/nltk, affecting all versions

CVE-2025-71220 - In the Linux kernel, the following vulnerability has been resolved: smb/server: call ksmbd_session_rpc_close()

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb/server: call ksmbd_session_rpc_close(). Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2025-71220disclosed 2026-02-14a.k.a. In the Linux kernel, the following vulnerability has been resolved: smb/server: call ksmbd_session_rpc_close()

CVE-2025-69872 - DiskCache (python-diskcache) through 5.6.3 uses Python pickle for serialization by default

critical

Critical remediation recipe for DiskCache (python-diskcache) through 5.6.3 uses Python pickle for serialization by default. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2025-69872disclosed 2026-02-11a.k.a. DiskCache (python-diskcache) through 5.6.3 uses Python pickle for serialization by default

CVE-2026-25990 - Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, an out-of-bounds write may be triggered when

high

High remediation recipe for Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, an out-of-bounds write may be triggered when. Upgrade to fixed in 12.1.1. and remove the vulnerable authz pattern.

cve CVE-2026-25990disclosed 2026-02-11a.k.a. Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, an out-of-bounds write may be triggered when

CVE-2026-25580 - Pydantic AI is a Python agent framework for building applications and workflows with Generative AI

high

High remediation recipe for Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. Upgrade to fixed in 1.56.0. and remove the vulnerable command-injection pattern.

cve CVE-2026-25580disclosed 2026-02-06a.k.a. Pydantic AI is a Python agent framework for building applications and workflows with Generative AI

CVE-2026-24486 - Python-Multipart is a streaming multipart parser for Python

high

High remediation recipe for Python-Multipart is a streaming multipart parser for Python. Upgrade to version 0.0.22 and remove the vulnerable path-traversal pattern.

cve CVE-2026-24486disclosed 2026-01-27a.k.a. Python-Multipart is a streaming multipart parser for Python

CVE-2026-24747 - PyTorch is a Python package that provides tensor computation

high

High remediation recipe for PyTorch is a Python package that provides tensor computation. Upgrade to version 2.10.0 and remove the vulnerable authz pattern.

cve CVE-2026-24747disclosed 2026-01-27a.k.a. PyTorch is a Python package that provides tensor computation

CVE-2026-24779 - vLLM is an inference and serving engine for large language models (LLMs)

high

High remediation recipe for vLLM is an inference and serving engine for large language models (LLMs). Upgrade to version 0.14.1 and remove the vulnerable command-injection pattern.

cve CVE-2026-24779disclosed 2026-01-27a.k.a. vLLM is an inference and serving engine for large language models (LLMs)

CVE-2026-0994 - A denial-of-service (DoS) vulnerability exists in google.protobuf.json_format.ParseDict() in Python, where the

high

High remediation recipe for A denial-of-service (DoS) vulnerability exists in google.protobuf.json_format.ParseDict() in Python, where the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.

cve CVE-2026-0994disclosed 2026-01-23a.k.a. A denial-of-service (DoS) vulnerability exists in google.protobuf.json_format.ParseDict() in Python, where the

CVE-2026-24049 - wheel is a command line tool for manipulating Python wheel files, as defined in PEP 427

high

High remediation recipe for wheel is a command line tool for manipulating Python wheel files, as defined in PEP 427. Upgrade to fixed in version 0.46.2. and remove the vulnerable authz pattern.

cve CVE-2026-24049disclosed 2026-01-22a.k.a. wheel is a command line tool for manipulating Python wheel files, as defined in PEP 427

CVE-2025-56005 - An undocumented and unsafe feature in the PLY (Python Lex-Yacc) library 3.11 allows Remote Code Execution (RCE

critical

Critical remediation recipe for An undocumented and unsafe feature in the PLY (Python Lex-Yacc) library 3.11 allows Remote Code Execution (RCE. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2025-56005disclosed 2026-01-20a.k.a. An undocumented and unsafe feature in the PLY (Python Lex-Yacc) library 3.11 allows Remote Code Execution (RCE

CVE-2026-23876 - ImageMagick is free and open-source software used for editing and manipulating digital images

high

High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-23876disclosed 2026-01-20a.k.a. ImageMagick is free and open-source software used for editing and manipulating digital images

CVE-2026-23490 - pyasn1 is a generic ASN.1 library for Python

high

High remediation recipe for pyasn1 is a generic ASN.1 library for Python. Upgrade to fixed in 0.6.2. and remove the vulnerable authz pattern.

cve CVE-2026-23490disclosed 2026-01-16a.k.a. pyasn1 is a generic ASN.1 library for Python

CVE-2026-0897 - Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0

high

High remediation recipe for Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.

cve CVE-2026-0897disclosed 2026-01-15a.k.a. Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0

CVE-2026-21441 - urllib3 is an HTTP client library for Python

high

High remediation recipe for urllib3 is an HTTP client library for Python. Upgrade to version 1.22 and prior to version 2.6.3 and remove the vulnerable command-injection pattern.

cve CVE-2026-21441disclosed 2026-01-07a.k.a. urllib3 is an HTTP client library for Python

CVE-2025-69223 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

high

High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in version 3.13.3. and remove the vulnerable authz pattern.

cve CVE-2025-69223disclosed 2026-01-05a.k.a. AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python

