CVE Recipes
Why per-CVE. The
generic remediation workflows
cover the bulk of advisories. But some CVEs are special:
load-bearing across the industry, with quirks the generic
workflow won’t catch (“just bumping isn’t enough — you also
have to remove JndiLookup.class”). For those, a targeted
recipe is more reliable than a generic one. This section is
where those recipes live.
What a CVE recipe contains
Every recipe follows the same outline:
- Frontmatter —
cveorghsa,known_as,kevflag (CISA Known Exploited Vulnerability), severity, ecosystem, dates. - Summary — what the CVE is and what it lets an attacker do. Plain language.
- Affected versions — the canonical version range, with a note if vendor advisories disagree.
- Indicator-of-exposure — how to know whether your code is actually exposed (vs. just having the package installed).
- Remediation strategy — the right fix. When the right fix is “upgrade,” the recipe says so plainly. When upgrade isn’t possible, the recipe gives a documented mitigation.
- The prompt — agent-runnable, with explicit boundaries.
- Stop conditions — when the agent must triage instead of fixing.
- Verification — how the agent (and the reviewer) confirm the CVE is gone after the fix.
- Watch for — common failure shapes (partial fixes, new CVEs introduced by the upgrade, behaviour regressions).
Source freshness and review standard
SecurityRecipes treats new GitHub Advisory Database entries as intake signals, not as final copy. A CVE recipe should only land when the remediation path is specific enough for a production reviewer to trust an agent-authored PR.
For high and critical advisories, that means each prompt must include:
- the model context used to generate it, currently
GPT 5.5 Extra High reasoning; - the exact affected surface and the version, configuration, or runtime signal that proves exposure;
- the safest default fix and a documented containment path when upgrade is blocked;
- explicit stop conditions that produce
TRIAGE.mdinstead of an unsafe patch; - verification a reviewer can run without exposing secrets, tenant data, customer content, or exploit payloads;
- source links back to GHAD, NVD/CVE, vendor advisories, or release evidence.
Before remediation: intake the signal
When a CVE, GHSA, OSV, vendor bulletin, scanner row, or ticket is incomplete, run the CVE intelligence intake gate before asking an agent to patch.
The intake gate turns the advisory signal into one of five outcomes:
remediation, containment, not-exposed suppression, human triage, or rejected
unverified signal. It is backed by the local policy file
data/intelligence/cve-intelligence-intake-gates.json and documented in
CVE Intelligence Intake.
How to use a CVE recipe
The same pattern as any other prompt on this site:
- Read the Summary and Affected versions to confirm the recipe is for the CVE you’re looking at — vendor advisories sometimes ship multiple CVE IDs for the same underlying bug, and not every one has its own recipe.
- Read the Indicator-of-exposure. If your codebase isn’t actually exposed (the vulnerable code path isn’t reached), the right action might be a documented suppression, not a bump. The recipe says when that’s appropriate.
- Copy the prompt block into the agent of your choice.
- Review the PR or the triage note the agent produces. The recipe’s Verification section tells the reviewer what to look for.
When to use these instead of the generic workflows
- The CVE is named and high-blast-radius — Log4Shell, Heartbleed, Spring4Shell, regreSSHion, xz-utils, the headline CVE of the month.
- The naive fix is wrong or insufficient — for example, Log4Shell’s first published CVE had a follow-up CVE (CVE-2021-45046) because the first patch was incomplete. The recipe knows that; the generic workflow doesn’t.
- The CVE has a known mitigation that’s faster to deploy
than the upgrade (formatMsgNoLookups for Log4Shell, removing
cups-browsedfor the CUPS RCE chain, disabling the affected feature flag for Spring4Shell). The recipe captures the mitigation alongside the upgrade.
When not to use these
- A routine CVE in a routine package — use the vulnerable-dependency workflow.
- A CVE in a base image — use the base-image workflow.
- A CVE that’s actually a malicious-package compromise — use the cache-quarantine workflow.
CVE Recipes
The catalogue below is auto-generated from the recipe
files in this section, grouped by ecosystem and sorted by
disclosure date. Drop a new
cve-XXXX-YYYYY-<short-name>.md file with the frontmatter
fields below, and it will appear here on the next build —
no edits to this hub or to site config required.
3220 recipes across 65 ecosystems
No CVE recipes match that search.
c++/proxy2 recipes
CVE-2026-47204 - Envoy null pointer denial of service
High null pointer denial of service in Envoy. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-47221 - Envoy denial of service
High denial of service in Envoy. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
c/c++68 recipes
CVE-2026-54919 - cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library
High remediation recipe for cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-11404 - Cesanta Mongoose before 7.22 contains an out-of-bounds read in the built-in TLS server function mg_tls_server_
High remediation recipe for Cesanta Mongoose before 7.22 contains an out-of-bounds read in the built-in TLS server function mg_tls_server_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-31985 - When the upstream Guardian or CMC was configured in the Remote Collector via n2os-tui, the generated configura
High remediation recipe for When the upstream Guardian or CMC was configured in the Remote Collector via n2os-tui, the generated configura. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-47828 - During bosh create-env and bosh delete-env, the CLI uploads compiled CPI packages and rendered job templates t
High remediation recipe for During bosh create-env and bosh delete-env, the CLI uploads compiled CPI packages and rendered job templates t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-47840 - A network attacker positioned between UAA and its LDAP directory can impersonate the directory using any certi
High remediation recipe for A network attacker positioned between UAA and its LDAP directory can impersonate the directory using any certi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-59692 - A stack buffer overflow vulnerability was found in GStreamer's DTLS plugin
High remediation recipe for A stack buffer overflow vulnerability was found in GStreamer's DTLS plugin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-13698 - A memory leak in OpenVPN version 2.5.0 through 2.5.11, 2.6.0 through 2.6.20 and 2.7_alpha1 through 2.7.4 allow
High remediation recipe for A memory leak in OpenVPN version 2.5.0 through 2.5.11, 2.6.0 through 2.6.20 and 2.7_alpha1 through 2.7.4 allow. Upgrade to version 2.5.0 through 2.5.11 and remove the vulnerable dos pattern.
CVE-2026-55952 - The Erlang/OTP ssl application does not validate that the PSK identity list and binder list carried in a TLS 1
High remediation recipe for The Erlang/OTP ssl application does not validate that the PSK identity list and binder list carried in a TLS 1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-7830 - UltraVNC through 1.8.2.2 uses inadequate cryptography in the MS-Logon II authentication scheme (rfbUltraVNC_Ms
High remediation recipe for UltraVNC through 1.8.2.2 uses inadequate cryptography in the MS-Logon II authentication scheme (rfbUltraVNC_Ms. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-8023 - Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STAT
High remediation recipe for Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STAT. Upgrade to patched to the handler and and remove the vulnerable command-injection pattern.
CVE-2026-58049 - FFmpeg RASC DLTA decoder out-of-bounds heap write
High remediation recipe for FFmpeg RASC DLTA decoder out-of-bounds heap write. Apply vendor-patched FFmpeg build; disable RASC decoding until fixed packages land and remove the vulnerable memory-safety pattern.
CVE-2026-58050 - libssh2 publickey attribute count integer overflow
High remediation recipe for libssh2 publickey attribute count integer overflow. Apply upstream commit/release after 1.11.1 that bounds attribute allocation; disable publickey listing against untrusted servers until patched and remove the vulnerable memory-safety pattern.
CVE-2026-10097 - wolfSSL's AVX2-optimized ML-KEM implementation (mlkem_cmp_avx2) compares only 1536 of the 1568 ciphertext byte
High remediation recipe for wolfSSL's AVX2-optimized ML-KEM implementation (mlkem_cmp_avx2) compares only 1536 of the 1568 ciphertext byte. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-10512 - The X25519 x86_64 assembly implementation fails to clear the most significant bit during the final modular red
High remediation recipe for The X25519 x86_64 assembly implementation fails to clear the most significant bit during the final modular red. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-11310 - X.509 trust-chain bypass in the OpenSSL compatibility certificate verifier (wolfSSL_X509_verify_cert())
High remediation recipe for X.509 trust-chain bypass in the OpenSSL compatibility certificate verifier (wolfSSL_X509_verify_cert()). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-11703 - wolfSSL SNI/ALPN session resumption binding bypass
High remediation recipe for wolfSSL SNI/ALPN session resumption binding bypass. Apply wolfSSL 5.9.2 or PR 10489 and remove the vulnerable tls-auth pattern.
CVE-2026-11999 - X.509 trust-chain bypass (path-depth exhaustion) in the OpenSSL compatibility certificate verifier (wolfSSL_X5
High remediation recipe for X.509 trust-chain bypass (path-depth exhaustion) in the OpenSSL compatibility certificate verifier (wolfSSL_X5. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-12245 - NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing a crash of
High remediation recipe for NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing a crash of. Upgrade to version 4.13.0 has a heap use-after-free bug in logging errors on TL and remove the vulnerable dos pattern.
CVE-2026-12340 - Out-of-bounds heap read during SM2/SM3 certificate signature verification
High remediation recipe for Out-of-bounds heap read during SM2/SM3 certificate signature verification. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-12490 - When a provide-xfr is given with a tls-auth-name, a secondary requesting a transfer should provide a client ce
High remediation recipe for When a provide-xfr is given with a tls-auth-name, a secondary requesting a transfer should provide a client ce. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-53192 - In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Fix UAF at snd_timer_user_par
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Fix UAF at snd_timer_user_par. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53262 - In the Linux kernel, the following vulnerability has been resolved: l2tp: pppol2tp: hold reference to session
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: l2tp: pppol2tp: hold reference to session. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-53268 - In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack_irc: fix possible out
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack_irc: fix possible out. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-55958 - Out-of-bounds write in the Renesas TSIP TLS 1.3 transcript buffer
High remediation recipe for Out-of-bounds write in the Renesas TSIP TLS 1.3 transcript buffer. Upgrade to fixed message bag and remove the vulnerable cert-validation pattern.
CVE-2026-55961 - wolfSSL_PKCS7_verify() returning success for a degenerate (certs-only) PKCS#7 object that contains no signer
High remediation recipe for wolfSSL_PKCS7_verify() returning success for a degenerate (certs-only) PKCS#7 object that contains no signer. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-6331 - HMAC zero-length tag forgery in EVP_DigestVerifyFinal, where a zero-length tag could be accepted as valid duri
High remediation recipe for HMAC zero-length tag forgery in EVP_DigestVerifyFinal, where a zero-length tag could be accepted as valid duri. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-6679 - wolfSSL DTLS 1.3 ACK serialization heap overflow
High remediation recipe for wolfSSL DTLS 1.3 ACK serialization heap overflow. Apply wolfSSL 5.9.1 or later and remove the vulnerable memory-safety pattern.
CVE-2026-6731 - wolfSSL X.509 name-constraints common-name bypass
High remediation recipe for wolfSSL X.509 name-constraints common-name bypass. Apply wolfSSL 5.9.2 or later, or vendor patch for name-constraint CN handling and remove the vulnerable cert-validation pattern.
CVE-2026-7531 - Use-after-free in PQC hybrid key-share handling
Critical remediation recipe for Use-after-free in PQC hybrid key-share handling. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-7532 - iPAddress name constraints bypass when WOLFSSL_IP_ALT_NAME is not defined
High remediation recipe for iPAddress name constraints bypass when WOLFSSL_IP_ALT_NAME is not defined. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-8720 - wc_Blake2bHmacFinal and wc_Blake2sHmacFinal discard the message when the key length exceeds the block size, pr
High remediation recipe for wc_Blake2bHmacFinal and wc_Blake2sHmacFinal discard the message when the key length exceeds the block size, pr. Upgrade to version 5.9.0. and remove the vulnerable authz pattern.
CVE-2026-48491 - Traefik is an HTTP reverse proxy and load balancer
Critical remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 3.7.3. and remove the vulnerable command-injection pattern.
CVE-2026-52844 - Caddy is an extensible server platform that uses TLS by default
High remediation recipe for Caddy is an extensible server platform that uses TLS by default. Upgrade to fixed in 2.11.4. and remove the vulnerable authz pattern.
CVE-2026-53622 - Traefik is an HTTP reverse proxy and load balancer
Critical remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 3.7.3. and remove the vulnerable command-injection pattern.
CVE-2026-9697 - Impact: undici's ProxyAgent silently drops the requestTls option when configured with a SOCKS5 proxy URI (sock
High remediation recipe for Impact: undici's ProxyAgent silently drops the requestTls option when configured with a SOCKS5 proxy URI (sock. Upgrade to Upgrade to undici v7.28.0 or v8.5.0. and remove the vulnerable cert-validation pattern.
CVE-2026-45416 - Netty is a network application framework for development of protocol servers and clients
High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable prototype-pollution pattern.
CVE-2026-45447 - Issue summary: A specially crafted PKCS#7 or S/MIME signed message could trigger a use-after-free during PKCS#
High remediation recipe for Issue summary: A specially crafted PKCS#7 or S/MIME signed message could trigger a use-after-free during PKCS#. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-46294 - In the Linux kernel, the following vulnerability has been resolved: dm: fix a buffer overflow in ioctl process
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dm: fix a buffer overflow in ioctl process. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-44393 - An issue was discovered in OpenStack oslo.messaging 1.0.0 through 17.3.0
High remediation recipe for An issue was discovered in OpenStack oslo.messaging 1.0.0 through 17.3.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-46250 - In the Linux kernel, the following vulnerability has been resolved: MIPS: Work around LLVM bug when gp is used
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: MIPS: Work around LLVM bug when gp is used. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-46579 - A flaw was found in the OpenShift Router
High remediation recipe for A flaw was found in the OpenShift Router. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-42790 - Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_cert and public_key modules) al
High remediation recipe for Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_cert and public_key modules) al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-42012 - A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially craft
High remediation recipe for A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially craft. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-42013 - A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name (SAN) could ca
High remediation recipe for A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name (SAN) could ca. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-5260 - A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during an RSA
High remediation recipe for A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during an RSA. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-42009 - A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security
High remediation recipe for A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-42246 - Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby
High remediation recipe for Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Upgrade to patched in versions 0.3.10 and remove the vulnerable authz pattern.
CVE-2026-42010 - A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfull
High remediation recipe for A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfull. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-42011 - A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly igno
High remediation recipe for A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly igno. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-33846 - A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS
High remediation recipe for A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-33845 - A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leadi
High remediation recipe for A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leadi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-5402 - TLS protocol dissector heap overflow in Wireshark 4.6.0 to 4.6.4 allows denial of service and possible code ex
High remediation recipe for TLS protocol dissector heap overflow in Wireshark 4.6.0 to 4.6.4 allows denial of service and possible code ex. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-33453 - Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Apache Camel C
Critical remediation recipe for Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Apache Camel C. Upgrade to fixed with Camel and remove the vulnerable command-injection pattern.
CVE-2026-31533 - In the Linux kernel, the following vulnerability has been resolved: net/tls: fix use-after-free in -EBUSY erro
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/tls: fix use-after-free in -EBUSY erro. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-39304 - Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Client, Apache ActiveMQ Broker, Apache Ac
High remediation recipe for Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Client, Apache ActiveMQ Broker, Apache Ac. Upgrade to fixed as well. and remove the vulnerable dos pattern.
CVE-2026-1584 - A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a spe
High remediation recipe for A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a spe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-32280 - During chain building, the amount of work that is done is not correctly limited when a large number of interme
High remediation recipe for During chain building, the amount of work that is done is not correctly limited when a large number of interme. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-32283 - If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the co
High remediation recipe for If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-32144 - Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP design
High remediation recipe for Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP design. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34582 - Botan is a C++ cryptography library. Prior to version 3.11.1, the TLS 1.3 implementation allowed ApplicationDa
Critical remediation recipe for Botan is a C++ cryptography library. Prior to version 3.11.1, the TLS 1.3 implementation allowed ApplicationDa. Upgrade to version 3.11.1 and remove the vulnerable command-injection pattern.
CVE-2026-26999 - Traefik is an HTTP reverse proxy and load balancer
High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to patched in versions 2.11.38 and 3.6.9. and remove the vulnerable authz pattern.
CVE-2026-27134 - Strimzi provides a way to run an Apache Kafka cluster on Kubernetes or OpenShift in various deployment configu
High remediation recipe for Strimzi provides a way to run an Apache Kafka cluster on Kubernetes or OpenShift in various deployment configu. Upgrade to fixed in version 0.50.1. To workaround this issue and remove the vulnerable cert-validation pattern.
CVE-2026-25949 - Traefik is an HTTP reverse proxy and load balancer
High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 3.6.8. and remove the vulnerable dos pattern.
CVE-2026-1709 - A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transpo
Critical remediation recipe for A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transpo. Upgrade to version 7.12.0 and remove the vulnerable command-injection pattern.
CVE-2025-15467 - Issue summary: Parsing CMS AuthEnvelopedData or EnvelopedData message with maliciously crafted AEAD parameters
High remediation recipe for Issue summary: Parsing CMS AuthEnvelopedData or EnvelopedData message with maliciously crafted AEAD parameters. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-22771 - Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based applicati
High remediation recipe for Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based applicati. Upgrade to fixed in 1.5.7 and 1.6.2. and remove the vulnerable command-injection pattern.
CVE-2025-5987 - A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library
High remediation recipe for A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-6032 - A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloadi
High remediation recipe for A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloadi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
c/cpp18 recipes
CVE-2026-13606 - A flaw was found out-of-bounds write
High out-of-bounds write in A flaw was found. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-58049 - FFmpeg RASC decoder DLTA row out-of-bounds write
High-severity FFmpeg RASC decoder DLTA row out-of-bounds write. A crafted media file can corrupt memory in services that transcode or inspect user-supplied video.
CVE-2026-58049 - FFmpeg s RASC video out-of-bounds read
High out-of-bounds read in FFmpeg s RASC video. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-58050 - libssh2 heap buffer overflow
High heap buffer overflow in libssh2. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-58050 - libssh2 publickey attribute count integer overflow
High-severity libssh2 publickey attribute count integer overflow. A malicious SSH server can corrupt memory in clients, deployment agents, or embedded devices that connect outbound.
CVE-2026-11703 - wolfSSL TLS resumption SNI ALPN binding bypass
High-severity wolfSSL TLS resumption SNI ALPN binding bypass. Cached client-authentication state can cross virtual-host boundaries and bypass stricter authentication policy.
CVE-2026-56788 - RTKLIB out-of-bounds read
High out-of-bounds read in RTKLIB. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-6331 - HMAC zero-length tag forgery MAC verification bypass
High MAC verification bypass in HMAC zero-length tag forgery. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-6679 - the DTLS 1.3 ACK serialization path heap buffer overflow
High heap buffer overflow in the DTLS 1.3 ACK serialization path. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-6679 - wolfSSL DTLS 1.3 ACK serialization heap overflow
High-severity wolfSSL DTLS 1.3 ACK serialization heap overflow. Unauthenticated DTLS traffic can crash or corrupt memory in edge, IoT, and embedded services before peer authentication.
CVE-2026-6731 - wolfSSL X.509 commonName name-constraint bypass
High-severity wolfSSL X.509 commonName name-constraint bypass. A constrained CA can issue a certificate whose commonName escapes intended DNS constraints and is still accepted by clients.
CVE-2026-7532 - iPAddress name constraints bypass when WOLFSSL_IP_ALT_NAME certificate constraint bypass
High certificate constraint bypass in iPAddress name constraints bypass when WOLFSSL_IP_ALT_NAME. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-8720 - wc_Blake2bHmacFinal and wc_Blake2sHmacFinal discard MAC verification bypass
High MAC verification bypass in wc_Blake2bHmacFinal and wc_Blake2sHmacFinal discard. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-55200 - libssh2 out-of-bounds write
Critical out-of-bounds write in libssh2. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-42010 - gnutls authentication bypass
Critical authentication bypass in gnutls. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-33845 - A flaw in GnuTLS out-of-bounds read
Critical out-of-bounds read in A flaw in GnuTLS. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-3833 - gnutls security control bypass
High security control bypass in gnutls. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-4878 - libcap privilege escalation
High privilege escalation in libcap. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
developer-tooling/vscode1 recipe
dotnet2 recipes
CVE-2026-60104 - Bitwarden Server before 2026.6.0 does not verify that the email in a POST /auth-requests/admin-request body be
High remediation recipe for Bitwarden Server before 2026.6.0 does not verify that the email in a POST /auth-requests/admin-request body be. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57520 - Bitwarden Server before 2026.5.0 contains a privilege escalation vulnerability that allows authenticated Custo
High remediation recipe for Bitwarden Server before 2026.5.0 contains a privilege escalation vulnerability that allows authenticated Custo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
dotnet/nuget2 recipes
CVE-2026-48109 - MessagePack LZ4 decompression denial of service
High-severity MessagePack-CSharp LZ4 decompression out-of-bounds read and process crash. Upgrade MessagePack to 2.5.301+ or 3.1.7+, disable LZ4 on untrusted inputs if blocked, and isolate deserialization paths.
CVE-2026-33116 - .NET System.Security.Cryptography.Xml DoS
High-severity DoS in System.Security.Cryptography.Xml with patched releases in .NET 8/9/10 trains.
elixir/hex2 recipes
CVE-2026-39804 - Bandit permessage-deflate decompression DoS
High-severity Bandit denial of service via uncapped WebSocket permessage-deflate inflation. Upgrade Hex package bandit to 1.11.0+ or disable compressed WebSocket upgrades until patched.
CVE-2026-42786 - Bandit WebSocket fragment reassembly DoS
High-severity Bandit WebSocket denial of service via unbounded fragmented message reassembly. Upgrade Hex package bandit to 1.11.0+ and verify exposed Phoenix/WebSock endpoints.
embedded/iot9 recipes
CVE-2026-13515 - Tenda JD12L 16 stack buffer overflow
High stack buffer overflow in Tenda JD12L 16. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13516 - Tenda JD12L 16 stack buffer overflow
High stack buffer overflow in Tenda JD12L 16. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13517 - Tenda JD12L 16 stack buffer overflow
High stack buffer overflow in Tenda JD12L 16. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13518 - Tenda JD12L 16 stack buffer overflow
High stack buffer overflow in Tenda JD12L 16. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13539 - Wavlink WL-NU516U1-A M16U1_V240425 stack buffer overflow
High stack buffer overflow in Wavlink WL-NU516U1-A M16U1_V240425. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13545 - D-Link DCS-935L 1 command injection
High command injection in D-Link DCS-935L 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13562 - Edimax EW-7478APC 1 buffer overflow
High buffer overflow in Edimax EW-7478APC 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13563 - Edimax EW-7478APC 1 stack buffer overflow
High stack buffer overflow in Edimax EW-7478APC 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13564 - Edimax EW-7478APC 1 stack buffer overflow
High stack buffer overflow in Edimax EW-7478APC 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
enterprise-app9 recipes
CVE-2026-2053 - The WSO2 API Manager security control bypass
Critical security control bypass in The WSO2 API Manager. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-57921 - JetBrains YouTrack improper access control
High improper access control in JetBrains YouTrack. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-57923 - JetBrains YouTrack security control bypass
High security control bypass in JetBrains YouTrack. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-57926 - JetBrains YouTrack prototype pollution
Critical prototype pollution in JetBrains YouTrack. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-57520 - Bitwarden Server before 2026.5.0 privilege escalation
High privilege escalation in Bitwarden Server before 2026.5.0. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-41045 - polkit authentication of qSnapper security control bypass
High security control bypass in polkit authentication of qSnapper. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-41046 - qSnapper path traversal
High path traversal in qSnapper. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-41048 - qSnapper security control bypass
High security control bypass in qSnapper. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-41049 - Incorrect caching of authentication security control bypass
High security control bypass in Incorrect caching of authentication. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
general1988 recipes
CVE-2025-30007 - HestiaCP before 1.9.5 contains an authenticated OS command injection vulnerability that allows low-privilege a
High remediation recipe for HestiaCP before 1.9.5 contains an authenticated OS command injection vulnerability that allows low-privilege a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-70796 - An unauthenticated path traversal vulnerability exists in the web management interface of WTI (Wireless Techno
High remediation recipe for An unauthenticated path traversal vulnerability exists in the web management interface of WTI (Wireless Techno. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-11321 - The DataInjection plugin for GLPI 2.15.6 (GLPI 11 builds) concatenates user-supplied CSV field values directly
High remediation recipe for The DataInjection plugin for GLPI 2.15.6 (GLPI 11 builds) concatenates user-supplied CSV field values directly. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-15143 - A flaw was found in the file_type content detector of guardrails-detectors
Critical remediation recipe for A flaw was found in the file_type content detector of guardrails-detectors. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15378 - A flaw was found in the guardrails-detectors component
Critical remediation recipe for A flaw was found in the guardrails-detectors component. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20744 - The charging station websocket endpoint accepts connections without proper authentication, which could lead to
Critical remediation recipe for The charging station websocket endpoint accepts connections without proper authentication, which could lead to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-21042 - Out-of-bounds write in libsavsac.so prior to SMR Jul-2026 Release 1 allows local attackers to execute arbitrar
High remediation recipe for Out-of-bounds write in libsavsac.so prior to SMR Jul-2026 Release 1 allows local attackers to execute arbitrar. Upgrade to SMR Jul-2026 Release in Android 14, 15, 16 and remove the vulnerable memory-corruption pattern.
CVE-2026-21045 - Out-of-bounds write in parsing TIFF format in libimagecodec.media.quram.so prior to SMR Jul-2026 Release 1 all
High remediation recipe for Out-of-bounds write in parsing TIFF format in libimagecodec.media.quram.so prior to SMR Jul-2026 Release 1 all. Upgrade to SMR Jul-2026 Release in Android 14, 15, 16 and remove the vulnerable memory-corruption pattern.
CVE-2026-21046 - Time-of-check time-of-use race condition in fabricKeymaster trustlet prior to SMR Jul-2026 Release 1 allows lo
High remediation recipe for Time-of-check time-of-use race condition in fabricKeymaster trustlet prior to SMR Jul-2026 Release 1 allows lo. Upgrade to SMR Jul-2026 Release in Android 14, 15, 16 and remove the vulnerable authz pattern.
CVE-2026-21048 - Out-of-bounds write in parsing DNG format in libimagecodec.media.quram.so prior to SMR Jul-2026 Release 1 allo
High remediation recipe for Out-of-bounds write in parsing DNG format in libimagecodec.media.quram.so prior to SMR Jul-2026 Release 1 allo. Upgrade to SMR Jul-2026 Release in Android 14, 15, 16 and remove the vulnerable memory-corruption pattern.
CVE-2026-21049 - Out-of-bounds write in libpadm.so library prior to SMR Jul-2026 Release 1 allows local attackers to execute ar
High remediation recipe for Out-of-bounds write in libpadm.so library prior to SMR Jul-2026 Release 1 allows local attackers to execute ar. Upgrade to SMR Jul-2026 Release in Android 14, 15, 16 and remove the vulnerable memory-corruption pattern.
CVE-2026-21055 - Improper export of android application components in Bixby prior to version 4.0.70.8 allows local attackers to
High remediation recipe for Improper export of android application components in Bixby prior to version 4.0.70.8 allows local attackers to. Upgrade to 4.0.70.8 and remove the vulnerable authz pattern.
CVE-2026-22659 - FlaskBB through 2.2.0, fixed in commit acc88cf, contains an authorization bypass vulnerability that allows aut
High remediation recipe for FlaskBB through 2.2.0, fixed in commit acc88cf, contains an authorization bypass vulnerability that allows aut. Upgrade to fixed in commit acc88cf and remove the vulnerable authz pattern.
CVE-2026-22660 - FlaskBB through 2.2.0, fixed in commit a5da9a5, contains a logic flaw vulnerability that allows authenticated
High remediation recipe for FlaskBB through 2.2.0, fixed in commit a5da9a5, contains a logic flaw vulnerability that allows authenticated. Upgrade to https://github.com/flaskbb/flaskbb/commit/a5da9a52 and remove the vulnerable authz pattern.
CVE-2026-2397 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Adam Ret
Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Adam Ret. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-2398 - Authorization bypass through User-Controlled key vulnerability in Adam Retail Automation Ltd
High remediation recipe for Authorization bypass through User-Controlled key vulnerability in Adam Retail Automation Ltd. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-28564 - Insufficient Session Expiration, Authentication Bypass by Capture-replay vulnerability in Apache IoTDB
Critical remediation recipe for Insufficient Session Expiration, Authentication Bypass by Capture-replay vulnerability in Apache IoTDB. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-33382 - Several Grafana API endpoints, some of them unauthenticated, do not limit the size of the request body before
High remediation recipe for Several Grafana API endpoints, some of them unauthenticated, do not limit the size of the request body before. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-38057 - The iDirect iQ200 does not validate CSRF tokens on state-changing API endpoints after authentication
High remediation recipe for The iDirect iQ200 does not validate CSRF tokens on state-changing API endpoints after authentication. Upgrade to 4.5.2.2 and remove the vulnerable authz pattern.
CVE-2026-38059 - The iDirect iQ200 exposes the /api/identity and /api/ REST API endpoints without authentication
High remediation recipe for The iDirect iQ200 exposes the /api/identity and /api/ REST API endpoints without authentication. Upgrade to 4.5.2.2 and remove the vulnerable authz pattern.
CVE-2026-39244 - adm-zip before 0.5.18 is vulnerable to denial of service via a crafted ZIP file with a manipulated uncompresse
High remediation recipe for adm-zip before 0.5.18 is vulnerable to denial of service via a crafted ZIP file with a manipulated uncompresse. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-40005 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache IoTDB
Critical remediation recipe for Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache IoTDB. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-40452 - Incorrect Authorization, Improper Access Control vulnerability in Apache IoTDB
High remediation recipe for Incorrect Authorization, Improper Access Control vulnerability in Apache IoTDB. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40454 - Out-of-bounds Read, Improper Input Validation vulnerability in Apache IoTDB C++ client
High remediation recipe for Out-of-bounds Read, Improper Input Validation vulnerability in Apache IoTDB C++ client. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-41482 - Frappe is a full-stack web application framework
High remediation recipe for Frappe is a full-stack web application framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-41876 - R-SOFT DMS is vulnerable to OS Command Injection in konwertujAction() function
High remediation recipe for R-SOFT DMS is vulnerable to OS Command Injection in konwertujAction() function. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-41878 - R-SOFT DMS is vulnerable to Insecure Direct Object Reference (IDOR) attack in multiple file download endpoints
High remediation recipe for R-SOFT DMS is vulnerable to Insecure Direct Object Reference (IDOR) attack in multiple file download endpoints. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-41879 - R-SOFT DMS stores superadmin credentials using a non-salted nested MD5 hash
High remediation recipe for R-SOFT DMS stores superadmin credentials using a non-salted nested MD5 hash. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.
CVE-2026-41880 - R-SOFT DMS is vulnerable to OS Command Injection in the Optical Character Recognition (OCR) module
Critical remediation recipe for R-SOFT DMS is vulnerable to OS Command Injection in the Optical Character Recognition (OCR) module. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-42952 - Previously, there was no throttling on repeated authentication attempts to the charging station backend, which
High remediation recipe for Previously, there was no throttling on repeated authentication attempts to the charging station backend, which. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-44383 - Multiple connections to the backend using the same charging station ID are allowed, which could allow an attac
High remediation recipe for Multiple connections to the backend using the same charging station ID are allowed, which could allow an attac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-49213 - TypeBot is a chatbot builder tool. Prior to 3.17.2, Typebot's shared SSRF validator in packages/lib/src/ssrf/v
High remediation recipe for TypeBot is a chatbot builder tool. Prior to 3.17.2, Typebot's shared SSRF validator in packages/lib/src/ssrf/v. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-49394 - Frappe is a full-stack web application framework
High remediation recipe for Frappe is a full-stack web application framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-51119 - An issue in Invixium IXM WEB v.2.3.85.25 allows an attacker to escalate privileges via the /SystemUsers/Create
Critical remediation recipe for An issue in Invixium IXM WEB v.2.3.85.25 allows an attacker to escalate privileges via the /SystemUsers/Create. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52747 - ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx
High remediation recipe for ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53448 - Coturn is a free open source implementation of TURN and STUN Server
High remediation recipe for Coturn is a free open source implementation of TURN and STUN Server. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53450 - Coturn is a free open source implementation of TURN and STUN Server
High remediation recipe for Coturn is a free open source implementation of TURN and STUN Server. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53653 - Grav is a file-based Web platform. Prior to 1.7.53 and 2.0.0-rc.8, Grav allows an unauthenticated visitor to e
High remediation recipe for Grav is a file-based Web platform. Prior to 1.7.53 and 2.0.0-rc.8, Grav allows an unauthenticated visitor to e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53657 - Lima launches Linux virtual machines, typically on macOS, for running containerd
High remediation recipe for Lima launches Linux virtual machines, typically on macOS, for running containerd. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54000 - osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework
High remediation recipe for osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54001 - osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework
High remediation recipe for osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54423 - In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management i
High remediation recipe for In OpenStack Ironic before 37.0.1, an Ironic user with the ability to deploy nodes using the IPMI management i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54469 - Dell Unisphere for PowerMax, version(s) 10.3.0.5 and prior, contain(s) a Deserialization of Untrusted Data vul
High remediation recipe for Dell Unisphere for PowerMax, version(s) 10.3.0.5 and prior, contain(s) a Deserialization of Untrusted Data vul. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-55175 - Spinnaker is an open source, multi-cloud continuous delivery platform
High remediation recipe for Spinnaker is an open source, multi-cloud continuous delivery platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-55213 - h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3
High remediation recipe for h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55233 - OpenResty is a high performance web platform
High remediation recipe for OpenResty is a high performance web platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55377 - Logto is the modern, open-source auth infrastructure for SaaS and AI apps
High remediation recipe for Logto is the modern, open-source auth infrastructure for SaaS and AI apps. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-55460 - Snipe-IT is an IT asset/license management system
High remediation recipe for Snipe-IT is an IT asset/license management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55474 - Snipe-IT is an IT asset/license management system
High remediation recipe for Snipe-IT is an IT asset/license management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55500 - 9Router is an AI router & token saver. Prior to 0.4.80, the /api/settings/database endpoint allows full databa
Critical remediation recipe for 9Router is an AI router & token saver. Prior to 0.4.80, the /api/settings/database endpoint allows full databa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.
CVE-2026-55501 - 9Router is an AI router & token saver. Prior to 0.4.80, the dashboard login rate limiter in src/lib/auth/login
High remediation recipe for 9Router is an AI router & token saver. Prior to 0.4.80, the dashboard login rate limiter in src/lib/auth/login. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55516 - Snipe-IT is an IT asset/license management system
High remediation recipe for Snipe-IT is an IT asset/license management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55638 - 9Router is an AI router & token saver. Prior to 0.5.2, 9router protects /v1, /v1beta, /api/v1, and /api/v1beta
High remediation recipe for 9Router is an AI router & token saver. Prior to 0.5.2, 9router protects /v1, /v1beta, /api/v1, and /api/v1beta. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55641 - 9Router is an AI router & token saver. Prior to 0.5.2, 9router determines whether a /v1 LLM proxy request is l
High remediation recipe for 9Router is an AI router & token saver. Prior to 0.5.2, 9router determines whether a /v1 LLM proxy request is l. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55672 - ZITADEL is an open source identity management platform
High remediation recipe for ZITADEL is an open source identity management platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-55687 - ESF-IDF is the Espressif Internet of Things (IOT) Development Framework
High remediation recipe for ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55789 - Logto is the modern, open-source auth infrastructure for SaaS and AI apps
High remediation recipe for Logto is the modern, open-source auth infrastructure for SaaS and AI apps. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-55827 - FreeRDP is a free implementation of the Remote Desktop Protocol
High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55843 - Snipe-IT is an IT asset/license management system
High remediation recipe for Snipe-IT is an IT asset/license management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55852 - Frappe is a full-stack web application framework
High remediation recipe for Frappe is a full-stack web application framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55879 - OpenReplay is a self-hosted session replay suite
Critical remediation recipe for OpenReplay is a self-hosted session replay suite. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55880 - OpenReplay is a self-hosted session replay suite
High remediation recipe for OpenReplay is a self-hosted session replay suite. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55881 - OpenReplay is a self-hosted session replay suite
High remediation recipe for OpenReplay is a self-hosted session replay suite. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55883 - Tilt defines dev environments as code for microservice apps on Kubernetes
High remediation recipe for Tilt defines dev environments as code for microservice apps on Kubernetes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55884 - Tilt defines dev environments as code for microservice apps on Kubernetes
Critical remediation recipe for Tilt defines dev environments as code for microservice apps on Kubernetes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56291 - Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability
High remediation recipe for Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability. Upgrade to Apply mitigations or fixed release per vendor/CISA KEV instructions and remove the vulnerable unsafe-upload pattern.
CVE-2026-56668 - ZITADEL is an open source identity management platform
High remediation recipe for ZITADEL is an open source identity management platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-56675 - 9Router is an AI router & token saver. Prior to 0.5.2, 9router treats loopback requests as trusted and allows
High remediation recipe for 9Router is an AI router & token saver. Prior to 0.5.2, 9router treats loopback requests as trusted and allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56676 - 9Router is an AI router & token saver. Prior to 0.5.2, 9router validates image URLs by resolving the host befo
High remediation recipe for 9Router is an AI router & token saver. Prior to 0.5.2, 9router validates image URLs by resolving the host befo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56688 - Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us
Critical remediation recipe for Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-56689 - Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us
High remediation recipe for Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-56690 - Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us
High remediation recipe for Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements us. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-56765 - Vikunja before 2.2.1 contains an authorization flaw where the LinkSharing.ReadAll endpoint exposes share hashe
Critical remediation recipe for Vikunja before 2.2.1 contains an authorization flaw where the LinkSharing.ReadAll endpoint exposes share hashe. Upgrade to 2.2.1 and remove the vulnerable authz pattern.
CVE-2026-57156 - FreeRDP is a free implementation of the Remote Desktop Protocol
High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57212 - RabbitMQ is a messaging and streaming broker
High remediation recipe for RabbitMQ is a messaging and streaming broker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57215 - RabbitMQ is a messaging and streaming broker
High remediation recipe for RabbitMQ is a messaging and streaming broker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57217 - RabbitMQ is a messaging and streaming broker
High remediation recipe for RabbitMQ is a messaging and streaming broker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57219 - RabbitMQ is a messaging and streaming broker
High remediation recipe for RabbitMQ is a messaging and streaming broker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57220 - RabbitMQ is a messaging and streaming broker
High remediation recipe for RabbitMQ is a messaging and streaming broker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57574 - Misskey is an open source, federated social media platform
High remediation recipe for Misskey is an open source, federated social media platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-57807 - Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOrange Security Software Pvt Ltd
Critical remediation recipe for Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOrange Security Software Pvt Ltd. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-57850 - RustDesk before 1.4.9 does not enforce a session's authorized connection scope on the server side, so a peer g
High remediation recipe for RustDesk before 1.4.9 does not enforce a session's authorized connection scope on the server side, so a peer g. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-5801 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Semtek I
Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Semtek I. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-58492 - grav-plugin-database is the database plugin for Grav CMS
Critical remediation recipe for grav-plugin-database is the database plugin for Grav CMS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58499 - EverOS is a memory runtime for agents. Prior to 1.0.1, EverOS is vulnerable to path traversal in the POST /api
High remediation recipe for EverOS is a memory runtime for agents. Prior to 1.0.1, EverOS is vulnerable to path traversal in the POST /api. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-59151 - Prowler is a cloud security platform. Prior to 5.30.3, Prowler's SAML authentication flow trusted the email do
Critical remediation recipe for Prowler is a cloud security platform. Prior to 5.30.3, Prowler's SAML authentication flow trusted the email do. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59190 - grav-plugin-admin is an HTML user interface that provides a way to configure Grav and create and modify pages
High remediation recipe for grav-plugin-admin is an HTML user interface that provides a way to configure Grav and create and modify pages. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59792 - In JetBrains IntelliJ IDEA before 2026.1.4, 2026.2 code execution via path traversal in project workspace ID h
Critical remediation recipe for In JetBrains IntelliJ IDEA before 2026.1.4, 2026.2 code execution via path traversal in project workspace ID h. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-59793 - In JetBrains TeamCity before 2026.1.2 arbitrary file access was possible via the Perforce VCS integration
High remediation recipe for In JetBrains TeamCity before 2026.1.2 arbitrary file access was possible via the Perforce VCS integration. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59794 - In JetBrains TeamCity before 2026.1.2 stored XSS on the cloud profile page was possible via agent-reported dat
High remediation recipe for In JetBrains TeamCity before 2026.1.2 stored XSS on the cloud profile page was possible via agent-reported dat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-59795 - In JetBrains TeamCity before 2026.1.2 stored XSS via unauthenticated agent registration was possible
High remediation recipe for In JetBrains TeamCity before 2026.1.2 stored XSS via unauthenticated agent registration was possible. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-61434 - PraisonAI versions before 4.6.78 contain an allowlist bypass vulnerability in shell command execution that all
High remediation recipe for PraisonAI versions before 4.6.78 contain an allowlist bypass vulnerability in shell command execution that all. Upgrade to 4.6.78 and remove the vulnerable command-injection pattern.
CVE-2026-61441 - PraisonAI Platform (praisonai-platform) before 0.1.9 improperly authorizes deletion of issue dependencies
High remediation recipe for PraisonAI Platform (praisonai-platform) before 0.1.9 improperly authorizes deletion of issue dependencies. Upgrade to 0.1.9 and remove the vulnerable authz pattern.
CVE-2026-61455 - Grav before 2.0.1 contains a decompression bomb vulnerability in ZipArchiver::extract() that lacks limits on u
High remediation recipe for Grav before 2.0.1 contains a decompression bomb vulnerability in ZipArchiver::extract() that lacks limits on u. Upgrade to 2.0.1 and remove the vulnerable authz pattern.
CVE-2026-61459 - MCP Server Kubernetes before 3.9.0 contains an argument injection vulnerability in structured tools (kubectl_g
Critical remediation recipe for MCP Server Kubernetes before 3.9.0 contains an argument injection vulnerability in structured tools (kubectl_g. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-61460 - Krayin CRM through 2.2.3 contains an insecure direct object reference vulnerability in LeadController, PersonC
High remediation recipe for Krayin CRM through 2.2.3 contains an insecure direct object reference vulnerability in LeadController, PersonC. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-61461 - Dify before 1.16.0-rc1 contains a SQL injection vulnerability in the MyScale vector store backend that allows
High remediation recipe for Dify before 1.16.0-rc1 contains a SQL injection vulnerability in the MyScale vector store backend that allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-6212 - Authorization bypass through User-Controlled key vulnerability in Teracity Software Technologies Inc
High remediation recipe for Authorization bypass through User-Controlled key vulnerability in Teracity Software Technologies Inc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-27462 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp
Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-27463 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp
Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-27464 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp
Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-45422 - Incorrect access control in Proximus b-box v8c.725A allows authenticated attackers to bypass normal restrictio
High remediation recipe for Incorrect access control in Proximus b-box v8c.725A allows authenticated attackers to bypass normal restrictio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-58146 - There are multiple issues. 1. Updates to the XAPI database sanitise input strings, but try generating the noti
Critical remediation recipe for There are multiple issues. 1. Updates to the XAPI database sanitise input strings, but try generating the noti. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-58151 - varstored is a component of the Xapi toolstack handling UEFI Variables for a VM
Critical remediation recipe for varstored is a component of the Xapi toolstack handling UEFI Variables for a VM. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-63579 - Unauthorized use of Kyocera printers, allows all information stored in the Kyocera address book to be exported
High remediation recipe for Unauthorized use of Kyocera printers, allows all information stored in the Kyocera address book to be exported. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-12593 - The implementation of an internal and undocumented Dashboard API endpoint (POST /api/users/~/{user}/tokens) fo
High remediation recipe for The implementation of an internal and undocumented Dashboard API endpoint (POST /api/users/~/{user}/tokens) fo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13462 - PayRange Android app, version 7.0.7 and below, contains an SSL bypass vulnerability that allows invalid certif
High remediation recipe for PayRange Android app, version 7.0.7 and below, contains an SSL bypass vulnerability that allows invalid certif. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-14261 - A vulnerability in the Xerte Online Tools allows for authentication bypass and remote code execution via reins
Critical remediation recipe for A vulnerability in the Xerte Online Tools allows for authentication bypass and remote code execution via reins. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-15270 - A weakness has been identified in D-link DIR-823G 1.0.2B05_20181207
High remediation recipe for A weakness has been identified in D-link DIR-823G 1.0.2B05_20181207. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15271 - A security vulnerability has been detected in TOTOLINK A3000RU, A3100R, A950RG, AC1200T10, CP450, CS185R_T10 a
High remediation recipe for A security vulnerability has been detected in TOTOLINK A3000RU, A3100R, A950RG, AC1200T10, CP450, CS185R_T10 a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15308 - The incremental HTML parser (html.parser.HTMLParser) allows for CPU denial-of-service through repeated untermi
High remediation recipe for The incremental HTML parser (html.parser.HTMLParser) allows for CPU denial-of-service through repeated untermi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-1989 - Authorization bypass through User-Controlled key vulnerability in PAVO Financial Technology Solutions Inc
High remediation recipe for Authorization bypass through User-Controlled key vulnerability in PAVO Financial Technology Solutions Inc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2342 - Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in OceanicS
Critical remediation recipe for Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in OceanicS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-23556 - When oxenstored is tearing a domain down, the node data is cleaned up but the usage counts are leaked
Critical remediation recipe for When oxenstored is tearing a domain down, the node data is cleaned up but the usage counts are leaked. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-23559 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp
Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-23560 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp
Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-23561 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp
Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-23562 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp
Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-31984 - A denial-of-service vulnerability caused by unbounded resource allocation was discovered in the audit logging
High remediation recipe for A denial-of-service vulnerability caused by unbounded resource allocation was discovered in the audit logging. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-33390 - An Incorrect Privilege Assignment vulnerability was discovered in the synchronization functionality due to Arc
High remediation recipe for An Incorrect Privilege Assignment vulnerability was discovered in the synchronization functionality due to Arc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-38076 - An integer overflow in the jbig2_arith_iaid_ctx_new() function of Artifex commit cc37d0 allows attackers to ca
High remediation recipe for An integer overflow in the jbig2_arith_iaid_ctx_new() function of Artifex commit cc37d0 allows attackers to ca. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-39246 - decompress before 4.2.2 allows arbitrary symlink creation during archive extraction
High remediation recipe for decompress before 4.2.2 allows arbitrary symlink creation during archive extraction. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-41857 - A compromised or malicious BOSH Director can execute arbitrary shell commands on the operator's workstation wh
High remediation recipe for A compromised or malicious BOSH Director can execute arbitrary shell commands on the operator's workstation wh. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-42486 - [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp
Critical remediation recipe for [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities corresp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-4256 - Improper neutralization of special elements used in an LDAP query ('LDAP injection') vulnerability in PEAKUP T
High remediation recipe for Improper neutralization of special elements used in an LDAP query ('LDAP injection') vulnerability in PEAKUP T. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-44787 - Discourse is an open-source discussion platform
High remediation recipe for Discourse is an open-source discussion platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-47826 - The blobs.yml path key traversal vulnerability in the BOSH CLI tool allows an attacker to write arbitrary file
High remediation recipe for The blobs.yml path key traversal vulnerability in the BOSH CLI tool allows an attacker to write arbitrary file. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-47829 - Argument Injection in bosh-cli allows a compromised BOSH Director to inject arbitrary OpenSSH options into the
High remediation recipe for Argument Injection in bosh-cli allows a compromised BOSH Director to inject arbitrary OpenSSH options into the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-47830 - Incorrect Permission Assignment in BOSH.Utils.psm1 in BOSH-Ecosystem bosh-windows-stemcell-builder allows low-
High remediation recipe for Incorrect Permission Assignment in BOSH.Utils.psm1 in BOSH-Ecosystem bosh-windows-stemcell-builder allows low-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-47831 - Use of a cryptographically weak random number generator in the GenerateRandomPassword function in bosh-windows
High remediation recipe for Use of a cryptographically weak random number generator in the GenerateRandomPassword function in bosh-windows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-49276 - Kirby is an open-source content management system
High remediation recipe for Kirby is an open-source content management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-50180 - Langroid is a framework for building large-language-model-powered applications
High remediation recipe for Langroid is a framework for building large-language-model-powered applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50181 - Langroid is a framework for building large-language-model-powered applications
High remediation recipe for Langroid is a framework for building large-language-model-powered applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50644 - SOPlanning is vulnerable to SQL injection in the audit retention configuration
High remediation recipe for SOPlanning is vulnerable to SQL injection in the audit retention configuration. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-51597 - MERCURY MIPC252W IP camera v1.0.5 Build 230306 Rel.79931n does not implement nonce expiration in RTSP Digest a
Critical remediation recipe for MERCURY MIPC252W IP camera v1.0.5 Build 230306 Rel.79931n does not implement nonce expiration in RTSP Digest a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-51599 - An insufficient input validation vulnerability in the RTSP service of MERCURY MIPC252W v1.0.5 Build 230306 Rel
Critical remediation recipe for An insufficient input validation vulnerability in the RTSP service of MERCURY MIPC252W v1.0.5 Build 230306 Rel. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-51600 - Tenda CP3 V3.0 firmware V31.1.9.91 does not validate the Content-Length header field in RTSP requests (includi
High remediation recipe for Tenda CP3 V3.0 firmware V31.1.9.91 does not validate the Content-Length header field in RTSP requests (includi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-51601 - Tenda CP3 V3.0 firmware V31.1.9.91 contains a stack-based buffer overflow in the RTSP service
High remediation recipe for Tenda CP3 V3.0 firmware V31.1.9.91 contains a stack-based buffer overflow in the RTSP service. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-51602 - A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows
High remediation recipe for A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-51603 - A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows
High remediation recipe for A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-51604 - A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows
High remediation recipe for A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-51605 - A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.991) allow
High remediation recipe for A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.991) allow. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-51606 - An improper input handling vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) causes th
High remediation recipe for An improper input handling vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) causes th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-51923 - An Insecure Direct Object Reference (IDOR) vulnerability exists in docuForm GmbH Client v.11.11c allowing a re
High remediation recipe for An Insecure Direct Object Reference (IDOR) vulnerability exists in docuForm GmbH Client v.11.11c allowing a re. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53963 - Discourse is an open-source discussion platform
High remediation recipe for Discourse is an open-source discussion platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53987 - The Tag plugin for GLPI 11 before 2.14.4 stores the tag name without HTML sanitization and renders it into the
High remediation recipe for The Tag plugin for GLPI 11 before 2.14.4 stores the tag name without HTML sanitization and renders it into the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-54002 - Kirby is an open-source content management system
High remediation recipe for Kirby is an open-source content management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-54003 - Kirby is an open-source content management system
Critical remediation recipe for Kirby is an open-source content management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-54005 - Kirby is an open-source content management system
High remediation recipe for Kirby is an open-source content management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-54760 - Langroid is a framework for building large-language-model-powered applications
Critical remediation recipe for Langroid is a framework for building large-language-model-powered applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54771 - Langroid is a framework for building large-language-model-powered applications
High remediation recipe for Langroid is a framework for building large-language-model-powered applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54801 - A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V26.20), SICORE
High remediation recipe for A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V26.20), SICORE. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55207 - Pimcore is an Open Source Data & Experience Management Platform
High remediation recipe for Pimcore is an Open Source Data & Experience Management Platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-55208 - Pimcore Studio Backend Bundle is the backend bundle for Pimcore Studio
High remediation recipe for Pimcore Studio Backend Bundle is the backend bundle for Pimcore Studio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55420 - Discourse is an open-source discussion platform
High remediation recipe for Discourse is an open-source discussion platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-55604 - DeepSeek MCP Server is an MCP server for DeepSeek V4
High remediation recipe for DeepSeek MCP Server is an MCP server for DeepSeek V4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.