CVE-2025-11157 - A high-severity remote code execution vulnerability exists in feast-dev/feast version 0.53.0, specifically in

high

High remediation recipe for A high-severity remote code execution vulnerability exists in feast-dev/feast version 0.53.0, specifically in. Upgrade to version 0.53.0 and remove the vulnerable authz pattern.

cve CVE-2025-11157disclosed 2026-01-01a.k.a. A high-severity remote code execution vulnerability exists in feast-dev/feast version 0.53.0, specifically in

CVE-2025-7346 - pyLoad is vulnerable to attacks that bypass localhost restrictions, enabling the creation of arbitrary packages

high

High remediation recipe for pyLoad is vulnerable to attacks that bypass localhost restrictions, enabling the creation of arbitrary packages. Upgrade to Vendor-fixed release and remove the vulnerable authz pattern.

cve CVE-2025-7346disclosed 2025-07-08a.k.a. pyLoad is vulnerable to attacks that bypass localhost restrictions, enabling the creation of arbitrary packages

CVE-2025-38201 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: clamp maximum m

high

High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: clamp maximum m. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.

cve CVE-2025-38201disclosed 2025-07-04a.k.a. In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: clamp maximum m

CVE-2024-22416 - Cross-Site Request Forgery on any API call in pyLoad may lead to admin privilege escalation

critical

Critical remediation recipe for Cross-Site Request Forgery on any API call in pyLoad may lead to admin privilege escalation. Upgrade to 0.5.0b3.dev78 and remove the vulnerable authz pattern.

cve CVE-2024-22416disclosed 2024-01-19a.k.a. Cross-Site Request Forgery on any API call in pyLoad may lead to admin privilege escalation

CVE-2023-45815 - Viewing wget extractor output while logged in as an admin allows archived JS to execute in the admins context

high

High remediation recipe for Viewing wget extractor output while logged in as an admin allows archived JS to execute in the admins context. Upgrade to 0.9.0 and remove the vulnerable xss pattern.

cve CVE-2023-45815disclosed 2023-10-19a.k.a. Viewing wget extractor output while logged in as an admin allows archived JS to execute in the admins context

python/pypi52 recipes

CVE-2026-44018 - Docling simplifies document processing security control bypass

high

High security control bypass in Docling simplifies document processing. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-44018disclosed 2026-06-26a.k.a. Docling simplifies document processing security control bypass

CVE-2025-66336 - Apache Doris MCP Server metadata SQL injection

high

High-severity Apache Doris MCP Server SQL injection in a metadata query path that can bypass intended authorization scope. Upgrade to 0.6.1+, parameterize database-name handling, and restrict exposure.

cve CVE-2025-66336disclosed 2026-06-22a.k.a. Apache Doris MCP metadata SQL injection

CVE-2026-48039 - Meta Ads MCP HTTP tool auth bypass

critical

Critical Meta Ads MCP unauthenticated HTTP tool execution and token leakage. Upgrade to 1.0.109+, fail closed on missing auth, and stop operator tokens from reaching unauthenticated tool paths.

cve CVE-2026-48039disclosed 2026-06-11a.k.a. Meta Ads MCP unauthenticated HTTP tool execution

CVE-2026-10142 - kafka-python frame length parser DoS

high

High-severity kafka-python denial of service via unbounded 4-byte frame lengths. Upgrade to 2.3.2+, reject oversized broker frames, and verify malformed lengths cannot hang consumers or exhaust memory.

cve CVE-2026-10142disclosed 2026-06-10a.k.a. kafka-python protocol parser frame length DoS

CVE-2026-10143 - kafka-python SCRAM iteration count DoS

high

High-severity kafka-python denial of service via unbounded SCRAM iteration counts. Upgrade to 2.3.2+, reject pathological broker-controlled iterations, and verify Kafka clients cannot freeze during SCRAM authentication.

cve CVE-2026-10143disclosed 2026-06-10a.k.a. kafka-python SCRAM iteration count DoS

CVE-2026-11455 - MetaGPT Mermaid path command injection

medium

Medium-severity MetaGPT command injection through the Mermaid CLI path setting. Disable untrusted Mermaid rendering, pin trusted executable paths, and replace shell execution with argv-based subprocess calls.

cve CVE-2026-11455disclosed 2026-06-07a.k.a. MetaGPT Mermaid path command injection

CVE-2026-47708 - stata-mcp log_file_name command injection

critical

Critical command injection in stata-mcp log_file_name handling. Upgrade stata-mcp to 1.17.3+, strictly validate log names and paths, and remove command-string construction from user-controlled wrapper parameters.

cve CVE-2026-47708disclosed 2026-06-04a.k.a. stata-mcp log_file_name command injection

CVE-2026-44180 - Jupyter Enterprise Gateway prohibited UID/GID bypass

critical

Critical Jupyter Enterprise Gateway UID/GID canonicalization bypass. Upgrade jupyter_enterprise_gateway to 3.3.0+, validate KERNEL_UID and KERNEL_GID after parsing, and harden Kubernetes kernel pod security.

cve CVE-2026-44180disclosed 2026-06-03a.k.a. Jupyter Enterprise Gateway prohibited UID/GID bypass

CVE-2026-44181 - Jupyter Enterprise Gateway Jinja2 SSTI RCE

critical

Critical Jupyter Enterprise Gateway Jinja2 SSTI in Kubernetes manifest rendering. Upgrade jupyter_enterprise_gateway to 3.3.0+, remove untrusted KERNEL_* template evaluation, and reduce Kubernetes service-account blast radius.