CVE-2026-55615 - Langroid is a framework for building large-language-model-powered applications
Critical remediation recipe for Langroid is a framework for building large-language-model-powered applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56292 - A SQLi vulnerability in AcyMailing component < 10.11.1 for Joomla was discovered
High remediation recipe for A SQLi vulnerability in AcyMailing component < 10.11.1 for Joomla was discovered. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-57023 - An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Network
High remediation recipe for An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Network. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-57026 - An Improper Validation of Syntactic Correctness of Input vulnerability in the SIP plugin of Juniper Networks J
High remediation recipe for An Improper Validation of Syntactic Correctness of Input vulnerability in the SIP plugin of Juniper Networks J. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57028 - An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos
High remediation recipe for An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57111 - Permissive Cross-Origin Resource Sharing (CORS) in the REST API (helix-rest, org.apache.helix.rest.server.filt
High remediation recipe for Permissive Cross-Origin Resource Sharing (CORS) in the REST API (helix-rest, org.apache.helix.rest.server.filt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-58122 - Hermes WebUI before 0.51.307 contains an authentication bypass vulnerability that allows unauthenticated remot
Critical remediation recipe for Hermes WebUI before 0.51.307 contains an authentication bypass vulnerability that allows unauthenticated remot. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-58123 - Hermes WebUI before 0.51.788 contains an unauthenticated remote code execution vulnerability that allows remot
Critical remediation recipe for Hermes WebUI before 0.51.788 contains an unauthenticated remote code execution vulnerability that allows remot. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.
CVE-2026-58378 - Allwinner H616 TV Box TV98 has ADB enabled and exposed to the network on production
High remediation recipe for Allwinner H616 TV Box TV98 has ADB enabled and exposed to the network on production. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58459 - gpsd through release-3.27.5, fixed at commit 4c06658, contains a command injection vulnerability in gpsprof th
High remediation recipe for gpsd through release-3.27.5, fixed at commit 4c06658, contains a command injection vulnerability in gpsprof th. Upgrade to fixed at commit 4c06658 and remove the vulnerable command-injection pattern.
CVE-2026-59148 - Mockoon provides way to design and run mock APIs
High remediation recipe for Mockoon provides way to design and run mock APIs. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59206 - n8n is an open source workflow automation platform
High remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in versions 1.123.61 and remove the vulnerable command-injection pattern.
CVE-2026-59207 - n8n is an open source workflow automation platform
High remediation recipe for n8n is an open source workflow automation platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59208 - n8n is an open source workflow automation platform
High remediation recipe for n8n is an open source workflow automation platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59209 - n8n is an open source workflow automation platform
High remediation recipe for n8n is an open source workflow automation platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59219 - Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform
High remediation recipe for Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59221 - Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform
High remediation recipe for Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59224 - Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform
High remediation recipe for Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-5955 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Inrove S
Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Inrove S. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-59691 - A heap buffer overflow vulnerability was found in GStreamer's rfbsrc plugin
High remediation recipe for A heap buffer overflow vulnerability was found in GStreamer's rfbsrc plugin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-59720 - Hoppscotch is an open source API development ecosystem
High remediation recipe for Hoppscotch is an open source API development ecosystem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59721 - Hoppscotch is an open source API development ecosystem
High remediation recipe for Hoppscotch is an open source API development ecosystem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59834 - SiYuan is an open-source personal knowledge management system
High remediation recipe for SiYuan is an open-source personal knowledge management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59858 - Vim is an open source, command line text editor
High remediation recipe for Vim is an open source, command line text editor. Upgrade to fixed in version 9.2.0735. and remove the vulnerable command-injection pattern.
CVE-2026-60108 - Zeek before 8.0.9 contains an uncontrolled memory consumption vulnerability in the FTP analyzer that allows un
High remediation recipe for Zeek before 8.0.9 contains an uncontrolled memory consumption vulnerability in the FTP analyzer that allows un. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-60109 - Zeek before 8.0.9 contains a null pointer dereference vulnerability in its Kerberos protocol analyzer that all
High remediation recipe for Zeek before 8.0.9 contains a null pointer dereference vulnerability in its Kerberos protocol analyzer that all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-61343 - LibreBooking's email template editor save action passes the submitted template name directly into the destinat
High remediation recipe for LibreBooking's email template editor save action passes the submitted template name directly into the destinat. Upgrade to 5.1.0 and remove the vulnerable credential-leak pattern.
CVE-2025-3110 - OpenVPN Access Server 2.7.2 through 3.1.0 accepts bare line-feed sequences inside HTTP header values, allowing
High remediation recipe for OpenVPN Access Server 2.7.2 through 3.1.0 accepts bare line-feed sequences inside HTTP header values, allowing. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable request-smuggling pattern.
CVE-2026-0288 - Multiple buffer overflow vulnerabilities in the User-ID Terminal Server Agent (TSA) component of Palo Alto Net
High remediation recipe for Multiple buffer overflow vulnerabilities in the User-ID Terminal Server Agent (TSA) component of Palo Alto Net. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-10037 - A sandbox escape vulnerability exists in the OpenJDK packages provided in Ubuntu
High remediation recipe for A sandbox escape vulnerability exists in the OpenJDK packages provided in Ubuntu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-10706 - In Adalo’s no-code app builder, (Versions 1 and 2) the attackers may extract full user records and correlate u
High remediation recipe for In Adalo’s no-code app builder, (Versions 1 and 2) the attackers may extract full user records and correlate u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-10708 - This vulnerability enables large‑scale data harvesting without requiring app‑specific secrets
High remediation recipe for This vulnerability enables large‑scale data harvesting without requiring app‑specific secrets. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13320 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.7 before 18.11.7, 19.0 before 19
High remediation recipe for GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.7 before 18.11.7, 19.0 before 19. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14454 - Imager versions before 1.033 for Perl treat unsigned EXIF IFD entry counts as signed
Critical remediation recipe for Imager versions before 1.033 for Perl treat unsigned EXIF IFD entry counts as signed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15107 - Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbi
High remediation recipe for Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-15110 - Use after free in Extensions in Google Chrome prior to 150.0.7871.115 allowed an attacker who convinced a user
High remediation recipe for Use after free in Extensions in Google Chrome prior to 150.0.7871.115 allowed an attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-15111 - Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a use
High remediation recipe for Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a use. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-15112 - Use after free in Ozone in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially expl
High remediation recipe for Use after free in Ozone in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially expl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-15113 - Use after free in Autofill in Google Chrome on Android prior to 150.0.7871.115 allowed a remote attacker to po
Critical remediation recipe for Use after free in Autofill in Google Chrome on Android prior to 150.0.7871.115 allowed a remote attacker to po. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-15114 - Out of bounds read and write in Codecs in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to p
High remediation recipe for Out of bounds read and write in Codecs in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15116 - Use after free in Actor in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar
High remediation recipe for Use after free in Actor in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-15117 - Use after free in Payments in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a
High remediation recipe for Use after free in Payments in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-15118 - Use after free in Input in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar
High remediation recipe for Use after free in Input in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-15119 - Race in GetUserMedia in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who had compromised th
High remediation recipe for Race in GetUserMedia in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who had compromised th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15120 - Use after free in Core in Google Chrome on Windows prior to 150.0.7871.115 allowed a remote attacker who had c
High remediation recipe for Use after free in Core in Google Chrome on Windows prior to 150.0.7871.115 allowed a remote attacker who had c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-15121 - Use after free in WebRTC in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitra
High remediation recipe for Use after free in WebRTC in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitra. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-15122 - Insufficient validation of untrusted input in Codecs in Google Chrome on Windows prior to 150.0.7871.115 allow
High remediation recipe for Insufficient validation of untrusted input in Codecs in Google Chrome on Windows prior to 150.0.7871.115 allow. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15123 - Inappropriate implementation in DOM in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to pote
High remediation recipe for Inappropriate implementation in DOM in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to pote. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15125 - Inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to ex
High remediation recipe for Inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to ex. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15126 - Use after free in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar
High remediation recipe for Use after free in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-15129 - Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially expl
High remediation recipe for Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially expl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-15132 - Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar
High remediation recipe for Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15133 - Use after free in InterestGroups in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute
High remediation recipe for Use after free in InterestGroups in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-15167 - DBS Etherwatch file parser crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of service
High remediation recipe for DBS Etherwatch file parser crash in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows denial of service. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-29008 - U-Boot through 2026.04-rc3 contains an integer underflow vulnerability in the tcp_rx_state_machine() function
High remediation recipe for U-Boot through 2026.04-rc3 contains an integer underflow vulnerability in the tcp_rx_state_machine() function. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-29009 - U-Boot through 2026.04-rc3 contains a buffer overflow vulnerability in nfs_readlink_reply() (net/nfs-common.c)
High remediation recipe for U-Boot through 2026.04-rc3 contains a buffer overflow vulnerability in nfs_readlink_reply() (net/nfs-common.c). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-31309 - Improper authorization in the /tequilapi/config/user endpoint of Mysterium Node before v1.36.0 allows unauthen
High remediation recipe for Improper authorization in the /tequilapi/config/user endpoint of Mysterium Node before v1.36.0 allows unauthen. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3144 - IBM API Connect 12.1.0.0 through 12.1.0.3 uses default credentials which could allow an attacker to gain unaut
High remediation recipe for IBM API Connect 12.1.0.0 through 12.1.0.3 uses default credentials which could allow an attacker to gain unaut. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.
CVE-2026-35210 - OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables
High remediation recipe for OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-35552 - In CAXperts UPVWebServices 2.4.2212.603 through 2.7.6 and UDiTH Portal 2026.0.0 through 2026.2.0, an authentic
High remediation recipe for In CAXperts UPVWebServices 2.4.2212.603 through 2.7.6 and UDiTH Portal 2026.0.0 through 2026.2.0, an authentic. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-44024 - Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a
Critical remediation recipe for Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-44025 - Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a
High remediation recipe for Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-44160 - Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a
High remediation recipe for Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-44161 - Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a
High remediation recipe for Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-47646 -
Critical remediation recipe for . Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-51535 - In OpENer 2.3.0 (commit 76b95cf), a resource exhaustion (Denial of Service) vulnerability exists in its networ
High remediation recipe for In OpENer 2.3.0 (commit 76b95cf), a resource exhaustion (Denial of Service) vulnerability exists in its networ. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-52200 - An issue in Generic OEM UZ801_v2.1 4G LTE Router V3.4.3 allows a remote attacker to execute arbitrary code via
Critical remediation recipe for An issue in Generic OEM UZ801_v2.1 4G LTE Router V3.4.3 allows a remote attacker to execute arbitrary code via. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53482 - Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10,
High remediation recipe for Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-53951 - Copier is a library and CLI app for rendering project templates
High remediation recipe for Copier is a library and CLI app for rendering project templates. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54528 - JupyterLab Git is a Git extension for JupyterLab
High remediation recipe for JupyterLab Git is a Git extension for JupyterLab. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54774 - CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core
High remediation recipe for CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54781 - CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core
High remediation recipe for CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54782 - CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core
Critical remediation recipe for CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54783 - CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core
High remediation recipe for CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55404 - yt-dlp and youtube-dl are command-line audio/video downloaders
High remediation recipe for yt-dlp and youtube-dl are command-line audio/video downloaders. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55999 - Local attackers with a X connection able to provide PCX fonts to the X server xorg-server before 21.2.24 and x
High remediation recipe for Local attackers with a X connection able to provide PCX fonts to the X server xorg-server before 21.2.24 and x. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-56000 - Local attackers with a X connection able to provide GLX commit to the X server xorg-server before 21.2.24 and
High remediation recipe for Local attackers with a X connection able to provide GLX commit to the X server xorg-server before 21.2.24 and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-56001 - A heap buffer overflow in BitmapScaleBitmaps in libXfont2 before 2.0.8 due to an overflowing 32bit size could
High remediation recipe for A heap buffer overflow in BitmapScaleBitmaps in libXfont2 before 2.0.8 due to an overflowing 32bit size could. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-56003 - A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files in libXfont2
High remediation recipe for A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files in libXfont2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-56297 - FreeRDP before 3.22.0 contains a use-after-free vulnerability in dvcman_channel_close and dvcman_call_on_recei
High remediation recipe for FreeRDP before 3.22.0 contains a use-after-free vulnerability in dvcman_channel_close and dvcman_call_on_recei. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-56669 - Elysia is a Typescript framework for request validation, type inference, OpenAPI documentation, and client-ser
High remediation recipe for Elysia is a Typescript framework for request validation, type inference, OpenAPI documentation, and client-ser. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56776 - n8n before 1.123.55, 2.25.7, and 2.26.2 contains an authorization bypass in the POST /workflows/{workflowId}/t
High remediation recipe for n8n before 1.123.55, 2.25.7, and 2.26.2 contains an authorization bypass in the POST /workflows/{workflowId}/t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-57239 - The user-controllable executable files will be directly executed by high-privilege processes, allowing low-pri
High remediation recipe for The user-controllable executable files will be directly executed by high-privilege processes, allowing low-pri. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58192 - Appium is a cross-platform automation framework for all kinds of apps, built on top of the W3C WebDriver proto
High remediation recipe for Appium is a cross-platform automation framework for all kinds of apps, built on top of the W3C WebDriver proto. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58207 - NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system
High remediation recipe for NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58210 - NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system
High remediation recipe for NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58213 - NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system
High remediation recipe for NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58250 - NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system
High remediation recipe for NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58253 - NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system
High remediation recipe for NATS Server is a high-performance server for NATS.io, the cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58525 - Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a securit
High remediation recipe for Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a securit. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59257 - n8n before 1.123.61, 2.x before 2.27.4, and 2.28.x before 2.28.1 contains a SQL injection vulnerability in the
High remediation recipe for n8n before 1.123.61, 2.x before 2.27.4, and 2.28.x before 2.28.1 contains a SQL injection vulnerability in the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59723 - Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant
High remediation recipe for Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59731 - Astro is a web framework for content-driven websites
High remediation recipe for Astro is a web framework for content-driven websites. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59803 - rpcx through 1.9.3, fixed in commit 047aec1, contains a denial-of-service vulnerability in protocol.Message.De
High remediation recipe for rpcx through 1.9.3, fixed in commit 047aec1, contains a denial-of-service vulnerability in protocol.Message.De. Upgrade to fixed in commit 047aec1 and remove the vulnerable authz pattern.
CVE-2026-59804 - Midscene Bridge Server through 1.10.3, fixed in commit 86f4118, contains a missing authentication and CORS mis
High remediation recipe for Midscene Bridge Server through 1.10.3, fixed in commit 86f4118, contains a missing authentication and CORS mis. Upgrade to 86f4118d1d847041c63d79e347e08c87c3f1a882 and remove the vulnerable authz pattern.
CVE-2026-59805 - Gumroad before 2026.07.06.2 contains a broken access control vulnerability in the PurchasesController that all
High remediation recipe for Gumroad before 2026.07.06.2 contains a broken access control vulnerability in the PurchasesController that all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59806 - Gradio before 6.20.0 contains an open redirect and server-side request forgery vulnerability that allows attac
High remediation recipe for Gradio before 6.20.0 contains an open redirect and server-side request forgery vulnerability that allows attac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-59807 - Composio SDK before 0.2.32-beta.283 contains a path validation bypass vulnerability that allows attackers to r
High remediation recipe for Composio SDK before 0.2.32-beta.283 contains a path validation bypass vulnerability that allows attackers to r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59822 - LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format
High remediation recipe for LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59879 - Immutable.js provides many Persistent Immutable data structures
High remediation recipe for Immutable.js provides many Persistent Immutable data structures. Upgrade to fixed in versions 4.3.9 and 5.1.8. and remove the vulnerable authz pattern.
CVE-2026-59880 - Immutable.js provides many Persistent Immutable data structures
High remediation recipe for Immutable.js provides many Persistent Immutable data structures. Upgrade to fixed in versions 4.3.9 and 5.1.8. and remove the vulnerable authz pattern.
CVE-2026-59887 - linkify-it is a links recognition library with full Unicode support
High remediation recipe for linkify-it is a links recognition library with full Unicode support. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-60002 - ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its host key during a key re-exchan
High remediation recipe for ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its host key during a key re-exchan. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-60105 - Monsta FTP before 2.14.5 contains a server-side request forgery vulnerability in the fetchRemoteFile action ca
High remediation recipe for Monsta FTP before 2.14.5 contains a server-side request forgery vulnerability in the fetchRemoteFile action ca. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-6896 - GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 before 18.11.7, 19.0 before 19.0
High remediation recipe for GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 before 18.11.7, 19.0 before 19.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-8307 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Webbeyaz
Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Webbeyaz. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-9074 - IBM API Connect 10.0.8.0 through 10.0.8.9 and 12.1.0.0 through 12.1.0.3 contains an unauthenticated SQL inject
Critical remediation recipe for IBM API Connect 10.0.8.0 through 10.0.8.9 and 12.1.0.0 through 12.1.0.3 contains an unauthenticated SQL inject. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-13020 - A Weak Password Recovery Mechanism for Forgotten Password exists in Esri Portal for ArcGIS versions 12.1 and e
High remediation recipe for A Weak Password Recovery Mechanism for Forgotten Password exists in Esri Portal for ArcGIS versions 12.1 and e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14380 - DBI versions before 1.650 for Perl are vulnerable to code injection via caller-influenced Profile
High remediation recipe for DBI versions before 1.650 for Perl are vulnerable to code injection via caller-influenced Profile. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34044 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases
High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34152 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases
High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-37270 - Trueview Security camera T18161- AF v4.9.60.0 contains an authentication bypass vulnerability caused by improp
Critical remediation recipe for Trueview Security camera T18161- AF v4.9.60.0 contains an authentication bypass vulnerability caused by improp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.
CVE-2026-37271 - Fire-Boltt Smartwatch FB BGS001 Firmware: MOY-JS14-2.0.4 is vulnerable to Improper Authentication, The device
Critical remediation recipe for Fire-Boltt Smartwatch FB BGS001 Firmware: MOY-JS14-2.0.4 is vulnerable to Improper Authentication, The device. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48948 - An improper access check allows user to download vcard exports of com_contact contacts that are inaccessible
High remediation recipe for An improper access check allows user to download vcard exports of com_contact contacts that are inaccessible. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48957 - An improper access check allows unauthorized users to access com_privacy datasets
High remediation recipe for An improper access check allows unauthorized users to access com_privacy datasets. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48958 - An improper access check allows unauthorized users to create custom fields via webservices endpoints
High remediation recipe for An improper access check allows unauthorized users to create custom fields via webservices endpoints. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-49229 - Actual is a local-first personal finance app
High remediation recipe for Actual is a local-first personal finance app. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53730 - DataEase is an open source data visualization and analysis tool
High remediation recipe for DataEase is an open source data visualization and analysis tool. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-55077 - Coder allows organizations to provision remote development environments via Terraform
High remediation recipe for Coder allows organizations to provision remote development environments via Terraform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55255 - Langflow Authorization Bypass Through User-Controlled Key Vulnerability
High remediation recipe for Langflow Authorization Bypass Through User-Controlled Key Vulnerability. Upgrade to Apply mitigations or fixed release per vendor/CISA KEV instructions and remove the vulnerable command-injection pattern.