cve CVE-2026-44181disclosed 2026-06-03a.k.a. Jupyter Enterprise Gateway Jinja2 SSTI RCE

CVE-2026-44182 - Jupyter Enterprise Gateway YAML manifest injection

critical

Critical Jupyter Enterprise Gateway YAML injection in Kubernetes manifest rendering. Upgrade jupyter_enterprise_gateway to 3.3.0+, render manifests with YAML-safe data handling, and prevent injected privileged Kubernetes resources.

cve CVE-2026-44182disclosed 2026-06-03a.k.a. Jupyter Enterprise Gateway Kubernetes YAML injection

CVE-2026-47410 - PraisonAI Platform default JWT secret

critical

Critical PraisonAI Platform account-takeover risk from a hardcoded default JWT signing secret. Upgrade praisonai-platform to 0.1.4+, require a strong PLATFORM_JWT_SECRET, fail closed when it is missing, and rotate exposed tokens.

cve CVE-2026-47410disclosed 2026-05-29a.k.a. PraisonAI Platform JWT default secret

CVE-2026-42563 - Dulwich merge driver path command injection

high

High-severity Dulwich command injection through merge-driver %P path substitution. Upgrade dulwich to 1.2.5+, remove shell-based path interpolation from merge drivers, and gate merges from untrusted branches.

cve CVE-2026-42563disclosed 2026-05-28a.k.a. Dulwich merge driver path RCE

CVE-2026-49853 - Tornado cross-origin redirect credential leak

high

High-severity Tornado redirect handling bug where SimpleAsyncHTTPClient forwards Authorization and auth credentials across origins. Upgrade tornado and add redirect hygiene tests around outbound clients.

cve CVE-2026-49853disclosed 2026-05-27a.k.a. Tornado cross-origin redirect Authorization leak

CVE-2026-48818 - Starlette StaticFiles UNC SSRF and NTLM leak

high

High-severity Windows-only Starlette StaticFiles issue where UNC paths trigger SMB authentication before containment checks. Upgrade Starlette, move static serving off Windows app processes, and block outbound SMB.

cve CVE-2026-48818disclosed 2026-05-23a.k.a. Starlette StaticFiles UNC path NTLM leak

CVE-2026-48710 - Starlette BadHost request.url path bypass

medium

Starlette Host header validation flaw that can poison request.url.path and bypass path-based security checks. Upgrade to 1.0.1+ and move security decisions to raw ASGI scope or route identity.

cve CVE-2026-48710disclosed 2026-05-21a.k.a. BadHost

CVE-2026-47391 - PraisonAI A2A eval tool RCE

critical

Critical PraisonAI A2A example chain where unauthenticated JSON-RPC traffic can reach an LLM-driven eval tool. Upgrade to 4.6.40+, require A2A authentication, bind examples to loopback, and remove code-capable demo tools.

cve CVE-2026-47391disclosed 2026-05-19a.k.a. PraisonAI unauthenticated A2A eval tool execution

CVE-2026-47397 - PraisonAI arbitrary file write

high

High-severity PraisonAI write_file path-boundary flaw where web context can drive writes to attacker-chosen paths. Upgrade to 4.6.40+, enforce workspace-scoped paths, and require approval for file-mutating tools.

cve CVE-2026-47397disclosed 2026-05-19a.k.a. PraisonAI write_file arbitrary path

CVE-2026-47407 - PraisonAI Platform workspace takeover

critical

Critical PraisonAI Platform authorization chain where URL-level workspace membership is not enough to stop cross-workspace resource access or member-role takeover. Upgrade to 0.1.4+, scope every nested lookup by workspace, and enforce role gates in services.

cve CVE-2026-47407disclosed 2026-05-19a.k.a. PraisonAI Platform workspace takeover

CVE-2026-47412 - PraisonAI Platform workspace delete RBAC bypass

high

High-severity PraisonAI Platform authorization flaw where any workspace member can delete the entire workspace. Upgrade to 0.1.4+, require owner-scoped destructive actions, add confirmation and local RBAC regression tests.

cve CVE-2026-47412disclosed 2026-05-19a.k.a. PraisonAI workspace delete RBAC bypass

CVE-2026-47413 - PraisonAI Platform member-add owner injection

critical

Critical PraisonAI Platform privilege escalation where any workspace member can add another user as owner. Upgrade to 0.1.4+, require owner-scoped member invitations, and add negative RBAC tests for member-add flows.

cve CVE-2026-47413disclosed 2026-05-19a.k.a. PraisonAI member-add owner injection

CVE-2026-47416 - PraisonAI Platform workspace owner promotion

critical

Critical PraisonAI Platform privilege escalation where any workspace member can promote themselves or another member to owner. Upgrade to 0.1.4+, require owner-scoped member-role changes, and add RBAC regression tests.

cve CVE-2026-47416disclosed 2026-05-19a.k.a. PraisonAI workspace owner promotion

CVE-2026-47418 - PraisonAI Platform project IDOR

high

High-severity PraisonAI Platform cross-workspace project IDOR where routes check membership in one workspace but service methods read, update, delete, or return stats for another workspace's project by global ID.