CVE-2026-55418 - FastGPT is an open source AI knowledge base platform
High remediation recipe for FastGPT is an open source AI knowledge base platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-55635 - DataEase is an open source data visualization and analysis tool
High remediation recipe for DataEase is an open source data visualization and analysis tool. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-56290 - Joomlack Page Builder Improper Access Control Vulnerability
High remediation recipe for Joomlack Page Builder Improper Access Control Vulnerability. Upgrade to Apply mitigations or fixed release per vendor/CISA KEV instructions and remove the vulnerable command-injection pattern.
CVE-2026-56811 - Allocation of Resources Without Limits or Throttling vulnerability in phoenixframework phoenix (Phoenix.Socket
High remediation recipe for Allocation of Resources Without Limits or Throttling vulnerability in phoenixframework phoenix (Phoenix.Socket. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-57851 - MSI Feature Manager contains a local privilege escalation vulnerability in the KernCoreLib64.sys kernel driver
High remediation recipe for MSI Feature Manager contains a local privilege escalation vulnerability in the KernCoreLib64.sys kernel driver. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58384 - A flaw was found in GIMP's PSD parser. An integer overflow in read_RLE_channel() can cause an undersized heap
High remediation recipe for A flaw was found in GIMP's PSD parser. An integer overflow in read_RLE_channel() can cause an undersized heap. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-59704 - Cap's GET /api/video/ai endpoint fails to validate user ownership or membership before returning private video
High remediation recipe for Cap's GET /api/video/ai endpoint fails to validate user ownership or membership before returning private video. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-59706 - mem0 contains unauthenticated config API endpoints that expose LLM API keys in plaintext and allow server-side
Critical remediation recipe for mem0 contains unauthenticated config API endpoints that expose LLM API keys in plaintext and allow server-side. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-59707 - LocalAI contains an unauthenticated server-side request forgery vulnerability in the POST /models/apply endpoi
Critical remediation recipe for LocalAI contains an unauthenticated server-side request forgery vulnerability in the POST /models/apply endpoi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-59708 - The GET /api/v1/public/:accessId/portfolio endpoint in ghostfolio accepts private access IDs without validatin
High remediation recipe for The GET /api/v1/public/:accessId/portfolio endpoint in ghostfolio accepts private access IDs without validatin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-11405 - The web server binary /bin/httpd contains a hidden backdoor authentication mechanism in the login() function a
Critical remediation recipe for The web server binary /bin/httpd contains a hidden backdoor authentication mechanism in the login() function a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14536 - Improper enforcement of a mandatory multi-factor authentication policy in Devolutions Server 2026.2.9.0 allows
High remediation recipe for Improper enforcement of a mandatory multi-factor authentication policy in Devolutions Server 2026.2.9.0 allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-25271 - Memory Corruption when processing asynchronous input parameters due to improper handling of modified values be
High remediation recipe for Memory Corruption when processing asynchronous input parameters due to improper handling of modified values be. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40138 - A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Suppo
High remediation recipe for A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Suppo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40139 - A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Suppo
Critical remediation recipe for A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Suppo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40140 - BeyondTrust Remote Support and Privileged Remote Access contain a high-severity pre-authentication vulnerabili
High remediation recipe for BeyondTrust Remote Support and Privileged Remote Access contain a high-severity pre-authentication vulnerabili. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40141 - A high-severity vulnerability exists in a web application component of BeyondTrust Remote Support and Privileg
Critical remediation recipe for A high-severity vulnerability exists in a web application component of BeyondTrust Remote Support and Privileg. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-44937 - Potential forgery of webhook requests when using a unauthenticated webhook in SUSE Rancher Fleet 0.15 before 0
High remediation recipe for Potential forgery of webhook requests when using a unauthenticated webhook in SUSE Rancher Fleet 0.15 before 0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-54763 - Traefik is an HTTP reverse proxy and load balancer
Critical remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in versions v2.11.51 and remove the vulnerable authz pattern.
CVE-2026-54765 - Traefik is an open source HTTP reverse proxy and load balancer
High remediation recipe for Traefik is an open source HTTP reverse proxy and load balancer. Upgrade to fixed in version v3.7.6. and remove the vulnerable command-injection pattern.
CVE-2026-55574 - vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs
High remediation recipe for vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Upgrade to fixed in version 0.24.0. and remove the vulnerable authz pattern.
CVE-2026-58380 - A flaw was found in GIMP's PNM file format parser
High remediation recipe for A flaw was found in GIMP's PNM file format parser. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59712 - Leantime's Users::getUser method in the JSON-RPC API lacks proper authorization checks, allowing authenticated
High remediation recipe for Leantime's Users::getUser method in the JSON-RPC API lacks proper authorization checks, allowing authenticated. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.
CVE-2026-59713 - Leantime contains an OIDC login CSRF vulnerability in the verifyState() method that unconditionally returns tr
High remediation recipe for Leantime contains an OIDC login CSRF vulnerability in the verifyState() method that unconditionally returns tr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-9181 - Esri ArcGIS Server contains a directory traversal vulnerability
Critical remediation recipe for Esri ArcGIS Server contains a directory traversal vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-10536 - A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tr
Critical remediation recipe for A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tr. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-11352 - An issue in curl’s QUIC UDP receive function allows a malicious HTTP/3 server to trigger a remote denial of se
High remediation recipe for An issue in curl’s QUIC UDP receive function allows a malicious HTTP/3 server to trigger a remote denial of se. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable dos pattern.
CVE-2026-11564 - libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of the
Critical remediation recipe for libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of the. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-11586 - By default, curl automatically responds to WebSocket PING frames
High remediation recipe for By default, curl automatically responds to WebSocket PING frames. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-12064 - When a user invokes curl using a schemeless URL combined with --proto-default sftp (or scp), a disconnect oc
High remediation recipe for When a user invokes curl using a schemeless URL combined with --proto-default sftp (or scp), a disconnect oc. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-12481 - A vulnerability in keras-team/keras version 3.14.0 allows for arbitrary code execution due to improper handlin
Critical remediation recipe for A vulnerability in keras-team/keras version 3.14.0 allows for arbitrary code execution due to improper handlin. Upgrade to version 3.14.0 allows for arbitrary code execution due to improper h and remove the vulnerable command-injection pattern.
CVE-2026-13053 - An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged u
High remediation recipe for An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-13054 - A path traversal vulnerability in the WatchGuard Fireware OS Management Web UI allows a privileged authenticat
High remediation recipe for A path traversal vulnerability in the WatchGuard Fireware OS Management Web UI allows a privileged authenticat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-13079 - A local privilege escalation vulnerability in the WatchGuard Mobile VPN with SSL client for Windows allows a l
High remediation recipe for A local privilege escalation vulnerability in the WatchGuard Mobile VPN with SSL client for Windows allows a l. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13383 - An Out-of-bounds Write vulnerability in WatchGuard Fireware OS ikestubd process could allow an authenticated p
High remediation recipe for An Out-of-bounds Write vulnerability in WatchGuard Fireware OS ikestubd process could allow an authenticated p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-13384 - An Out-of-bounds Write vulnerability in WatchGuard Fireware OS wgagent process could allow an authenticated pr
High remediation recipe for An Out-of-bounds Write vulnerability in WatchGuard Fireware OS wgagent process could allow an authenticated pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-14544 - A flaw was found in HPLIP (HP Linux Imaging and Printing Software)
Critical remediation recipe for A flaw was found in HPLIP (HP Linux Imaging and Printing Software). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-26307 - Gitea versions before 1.25.5 do not enforce a timeout on git grep searches, allowing expensive searches to con
High remediation recipe for Gitea versions before 1.25.5 do not enforce a timeout on git grep searches, allowing expensive searches to con. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-47896 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache Lucene
High remediation recipe for Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache Lucene. Upgrade to upgrade to version 4.8.0-beta00018 and remove the vulnerable path-traversal pattern.
CVE-2026-47897 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache Lucene
High remediation recipe for Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache Lucene. Upgrade to upgrade to version 4.8.0-beta00018 and remove the vulnerable path-traversal pattern.
CVE-2026-47898 - Improper Restriction of XML External Entity Reference vulnerability in Apache Lucene.Net (Lucene.Net.Analysis
Critical remediation recipe for Improper Restriction of XML External Entity Reference vulnerability in Apache Lucene.Net (Lucene.Net.Analysis. Upgrade to upgrade to version 4.8.0-beta00018 and remove the vulnerable authz pattern.
CVE-2026-57983 - Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security
High remediation recipe for Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass a security. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57984 - Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a netwo
High remediation recipe for Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a netwo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57985 - Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o
High remediation recipe for Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58289 - Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an una
Critical remediation recipe for Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an una. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-58293 - External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to ex
High remediation recipe for External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to ex. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58297 - Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unau
High remediation recipe for Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unau. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-8926 - When asking curl to use a .netrc file to find credentials and at the same time specifying a URL with a usern
Critical remediation recipe for When asking curl to use a .netrc file to find credentials and at the same time specifying a URL with a usern. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.
CVE-2026-38969 - ruby webrick through v1.9.2 WEBrick reparses trailer Content-Length into canonical request state, enabling req
High remediation recipe for ruby webrick through v1.9.2 WEBrick reparses trailer Content-Length into canonical request state, enabling req. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable request-smuggling pattern.
CVE-2026-38971 - ardupilot through Plane-4.6.3 was found to contain an out-of-bounds read issue in libraries/GCS_MAVLink/GCS_se
Critical remediation recipe for ardupilot through Plane-4.6.3 was found to contain an out-of-bounds read issue in libraries/GCS_MAVLink/GCS_se. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-41106 - Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate
Critical remediation recipe for Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-44941 - A relative path traversal in the keyhint option in repomd.xml parsing of libzypp before 17.38.12 can be used
High remediation recipe for A relative path traversal in the keyhint option in repomd.xml parsing of libzypp before 17.38.12 can be used. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-45499 - Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a
Critical remediation recipe for Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-54401 - A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery (S
High remediation recipe for A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery (S. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-54402 - A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vul
Critical remediation recipe for A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vul. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-54408 - A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in U
High remediation recipe for A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in U. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-54409 - A malicious actor with access to the network and under certain conditions could exploit an Improper Initializa
High remediation recipe for A malicious actor with access to the network and under certain conditions could exploit an Improper Initializa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-55112 - A malicious actor with access to the network and low privileges and under certain conditions could exploit an
High remediation recipe for A malicious actor with access to the network and low privileges and under certain conditions could exploit an. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55115 - A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery (S
Critical remediation recipe for A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery (S. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-55116 - A malicious actor with access to the network and under certain network configurations could exploit an Imprope
Critical remediation recipe for A malicious actor with access to the network and under certain network configurations could exploit an Imprope. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57100 - Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized a
Critical remediation recipe for Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-9272 - In Progress Flowmon ADS versions prior to 12.5.6 and 13.0.5, a vulnerability exists whereby an adversary who i
High remediation recipe for In Progress Flowmon ADS versions prior to 12.5.6 and 13.0.5, a vulnerability exists whereby an adversary who i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-23350 - NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual
Critical remediation recipe for NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-23351 - NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual
Critical remediation recipe for NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-10538 - Messaging consumer functionality allows deserialization of user-controlled data without sufficient restriction
High remediation recipe for Messaging consumer functionality allows deserialization of user-controlled data without sufficient restriction. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-10539 - A Control-M/Server communication command does not sufficiently filter or sanitize user-supplied input
Critical remediation recipe for A Control-M/Server communication command does not sufficiently filter or sanitize user-supplied input. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-12575 - DVP80ES3 with Improper Resource Shutdown or Release vulnerability
High remediation recipe for DVP80ES3 with Improper Resource Shutdown or Release vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-12576 - DVP80ES3 with Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnera
High remediation recipe for DVP80ES3 with Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnera. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-12579 - AS228T with Authentication Bypass Vulnerability
High remediation recipe for AS228T with Authentication Bypass Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-14191 - An out-of-bounds heap write exists in the RAR5 recovery-volume (.rev) parser in WinRAR and UnRAR (RecVolumes5:
High remediation recipe for An out-of-bounds heap write exists in the RAR5 recovery-volume (.rev) parser in WinRAR and UnRAR (RecVolumes5:. Upgrade to fixed in the RAR3 path only in WinRAR 6.23 and remove the vulnerable authz pattern.
CVE-2026-14193 - DVP80ES300T with Improper Validation of Array Index Vulnerability
High remediation recipe for DVP80ES300T with Improper Validation of Array Index Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14198 - @fastify/middie versions 9.1.0 through 9.3.2 decode the encoded slash %2F inside path parameter values before
Critical remediation recipe for @fastify/middie versions 9.1.0 through 9.3.2 decode the encoded slash %2F inside path parameter values before. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-20191 - A vulnerability in Cisco Catalyst Center could allow an unauthenticated, remote attacker to read arbitrary fil
High remediation recipe for A vulnerability in Cisco Catalyst Center could allow an unauthenticated, remote attacker to read arbitrary fil. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20213 - A vulnerability in the PE file format parser of ClamAV could allow an unauthenticated, remote attacker to caus
High remediation recipe for A vulnerability in the PE file format parser of ClamAV could allow an unauthenticated, remote attacker to caus. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20214 - A vulnerability in the FSG file format parser of ClamAV could allow an unauthenticated, remote attacker to cau
High remediation recipe for A vulnerability in the FSG file format parser of ClamAV could allow an unauthenticated, remote attacker to cau. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20215 - A vulnerability in the 7z file format parser of ClamAV could allow an unauthenticated, remote attacker to caus
High remediation recipe for A vulnerability in the 7z file format parser of ClamAV could allow an unauthenticated, remote attacker to caus. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20216 - A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attac
High remediation recipe for A vulnerability in the InstallShield file format parser of ClamAV could allow an unauthenticated, remote attac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-20217 - A vulnerability in the PESpin file format parser of ClamAV could allow an unauthenticated, remote attacker to
High remediation recipe for A vulnerability in the PESpin file format parser of ClamAV could allow an unauthenticated, remote attacker to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20243 - A vulnerability in the ALZ file format parser of ClamAV could allow an unauthenticated, remote attacker to cau
High remediation recipe for A vulnerability in the ALZ file format parser of ClamAV could allow an unauthenticated, remote attacker to cau. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20244 - A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cau
High remediation recipe for A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cau. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20458 - In Modem, there is a possible memory corruption due to a missing bounds check
High remediation recipe for In Modem, there is a possible memory corruption due to a missing bounds check. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-23537 - A vulnerability has been identified in the Feast Feature Server’s /save-document endpoint that allows an una
Critical remediation recipe for A vulnerability has been identified in the Feast Feature Server’s /save-document endpoint that allows an una. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-24240 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt
High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-24242 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause server-side request fo
High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause server-side request fo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-24243 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt
High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-24244 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt
High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-24245 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt
High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-24246 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of dy
High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of dy. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-24247 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt
High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-24248 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of co
High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-24249 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt
High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of unt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-24250 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper validation of
High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper validation of. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-24251 - NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of dy
High remediation recipe for NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of dy. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-24260 - NVIDIA Container Toolkit for Linux contains a vulnerability where an attacker could cause a time-of-check time
High remediation recipe for NVIDIA Container Toolkit for Linux contains a vulnerability where an attacker could cause a time-of-check time. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-24264 - NVIDIA Triton Inference Server for Linux contains a vulnerability where an attacker can cause improper handlin
High remediation recipe for NVIDIA Triton Inference Server for Linux contains a vulnerability where an attacker can cause improper handlin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-24270 - NVIDIA AIStore framework contains a vulnerability where an attacker could bypass authentication
Critical remediation recipe for NVIDIA AIStore framework contains a vulnerability where an attacker could bypass authentication. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-50043 - Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in Sky
High remediation recipe for Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in Sky. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-50195 - containerd is an open-source container runtime
Critical remediation recipe for containerd is an open-source container runtime. Upgrade to fixed in versions 2.3.2 and remove the vulnerable command-injection pattern.
CVE-2026-5120 - A Race Condition vulnerability affecting BIOVIA Workbook from Release 2021 through Release 2026 could allow a
High remediation recipe for A Race Condition vulnerability affecting BIOVIA Workbook from Release 2021 through Release 2026 could allow a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-5136 - A flaw was found in Foreman. The Usergroup model in Foreman does not properly validate role assignments agains
High remediation recipe for A flaw was found in Foreman. The Usergroup model in Foreman does not properly validate role assignments agains. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53492 - containerd is an open-source container runtime
Critical remediation recipe for containerd is an open-source container runtime. Upgrade to fixed in versions 2.3.2 and remove the vulnerable command-injection pattern.
CVE-2026-54592 - Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem
High remediation recipe for Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. Upgrade to fixed in version 3.17.3. and remove the vulnerable mcp-auth pattern.
CVE-2026-57692 - Incorrect Privilege Assignment vulnerability in LCweb PrivateContent allows Privilege Escalation
Critical remediation recipe for Incorrect Privilege Assignment vulnerability in LCweb PrivateContent allows Privilege Escalation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58126 - PACSgear PACS Scan 5.2.1 contains an unauthenticated remote code execution vulnerability that allows remote at
Critical remediation recipe for PACSgear PACS Scan 5.2.1 contains an unauthenticated remote code execution vulnerability that allows remote at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-58127 - PACSgear MediaWriter 5.2.1 exposes a .NET Remoting TCP service on port 9000 via PacsgearMediaServerEngine.dll,
Critical remediation recipe for PACSgear MediaWriter 5.2.1 exposes a .NET Remoting TCP service on port 9000 via PacsgearMediaServerEngine.dll,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-58452 - JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerabi
High remediation recipe for JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain an OS command injection vulnerabi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-58453 - JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerab
Critical remediation recipe for JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a hard-coded credentials vulnerab. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-58454 - JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a remote code execution vulnerabi
High remediation recipe for JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware 4.8.30.57701411 contain a remote code execution vulnerabi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-6687 - FatFs R0.16 and earlier contains a stack overflow bug in f_getlabel() because exFAT label length (XDIR_NumLabe
High remediation recipe for FatFs R0.16 and earlier contains a stack overflow bug in f_getlabel() because exFAT label length (XDIR_NumLabe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-6688 - FatFs R0.16 and earlier contains a downstream-caller vulnerability pattern associated with FatFs long filename
High remediation recipe for FatFs R0.16 and earlier contains a downstream-caller vulnerability pattern associated with FatFs long filename. Upgrade to fixed buffers without bounds checks and remove the vulnerable authz pattern.
CVE-2026-7829 - UltraVNC repeater through 1.8.2.2 contains a post-authentication out-of-bounds write in the allow/deny rule pa
High remediation recipe for UltraVNC repeater through 1.8.2.2 contains a post-authentication out-of-bounds write in the allow/deny rule pa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-7831 - UltraVNC viewer through 1.8.2.2 contains an off-by-one stack buffer overflow in the RFB ServerInit message han
High remediation recipe for UltraVNC viewer through 1.8.2.2 contains an off-by-one stack buffer overflow in the RFB ServerInit message han. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-7838 - UltraVNC viewer through 1.8.2.2 contains an integer overflow leading to a heap buffer overflow in the RFB prot
High remediation recipe for UltraVNC viewer through 1.8.2.2 contains an integer overflow leading to a heap buffer overflow in the RFB prot. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-7839 - UltraVNC repeater through 1.8.2.2 initializes the HTTP administration server with a hardcoded default password
Critical remediation recipe for UltraVNC repeater through 1.8.2.2 initializes the HTTP administration server with a hardcoded default password. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-7840 - UltraVNC repeater through 1.8.2.2 contains a global buffer overflow in its embedded HTTP administration server
Critical remediation recipe for UltraVNC repeater through 1.8.2.2 contains a global buffer overflow in its embedded HTTP administration server. Upgrade to fixed 1000-byte global buffer and remove the vulnerable authz pattern.
CVE-2025-24815 - Nokia MantaRay NM is subject to an unrestricted file upload vulnerability due to insufficient file type valida
High remediation recipe for Nokia MantaRay NM is subject to an unrestricted file upload vulnerability due to insufficient file type valida. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-36359 - IBM DevOps Automation 1.0.1 and IBM DevOps Loop 1.0.2 does not invalidate session IDs after expiration which c
High remediation recipe for IBM DevOps Automation 1.0.1 and IBM DevOps Loop 1.0.2 does not invalidate session IDs after expiration which c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-7406 - Nokia MantaRay NM is vulnerable to a sudo privilege escalation vulnerability where a local attacker possessing
High remediation recipe for Nokia MantaRay NM is vulnerable to a sudo privilege escalation vulnerability where a local attacker possessing. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-10109 - IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to remote code execution due to imprope
Critical remediation recipe for IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to remote code execution due to imprope. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-10129 - IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) protection bypass vulnerabi
High remediation recipe for IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) protection bypass vulnerabi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-10134 - IBM Langflow OSS 1.0.0 through 1.9.3 allows an attacker to read every secret available to the Langflow process
Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.9.3 allows an attacker to read every secret available to the Langflow process. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-10140 - IBM Langflow OSS 1.0.0 through 1.10.0 voice mode contains improper shared-state handling that allows reuse of
Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.10.0 voice mode contains improper shared-state handling that allows reuse of. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-10546 - IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) vulnerability in the URL co
High remediation recipe for IBM Langflow OSS 1.0.0 through 1.9.3 contains a Server-Side Request Forgery (SSRF) vulnerability in the URL co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-10560 - IBM Langflow OSS 1.0.0 through 1.9.6 contains a missing authentication vulnerability in /api/v1/build_public_t
High remediation recipe for IBM Langflow OSS 1.0.0 through 1.9.6 contains a missing authentication vulnerability in /api/v1/build_public_t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-10564 - IBM Langflow OSS 1.0.0 through 1.9.6 contains a Server-Side Request Forgery (SSRF)
High remediation recipe for IBM Langflow OSS 1.0.0 through 1.9.6 contains a Server-Side Request Forgery (SSRF). Upgrade to version 1.9.3. An authenticated attacker can exploit this to access and remove the vulnerable command-injection pattern.
CVE-2026-11541 - IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through
High remediation recipe for IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable request-smuggling pattern.
CVE-2026-11546 - IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forg
High remediation recipe for IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forg. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-11594 - IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin
High remediation recipe for IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-11708 - IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin
Critical remediation recipe for IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-11712 - IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin
Critical remediation recipe for IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the admin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-11714 - IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forg
High remediation recipe for IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forg. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-11806 - IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 is affected by an arbitrary file read vul
High remediation recipe for IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 is affected by an arbitrary file read vul. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-13207 - FUXA versions 1.3.1 and prior contain an authentication bypass vulnerability via dot-segment path normalizatio
High remediation recipe for FUXA versions 1.3.1 and prior contain an authentication bypass vulnerability via dot-segment path normalizatio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13449 - IBM Business Automation Manager Open Editions 9.0.0 through 9.4.2 is vulnerable to an XML external entity inje
High remediation recipe for IBM Business Automation Manager Open Editions 9.0.0 through 9.4.2 is vulnerable to an XML external entity inje. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-13759 - IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 ships three ObjectInputStream subclasses (WsObjectInputStr
High remediation recipe for IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 ships three ObjectInputStream subclasses (WsObjectInputStr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable prototype-pollution pattern.
CVE-2026-13766 - DBIx::QuickORM versions before 0.000026 for Perl allow SQL injection via unquoted SQL identifiers
Critical remediation recipe for DBIx::QuickORM versions before 0.000026 for Perl allow SQL injection via unquoted SQL identifiers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable prototype-pollution pattern.
CVE-2026-13772 - IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 's Object Query Language engine resolves attacker-supplied
High remediation recipe for IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 's Object Query Language engine resolves attacker-supplied. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable prototype-pollution pattern.
CVE-2026-13774 - Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user
High remediation recipe for Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13775 - Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised th
Critical remediation recipe for Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13776 - Type Confusion in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t
Critical remediation recipe for Type Confusion in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13777 - Insufficient validation of untrusted input in iOSWeb in Google Chrome on iOS prior to 150.0.7871.47 allowed a
High remediation recipe for Insufficient validation of untrusted input in iOSWeb in Google Chrome on iOS prior to 150.0.7871.47 allowed a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13778 - Use after free in WebUSB in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to execute ar
High remediation recipe for Use after free in WebUSB in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to execute ar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13779 - Use after free in Chromoting in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a remote attacker to
High remediation recipe for Use after free in Chromoting in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a remote attacker to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13780 - Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote a
Critical remediation recipe for Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13781 - Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote at
Critical remediation recipe for Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13782 - Use after free in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromise
Critical remediation recipe for Use after free in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromise. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13783 - Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user
High remediation recipe for Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13786 - Use after free in Ozone in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary
High remediation recipe for Use after free in Ozone in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13787 - Use after free in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to e
High remediation recipe for Use after free in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13788 - Use after free in Fullscreen in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to e
High remediation recipe for Use after free in Fullscreen in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13791 - Insufficient validation of untrusted input in Downloads in Google Chrome prior to 150.0.7871.47 allowed an att
High remediation recipe for Insufficient validation of untrusted input in Downloads in Google Chrome prior to 150.0.7871.47 allowed an att. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13794 - Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.4
High remediation recipe for Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13797 - Insufficient validation of untrusted input in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a rem
Critical remediation recipe for Insufficient validation of untrusted input in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a rem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13798 - Heap buffer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had c
Critical remediation recipe for Heap buffer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13799 - Use after free in QUIC in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploi
High remediation recipe for Use after free in QUIC in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13800 - Inappropriate implementation in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local att
High remediation recipe for Inappropriate implementation in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local att. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13801 - Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compr
High remediation recipe for Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13802 - Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user
High remediation recipe for Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13803 - Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compro
High remediation recipe for Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compro. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13804 - Use after free in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had comprom
High remediation recipe for Use after free in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had comprom. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13805 - Use after free in GFX in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to execute arbi
High remediation recipe for Use after free in GFX in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to execute arbi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13806 - Insufficient validation of untrusted input in Accessibility in Google Chrome prior to 150.0.7871.47 allowed a
High remediation recipe for Insufficient validation of untrusted input in Accessibility in Google Chrome prior to 150.0.7871.47 allowed a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13807 - Use after free in Import in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convince
High remediation recipe for Use after free in Import in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convince. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13811 - Use after free in IME in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary c
High remediation recipe for Use after free in IME in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13813 - Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a rem
High remediation recipe for Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a rem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-13814 - Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user
High remediation recipe for Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13815 - Use after free in Blink in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary
High remediation recipe for Use after free in Blink in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13817 - Insufficient validation of untrusted input in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote at
High remediation recipe for Insufficient validation of untrusted input in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13819 - Out of bounds read in ANGLE in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had c
High remediation recipe for Out of bounds read in ANGLE in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13821 - Use after free in Canvas in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar
High remediation recipe for Use after free in Canvas in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13823 - Use after free in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t
High remediation recipe for Use after free in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13824 - Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacke
High remediation recipe for Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacke. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-13825 - Uninitialized Use in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exp
High remediation recipe for Uninitialized Use in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13827 - Use after free in Updater in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to perform p
High remediation recipe for Use after free in Updater in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to perform p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13829 - Insufficient validation of untrusted input in Settings in Google Chrome on Windows prior to 150.0.7871.47 allo
High remediation recipe for Insufficient validation of untrusted input in Settings in Google Chrome on Windows prior to 150.0.7871.47 allo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13830 - Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to exe
High remediation recipe for Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to exe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13831 - Out of bounds read and write in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had
High remediation recipe for Out of bounds read and write in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13832 - Use after free in Headless in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromis
High remediation recipe for Use after free in Headless in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromis. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13834 - Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote a
High remediation recipe for Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13835 - Inappropriate implementation in XML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to poten
High remediation recipe for Inappropriate implementation in XML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to poten. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13841 - Integer overflow in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised
High remediation recipe for Integer overflow in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13843 - Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 al
Critical remediation recipe for Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13844 - Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perfo
High remediation recipe for Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perfo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13845 - Use after free in DOM in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary c
High remediation recipe for Use after free in DOM in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13846 - Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had comprom
Critical remediation recipe for Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had comprom. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13848 - Use after free in Forms in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary
High remediation recipe for Use after free in Forms in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13849 - Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 al
High remediation recipe for Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13850 - Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 al
High remediation recipe for Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13851 - Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4
Critical remediation recipe for Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13852 - Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4
Critical remediation recipe for Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13853 - Use after free in Journeys in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromis
Critical remediation recipe for Use after free in Journeys in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromis. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13854 - Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who had com
Critical remediation recipe for Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who had com. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13855 - Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinc
High remediation recipe for Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13856 - Insufficient validation of untrusted input in Speech in Google Chrome on Android prior to 150.0.7871.47 allowe
High remediation recipe for Insufficient validation of untrusted input in Speech in Google Chrome on Android prior to 150.0.7871.47 allowe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13859 - Inappropriate implementation in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to pot
Critical remediation recipe for Inappropriate implementation in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to pot. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13861 - Use after free in Core in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t
Critical remediation recipe for Use after free in Core in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13863 - Insufficient validation of untrusted input in CustomTabs in Google Chrome on Android prior to 150.0.7871.47 al
High remediation recipe for Insufficient validation of untrusted input in CustomTabs in Google Chrome on Android prior to 150.0.7871.47 al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13864 - Insufficient policy enforcement in WebHID in Google Chrome prior to 150.0.7871.47 allowed an attacker who conv
High remediation recipe for Insufficient policy enforcement in WebHID in Google Chrome prior to 150.0.7871.47 allowed an attacker who conv. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-13869 - Use after free in Device in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had
Critical remediation recipe for Use after free in Device in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13870 - Use after free in WebView in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to exec
High remediation recipe for Use after free in WebView in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to exec. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13872 - Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4
Critical remediation recipe for Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13878 - Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had c
Critical remediation recipe for Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13880 - Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had comprom
Critical remediation recipe for Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had comprom. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13882 - Race in USB in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer
Critical remediation recipe for Race in USB in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13883 - Type Confusion in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially perfo
Critical remediation recipe for Type Confusion in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially perfo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13884 - Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a local attacker to execute arb
High remediation recipe for Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a local attacker to execute arb. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13885 - Use after free in Skia in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to execute
High remediation recipe for Use after free in Skia in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to execute. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13888 - Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi
High remediation recipe for Use after free in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13891 - Insufficient validation of untrusted input in Extensions in Google Chrome prior to 150.0.7871.47 allowed a rem
High remediation recipe for Insufficient validation of untrusted input in Extensions in Google Chrome prior to 150.0.7871.47 allowed a rem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13897 - Insufficient policy enforcement in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacke
High remediation recipe for Insufficient policy enforcement in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacke. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-13898 - Use after free in Cast Receiver in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute a
High remediation recipe for Use after free in Cast Receiver in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13899 - Use after free in HTML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary
High remediation recipe for Use after free in HTML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13901 - Insufficient policy enforcement in Serial in Google Chrome prior to 150.0.7871.47 allowed a remote attacker wh
Critical remediation recipe for Insufficient policy enforcement in Serial in Google Chrome prior to 150.0.7871.47 allowed a remote attacker wh. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-13903 - Insufficient policy enforcement in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed a remote attacker
High remediation recipe for Insufficient policy enforcement in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed a remote attacker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-13909 - Insufficient policy enforcement in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker
Critical remediation recipe for Insufficient policy enforcement in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-13915 - Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who
High remediation recipe for Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13918 - Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to p
High remediation recipe for Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13925 - Inappropriate implementation in Downloads in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote
High remediation recipe for Inappropriate implementation in Downloads in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13927 - Insufficient validation of untrusted input in UI in Google Chrome on Android prior to 150.0.7871.47 allowed a
High remediation recipe for Insufficient validation of untrusted input in UI in Google Chrome on Android prior to 150.0.7871.47 allowed a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13928 - Insufficient validation of untrusted input in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a rem
High remediation recipe for Insufficient validation of untrusted input in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a rem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13934 - Insufficient validation of untrusted input in Dawn in Google Chrome on Android prior to 150.0.7871.47 allowed
Critical remediation recipe for Insufficient validation of untrusted input in Dawn in Google Chrome on Android prior to 150.0.7871.47 allowed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13965 - Use after free in Oilpan in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar
High remediation recipe for Use after free in Oilpan in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13967 - Heap buffer overflow in V8 in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitr
High remediation recipe for Heap buffer overflow in V8 in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13968 - Insufficient validation of untrusted input in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remot
High remediation recipe for Insufficient validation of untrusted input in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remot. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14005 - Use after free in Omnibox in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who con
High remediation recipe for Use after free in Omnibox in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who con. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14006 - Use after free in Navigation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi
High remediation recipe for Use after free in Navigation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14009 - Inappropriate implementation in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to
High remediation recipe for Inappropriate implementation in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14011 - Out of bounds read in SurfaceCapture in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perf
High remediation recipe for Out of bounds read in SurfaceCapture in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perf. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14018 - Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perfo
High remediation recipe for Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perfo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14024 - Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinc
High remediation recipe for Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14025 - Use after free in Views in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced
High remediation recipe for Use after free in Views in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14027 - Use after free in SignIn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a use
High remediation recipe for Use after free in SignIn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a use. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14032 - Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed an attacker who convinced a
High remediation recipe for Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed an attacker who convinced a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14036 - Insufficient policy enforcement in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed a remote attacker
High remediation recipe for Insufficient policy enforcement in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed a remote attacker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-14037 - Insufficient policy enforcement in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who h
Critical remediation recipe for Insufficient policy enforcement in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who h. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-14038 - Insufficient validation of untrusted input in New Tab Page in Google Chrome prior to 150.0.7871.47 allowed a r
Critical remediation recipe for Insufficient validation of untrusted input in New Tab Page in Google Chrome prior to 150.0.7871.47 allowed a r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14040 - Use after free in BrowserTag in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user
High remediation recipe for Use after free in BrowserTag in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14041 - Insufficient policy enforcement in Serial in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to
High remediation recipe for Insufficient policy enforcement in Serial in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-14043 - Use after free in GetUserMedia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compr
Critical remediation recipe for Use after free in GetUserMedia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14044 - Use after free in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised
Critical remediation recipe for Use after free in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14055 - Insufficient validation of untrusted input in Device Trust in Google Chrome on Windows prior to 150.0.7871.47
Critical remediation recipe for Insufficient validation of untrusted input in Device Trust in Google Chrome on Windows prior to 150.0.7871.47. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14056 - Insufficient validation of untrusted input in Media in Google Chrome prior to 150.0.7871.47 allowed a remote a
Critical remediation recipe for Insufficient validation of untrusted input in Media in Google Chrome prior to 150.0.7871.47 allowed a remote a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14060 - Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 al
High remediation recipe for Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14064 - Use after free in PageInfo in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who co
High remediation recipe for Use after free in PageInfo in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14067 - Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to e
High remediation recipe for Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14078 - Insufficient validation of untrusted input in WebRTC in Google Chrome prior to 150.0.7871.47 allowed a remote
High remediation recipe for Insufficient validation of untrusted input in WebRTC in Google Chrome prior to 150.0.7871.47 allowed a remote. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14084 - Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 150.0.7871.47 allowed a rem
High remediation recipe for Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 150.0.7871.47 allowed a rem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14086 - Insufficient policy enforcement in HID in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to ex
High remediation recipe for Insufficient policy enforcement in HID in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to ex. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-14087 - Heap buffer overflow in WebNN in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who
High remediation recipe for Heap buffer overflow in WebNN in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14090 - Insufficient validation of untrusted input in CameraCapture in Google Chrome on ChromeOS prior to 150.0.7871.4
Critical remediation recipe for Insufficient validation of untrusted input in CameraCapture in Google Chrome on ChromeOS prior to 150.0.7871.4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14091 - Use after free in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitr
High remediation recipe for Use after free in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14093 - Use after free in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t
Critical remediation recipe for Use after free in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14094 - Use after free in Installer in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to per
High remediation recipe for Use after free in Installer in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to per. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14095 - Insufficient policy enforcement in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker w
Critical remediation recipe for Insufficient policy enforcement in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker w. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-14097 - Inappropriate implementation in WebAppInstalls in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote
Critical remediation recipe for Inappropriate implementation in WebAppInstalls in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14099 - Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who
High remediation recipe for Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14101 - Insufficient policy enforcement in Sandbox in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote att
Critical remediation recipe for Insufficient policy enforcement in Sandbox in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote att. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-14102 - Use after free in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially e
High remediation recipe for Use after free in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14104 - Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 150.0.7871.47 allowed a
High remediation recipe for Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 150.0.7871.47 allowed a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14105 - Insufficient policy enforcement in Speech in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to
Critical remediation recipe for Insufficient policy enforcement in Speech in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-14106 - Insufficient validation of untrusted input in Text in Google Chrome on Android prior to 150.0.7871.47 allowed
Critical remediation recipe for Insufficient validation of untrusted input in Text in Google Chrome on Android prior to 150.0.7871.47 allowed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14107 - Use after free in Scheduling in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi
High remediation recipe for Use after free in Scheduling in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14108 - Use after free in PDFium in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar
High remediation recipe for Use after free in PDFium in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14109 - Insufficient policy enforcement in Mojo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who
Critical remediation recipe for Insufficient policy enforcement in Mojo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-14111 - Use after free in WebProtect in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user
High remediation recipe for Use after free in WebProtect in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14113 - Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had
Critical remediation recipe for Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14114 - Inappropriate implementation in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a lo
High remediation recipe for Inappropriate implementation in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a lo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14115 - Insufficient validation of untrusted input in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote at
High remediation recipe for Insufficient validation of untrusted input in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14120 - Inappropriate implementation in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who
Critical remediation recipe for Inappropriate implementation in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14121 - Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to exe
High remediation recipe for Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to exe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14122 - Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.4
High remediation recipe for Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.4. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14124 - Inappropriate implementation in CredentialProvider in Google Chrome on Windows prior to 150.0.7871.47 allowed
High remediation recipe for Inappropriate implementation in CredentialProvider in Google Chrome on Windows prior to 150.0.7871.47 allowed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14149 - Use after free in Audio in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to execute
High remediation recipe for Use after free in Audio in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to execute. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14151 - Inappropriate implementation in AI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had c
Critical remediation recipe for Inappropriate implementation in AI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14152 - Out of bounds read and write in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who ha
Critical remediation recipe for Out of bounds read and write in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who ha. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14161 - Hospital Quening Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unaut
High remediation recipe for Hospital Quening Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unaut. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14162 - Hospital Queuing Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unaut
Critical remediation recipe for Hospital Queuing Management developed by Advantech has a Sensitive Data Exposure vulnerability, allowing unaut. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14164 - A double free issue has been identified in libarchive's RAR5 reader
High remediation recipe for A double free issue has been identified in libarchive's RAR5 reader. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-14241 - Memory safety bugs present in Firefox 152.0.3
Critical remediation recipe for Memory safety bugs present in Firefox 152.0.3. Upgrade to fixed in Firefox 152.0.4. and remove the vulnerable authz pattern.
CVE-2026-35505 - An unauthenticated remote attacker can repeatedly send crafted connection requests to leak memory
High remediation recipe for An unauthenticated remote attacker can repeatedly send crafted connection requests to leak memory. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-41053 - Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provid
High remediation recipe for Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provid. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-44628 - An unauthenticated attacker can crash the worklist server with a single crafted query when the server has a va
High remediation recipe for An unauthenticated attacker can crash the worklist server with a single crafted query when the server has a va. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-48276 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous
Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48277 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha
Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48281 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha
Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48282 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Rest
Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Rest. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-48283 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous
Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48285 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerabi
High remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerabi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-48286 - Adobe Campaign Classic (ACC) versions 7.4.3 build 9396 and earlier are affected by an Incorrect Authorization
Critical remediation recipe for Adobe Campaign Classic (ACC) versions 7.4.3 build 9396 and earlier are affected by an Incorrect Authorization. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48307 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnera
High remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnera. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-48313 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Rest
Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Rest. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-48315 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha
Critical remediation recipe for ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability tha. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-49432 - Improper Input Validation vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp
High remediation recipe for Improper Input Validation vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Stomp. Upgrade to upgrade to version 6.2.7 or 5.19.8 and remove the vulnerable command-injection pattern.
CVE-2026-49434 - Improper Input Validation vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All
High remediation recipe for Improper Input Validation vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All. Upgrade to upgrade to version 6.2.7 or 5.19.8 and remove the vulnerable authz pattern.
CVE-2026-49877 - Improper Authorization vulnerability in Apache ActiveMQ
High remediation recipe for Improper Authorization vulnerability in Apache ActiveMQ. Upgrade to upgrade to version 6.2.7 or 5.19.8 and remove the vulnerable authz pattern.
CVE-2026-50003 - A malicious or compromised server can make a DCMTK client using bit-preserving C-GET storage mode write files
Critical remediation recipe for A malicious or compromised server can make a DCMTK client using bit-preserving C-GET storage mode write files. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50110 - Storage Concentrator (SC & SCVM) contains hardcoded credentials for numerous internal services embedded within
Critical remediation recipe for Storage Concentrator (SC & SCVM) contains hardcoded credentials for numerous internal services embedded within. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50254 - An unauthenticated remote attacker can repeatedly send a single crafted connection request to leak memory
High remediation recipe for An unauthenticated remote attacker can repeatedly send a single crafted connection request to leak memory. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50734 - Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ Client, Apache ActiveMQ, Apache A
High remediation recipe for Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ Client, Apache ActiveMQ, Apache A. Upgrade to upgrade to version 6.2.7 or 5.19.8 and remove the vulnerable dos pattern.
CVE-2026-50750 - Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ
High remediation recipe for Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ. Upgrade to upgrade to version 6.2.7 and remove the vulnerable dos pattern.
CVE-2026-52195 - Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a d
High remediation recipe for Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-52196 - Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a d
High remediation recipe for Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-52197 - An issue in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via
High remediation recipe for An issue in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-52868 - An unauthenticated attacker can read worklist records from a directory outside the intended per-AE worklist st
High remediation recipe for An unauthenticated attacker can read worklist records from a directory outside the intended per-AE worklist st. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53916 - Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache Acti
High remediation recipe for Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache Acti. Upgrade to upgrade to version 6.2.7 or 5.19.8 and remove the vulnerable authz pattern.
CVE-2026-53917 - Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache Acti
High remediation recipe for Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache Acti. Upgrade to upgrade to version 6.2.7 or 5.19.8 and remove the vulnerable dos pattern.
CVE-2026-54475 - Missing Authorization vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ
High remediation recipe for Missing Authorization vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. Upgrade to upgrade to version 6.2.7 and remove the vulnerable authz pattern.
CVE-2026-54672 - electron-updater allows for automatic updates for Electron apps
High remediation recipe for electron-updater allows for automatic updates for Electron apps. Upgrade to fixed in version 26.15.0. and remove the vulnerable authz pattern.
CVE-2026-55721 - Storage Concentrator (SC & SCVM) is vulnerable to SQL injection through cookie values processed by the login.p
Critical remediation recipe for Storage Concentrator (SC & SCVM) is vulnerable to SQL injection through cookie values processed by the login.p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56137 - RPG MAKER MV and MZ provided by Gotcha Gotcha Games Inc
High remediation recipe for RPG MAKER MV and MZ provided by Gotcha Gotcha Games Inc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-56278 - Flowise before 3.1.0 (affected versions 3.0.13 and earlier) uses a weak hardcoded default secret ('flowise') f
Critical remediation recipe for Flowise before 3.1.0 (affected versions 3.0.13 and earlier) uses a weak hardcoded default secret ('flowise') f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-56413 - Storage Concentrator (SC & SCVM) contains a command injection vulnerability in the ms_service.pl service, whic
Critical remediation recipe for Storage Concentrator (SC & SCVM) contains a command injection vulnerability in the ms_service.pl service, whic. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-56415 - Storage Concentrator (SC & SCVM) contains a command injection vulnerability within the debug.pl script that is
Critical remediation recipe for Storage Concentrator (SC & SCVM) contains a command injection vulnerability within the debug.pl script that is. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-56808 - DGM3103SCT provided by AVTECH Security Corporation contains an OS command injection vulnerability, which may l
High remediation recipe for DGM3103SCT provided by AVTECH Security Corporation contains an OS command injection vulnerability, which may l. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-57080 - Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire messa
High remediation recipe for Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via an uncapped peer-wire messa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57081 - Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via deeply nested bencoded inpu
High remediation recipe for Net::BitTorrent versions through 2.0.1 for Perl allow remote memory exhaustion via deeply nested bencoded inpu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-58014 - A flaw was found in GLib. An off-by-one error can occur in the g_key_file_get_locale_string_list function in t
High remediation recipe for A flaw was found in GLib. An off-by-one error can occur in the g_key_file_get_locale_string_list function in t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-58016 - A flaw was found in GLib. A state confusion issue exists in g_dbus_node_info_new_for_xml() in the gio/gdbusint
High remediation recipe for A flaw was found in GLib. A state confusion issue exists in g_dbus_node_info_new_for_xml() in the gio/gdbusint. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-58166 - OpenBMB ChatDev through 2.2.0, fixed in commit 4fd4da6, contains a path traversal vulnerability that allows un
Critical remediation recipe for OpenBMB ChatDev through 2.2.0, fixed in commit 4fd4da6, contains a path traversal vulnerability that allows un. Upgrade to fixed in commit 4fd4da6 and remove the vulnerable path-traversal pattern.
CVE-2026-58168 - DeepTutor before version 1.4.10 contains an authorization bypass vulnerability that allows low-privilege users
High remediation recipe for DeepTutor before version 1.4.10 contains an authorization bypass vulnerability that allows low-privilege users. Upgrade to version 1.4.10 contains an authorization bypass vulnerability that a and remove the vulnerable command-injection pattern.
CVE-2026-58169 - Vibe-Trading before 0.1.10 contains a DNS rebinding authentication bypass vulnerability that allows remote att
High remediation recipe for Vibe-Trading before 0.1.10 contains a DNS rebinding authentication bypass vulnerability that allows remote att. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-58170 - Vibe-Trading before 0.1.10 builds the proposal file path by joining a caller-supplied proposal identifier onto
High remediation recipe for Vibe-Trading before 0.1.10 builds the proposal file path by joining a caller-supplied proposal identifier onto. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-58302 - rtapi_app in linuxcnc-uspace in LinuxCNC before 2.9.9 allows privilege escalation
High remediation recipe for rtapi_app in linuxcnc-uspace in LinuxCNC before 2.9.9 allows privilege escalation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-58372 - SeaweedFS before 4.34 contains a path traversal vulnerability in the S3 gateway DeleteMultipleObjectsHandler t
High remediation recipe for SeaweedFS before 4.34 contains a path traversal vulnerability in the S3 gateway DeleteMultipleObjectsHandler t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-58375 - JimuReport through 2.5.0 exposes the POST /jmreport/auto/export endpoint without authentication: the handler i
High remediation recipe for JimuReport through 2.5.0 exposes the POST /jmreport/auto/export endpoint without authentication: the handler i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-58449 - txtai through 9.10.0, fixed in commit 11b32da, exposes an API /reindex endpoint whose function body parameter
Critical remediation recipe for txtai through 9.10.0, fixed in commit 11b32da, exposes an API /reindex endpoint whose function body parameter. Upgrade to fixed in commit 11b32da and remove the vulnerable authz pattern.