cve CVE-2026-47418disclosed 2026-05-19a.k.a. PraisonAI project IDOR

CVE-2026-47731 - AIT-Core BSC path traversal file append

critical

Critical NASA AIT-Core Binary Stream Capture path traversal and arbitrary file append. Upgrade ait-core to 2.6.1+ or 3.1.1+, constrain BSC paths, and isolate unauthenticated BSC APIs.

cve CVE-2026-47731disclosed 2026-05-19a.k.a. NASA AMMOS AIT-Core BSC arbitrary file append

CVE-2026-48169 - PraisonAI Platform cross-workspace IDOR

high

High-severity PraisonAI Platform authorization cluster where globally looked-up issue/project IDs and weak member-management gates break workspace isolation. Upgrade to 0.1.4+, scope service queries by workspace, and add negative tenant-boundary tests.

cve CVE-2026-48169disclosed 2026-05-19a.k.a. PraisonAI Platform cross-workspace IDOR

CVE-2026-44336 - PraisonAI MCP tools/call path traversal RCE

critical

Critical PraisonAI MCP tools/call path traversal that can plant Python .pth files and lead to code execution. Upgrade to 4.6.34+, disable default file tools, enforce schemas, and contain MCP filesystem access.

cve CVE-2026-44336disclosed 2026-05-11a.k.a. PraisonAI MCP tools/call path traversal RCE

CVE-2026-44339 - PraisonAI unsafe tool resolution

high

High-severity PraisonAI tool resolution flaw where undeclared globals and __main__ callables can execute. Upgrade to 4.6.37/1.6.37+, require declared-tool allowlists, and add negative tool-call tests.

cve CVE-2026-44339disclosed 2026-05-11a.k.a. PraisonAI undeclared tool execution

CVE-2026-44340 - PraisonAI recipe symlink extraction escape

high

High-severity PraisonAI recipe archive extraction bypass. Upgrade to 4.6.37+, reject tar links, use data filters, and add archive extraction containment tests.

cve CVE-2026-44340disclosed 2026-05-11a.k.a. PraisonAI _safe_extractall symlink bypass

GHSA-6xcp-7mpr-m7wm - Open WebUI CORS and session RCE chain

high

High-severity Open WebUI CORS and session validation issue that can enable one-click admin-origin RCE. Upgrade to 0.3.33+, restrict origins, rotate sessions on logout, and test browser-origin boundaries.

ghsa GHSA-6xcp-7mpr-m7wmdisclosed 2026-05-11a.k.a. Open WebUI CORS misconfiguration and session validation issue

CVE-2026-45395 - Open WebUI tool update authorization RCE

high

High-severity Open WebUI missing workspace.tools check on the tool update endpoint. Upgrade to 0.9.5+, require workspace.tools for tool updates, and test write grants cannot become code execution.

cve CVE-2026-45395disclosed 2026-05-10a.k.a. Open WebUI workspace.tools bypass

CVE-2026-42208 - LiteLLM security control bypass

critical

Critical security control bypass in LiteLLM. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.

cve CVE-2026-42208disclosed 2026-05-08a.k.a. LiteLLM security control bypass

CVE-2026-44513 - Diffusers trust_remote_code bypass

high

High-severity Diffusers trust_remote_code bypass through custom_pipeline and local custom components. Upgrade to 0.38.0+, restrict model loading, and add safe pipeline-source tests.

cve CVE-2026-44513disclosed 2026-05-07a.k.a. Diffusers trust_remote_code bypass

CVE-2026-40171 - Jupyter CommandLinker token theft

high

High-severity Jupyter Notebook/JupyterLab stored XSS through command-linker markup. Upgrade Notebook to 7.5.6+ and JupyterLab to 4.5.7+, disable command linker where untrusted notebooks are opened, and verify tokens, kernels, files, and terminals remain protected.

cve CVE-2026-40171disclosed 2026-04-30a.k.a. GHSA-rch3-82jr-f9w9

CVE-2026-42271 - LiteLLM MCP stdio command execution

high

High-severity LiteLLM proxy command execution through MCP stdio test endpoints. Upgrade to 1.83.7+, restrict test endpoints to PROXY_ADMIN, and block stdio previews at the gateway until patched.

cve CVE-2026-42271disclosed 2026-04-25a.k.a. LiteLLM MCP stdio command execution

GHSA-rpm5/GHSA-x2qx - GitPython command injection

high

High-severity GitPython command and argument injection in repository clone/fetch helpers. Upgrade to 3.1.47+, reject user-controlled git kwargs and multi_options, and harden repo-ingest automation.

ghsa GHSA-rpm5-65cw-6hj4disclosed 2026-04-25a.k.a. GitPython command injection

CVE-2026-42354 - Sentry SAML SSO identity linking

critical

Critical account-takeover risk in self-hosted Sentry multi-organization SAML SSO. Upgrade to 26.4.1+ and validate tenant-scoped SAML identity linking.

cve CVE-2026-42354disclosed 2026-04-22a.k.a. Sentry SAML SSO identity linking

CVE-2026-5760 — SGLang GGUF template RCE

critical

Critical RCE in SGLang's rerank path via unsafe template rendering from model files. Apply the sandboxed-template mitigation, restrict rerank exposure, and upgrade when a verified fixed release is available.