CVE-2026-6556 - @fastify/express versions 4.0.6 and earlier only rewrite the plugin prefix for middleware mount paths when the
Critical remediation recipe for @fastify/express versions 4.0.6 and earlier only rewrite the plugin prefix for middleware mount paths when the. Upgrade to fixed inside prefixed plugin scopes and remove the vulnerable authz pattern.
CVE-2026-7663 - IBM Langflow OSS 1.0.0 through 1.9.6 could allow unauthenticated attackers to access protected MCP project res
Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.9.6 could allow unauthenticated attackers to access protected MCP project res. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-7803 - IBM Langflow OSS 1.0.0 through 1.10.0 could allow arbitrary code execution due to improper validation of flow
Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.10.0 could allow arbitrary code execution due to improper validation of flow. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-7871 - IBM Langflow OSS 1.0.0 through 1.10.0 allows users with Redis access to execute arbitrary code with full appli
Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.10.0 allows users with Redis access to execute arbitrary code with full appli. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-7873 - IBM Langflow OSS 1.0.0 through 1.10.0 allows authenticated attackers to execute arbitrary OS commands and read
Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.10.0 allows authenticated attackers to execute arbitrary OS commands and read. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-7874 - IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow disclosure of all stored credentials due to the use
Critical remediation recipe for IBM Langflow OSS 1.0.0 through 1.10.0 Langflow could allow disclosure of all stored credentials due to the use. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-8402 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Eksagate
Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Eksagate. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-8451 - Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler A
High remediation recipe for Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler A. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-8452 - Memory overflow vulnerability NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavi
Critical remediation recipe for Memory overflow vulnerability NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-8655 - Multiple Memory overflow vulnerabilities in NetScaler ADC and NetScaler Gateway leading to unpredictable or er
Critical remediation recipe for Multiple Memory overflow vulnerabilities in NetScaler ADC and NetScaler Gateway leading to unpredictable or er. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-2902 - Improper Authorization Vulnerability of Maintenance Utility in Hitachi Virtual Storage Platform
High remediation recipe for Improper Authorization Vulnerability of Maintenance Utility in Hitachi Virtual Storage Platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-11979 - libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --she
High remediation recipe for libxml2 is vulnerable to multiple stack-based buffer overflows in the xmlcatalog utility when running in --she. Upgrade to fixed in the commit c2e233fc. and remove the vulnerable command-injection pattern.
CVE-2026-12912 - A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially craft
High remediation recipe for A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially craft. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-13519 - A vulnerability was found in Tenda JD12L 16.03.53.23
High remediation recipe for A vulnerability was found in Tenda JD12L 16.03.53.23. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13580 - A security vulnerability has been detected in Edimax EW-7478APC 1.04
High remediation recipe for A security vulnerability has been detected in Edimax EW-7478APC 1.04. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13582 - A flaw has been found in Edimax EW-7478APC 1.04
High remediation recipe for A flaw has been found in Edimax EW-7478APC 1.04. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13583 - A vulnerability has been found in Edimax EW-7478APC 1.04
High remediation recipe for A vulnerability has been found in Edimax EW-7478APC 1.04. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13592 - A vulnerability was detected in liftoff-sr CIPster up to e8e9dba09bf56962807d3504b783ccdb6287f3e4
High remediation recipe for A vulnerability was detected in liftoff-sr CIPster up to e8e9dba09bf56962807d3504b783ccdb6287f3e4. Upgrade to version details for affected or updated releases are not provided. T and remove the vulnerable authz pattern.
CVE-2026-13676 - fast-uri versions 2.3.1 through 3.1.2 and 4.0.0 fail to canonicalize Unicode (IDN) hostnames for HTTP-family U
High remediation recipe for fast-uri versions 2.3.1 through 3.1.2 and 4.0.0 fail to canonicalize Unicode (IDN) hostnames for HTTP-family U. Upgrade to version path calls a helper that does not exist on the global URL co and remove the vulnerable prototype-pollution pattern.
CVE-2026-13744 - Improper neutralization of attacker-controlled content in Snowflake CLI versions prior to 3.19 allowed uninten
High remediation recipe for Improper neutralization of attacker-controlled content in Snowflake CLI versions prior to 3.19 allowed uninten. Upgrade to version 3.19. Users must manually upgrade. and remove the vulnerable authz pattern.
CVE-2026-13762 - Inconsistent interpretation of HTTP/2 requests in Amazon CloudFront with AWS WAF enabled might allow remote ac
Critical remediation recipe for Inconsistent interpretation of HTTP/2 requests in Amazon CloudFront with AWS WAF enabled might allow remote ac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13763 - Inconsistent interpretation of HTTP/2 requests in AWS Application Load Balancer with AWS WAF enabled might all
Critical remediation recipe for Inconsistent interpretation of HTTP/2 requests in AWS Application Load Balancer with AWS WAF enabled might all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-22078 - Because O+ Connect's IPC service does not authenticate clients, external applications can escalate privileges
High remediation recipe for Because O+ Connect's IPC service does not authenticate clients, external applications can escalate privileges. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-25707 - A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be
High remediation recipe for A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-34592 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases
High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to fixed in 4.0.0-beta.471. and remove the vulnerable command-injection pattern.
CVE-2026-34594 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases
High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to fixed in 4.0.0-beta.471. and remove the vulnerable command-injection pattern.
CVE-2026-34597 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases
High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to fixed in 4.0.0-beta.470. and remove the vulnerable command-injection pattern.
CVE-2026-36848 - Gigamon GVOS v5.16.1 and below is vulnerable to Directory Traversal in the GVOS H-VUE subsystem
High remediation recipe for Gigamon GVOS v5.16.1 and below is vulnerable to Directory Traversal in the GVOS H-VUE subsystem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-39868 - This issue was addressed with improved input validation
Critical remediation recipe for This issue was addressed with improved input validation. Upgrade to fixed in iOS 26.5.2 and iPadOS 26.5.2 and remove the vulnerable authz pattern.
CVE-2026-40522 - FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Bank Statement report handler that
High remediation recipe for FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Bank Statement report handler that. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40523 - FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Audit Trail report handler that al
High remediation recipe for FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the Audit Trail report handler that al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-40524 - FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the get_gl_transactions() function whe
High remediation recipe for FrontAccounting before 2.4.20 contains a SQL injection vulnerability in the get_gl_transactions() function whe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-41992 - GNU gzip contains a global buffer overflow vulnerability in the LZH decompression logic caused by improper reu
High remediation recipe for GNU gzip contains a global buffer overflow vulnerability in the LZH decompression logic caused by improper reu. Upgrade to fixed in the commit 63dbf6b3b9e6e781df1a6a64e609b10e23969681 and remove the vulnerable authz pattern.
CVE-2026-43701 - The issue was addressed with improved checks
High remediation recipe for The issue was addressed with improved checks. Upgrade to fixed in Safari 26.5.2 and remove the vulnerable authz pattern.
CVE-2026-43705 - A type confusion issue was addressed with improved checks
High remediation recipe for A type confusion issue was addressed with improved checks. Upgrade to fixed in Safari 26.5.2 and remove the vulnerable authz pattern.
CVE-2026-43715 - A use-after-free issue was addressed with improved memory management
High remediation recipe for A use-after-free issue was addressed with improved memory management. Upgrade to fixed in Safari 26.5.2 and remove the vulnerable authz pattern.
CVE-2026-43724 - The issue was addressed with improved input sanitization
High remediation recipe for The issue was addressed with improved input sanitization. Upgrade to fixed in iOS 26.5.2 and iPadOS 26.5.2 and remove the vulnerable authz pattern.
CVE-2026-43725 - The issue was addressed with improved input validation
High remediation recipe for The issue was addressed with improved input validation. Upgrade to fixed in Safari 26.5.2 and remove the vulnerable authz pattern.
CVE-2026-43731 - A use-after-free issue was addressed with improved memory management
High remediation recipe for A use-after-free issue was addressed with improved memory management. Upgrade to fixed in Safari 26.5.2 and remove the vulnerable authz pattern.
CVE-2026-43735 - The issue was addressed with improved checks
High remediation recipe for The issue was addressed with improved checks. Upgrade to fixed in Safari 26.5.2 and remove the vulnerable authz pattern.
CVE-2026-48558 - SimpleHelp Authentication Bypass Vulnerability
High remediation recipe for SimpleHelp Authentication Bypass Vulnerability. Upgrade to Apply mitigations or fixed release per vendor/CISA KEV instructions and remove the vulnerable command-injection pattern.
CVE-2026-49049 - The Helix3 plugin for Joomla exposes an ajax handler task, that allows unauthenticated attackers to delete arb
High remediation recipe for The Helix3 plugin for Joomla exposes an ajax handler task, that allows unauthenticated attackers to delete arb. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-51221 - A buffer overflow in the Get_Attribute_List function of EIPStackGroup OpENer commit 76b95c allows attackers to
High remediation recipe for A buffer overflow in the Get_Attribute_List function of EIPStackGroup OpENer commit 76b95c allows attackers to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-53404 - Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat's rewrite valve meant that if the
High remediation recipe for Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat's rewrite valve meant that if the. Upgrade to upgrade to version 11.0.23 and remove the vulnerable authz pattern.
CVE-2026-53434 - Detection of Error Condition Without Action vulnerability in Apache Tomcat when configuring CRLs for a FFM bas
Critical remediation recipe for Detection of Error Condition Without Action vulnerability in Apache Tomcat when configuring CRLs for a FFM bas. Upgrade to upgrade to version 11.0.23 and remove the vulnerable authz pattern.
CVE-2026-54369 - acl before version 2.4.0 contains a symlink traversal vulnerability in the libacl pathname-based functions acl
High remediation recipe for acl before version 2.4.0 contains a symlink traversal vulnerability in the libacl pathname-based functions acl. Upgrade to version 2.4.0 contains a symlink traversal vulnerability in the liba and remove the vulnerable path-traversal pattern.
CVE-2026-54371 - attr before version 2.6.0 contains a symlink traversal vulnerability in the getfattr and setfattr utilities th
High remediation recipe for attr before version 2.6.0 contains a symlink traversal vulnerability in the getfattr and setfattr utilities th. Upgrade to version 2.6.0 contains a symlink traversal vulnerability in the getf and remove the vulnerable path-traversal pattern.
CVE-2026-55276 - Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat meant that special roles and empty
Critical remediation recipe for Always-Incorrect Control Flow Implementation vulnerability in Apache Tomcat meant that special roles and empty. Upgrade to upgrade to version 11.0.23 and remove the vulnerable authz pattern.
CVE-2026-55607 - Claude Code is an agentic coding tool. From 2.1.38 until 2.1.163, Claude Code's worktree handling allowed crea
High remediation recipe for Claude Code is an agentic coding tool. From 2.1.38 until 2.1.163, Claude Code's worktree handling allowed crea. Upgrade to fixed in 2.1.163. and remove the vulnerable path-traversal pattern.
CVE-2026-55844 - Home Assistant is open source home automation software that puts local control and privacy first
High remediation recipe for Home Assistant is open source home automation software that puts local control and privacy first. Upgrade to fixed in 2025.5.0. and remove the vulnerable command-injection pattern.
CVE-2026-55957 - Missing Critical Step in Authentication vulnerability in Apache Tomcat when the JNDIRealm was configured to au
High remediation recipe for Missing Critical Step in Authentication vulnerability in Apache Tomcat when the JNDIRealm was configured to au. Upgrade to upgrade to version 11.0.5 and remove the vulnerable authz pattern.
CVE-2026-56285 - Nitter's /video media proxy endpoint fails to validate target URLs against Twitter/X domains and uses a hardco
High remediation recipe for Nitter's /video media proxy endpoint fails to validate target URLs against Twitter/X domains and uses a hardco. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-56780 - Modoboa before 2.9.0 contains an insecure direct object reference vulnerability in the PUT /api/v1/accounts/{p
High remediation recipe for Modoboa before 2.9.0 contains an insecure direct object reference vulnerability in the PUT /api/v1/accounts/{p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56782 - Gorse before 0.5.10 contains an authentication bypass vulnerability in the /api/dump and /api/restore endpoint
Critical remediation recipe for Gorse before 0.5.10 contains an authentication bypass vulnerability in the /api/dump and /api/restore endpoint. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-57320 - Unauthenticated Cross Site Scripting (XSS) in BEAR <= 1.1.8 versions
High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in BEAR <= 1.1.8 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-57331 - Performer Arbitrary File Deletion in Paid Videochat Turnkey Site <= 7.4.8 versions
Critical remediation recipe for Performer Arbitrary File Deletion in Paid Videochat Turnkey Site <= 7.4.8 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57332 - Subscriber Broken Access Control in Wallet System for WooCommerce <= 2.7.6 versions
High remediation recipe for Subscriber Broken Access Control in Wallet System for WooCommerce <= 2.7.6 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-57333 - Unauthenticated Cross Site Scripting (XSS) in Link Whisper Free <= 0.9.4 versions
High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in Link Whisper Free <= 0.9.4 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-57336 - Unauthenticated Cross Site Scripting (XSS) in Jobify <= 4.3.2 versions
High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in Jobify <= 4.3.2 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-57337 - Unauthenticated Cross Site Scripting (XSS) in Landing Page Builder <= 1.5.3.5 versions
High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in Landing Page Builder <= 1.5.3.5 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-57338 - Unauthenticated Cross Site Scripting (XSS) in ARForms <= 7.1.2 versions
High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in ARForms <= 7.1.2 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-57498 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases
Critical remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to fixed in 4.0.0-beta.474. and remove the vulnerable command-injection pattern.
CVE-2026-57947 - Pinpoint through 3.1.0 contains a server-side request forgery vulnerability in the webhook registration endpoi
High remediation recipe for Pinpoint through 3.1.0 contains a server-side request forgery vulnerability in the webhook registration endpoi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-57950 - ruoyi-vue-pro through 2026.05, fixed in commit 5d1fd70 contains a broken access control vulnerability in ErpSa
High remediation recipe for ruoyi-vue-pro through 2026.05, fixed in commit 5d1fd70 contains a broken access control vulnerability in ErpSa. Upgrade to fixed in commit 5d1fd70 contains a broken access control vulnerabilit and remove the vulnerable command-injection pattern.
CVE-2026-57955 - SigNoz through 0.130.1 contains a SQL injection vulnerability that allows authenticated attackers to execute a
High remediation recipe for SigNoz through 0.130.1 contains a SQL injection vulnerability that allows authenticated attackers to execute a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-57999 - luci-app-tailscale-community contains a command injection vulnerability in the tailscale.do_login RPC method t
High remediation recipe for luci-app-tailscale-community contains a command injection vulnerability in the tailscale.do_login RPC method t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-58000 - luci-proto-openvpn through 0.11.1, fixed in commit e4ff45e, contains a command injection vulnerability in the
High remediation recipe for luci-proto-openvpn through 0.11.1, fixed in commit e4ff45e, contains a command injection vulnerability in the. Upgrade to fixed in commit e4ff45e and remove the vulnerable command-injection pattern.
CVE-2026-7656 - The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_
High remediation recipe for The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_. Upgrade to fixed by splitting the condition so any failing check drops the pa and remove the vulnerable command-injection pattern.
CVE-2026-10643 - Zephyr's IP socket recvmsg() implementation (subsys/net/lib/sockets/sockets_inet.c, insert_pktinfo()) validate
High remediation recipe for Zephyr's IP socket recvmsg() implementation (subsys/net/lib/sockets/sockets_inet.c, insert_pktinfo()) validate. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-10646 - Zephyr's BSD-sockets getaddrinfo() implementation (subsys/net/lib/sockets/getaddrinfo.c) passes a pointer to a
High remediation recipe for Zephyr's BSD-sockets getaddrinfo() implementation (subsys/net/lib/sockets/getaddrinfo.c) passes a pointer to a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-49048 - The Joomla extension JoomCCK exposes a front-end controller task, that builds two SQL statements by directly c
Critical remediation recipe for The Joomla extension JoomCCK exposes a front-end controller task, that builds two SQL statements by directly c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2023-37524 - HCL Traveler for Microsoft Outlook (HTMO) is susceptible to vulnerabilities due to .NET Framework 4.5 being ou
High remediation recipe for HCL Traveler for Microsoft Outlook (HTMO) is susceptible to vulnerabilities due to .NET Framework 4.5 being ou. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-45258 - dsp_mmap_single() validated the requested mapping by checking the sum of the user-supplied offset and length a
High remediation recipe for dsp_mmap_single() validated the requested mapping by checking the sum of the user-supplied offset and length a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-49412 - The kernel handler for IPV6_MSFILTER dropped a serializing lock in order to copy the source-filter list from u
High remediation recipe for The kernel handler for IPV6_MSFILTER dropped a serializing lock in order to copy the source-filter list from u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-49413 - The Linuxulator determined whether a binary was set-user-ID or set-group-ID by checking the P_SUGID process fl
High remediation recipe for The Linuxulator determined whether a binary was set-user-ID or set-group-ID by checking the P_SUGID process fl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-49414 - The ELF image activator cleared per-process ASLR preference flags for setuid binaries after the code that comp
High remediation recipe for The ELF image activator cleared per-process ASLR preference flags for setuid binaries after the code that comp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-49416 - The CONS_HISTORY ioctl handler did not adequately validate the requested history size
High remediation recipe for The CONS_HISTORY ioctl handler did not adequately validate the requested history size. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-49417 - Second, the audio buffer backing a mapping could be freed when the device was closed even though the mapping r
High remediation recipe for Second, the audio buffer backing a mapping could be freed when the device was closed even though the mapping r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-11625 - Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes
High remediation recipe for Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-11702 - Bytes::Random::Secure::Tiny versions through 1.011 for Perl share internal state across forked processes
High remediation recipe for Bytes::Random::Secure::Tiny versions through 1.011 for Perl share internal state across forked processes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13372 - Incorrect link resolution by display name in the custom PowerShell VPN editor in Devolutions Remote Desktop Ma
High remediation recipe for Incorrect link resolution by display name in the custom PowerShell VPN editor in Devolutions Remote Desktop Ma. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-21734 - A web page that contains unusual GPU shader code is loaded into the GPU compiler process and can trigger a wri
High remediation recipe for A web page that contains unusual GPU shader code is loaded into the GPU compiler process and can trigger a wri. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-28701 - Various versions of Daktronics Controller Firmware could allow authenticated and unauthenticated remote users
Critical remediation recipe for Various versions of Daktronics Controller Firmware could allow authenticated and unauthenticated remote users. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-31928 - The DMP-5000 devices are shipped with a default administrative web account with weak authentication controls,
High remediation recipe for The DMP-5000 devices are shipped with a default administrative web account with weak authentication controls,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-32833 - Cudy LT300 3.0 running firmware prior to version 2.5.12 contains an OS command injection vulnerability that al
High remediation recipe for Cudy LT300 3.0 running firmware prior to version 2.5.12 contains an OS command injection vulnerability that al. Upgrade to version 2.5.12 contains an OS command injection vulnerability that a and remove the vulnerable command-injection pattern.
CVE-2026-33560 - The DMP-5000 file service exposes authenticated arbitrary file upload functionality
High remediation recipe for The DMP-5000 file service exposes authenticated arbitrary file upload functionality. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-36478 - An issue in Technitium DNS Server v.14.3 and before allows a remote attacker to cause a denial of service via
High remediation recipe for An issue in Technitium DNS Server v.14.3 and before allows a remote attacker to cause a denial of service via. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-38639 - An issue in the parse_month function (/time/strptime.rs) of relibc commit ab6a2e allows attackers to cause a D
High remediation recipe for An issue in the parse_month function (/time/strptime.rs) of relibc commit ab6a2e allows attackers to cause a D. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-38641 - An issue in the DSO::mmap_and_copy function of relibc commit 61f42d allows attackers to cause a Denial of Serv
High remediation recipe for An issue in the DSO::mmap_and_copy function of relibc commit 61f42d allows attackers to cause a Denial of Serv. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-45195 - Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigg
High remediation recipe for Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigg. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-45807 - Kestra is an open-source, event-driven orchestration platform
High remediation recipe for Kestra is an open-source, event-driven orchestration platform. Upgrade to fixed in 1.0.43 and 1.3.19. and remove the vulnerable command-injection pattern.
CVE-2026-46604 - The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset
High remediation recipe for The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-46710 - Notepad++ is a free and open-source source code editor
High remediation recipe for Notepad++ is a free and open-source source code editor. Upgrade to fixed in 8.9.6. and remove the vulnerable command-injection pattern.
CVE-2026-47220 - Envoy is an open source edge and service proxy designed for cloud-native applications
High remediation recipe for Envoy is an open source edge and service proxy designed for cloud-native applications. Upgrade to fixed in 1.37.5 and 1.38.3. and remove the vulnerable command-injection pattern.
CVE-2026-48042 - Envoy is an open source edge and service proxy designed for cloud-native applications
High remediation recipe for Envoy is an open source edge and service proxy designed for cloud-native applications. Upgrade to fixed in 1.35.11 and remove the vulnerable command-injection pattern.
CVE-2026-48044 - Envoy is an open source edge and service proxy designed for cloud-native applications
High remediation recipe for Envoy is an open source edge and service proxy designed for cloud-native applications. Upgrade to fixed in 1.35.11 and remove the vulnerable command-injection pattern.
CVE-2026-48743 - Envoy is an open source edge and service proxy designed for cloud-native applications
High remediation recipe for Envoy is an open source edge and service proxy designed for cloud-native applications. Upgrade to fixed in 1.35.11 and remove the vulnerable command-injection pattern.
CVE-2026-48778 - Notepad++ is a free and open-source source code editor
High remediation recipe for Notepad++ is a free and open-source source code editor. Upgrade to fixed in 8.9.6.1. and remove the vulnerable command-injection pattern.
CVE-2026-48800 - Notepad++ is a free and open-source source code editor
High remediation recipe for Notepad++ is a free and open-source source code editor. Upgrade to fixed in 8.9.6.1. and remove the vulnerable command-injection pattern.
CVE-2026-49984 - Kestra is an open-source, event-driven orchestration platform
High remediation recipe for Kestra is an open-source, event-driven orchestration platform. Upgrade to fixed in 1.0.45 and 1.3.23. and remove the vulnerable command-injection pattern.
CVE-2026-49991 - RustFS is a distributed object storage system built in Rust
High remediation recipe for RustFS is a distributed object storage system built in Rust. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-50132 - Budibase is an open-source low-code platform
High remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.0. and remove the vulnerable command-injection pattern.
CVE-2026-50136 - Budibase is an open-source low-code platform
High remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.3. and remove the vulnerable command-injection pattern.
CVE-2026-50137 - Budibase is an open-source low-code platform
Critical remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.0. and remove the vulnerable command-injection pattern.
CVE-2026-50741 - Bypass to the fix for CVE-2026-34916. Variants of such vectors have been also reported by phucrio and offsetmd
High remediation recipe for Bypass to the fix for CVE-2026-34916. Variants of such vectors have been also reported by phucrio and offsetmd. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52782 - OpenProject is open-source, web-based project management software
Critical remediation recipe for OpenProject is open-source, web-based project management software. Upgrade to fixed in 17.3.3 and 17.4.1. and remove the vulnerable command-injection pattern.
CVE-2026-52783 - OpenProject is open-source, web-based project management software
High remediation recipe for OpenProject is open-source, web-based project management software. Upgrade to fixed in 17.3.3 and 17.4.1. and remove the vulnerable command-injection pattern.
CVE-2026-52785 - OpenProject is open-source, web-based project management software
Critical remediation recipe for OpenProject is open-source, web-based project management software. Upgrade to fixed in 17.3.3 and 17.4.1. and remove the vulnerable command-injection pattern.
CVE-2026-52884 - Notepad++ is a free and open-source source code editor
High remediation recipe for Notepad++ is a free and open-source source code editor. Upgrade to fixed in 8.9.6.2. and remove the vulnerable command-injection pattern.
CVE-2026-53281 - In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid NULL pointer dereference
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid NULL pointer dereference. Upgrade to fixed a NULL pointer dereference in an unlikely situation partly. and remove the vulnerable authz pattern.
CVE-2026-53286 - In the Linux kernel, the following vulnerability has been resolved: idpf: fix double free and use-after-free i
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: idpf: fix double free and use-after-free i. Upgrade to fixed the same use-after-free in the matching unplug path in this and remove the vulnerable authz pattern.
CVE-2026-53290 - In the Linux kernel, the following vulnerability has been resolved: drm/xe/eustall: Fix drm_dev_put called bef
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/xe/eustall: Fix drm_dev_put called bef. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53294 - In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: don't free the reus
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: don't free the reus. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53296 - In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: free channels on pr
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: free channels on pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53300 - In the Linux kernel, the following vulnerability has been resolved: net: enetc: fix NTMP DMA use-after-free is
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: enetc: fix NTMP DMA use-after-free is. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53309 - In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: fix off-by-one in dlm_match_reg
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: fix off-by-one in dlm_match_reg. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53322 - In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Clean up DMABUFs before disablin
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Clean up DMABUFs before disablin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-54351 - Budibase is an open-source low-code platform
High remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.9. and remove the vulnerable command-injection pattern.
CVE-2026-54352 - Budibase is an open-source low-code platform
Critical remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.9. and remove the vulnerable command-injection pattern.
CVE-2026-54353 - Budibase is an open-source low-code platform
High remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.9. and remove the vulnerable command-injection pattern.
CVE-2026-54826 - Subscriber Insecure Direct Object References (IDOR) in SupportCandy <= 3.4.6 versions
High remediation recipe for Subscriber Insecure Direct Object References (IDOR) in SupportCandy <= 3.4.6 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54835 - Unauthenticated Broken Access Control in Five Star Restaurant Menu <= 2.5.2 versions
High remediation recipe for Unauthenticated Broken Access Control in Five Star Restaurant Menu <= 2.5.2 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55069 - Kestra is an open-source, event-driven orchestration platform
High remediation recipe for Kestra is an open-source, event-driven orchestration platform. Upgrade to fixed in 1.3.24. and remove the vulnerable command-injection pattern.
CVE-2026-55189 - RustFS is a distributed object storage system built in Rust
High remediation recipe for RustFS is a distributed object storage system built in Rust. Upgrade to fixed in 1.0.0-beta.9. and remove the vulnerable authz pattern.
CVE-2026-55975 - A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML f
High remediation recipe for A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-56008 - Contributor Privilege Escalation in Fusion Builder <= 3.15.4 versions
High remediation recipe for Contributor Privilege Escalation in Fusion Builder <= 3.15.4 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56028 - Unauthenticated Privilege Escalation in Easy Elements for Elementor – Addons & Website Templates <=
Critical remediation recipe for Unauthenticated Privilege Escalation in Easy Elements for Elementor – Addons & Website Templates <=. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56034 - Unauthenticated SQL Injection in Library Management System <= 3.5.7 versions
Critical remediation recipe for Unauthenticated SQL Injection in Library Management System <= 3.5.7 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56041 - Unauthenticated Cross Site Scripting (XSS) in Responsive Lightbox <= 2.7.6 versions
High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in Responsive Lightbox <= 2.7.6 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-56061 - Unauthenticated Broken Access Control in Subscriptions for WooCommerce <= 1.9.5 versions
High remediation recipe for Unauthenticated Broken Access Control in Subscriptions for WooCommerce <= 1.9.5 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-56068 - Unauthenticated SQL Injection in JetEngine <= 3.8.10.2 versions
Critical remediation recipe for Unauthenticated SQL Injection in JetEngine <= 3.8.10.2 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56414 - A vulnerability exists in H.View IP cameras certificate-related upload interfaces allow authenticated users to
High remediation recipe for A vulnerability exists in H.View IP cameras certificate-related upload interfaces allow authenticated users to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-56876 - extract-zip does not validate symlink targets when extracting zip archives
High remediation recipe for extract-zip does not validate symlink targets when extracting zip archives. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-57314 - Unauthenticated Cross Site Scripting (XSS) in SureCart <= 4.3.2 versions
High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in SureCart <= 4.3.2 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-57321 - Contributor Arbitrary File Deletion in H5P <= 1.17.7 versions
High remediation recipe for Contributor Arbitrary File Deletion in H5P <= 1.17.7 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-5757 - Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an at
High remediation recipe for Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57642 - Contributor SQL Injection in Gallery <= 4.7.8 versions
High remediation recipe for Contributor SQL Injection in Gallery <= 4.7.8 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57667 - Sales Representative SQL Injection in Groundhogg <= 4.5 versions
High remediation recipe for Sales Representative SQL Injection in Groundhogg <= 4.5 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57915 - It is possible to bypass the Kerberos pre-authentication check in Apache Kerby by sending a PA-DATA with an un
High remediation recipe for It is possible to bypass the Kerberos pre-authentication check in Apache Kerby by sending a PA-DATA with an un. Upgrade to upgrade to version 2.1.2 and remove the vulnerable authz pattern.
CVE-2026-9221 - The Setracker2 Android Companion App (com.tgelec.setracker) versions 3.1.5 and earlier uses MD5 to generate a
High remediation recipe for The Setracker2 Android Companion App (com.tgelec.setracker) versions 3.1.5 and earlier uses MD5 to generate a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-9640 - A privilege escalation vulnerability exists in LXD from 6.0 before 6.9, 5.21.0 before 5.21.5, and 5.0.0 before
High remediation recipe for A privilege escalation vulnerability exists in LXD from 6.0 before 6.9, 5.21.0 before 5.21.5, and 5.0.0 before. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-60464 - A use-after-free in the gf_sei_load_from_state_internal function (/filters/sei_load.c) of GPAC Project/MP4Box
High remediation recipe for A use-after-free in the gf_sei_load_from_state_internal function (/filters/sei_load.c) of GPAC Project/MP4Box. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-71324 - Flowise before 3.0.6 contains an arbitrary file read vulnerability in the chatId parameter of the /api/v1/get-
High remediation recipe for Flowise before 3.0.6 contains an arbitrary file read vulnerability in the chatId parameter of the /api/v1/get-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-71327 - Flowise contains an authentication bypass vulnerability in the unprotected /api/v1/account/register endpoint t
Critical remediation recipe for Flowise contains an authentication bypass vulnerability in the unprotected /api/v1/account/register endpoint t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2025-71328 - Flowise before 3.0.10 contains an unverified password change vulnerability
High remediation recipe for Flowise before 3.0.10 contains an unverified password change vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-71333 - Flowise through 2.2.4 contains an unauthenticated arbitrary file upload vulnerability in the /api/v1/attachmen
Critical remediation recipe for Flowise through 2.2.4 contains an unauthenticated arbitrary file upload vulnerability in the /api/v1/attachmen. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2025-71334 - Flowise before 3.0.6 (affected versions 2.2.8 and earlier) contains an arbitrary file access vulnerability due
Critical remediation recipe for Flowise before 3.0.6 (affected versions 2.2.8 and earlier) contains an arbitrary file access vulnerability due. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2025-71335 - Flowise before 3.0.10 (affected versions 3.0.7 and earlier) fails to invalidate existing sessions and session
High remediation recipe for Flowise before 3.0.10 (affected versions 3.0.7 and earlier) fails to invalidate existing sessions and session. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-71338 - Flowise contains a path traversal vulnerability in the /api/v1/document-store/loader/process endpoint that all
Critical remediation recipe for Flowise contains a path traversal vulnerability in the /api/v1/document-store/loader/process endpoint that all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-11800 - A flaw was found in Keycloak. This JWT algorithm confusion vulnerability in the JWT Authorization Grant flow a
High remediation recipe for A flaw was found in Keycloak. This JWT algorithm confusion vulnerability in the JWT Authorization Grant flow a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-12053 - GitLab has remediated an issue in GitLab EE affecting all versions from 19.1 before 19.1.1 that under certain
High remediation recipe for GitLab has remediated an issue in GitLab EE affecting all versions from 19.1 before 19.1.1 that under certain. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-12244 - If NSD is configured as secondary for a zone, the primary of that zone can crash NSD with an AXFR containing a
High remediation recipe for If NSD is configured as secondary for a zone, the primary of that zone can crash NSD with an AXFR containing a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-12246 - NSD version 4.14.0 introduced a bug where a specially crafted APL RR, with an adflength larger than permitted
High remediation recipe for NSD version 4.14.0 introduced a bug where a specially crafted APL RR, with an adflength larger than permitted. Upgrade to version 4.14.0 introduced a bug where a specially crafted APL RR and remove the vulnerable authz pattern.
CVE-2026-20230 - Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability
High remediation recipe for Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability. Upgrade to Apply mitigations or fixed release per vendor/CISA KEV instructions and remove the vulnerable command-injection pattern.
CVE-2026-27366 - Unauthenticated Broken Access Control in MainWP Child <= 6.1.1 versions
High remediation recipe for Unauthenticated Broken Access Control in MainWP Child <= 6.1.1 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-39951 - Cacti is an open source performance and fault management framework
High remediation recipe for Cacti is an open source performance and fault management framework. Upgrade to fixed in version 1.2.31. and remove the vulnerable command-injection pattern.
CVE-2026-46733 - Dell Display and Peripheral Manager (DDPM Windows), versions prior to 2.3, contain an Improper Access Control
High remediation recipe for Dell Display and Peripheral Manager (DDPM Windows), versions prior to 2.3, contain an Improper Access Control. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46734 - Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Certificate Validat
High remediation recipe for Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Certificate Validat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-50548 - Cursor is a code editor built for programming with AI
Critical remediation recipe for Cursor is a code editor built for programming with AI. Upgrade to fixed in 3.0. and remove the vulnerable authz pattern.
CVE-2026-50549 - Cursor is a code editor built for programming with AI
Critical remediation recipe for Cursor is a code editor built for programming with AI. Upgrade to fixed in 3.0. and remove the vulnerable command-injection pattern.
CVE-2026-53131 - In the Linux kernel, the following vulnerability has been resolved: netfilter: require Ethernet MAC header bef
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: require Ethernet MAC header bef. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53132 - In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix potential unbounded skb
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix potential unbounded skb. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-53133 - In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix truncation for block sizes
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix truncation for block sizes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53136 - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp VBIOS HDMI retimer
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp VBIOS HDMI retimer. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53137 - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp HDMI HDCP2 rx_id_li
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp HDMI HDCP2 rx_id_li. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53138 - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Bound VBIOS record-chain
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Bound VBIOS record-chain. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53143 - In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix buffer overflow in SDMA qu
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix buffer overflow in SDMA qu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53146 - In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Limit XDomain response copy t
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Limit XDomain response copy t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53147 - In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request pack
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Validate XDomain request pack. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53148 - In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Clamp XDomain response data c
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Clamp XDomain response data c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.
CVE-2026-53151 - In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix the ACK parser to extract the S
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix the ACK parser to extract the S. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53153 - In the Linux kernel, the following vulnerability has been resolved: mm/list_lru: drain before clearing xarray
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mm/list_lru: drain before clearing xarray. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53157 - In the Linux kernel, the following vulnerability has been resolved: net: phonet: free phonet_device after RCU
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: phonet: free phonet_device after RCU. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53160 - In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free race in
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free race in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53161 - In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free of fastr
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free of fastr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53162 - In the Linux kernel, the following vulnerability has been resolved: memcg: use round-robin victim selection in
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: memcg: use round-robin victim selection in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53165 - In the Linux kernel, the following vulnerability has been resolved: iomap: avoid potential null folio->mapping
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: iomap: avoid potential null folio->mapping. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53170 - In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: reject DMA commands with uni
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: reject DMA commands with uni. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53171 - In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix arithmetic issues in dma
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix arithmetic issues in dma. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53172 - In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix IFM region index out-of-
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix IFM region index out-of-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53173 - In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix OOB write in ethosu_gem_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ethosu: fix OOB write in ethosu_gem_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53174 - In the Linux kernel, the following vulnerability has been resolved: ovl: keep err zero after successful ovl_ca
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ovl: keep err zero after successful ovl_ca. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53175 - In the Linux kernel, the following vulnerability has been resolved: inet: frags: fix use-after-free caused by
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: inet: frags: fix use-after-free caused by. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53178 - In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: rtw_mlme: add bounds c
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: rtw_mlme: add bounds c. Upgrade to fixed IE offsets to prevent unsigned integer underflow. and remove the vulnerable authz pattern.
CVE-2026-53180 - In the Linux kernel, the following vulnerability has been resolved: timers/migration: Fix livelock in tmigr_ha
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: timers/migration: Fix livelock in tmigr_ha. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53182 - In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: reject oversized EMA RNR li
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: reject oversized EMA RNR li. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53183 - In the Linux kernel, the following vulnerability has been resolved: mptcp: allow subflow rcv wnd to shrink In
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mptcp: allow subflow rcv wnd to shrink In. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53184 - In the Linux kernel, the following vulnerability has been resolved: udp: clear skb->dev before running a sockm
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: udp: clear skb->dev before running a sockm. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53185 - In the Linux kernel, the following vulnerability has been resolved: zram: fix use-after-free in zram_bvec_writ
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: zram: fix use-after-free in zram_bvec_writ. Upgrade to patched asynchronously and zram_read_page and remove the vulnerable mcp-auth pattern.
CVE-2026-53186 - In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: bound SRP_RSP sense copy by the
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: bound SRP_RSP sense copy by the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53187 - In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate cpu_id against nr_cpu_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate cpu_id against nr_cpu_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-53188 - In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate the passed in fops for
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate the passed in fops for. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53189 - In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: update file PMD counter be
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: update file PMD counter be. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53191 - In the Linux kernel, the following vulnerability has been resolved: io_uring/net: inherit IORING_CQE_F_BUF_MOR
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: io_uring/net: inherit IORING_CQE_F_BUF_MOR. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53193 - In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Forcibly close timer instance
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Forcibly close timer instance. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53198 - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of a deferred fi
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of a deferred fi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53199 - In the Linux kernel, the following vulnerability has been resolved: hv_netvsc: use kmap_local_page in netvsc_c
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: hv_netvsc: use kmap_local_page in netvsc_c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.
CVE-2026-53200 - In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: nv: Fix handling of XN[0] when
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: nv: Fix handling of XN[0] when. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53201 - In the Linux kernel, the following vulnerability has been resolved: Revert drm/xe: Skip exec queue schedule t
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Revert drm/xe: Skip exec queue schedule t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53202 - In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix signed integer truncation
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix signed integer truncation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.
CVE-2026-53203 - In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add buffer overflow check in M
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add buffer overflow check in M. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53205 - In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds checks for firmware
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds checks for firmware. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53209 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: reject oversized Broa
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: reject oversized Broa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53212 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_tunnel: fix use-after-free
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_tunnel: fix use-after-free. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53215 - In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: refill RX buffers before XDP o
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: refill RX buffers before XDP o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53216 - In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: limit XDP frame size to the RX
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: limit XDP frame size to the RX. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-53217 - In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: sync RX data at the hardware p
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: sync RX data at the hardware p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-53221 - In the Linux kernel, the following vulnerability has been resolved: ip6_vti: fix incorrect tunnel matching in
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ip6_vti: fix incorrect tunnel matching in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53223 - In the Linux kernel, the following vulnerability has been resolved: net: guard timestamp cmsgs to real error q
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: guard timestamp cmsgs to real error q. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53224 - In the Linux kernel, the following vulnerability has been resolved: sctp: validate embedded INIT chunk and add
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: sctp: validate embedded INIT chunk and add. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53225 - In the Linux kernel, the following vulnerability has been resolved: sctp: fix uninit-value in __sctp_rcv_ascon
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: sctp: fix uninit-value in __sctp_rcv_ascon. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53229 - In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix DMA and xdp_frame leak
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix DMA and xdp_frame leak. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53230 - In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix slab-out-of-bounds in mlx5_q
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix slab-out-of-bounds in mlx5_q. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53232 - In the Linux kernel, the following vulnerability has been resolved: net: phy: clean the sfp upstream if phy pr
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: phy: clean the sfp upstream if phy pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53233 - In the Linux kernel, the following vulnerability has been resolved: netdev: fix double-free in netdev_nl_bind_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netdev: fix double-free in netdev_nl_bind_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53234 - In the Linux kernel, the following vulnerability has been resolved: net: ibm: emac: Fix use-after-free during
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: ibm: emac: Fix use-after-free during. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53235 - In the Linux kernel, the following vulnerability has been resolved: net: add pskb_may_pull() to skb_gro_receiv
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: add pskb_may_pull() to skb_gro_receiv. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53239 - In the Linux kernel, the following vulnerability has been resolved: xfrm: policy: fix use-after-free on inexac
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfrm: policy: fix use-after-free on inexac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53240 - In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix use-after-free on first_s
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix use-after-free on first_s. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53242 - In the Linux kernel, the following vulnerability has been resolved: ALSA: PCM: Fix wait queue list corruption
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ALSA: PCM: Fix wait queue list corruption. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-53244 - In the Linux kernel, the following vulnerability has been resolved: VFS: fix possible failure to unlock in nfs
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: VFS: fix possible failure to unlock in nfs. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53246 - In the Linux kernel, the following vulnerability has been resolved: sctp: validate cached peer INIT chunk leng
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: sctp: validate cached peer INIT chunk leng. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53247 - In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtk_eth_soc: Fix use-after-
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtk_eth_soc: Fix use-after-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-53248 - In the Linux kernel, the following vulnerability has been resolved: net: airoha: Fix use-after-free in metadat
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: airoha: Fix use-after-free in metadat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-53250 - In the Linux kernel, the following vulnerability has been resolved: xsk: cache csum_start/csum_offset to fix T
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xsk: cache csum_start/csum_offset to fix T. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-53253 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: bnep: reject short frames befor
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: bnep: reject short frames befor. Upgrade to fixed fields in bnep_rx_frame and remove the vulnerable command-injection pattern.
CVE-2026-53254 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: validate skb length in
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: validate skb length in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53255 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: validate advertising TLV
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: validate advertising TLV. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53256 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: hold listener socket in
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: hold listener socket in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53259 - In the Linux kernel, the following vulnerability has been resolved: ipv6: anycast: insert aca into global hash
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: anycast: insert aca into global hash. Upgrade to version reported in and remove the vulnerable authz pattern.
CVE-2026-53260 - In the Linux kernel, the following vulnerability has been resolved: tcp: Add preempt_{disable,enable}_nested()
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: tcp: Add preempt_{disable,enable}_nested(). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53264 - In the Linux kernel, the following vulnerability has been resolved: net/sched: act_api: use RCU with deferred
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/sched: act_api: use RCU with deferred. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable supply-chain pattern.
CVE-2026-53265 - In the Linux kernel, the following vulnerability has been resolved: dm cache policy smq: check allocation unde
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dm cache policy smq: check allocation unde. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53266 - In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: make ebt_snat ARP rewri
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: make ebt_snat ARP rewri. Upgrade to fixed by commit 63137bc5882a. and remove the vulnerable command-injection pattern.
CVE-2026-53267 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: bail out on template ct
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: bail out on template ct. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53270 - In the Linux kernel, the following vulnerability has been resolved: ipvs: clear the svc scheduler ptr early on
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipvs: clear the svc scheduler ptr early on. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53272 - In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi->sync_dec
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi->sync_dec. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53273 - In the Linux kernel, the following vulnerability has been resolved: tee: optee: prevent use-after-free when th
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: tee: optee: prevent use-after-free when th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-53275 - In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: Fix use-after-free when proce
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: Fix use-after-free when proce. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53276 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix a use-after-free of th
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix a use-after-free of th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53277 - In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page ta
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page ta. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54030 - LibreChat is an enhanced ChatGPT clone that supports multiple AI providers
High remediation recipe for LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Upgrade to fixed in 0.8.5. and remove the vulnerable command-injection pattern.
CVE-2026-54033 - LibreChat is an enhanced ChatGPT clone that supports multiple AI providers
High remediation recipe for LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Upgrade to fixed in 0.8.4-rc1. and remove the vulnerable ssrf pattern.
CVE-2026-54830 - Unauthenticated Broken Access Control in Five Star Restaurant Reservations <= 2.7.19 versions
High remediation recipe for Unauthenticated Broken Access Control in Five Star Restaurant Reservations <= 2.7.19 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54844 - Unauthenticated Broken Access Control in CheckView Automated Testing <= 2.1.0 versions
High remediation recipe for Unauthenticated Broken Access Control in CheckView Automated Testing <= 2.1.0 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54917 - SeaweedFS is a distributed storage system for object storage (S3), file systems, and Iceberg tables
Critical remediation recipe for SeaweedFS is a distributed storage system for object storage (S3), file systems, and Iceberg tables. Upgrade to fixed in 4.30. and remove the vulnerable authz pattern.
CVE-2026-55693 - Vim is an open source, command line text editor
High remediation recipe for Vim is an open source, command line text editor. Upgrade to fixed MAXWLEN-element stack arrays it indexes and remove the vulnerable command-injection pattern.
CVE-2026-55895 - Vim is an open source, command line text editor
High remediation recipe for Vim is an open source, command line text editor. Upgrade to fixed in 9.2.0663. and remove the vulnerable command-injection pattern.
CVE-2026-55960 - Un-negotiated Raw Public Key (RFC 7250) accepted in place of an X.509 certificate, bypassing chain validation
High remediation recipe for Un-negotiated Raw Public Key (RFC 7250) accepted in place of an X.509 certificate, bypassing chain validation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-55967 - AES-GCM encryption/decryption with extremely large cumulative single message sizes (>64 GiB) were not properly
High remediation recipe for AES-GCM encryption/decryption with extremely large cumulative single message sizes (>64 GiB) were not properly. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56051 - Unauthenticated Cross Site Scripting (XSS) in TablePress <= 3.3.1 versions
High remediation recipe for Unauthenticated Cross Site Scripting (XSS) in TablePress <= 3.3.1 versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-56123 - socat versions 1.8.0.0 through 1.8.1.1 contain a heap-based buffer overflow vulnerability that allows a malici
High remediation recipe for socat versions 1.8.0.0 through 1.8.1.1 contain a heap-based buffer overflow vulnerability that allows a malici. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56766 - Hydra through 9.7, fixed in commit 9cc84c2, contains a stack buffer overflow in NTLM authentication across SMT
High remediation recipe for Hydra through 9.7, fixed in commit 9cc84c2, contains a stack buffer overflow in NTLM authentication across SMT. Upgrade to fixed in commit 9cc84c2 and remove the vulnerable authz pattern.