cve CVE-2026-5760disclosed 2026-04-20a.k.a. SGLang GGUF RCE

CVE-2026-41490 - Dagster dynamic partition SQL injection

high

High-severity Dagster SQL injection in dynamic partition keys across database I/O manager integrations. Upgrade Dagster to 1.13.1+ and integration packages to 0.29.1+, then review Add Dynamic Partitions permissions.

cve CVE-2026-41490disclosed 2026-04-18a.k.a. Dagster dynamic partition SQL injection

CVE-2026-41497 - PraisonAI MCP command injection incomplete fix

critical

Critical PraisonAI MCP command parsing issue where arbitrary executables and dangerous arguments can pass to subprocess execution. Upgrade to 4.5.149+, replace free-form MCP command strings with a governed registry, and add allow-list tests.

cve CVE-2026-41497disclosed 2026-04-16a.k.a. PraisonAI MCP command injection incomplete fix

CVE-2026-40576 - excel-mcp-server path traversal

critical

Critical path traversal in excel-mcp-server remote transports. Upgrade to 0.1.8+, bind MCP HTTP/SSE locally or require auth, and verify EXCEL_FILES_PATH sandbox enforcement.

cve CVE-2026-40576disclosed 2026-04-12a.k.a. excel-mcp-server remote file sandbox escape

CVE-2026-39922 - GeoNode service registration SSRF

medium

GeoNode service registration SSRF through untrusted OGC service URLs. Validate WMS/WFS/WCS targets, block internal networks and metadata endpoints, restrict registration, and resolve the 4.4.5/5.0.2 source ambiguity before suppression.

cve CVE-2026-39922disclosed 2026-04-10a.k.a. GeoNode service registration SSRF

CVE-2026-39987 — Marimo pre-auth RCE

criticalKEV

Pre-auth RCE in Marimo's `/terminal/ws` endpoint. Upgrade to 0.23.0+ and lock notebook exposure behind authentication + network controls.

cve CVE-2026-39987disclosed 2026-04-09a.k.a. Marimo pre-auth RCE

CVE-2026-24164 — NVIDIA BioNeMo deserialization RCE

critical

NVD-rated critical deserialization issue in NVIDIA BioNeMo. Update to a branch that includes commit e5e58c8 and tighten untrusted data handling.

cve CVE-2026-24164disclosed 2026-03-31a.k.a. NVIDIA BioNeMo deserialization RCE

CVE-2026-27893 - vLLM trust_remote_code bypass

high

High-severity vLLM RCE through hardcoded trust_remote_code=True in NemotronVL and KimiK25 model paths. Upgrade to vLLM 0.18.0+, gate model sources, and add safe model-loading regression checks.

cve CVE-2026-27893disclosed 2026-03-26a.k.a. vLLM trust_remote_code bypass

CVE-2026-34070 - LangChain load_prompt path traversal

high

LangChain legacy prompt loaders can read attacker-selected local files. Upgrade langchain-core to 1.2.22+ and fence prompt config imports.

cve CVE-2026-34070disclosed 2026-03-26a.k.a. LangChain load_prompt path traversal

CVE-2026-24159 — NVIDIA NeMo deserialization RCE

critical

NVD-rated critical deserialization issue in NVIDIA NeMo Framework. Upgrade to 2.6.2+ and block untrusted checkpoint/model ingestion paths.

cve CVE-2026-24159disclosed 2026-03-24a.k.a. NVIDIA NeMo deserialization RCE

CVE-2026-27905 - BentoML tar symlink arbitrary write

high

BentoML tar extraction can follow symlinks outside the extraction root. Upgrade bentoml to 1.4.36+ and harden archive handling.

cve CVE-2026-27905disclosed 2026-03-03a.k.a. BentoML safe_extract_tarfile symlink write

CVE-2025-68143 - mcp-server-git arbitrary repository creation

medium

mcp-server-git git_init accepted arbitrary filesystem paths before 2025.9.25. Upgrade, remove exposed git_init registrations, and prove Git operations stay within approved workspaces.

cve CVE-2025-68143disclosed 2025-12-17a.k.a. mcp-server-git git_init arbitrary repository creation

CVE-2025-68144 - mcp-server-git diff and checkout argument injection

medium

mcp-server-git before 2025.12.18 let git_diff and git_checkout treat user-controlled refs as CLI options. Upgrade, validate refs, and block arbitrary file writes.

cve CVE-2025-68144disclosed 2025-12-17a.k.a. mcp-server-git diff checkout argument injection

CVE-2025-68145 - mcp-server-git repository path validation bypass

medium

mcp-server-git before 2025.12.18 did not keep repo_path inside the --repository boundary. Upgrade, resolve symlinks, and enforce repository allow-lists.

cve CVE-2025-68145disclosed 2025-12-17a.k.a. mcp-server-git --repository path validation bypass

CVE-2025-60455 - Modular Max Serve unsafe deserialization

critical

Critical unsafe deserialization in modular (<25.6.0) when experimental kvcache agent is enabled.

cve CVE-2025-60455disclosed 2025-11-18a.k.a. Modular Max Serve unsafe deserialization

CVE-2025-3248 - Langflow validate/code unauthenticated RCE

criticalKEV

Critical Langflow unauthenticated code injection in the /api/v1/validate/code endpoint before 1.3.0. Upgrade Langflow, require authentication before code validation, contain exposed endpoints, and add non-exploit regression tests.

cve CVE-2025-3248disclosed 2025-04-07a.k.a. Langflow validate/code RCE

CVE-2017-18342 — PyYAML default `load` resolves arbitrary tags

high

`yaml.load` resolved arbitrary Python tags by default. Replace with `safe_load` and pin PyYAML ≥ 6.0 where the unsafe default was finally removed.

cve CVE-2017-18342disclosed 2018-06-27a.k.a. PyYAML default Loader RCE

rust4 recipes

CVE-2026-53530 - ratex-parser panics on \verb with a multibyte delimiter (UTF-8 byte-boundary slice)

high

High remediation recipe for ratex-parser panics on \verb with a multibyte delimiter (UTF-8 byte-boundary slice). Upgrade to 0.1.11 and remove the vulnerable dos pattern.

cve CVE-2026-53530disclosed 2026-07-07a.k.a. ratex-parser panics on \verb with a multibyte delimiter (UTF-8 byte-boundary slice)

CVE-2026-58056 - RustDesk file-transfer session control-scope bypass

high

High-severity RustDesk file-transfer session control-scope bypass. A peer granted file-transfer-only access can inject input or capture screen content outside the granted support scope.

cve CVE-2026-58056disclosed 2026-06-28

CVE-2026-46689 - scim_proto and kanidm_proto have an authenticated process abort via SCIM filter stack exhaustion

high

High remediation recipe for scim_proto and kanidm_proto have an authenticated process abort via SCIM filter stack exhaustion. Upgrade to 1.9.3 and remove the vulnerable command-injection pattern.

cve CVE-2026-46689disclosed 2026-05-06a.k.a. scim_proto and kanidm_proto have an authenticated process abort via SCIM filter stack exhaustion

CVE-2026-40034 - gitoxide: CommandForbiddenInModulesConfiguration Bypass in gix_submodule::File::update() Enables Arbitrary Command Execu

high

High remediation recipe for gitoxide: CommandForbiddenInModulesConfiguration Bypass in gix_submodule::File::update() Enables Arbitrary Command Execu. Upgrade to 0.83.0 and remove the vulnerable command-injection pattern.

cve CVE-2026-40034disclosed 2026-05-05a.k.a. gitoxide: CommandForbiddenInModulesConfiguration Bypass in gix_submodule::File::update() Enables Arbitrary Command Execu

typescript/npm23 recipes

CVE-2025-71336 - Flowise Custom MCP auth bypass RCE

critical

Critical Flowise RCE where the Custom MCP endpoint can be reached with a forged internal-request header and used to execute arbitrary OS commands. Upgrade to 3.0.6+ and hard-stop untrusted Custom MCP command execution.

cve CVE-2025-71336disclosed 2026-06-26a.k.a. Flowise unsandboxed RCE via Custom MCP

CVE-2026-48146 - Budibase OAuth2 validation SSRF

high

High-severity Budibase SSRF in OAuth2 config validation. Upgrade to 3.39.0+, route token fetches through fetchWithBlacklist-style protections, and review internal egress exposure.

cve CVE-2026-48146disclosed 2026-06-12a.k.a. Budibase OAuth2 config validation SSRF

CVE-2026-48150 - Budibase workspace builder to global admin escalation

critical

Critical Budibase privilege escalation where workspace-scoped builders can assign global roles. Upgrade to 3.39.0+, constrain role-assignment inputs, and add cross-scope authorization tests.

cve CVE-2026-48150disclosed 2026-06-12a.k.a. Budibase workspace builder global admin escalation

CVE-2026-48151 - Budibase webhook schema auth bypass

high

High-severity Budibase authorization bypass that lets unauthenticated callers mutate webhook and automation schema. Upgrade to 3.39.0+ and enforce path-specific auth on webhook schema builders.

cve CVE-2026-48151disclosed 2026-06-12a.k.a. Budibase webhook schema authorization bypass

CVE-2026-48152 - Budibase REST datasource auth exfiltration

high

High-severity Budibase datasource secret exfiltration where Basic users can rewrite REST datasource base URLs and reuse preserved auth. Upgrade to 3.39.0+ and enforce builder-only datasource mutation.

cve CVE-2026-48152disclosed 2026-06-12a.k.a. Budibase REST datasource auth exfiltration

CVE-2026-48054 - OpenZeppelin Wizard generated test code injection

high

High-severity code injection in generated Hardhat and Foundry test files from OpenZeppelin Contracts Wizard. Upgrade to 0.10.9+ and sanitize untrusted contract metadata before writing generated tests.

cve CVE-2026-48054disclosed 2026-06-11a.k.a. OpenZeppelin Wizard generated test code injection

GHSA-gv7w-rqvm-qjhr - esbuild Deno binary integrity RCE

high

High-severity esbuild Deno module RCE via unverified binary downloads from attacker-influenced npm registries. Upgrade to 0.28.1+, restore hash verification, and lock registry trust in CI.

ghsa GHSA-gv7w-rqvm-qjhrdisclosed 2026-06-11a.k.a. esbuild Deno binary integrity RCE

GHSA-63gr-g7jc-v8rg - AgenticMail MCP HTTP auth bypass

high

High-severity @agenticmail/mcp HTTP transport authorization bypass. Upgrade to 0.9.27+, require auth on /mcp, bind locally by default, and disable master-key tools on unauthenticated transports.

ghsa GHSA-63gr-g7jc-v8rgdisclosed 2026-05-29a.k.a. AgenticMail MCP HTTP authorization bypass

GHSA-m99r-2hxc-cp3q - Flowise MCP security bypass RCE

high

High-severity Flowise Custom MCP security bypass that reopens command execution through docker build, npx --yes, and node local-file path bypasses. Upgrade flowise and flowise-components to 3.1.2+ and replace deny-list MCP command validation with an approved registry.

ghsa GHSA-m99r-2hxc-cp3qdisclosed 2026-05-14a.k.a. Flowise MCP security bypass

CVE-2026-44895 - GitLab MCP Server SSE auth bypass

high

High-severity @yoda.digital/gitlab-mcp-server SSE transport authentication bypass. Upgrade to 0.6.0+, require bearer auth on /sse and /messages, remove wildcard CORS, bind to loopback by default, and rotate GitLab PATs if exposed.

cve CVE-2026-44895disclosed 2026-05-06a.k.a. GitLab MCP SSE auth bypass

CVE-2026-7039 - ssh-mcp description command injection

high

High-severity command injection in tufantunc ssh-mcp when description text reaches shell.write in su mode. Remove or contain affected versions, patch newline handling, and require least-privilege MCP execution.

cve CVE-2026-7039disclosed 2026-04-26a.k.a. ssh-mcp description command injection

CVE-2026-41265 - Flowise Airtable Agent code injection RCE

critical

Critical Flowise Airtable Agent code injection through LLM-generated Python evaluated in Pyodide. Upgrade to 3.1.0+, disable exposed Airtable Agent chatflows until patched, and verify generated code cannot perform imports or system operations.

cve CVE-2026-41265disclosed 2026-04-18a.k.a. Flowise Airtable Agent code injection

CVE-2026-41507 - math-codegen string literal RCE

critical

Critical math-codegen code injection where string literals passed to cg.parse can enter a new Function body. Upgrade to 0.4.3+, block untrusted parser input until patched, and add literal-escaping regression tests.

cve CVE-2026-41507disclosed 2026-04-17a.k.a. math-codegen string literal injection

GHSA-xh72/GHSA-xmxx - OpenClaw agent-surface fail-closed bypasses

critical

Critical OpenClaw agent-surface vulnerabilities across Feishu webhook auth, gateway bearer-token rotation, Matrix room authorization, and webchat media file containment. Upgrade to 2026.4.15+, fail closed at every external agent input, and add trust-boundary regression tests.

ghsa GHSA-xh72-v6v9-mwhcdisclosed 2026-04-17a.k.a. OpenClaw 2026.4.15 agent-surface hardening

GHSA-xmxx/GHSA-mr34/GHSA-2gvc - OpenClaw gateway boundary hardening

high

High-severity OpenClaw gateway and agent-boundary cluster covering stale bearer auth after SecretRef rotation, webchat local media containment, and Matrix room command authorization. Upgrade to 2026.4.15+ and add boundary regression tests.

ghsa GHSA-xmxx-7p24-h892disclosed 2026-04-17a.k.a. GHSA-mr34-9552-qr95

CVE-2026-40933 - Flowise MCP adapter command execution

critical

Critical Flowise authenticated command execution through Custom MCP stdio adapter configuration. Upgrade to at least 3.1.0, target 3.1.2+ when Custom MCP remains enabled, and verify MCP server definitions cannot spawn arbitrary commands.

cve CVE-2026-40933disclosed 2026-04-16a.k.a. Flowise MCP adapter command execution

CVE-2026-41428 - Budibase public endpoint auth bypass

critical

Critical Budibase authentication bypass caused by matching public endpoint regexes against query-bearing URLs. Upgrade to a fixed Budibase release or patch the matcher to use anchored path-only checks, then add negative auth regression tests.

cve CVE-2026-41428disclosed 2026-04-16a.k.a. Budibase public endpoint matcher auth bypass

GHSA-3xx2/GHSA-47wq - Paperclip agent key tenant-boundary bypass

critical

Critical Paperclip cross-tenant authorization bypass in agent API key routes. Upgrade to 2026.416.0+, require company access on key list/create/revoke, and rotate agent tokens if exposed.

ghsa GHSA-3xx2-mqjm-hg9xdisclosed 2026-04-16a.k.a. Paperclip agent API key IDOR

GHSA-vr7g-88fq-vhq3 - Paperclip workspace cleanup command injection

critical

Critical Paperclip OS command injection through execution workspace cleanupCommand. Upgrade to 2026.416.0+, remove shell-backed cleanup strings, and add lifecycle-action allow-list tests.

ghsa GHSA-vr7g-88fq-vhq3disclosed 2026-04-16a.k.a. Paperclip cleanupCommand OS command injection

CVE-2025-11953 - React Native CLI Metro command injection

criticalKEV

Critical, known-exploited React Native Community CLI / Metro Development Server command injection. Upgrade @react-native-community/cli-server-api to 20.0.0+, bind Metro to localhost, remove exposed dev-server defaults, and rotate secrets when vulnerable servers were reachable.

cve CVE-2025-11953disclosed 2025-11-03a.k.a. Metro4Shell

CVE-2025-53967 - Framelink Figma MCP curl command injection

high

High-severity command injection in Framelink Figma MCP Server before 0.6.3. Upgrade, bind the HTTP server to localhost, remove shell-built curl fallbacks, and rotate Figma tokens if exposed.

cve CVE-2025-53967disclosed 2025-10-08a.k.a. Framelink Figma MCP curl command injection

CVE-2025-6514 - mcp-remote OAuth command injection

critical

Critical mcp-remote command injection when a local MCP proxy connects to an untrusted remote MCP server. Upgrade to 0.1.16+, pin launch paths, require trusted HTTPS MCP endpoints, and rotate credentials if a vulnerable client connected to suspicious servers.

cve CVE-2025-6514disclosed 2025-07-09a.k.a. mcp-remote OAuth command injection

CVE-2025-49596 - MCP Inspector proxy unauthenticated RCE

critical

Critical MCP Inspector proxy RCE before 0.14.1. Upgrade @modelcontextprotocol/inspector, require proxy session-token auth, keep the proxy bound to localhost, and block unsafe devserver exposure.

cve CVE-2025-49596disclosed 2025-06-13a.k.a. MCP Inspector proxy RCE

wordpress/plugin5 recipes

CVE-2026-53738 - Copy & Delete Posts AJAX privilege escalation

high

High-severity authorization bypass in Copy & Delete Posts <=1.5.4. Remove or restrict the plugin, gate AJAX actions by capability, and verify non-admin roles cannot invoke destructive cdp_action_handling operations.

cve CVE-2026-53738disclosed 2026-06-10a.k.a. Copy & Delete Posts AJAX privilege escalation

CVE-2026-5063 - NEX-Forms POST key stored XSS

high

High-severity unauthenticated stored XSS in NEX-Forms <=9.1.11 via POST parameter key names. Upgrade to 9.1.12+, cleanse malicious entries, and verify admin entry views escape submitted keys.

cve CVE-2026-5063disclosed 2026-05-03a.k.a. NEX-Forms POST key stored XSS

CVE-2026-4882 - WordPress User Registration Advanced Fields upload RCE

critical

Critical arbitrary file upload in the WordPress User Registration Advanced Fields add-on. Disable affected profile-picture uploads or the add-on until a fixed release is deployed, then audit uploaded files and logs.

cve CVE-2026-4882disclosed 2026-05-02a.k.a. User Registration Advanced Fields arbitrary file upload

CVE-2026-7458 - WordPress User Verification OTP auth bypass

critical

Critical authentication bypass in the WordPress User Verification by PickPlugins plugin. Upgrade to 2.0.47+, disable exposed OTP login until patched, expire sessions, and audit privileged account activity.

cve CVE-2026-7458disclosed 2026-05-02a.k.a. User Verification OTP auth bypass

CVE-2026-7567 - WordPress Temporary Login auth bypass

critical

Critical authentication bypass in the WordPress Temporary Login plugin. Upgrade to 1.1.0+ or remove the plugin, revoke temporary access, and verify array-token requests cannot authenticate.

cve CVE-2026-7567disclosed 2026-04-30a.k.a. Temporary Login auth bypass

This catalogue grows. New entries land via the same review process as any other prompt.

Required frontmatter for contributors:

  • cve or ghsa — the canonical ID (e.g., "CVE-2021-44228" or "GHSA-v4p8-mg3p-g94g"). Use ghsa only when GitHub has not assigned a CVE.
  • severitycritical / high / medium / low.
  • ecosystem — the rough family the recipe targets (e.g., java/maven, python/pypi, linux/system, openssh/system). New ecosystems automatically become new groups.
  • kevtrue / false. CISA Known Exploited Vulnerability flag; renders as a badge.
  • disclosed — date string the listing sorts by within each ecosystem.
  • known_as — popular names (["Log4Shell"]); the first alias renders as a quick visual identifier.

Anatomy of a good CVE recipe submission

If you’re writing a new entry, the test is: a developer who has never read the CVE before should be able to apply the recipe end-to-end and produce a reviewable PR. That means:

  • Don’t paraphrase the NVD entry. Link to it, and write a plain-language summary that explains what the attacker does and why the fix works.
  • Distinguish “vulnerable installation” from “exposed application.” A package being installed is not the same as the vulnerable code being reachable from an untrusted input. The recipe should say which is which.
  • Document the partial-fix history. If the first patch was incomplete (Log4Shell, Heartbleed-adjacent CVEs), the recipe must say so and direct the upgrade past the incomplete fix.
  • Treat upgrade and mitigation as siblings. Some environments can’t upgrade immediately; a documented mitigation gets them out of the live-fire phase. Recipes that only have an upgrade path are a hard sell to a team with a frozen runtime.
  • Make quick checks cross-platform when commands differ. If a recipe includes shell commands, provide macOS/Linux and Windows variants so reviewers and operators can verify exposure without rewriting the check on the fly.
  • Verification is a step, not a wish. Add the exact command(s) (a re-scan, a strings check, a service probe) that confirm the fix.

What this section is not

  • A vulnerability database. NVD, OSV, GHSA, vendor advisories, and the CVE feeds your scanner consumes already serve that purpose. This section is a fix cookbook, not a CVE index.
  • A complete archive. Most CVEs don’t need their own recipe — the generic workflows are enough. Recipes here are reserved for the load-bearing, repeatedly-relevant ones.
  • Auto-generated. Each recipe is reviewed before merge.

See also