CVE-2026-56768 - Seahub before 13.0.23 does not enforce SHARE_LINK_LOGIN_REQUIRED on GET /api/v2.1/share-link-zip-task/, allowi
High remediation recipe for Seahub before 13.0.23 does not enforce SHARE_LINK_LOGIN_REQUIRED on GET /api/v2.1/share-link-zip-task/, allowi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-56769 - Huly Platform through 0.7.423, fixed in commit 68cbf8a contains an authenticated server-side request forgery v
High remediation recipe for Huly Platform through 0.7.423, fixed in commit 68cbf8a contains an authenticated server-side request forgery v. Upgrade to fixed in commit 68cbf8a contains an authenticated server-side request and remove the vulnerable ssrf pattern.
CVE-2026-56770 - libais through 0.15 VdmStream::AddLine uses an unchecked sentinel value as a vector index when processing AIS
High remediation recipe for libais through 0.15 VdmStream::AddLine uses an unchecked sentinel value as a vector index when processing AIS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-56786 - RTKLIB through 2.4.3 contains an out-of-bounds write vulnerability in decode_type1033 function that fails to c
Critical remediation recipe for RTKLIB through 2.4.3 contains an out-of-bounds write vulnerability in decode_type1033 function that fails to c. Upgrade to fixed 64-byte descriptor fields. An attacker controlling an NTRIP and remove the vulnerable dos pattern.
CVE-2026-57235 - Nokogiri is an open source XML and HTML library for the Ruby programming language
High remediation recipe for Nokogiri is an open source XML and HTML library for the Ruby programming language. Upgrade to fixed in 1.19.4. and remove the vulnerable command-injection pattern.
CVE-2026-57236 - Nokogiri is an open source XML and HTML library for the Ruby programming language
High remediation recipe for Nokogiri is an open source XML and HTML library for the Ruby programming language. Upgrade to fixed in 1.19.4. and remove the vulnerable command-injection pattern.
CVE-2026-57434 - Nokogiri is an open source XML and HTML library for the Ruby programming language
High remediation recipe for Nokogiri is an open source XML and HTML library for the Ruby programming language. Upgrade to fixed in 1.19.4. and remove the vulnerable command-injection pattern.
CVE-2026-57435 - Nokogiri is an open source XML and HTML library for the Ruby programming language
High remediation recipe for Nokogiri is an open source XML and HTML library for the Ruby programming language. Upgrade to fixed in 1.19.4. and remove the vulnerable command-injection pattern.
CVE-2026-57455 - Vim is an open source, command line text editor
High remediation recipe for Vim is an open source, command line text editor. Upgrade to fixed in 9.2.0698. and remove the vulnerable command-injection pattern.
CVE-2026-57589 - sys/kern/sysv_sem.c in OpenBSD through 7.9 has a use-after-free allowing local privilege escalation to root
High remediation recipe for sys/kern/sysv_sem.c in OpenBSD through 7.9 has a use-after-free allowing local privilege escalation to root. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable use-after-free pattern.
CVE-2026-57700 - Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious File
Critical remediation recipe for Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious File. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-6094 - Heap buffer overread in wc_PKCS7_DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData
Critical remediation recipe for Heap buffer overread in wc_PKCS7_DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-7511 - PKCS7_verify signer confusion allows forged signatures, where the signer associated with a signature is not co
High remediation recipe for PKCS7_verify signer confusion allows forged signatures, where the signer associated with a signature is not co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-8660 - OS Command Injection vulnerability in the ping action of Rapid7 InsightConnect Ping Plugin on Linux allows rem
High remediation recipe for OS Command Injection vulnerability in the ping action of Rapid7 InsightConnect Ping Plugin on Linux allows rem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-8665 - OS Command Injection vulnerability in the TR action of Rapid7 InsightConnect Translate Plugin on Linux allows
High remediation recipe for OS Command Injection vulnerability in the TR action of Rapid7 InsightConnect Translate Plugin on Linux allows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-8666 - OS Command Injection vulnerability in the traceroute action of Rapid7 InsightConnect Traceroute Plugin on Linu
High remediation recipe for OS Command Injection vulnerability in the traceroute action of Rapid7 InsightConnect Traceroute Plugin on Linu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-9099 - A flaw was found in Keycloak. A missing authorization check in the GroupResource.addChild() endpoint within th
High remediation recipe for A flaw was found in Keycloak. A missing authorization check in the GroupResource.addChild() endpoint within th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-9800 - A flaw was found in Keycloak Policy Enforcer
High remediation recipe for A flaw was found in Keycloak Policy Enforcer. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-60467 - A use-after-free in the gf_filter_pid_inst_swap_delete_task function (/filter_core/filter_pid.c) of GPAC Proje
High remediation recipe for A use-after-free in the gf_filter_pid_inst_swap_delete_task function (/filter_core/filter_pid.c) of GPAC Proje. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-60474 - A buffer overflow in the gf_media_import function (/media_tools/av_parsers.c) of GPAC Project/MP4Box before 26
High remediation recipe for A buffer overflow in the gf_media_import function (/media_tools/av_parsers.c) of GPAC Project/MP4Box before 26. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-11877 - An unauthorized user can modify configuration through API calls that affects the OpenText Access Manager
High remediation recipe for An unauthorized user can modify configuration through API calls that affects the OpenText Access Manager. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13201 - A flaw was found in KubeVirt's safepath package used by virt-handler
High remediation recipe for A flaw was found in KubeVirt's safepath package used by virt-handler. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-2050 - GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
High remediation recipe for GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-44020 - Docling simplifies document processing by parsing diverse formats and providing integrations with the generati
High remediation recipe for Docling simplifies document processing by parsing diverse formats and providing integrations with the generati. Upgrade to fixed in 2.74.0. and remove the vulnerable ssrf pattern.
CVE-2026-49980 - Rclone is a command-line program to sync files and directories to and from different cloud storage providers
Critical remediation recipe for Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Upgrade to fixed in 1.74.3. and remove the vulnerable authz pattern.
CVE-2026-52923 - In the Linux kernel, the following vulnerability has been resolved: ipc: limit next_id allocation to the valid
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipc: limit next_id allocation to the valid. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52924 - In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: sctp: purge outqueue on stale COOKIE-ECHO. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-52943 - In the Linux kernel, the following vulnerability has been resolved: net: skbuff: fix missing zerocopy referenc
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: skbuff: fix missing zerocopy referenc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52945 - In the Linux kernel, the following vulnerability has been resolved: Revert wireguard: device: enable threaded
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Revert wireguard: device: enable threaded. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-52950 - In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: fix UAF with retry loop Re
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: fix UAF with retry loop Re. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52951 - In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: handle empty bo and UAF ra
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: handle empty bo and UAF ra. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-52952 - In the Linux kernel, the following vulnerability has been resolved: iommu: Fix WARN_ON in __iommu_group_set_do
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: iommu: Fix WARN_ON in __iommu_group_set_do. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52955 - In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52956 - In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52969 - In the Linux kernel, the following vulnerability has been resolved: KVM: Reject wrapped offset in kvm_reset_di
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: Reject wrapped offset in kvm_reset_di. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52972 - In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Cap AEAD AD length to 0x8
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Cap AEAD AD length to 0x8. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52973 - In the Linux kernel, the following vulnerability has been resolved: futex: Drop CLONE_THREAD requirement for p
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: futex: Drop CLONE_THREAD requirement for p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52976 - In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix error cleanup in xe_exec_queue
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix error cleanup in xe_exec_queue. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52987 - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid double drm_exec_fini() i
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid double drm_exec_fini() i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52989 - In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: propagate nvmet_tcp_build_pdu_i
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: propagate nvmet_tcp_build_pdu_i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52991 - In the Linux kernel, the following vulnerability has been resolved: sched/psi: fix race between file release a
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: sched/psi: fix race between file release a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52993 - In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipc_buf_append()
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipc_buf_append(). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53000 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfree_rcu to release o
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfree_rcu to release o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53002 - In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: remove sprintf usage
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: remove sprintf usage. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53006 - In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6_rcv() Cac
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6_rcv() Cac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53009 - In the Linux kernel, the following vulnerability has been resolved: ice: fix double-free of tx_buf skb If ice_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ice: fix double-free of tx_buf skb If ice_. Upgrade to version of the patch. and remove the vulnerable authz pattern.
CVE-2026-53016 - In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - copy IV using skcipher ivsiz
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - copy IV using skcipher ivsiz. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53033 - In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Take state lock for af_unix
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Take state lock for af_unix. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53059 - In the Linux kernel, the following vulnerability has been resolved: dm log: fix out-of-bounds write due to reg
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dm log: fix out-of-bounds write due to reg. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-53071 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Add missing chan lock in
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Add missing chan lock in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53081 - In the Linux kernel, the following vulnerability has been resolved: bpf: Enforce regsafe base id consistency f
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: Enforce regsafe base id consistency f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53085 - In the Linux kernel, the following vulnerability has been resolved: bpf: fix mm lifecycle in open-coded task_v
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: fix mm lifecycle in open-coded task_v. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable supply-chain pattern.
CVE-2026-53091 - In the Linux kernel, the following vulnerability has been resolved: net: pull headers in qdisc_pkt_len_segs_in
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: pull headers in qdisc_pkt_len_segs_in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.
CVE-2026-53092 - In the Linux kernel, the following vulnerability has been resolved: bpf: Fix linked reg delta tracking when sr
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: Fix linked reg delta tracking when sr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-53130 - In the Linux kernel, the following vulnerability has been resolved: fs/omfs: reject s_sys_blocksize smaller th
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: fs/omfs: reject s_sys_blocksize smaller th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54297 - Faraday is an HTTP client library abstraction layer that provides a common interface over many adapters
High remediation recipe for Faraday is an HTTP client library abstraction layer that provides a common interface over many adapters. Upgrade to fixed in 1.10.6 and 2.14.3. and remove the vulnerable dos pattern.
CVE-2026-54904 - concurrent-ruby is a modern concurrency tools for Ruby
High remediation recipe for concurrent-ruby is a modern concurrency tools for Ruby. Upgrade to fixed in 1.3.7. and remove the vulnerable command-injection pattern.
CVE-2026-54906 - concurrent-ruby is a modern concurrency tools for Ruby
Critical remediation recipe for concurrent-ruby is a modern concurrency tools for Ruby. Upgrade to fixed in 1.3.7. and remove the vulnerable command-injection pattern.
CVE-2026-55455 - Appsmith is a platform to build admin panels, internal tools, and dashboards
Critical remediation recipe for Appsmith is a platform to build admin panels, internal tools, and dashboards. Upgrade to fixed in 2.1. and remove the vulnerable command-injection pattern.
CVE-2026-56270 - Flowise before 3.1.0 (versions 3.0.13 and earlier) contains a missing authentication vulnerability in the /api
High remediation recipe for Flowise before 3.1.0 (versions 3.0.13 and earlier) contains a missing authentication vulnerability in the /api. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.
CVE-2026-56351 - n8n before version 2.4.0 contains a sql injection vulnerability in MySQL, PostgreSQL, and Microsoft SQL nodes
High remediation recipe for n8n before version 2.4.0 contains a sql injection vulnerability in MySQL, PostgreSQL, and Microsoft SQL nodes. Upgrade to version 2.4.0 contains a sql injection vulnerability in MySQL and remove the vulnerable authz pattern.
CVE-2026-57281 - Jenkins Script Security Plugin 1402.v94c9ce464861 and earlier does not reject Groovy AST transformation annota
High remediation recipe for Jenkins Script Security Plugin 1402.v94c9ce464861 and earlier does not reject Groovy AST transformation annota. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-61018 - An issue in the sqlo_place_dt_set component of openlink virtuoso-opensource v7.2.11 allows attackers to cause
High remediation recipe for An issue in the sqlo_place_dt_set component of openlink virtuoso-opensource v7.2.11 allows attackers to cause. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-61020 - An issue in the sqlo_strip_in_join component of openlink virtuoso-opensource v7.2.11 allows attackers to cause
High remediation recipe for An issue in the sqlo_strip_in_join component of openlink virtuoso-opensource v7.2.11 allows attackers to cause. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-61023 - An issue in the st_compare component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denia
High remediation recipe for An issue in the st_compare component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denia. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-61028 - An issue in the time_t_to_dt component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Den
High remediation recipe for An issue in the time_t_to_dt component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Den. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-12112 - A flaw was found in the foreman-mcp-server
High remediation recipe for A flaw was found in the foreman-mcp-server. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-45732 - n8n is an open source workflow automation platform
High remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 1.123.43 and remove the vulnerable command-injection pattern.
CVE-2026-48020 - Traefik is an HTTP reverse proxy and load balancer
Critical remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 2.11.48 and remove the vulnerable command-injection pattern.
CVE-2026-49465 - n8n is an open source workflow automation platform
High remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 1.123.48 and remove the vulnerable command-injection pattern.
CVE-2026-50023 - yt-dlp is a command-line audio/video downloader
High remediation recipe for yt-dlp is a command-line audio/video downloader. Upgrade to fixed in 2026.06.09. and remove the vulnerable authz pattern.
CVE-2026-50574 - yt-dlp is a command-line audio/video downloader
High remediation recipe for yt-dlp is a command-line audio/video downloader. Upgrade to fixed in 2026.06.09. and remove the vulnerable path-traversal pattern.
CVE-2026-54304 - n8n is an open source workflow automation platform
High remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 1.123.55 and remove the vulnerable command-injection pattern.
CVE-2026-54305 - n8n is an open source workflow automation platform
Critical remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 1.123.55 and remove the vulnerable command-injection pattern.
CVE-2026-54307 - n8n is an open source workflow automation platform
Critical remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 1.123.55 and remove the vulnerable command-injection pattern.
CVE-2026-54308 - n8n is an open source workflow automation platform
High remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 2.25.7 and 2.26.2. and remove the vulnerable command-injection pattern.
CVE-2026-54316 - Claude Code is an agentic coding tool. From 0.2.54 until 2.1.163, because the hostname huggingface.co was pre-
Critical remediation recipe for Claude Code is an agentic coding tool. From 0.2.54 until 2.1.163, because the hostname huggingface.co was pre-. Upgrade to fixed in 2.1.163. and remove the vulnerable cert-validation pattern.
CVE-2026-54513 - jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Proce
High remediation recipe for jackson-databind contains the general-purpose data-binding functionality and tree-model for Jackson Data Proce. Upgrade to fixed in 2.18.8 and remove the vulnerable command-injection pattern.
CVE-2026-54761 - Traefik is an HTTP reverse proxy and load balancer
High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 3.6.21 and 3.7.5. and remove the vulnerable command-injection pattern.
CVE-2026-54762 - Traefik is an HTTP reverse proxy and load balancer
High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 3.7.5. and remove the vulnerable authz pattern.
CVE-2025-66389 - GitHub Copilot 1.372.0 allows filesystem access outside of a workspace folder (without user approval) via a fi
High remediation recipe for GitHub Copilot 1.372.0 allows filesystem access outside of a workspace folder (without user approval) via a fi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-28381 - The Snowflake datasource allows for GET/PUT commands, which can allow any user with access to run queries agai
Critical remediation recipe for The Snowflake datasource allows for GET/PUT commands, which can allow any user with access to run queries agai. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-42127 - The public dashboard query endpoint does not limit request body size before processing, allowing unauthenticat
High remediation recipe for The public dashboard query endpoint does not limit request body size before processing, allowing unauthenticat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-44271 - Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special El
High remediation recipe for Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special El. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48746 - vLLM is an inference and serving engine for large language models (LLMs)
Critical remediation recipe for vLLM is an inference and serving engine for large language models (LLMs). Upgrade to fixed in 0.22.0. and remove the vulnerable auth-bypass pattern.
CVE-2026-49468 - LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format
Critical remediation recipe for LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Upgrade to fixed in 1.84.0. and remove the vulnerable authz pattern.
CVE-2026-54099 - A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform
High remediation recipe for A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-54100 - A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform
High remediation recipe for A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-56266 - Crawl4AI before 0.8.7 contains a server-side request forgery vulnerability in the /crawl, /crawl/stream, /md,
High remediation recipe for Crawl4AI before 0.8.7 contains a server-side request forgery vulnerability in the /crawl, /crawl/stream, /md,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-8858 - IBM WebSphere Application Server and IBM WebSphere Application Server Liberty are vulnerable to remote code ex
High remediation recipe for IBM WebSphere Application Server and IBM WebSphere Application Server Liberty are vulnerable to remote code ex. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-9029 - The geomap panel's XYZ tile layer has a sanitize-then-interpolate ordering bug
High remediation recipe for The geomap panel's XYZ tile layer has a sanitize-then-interpolate ordering bug. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-9072 - IBM WebSphere Application Server and IBM WebSphere Application Server Liberty - when using Intelligent Managem
High remediation recipe for IBM WebSphere Application Server and IBM WebSphere Application Server Liberty - when using Intelligent Managem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-12773 - A weakness has been identified in BerriAI litellm up to 1.59.8
High remediation recipe for A weakness has been identified in BerriAI litellm up to 1.59.8. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.
CVE-2026-56340 - vLLM versions >= 0.10.2 and < 0.13.0 are missing sparse tensor validation in multimodal embeddings processing
High remediation recipe for vLLM versions >= 0.10.2 and < 0.13.0 are missing sparse tensor validation in multimodal embeddings processing. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-62821 - Microsoft HEIF Image Extensions 1.2.22.0 has an out-of-bounds read because CHEIFItemInfoEntry_GetDataSize can
Critical remediation recipe for Microsoft HEIF Image Extensions 1.2.22.0 has an out-of-bounds read because CHEIFItemInfoEntry_GetDataSize can. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-3195 - A flaw was found in QEMU. When reading input audio in the virtio-snd device input callback, the virtio_snd_pc
High remediation recipe for A flaw was found in QEMU. When reading input audio in the virtio-snd device input callback, the virtio_snd_pc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-47645 - Url redirection to untrusted site ('open redirect') in Microsoft 365 Copilot's Business Chat allows an unautho
High remediation recipe for Url redirection to untrusted site ('open redirect') in Microsoft 365 Copilot's Business Chat allows an unautho. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48584 - Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges ove
Critical remediation recipe for Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to elevate privileges ove. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48715 - radvd is a router advertisement daemon for IPv6
High remediation recipe for radvd is a router advertisement daemon for IPv6. Upgrade to version 2.21 and remove the vulnerable authz pattern.
CVE-2026-50242 - In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.14842
Critical remediation recipe for In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.14842. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-51843 - Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface
Critical remediation recipe for Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-51844 - Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface
Critical remediation recipe for Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-51845 - Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface
Critical remediation recipe for Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-51846 - In Tenda AC7 v15.03.06.44, the wanSpeed parameter of the route /goform/AdvSetMacMtuWan has a stack buffer over
Critical remediation recipe for In Tenda AC7 v15.03.06.44, the wanSpeed parameter of the route /goform/AdvSetMacMtuWan has a stack buffer over. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable memory-corruption pattern.
CVE-2026-52910 - In the Linux kernel, the following vulnerability has been resolved: bpf: Free reuseport cBPF prog after RCU gr
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: Free reuseport cBPF prog after RCU gr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53915 - In JetBrains GoLand before 2026.1.3 remote code execution was possible via untrusted project configuration
High remediation recipe for In JetBrains GoLand before 2026.1.3 remote code execution was possible via untrusted project configuration. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56142 - In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.14842
Critical remediation recipe for In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.14842. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56208 - A heap buffer overflow vulnerability was found in libaom, the reference AV1 codec implementation
High remediation recipe for A heap buffer overflow vulnerability was found in libaom, the reference AV1 codec implementation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-56209 - An arbitrary address write vulnerability was found in libaom, the reference AV1 codec implementation
High remediation recipe for An arbitrary address write vulnerability was found in libaom, the reference AV1 codec implementation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-56210 - A heap-buffer-overflow read vulnerability was found in libaom, the reference AV1 codec implementation
High remediation recipe for A heap-buffer-overflow read vulnerability was found in libaom, the reference AV1 codec implementation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-56211 - A remote code execution vulnerability was found in libaom, the reference AV1 codec implementation
High remediation recipe for A remote code execution vulnerability was found in libaom, the reference AV1 codec implementation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-12505 - A flaw was found in the cifs-utils package where the cifs.upcall helper fails to securely drop its root privil
High remediation recipe for A flaw was found in the cifs-utils package where the cifs.upcall helper fails to securely drop its root privil. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-43994 - Coturn is a free open source implementation of TURN and STUN Server
High remediation recipe for Coturn is a free open source implementation of TURN and STUN Server. Upgrade to fixed in version 4.10.0. and remove the vulnerable command-injection pattern.
CVE-2026-55203 - HAProxy through 3.4.0, fixed in commit 5985276, contains an integer overflow vulnerability in the fcgi_conn st
High remediation recipe for HAProxy through 3.4.0, fixed in commit 5985276, contains an integer overflow vulnerability in the fcgi_conn st. Upgrade to fixed in commit 5985276 and remove the vulnerable authz pattern.
CVE-2026-8461 - An out-of-bounds write vulnerability in FFmpeg's libavcodec library, specifically in the MagicYUV decoder, all
High remediation recipe for An out-of-bounds write vulnerability in FFmpeg's libavcodec library, specifically in the MagicYUV decoder, all. Upgrade to version 8.1.2. and remove the vulnerable authz pattern.
CVE-2026-12151 - Impact: The undici WebSocket client enforces maxPayloadSize on the cumulative byte count of fragments in a mes
High remediation recipe for Impact: The undici WebSocket client enforces maxPayloadSize on the cumulative byte count of fragments in a mes. Upgrade to Upgrade to undici >= 6.26.0 and remove the vulnerable command-injection pattern.
CVE-2026-2467 - Heap-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variable
High remediation recipe for Heap-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variable. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2674 - Out-of-bounds Write, Out-of-bounds Write, Out-of-bounds Write vulnerability in RTI Connext Professional (Queue
High remediation recipe for Out-of-bounds Write, Out-of-bounds Write, Out-of-bounds Write vulnerability in RTI Connext Professional (Queue. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-30799 - Missing Authentication for Critical Function vulnerability in RTI Connext Professional (Security Plugins) allo
High remediation recipe for Missing Authentication for Critical Function vulnerability in RTI Connext Professional (Security Plugins) allo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-30802 - Out-of-bounds Read vulnerability in RTI Connext Micro (Core Libraries) allows Overread Buffers.This issue affe
High remediation recipe for Out-of-bounds Read vulnerability in RTI Connext Micro (Core Libraries) allows Overread Buffers.This issue affe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-30803 - Integer Underflow (Wrap or Wraparound) vulnerability in RTI Connext Micro (Core Libraries) allows Overread Buf
Critical remediation recipe for Integer Underflow (Wrap or Wraparound) vulnerability in RTI Connext Micro (Core Libraries) allows Overread Buf. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3894 - Out-of-bounds Read vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers.This iss
Critical remediation recipe for Out-of-bounds Read vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers.This iss. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-42055 - NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_proxy_v2_module and ngx_http_grpc_module
High remediation recipe for NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_proxy_v2_module and ngx_http_grpc_module. Upgrade to version to 2 and remove the vulnerable command-injection pattern.
CVE-2026-42530 - NGINX Open Source has a vulnerability in the ngx_http_v3_module module
High remediation recipe for NGINX Open Source has a vulnerability in the ngx_http_v3_module module. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-47774 - Envoy is an open source edge and service proxy designed for cloud-native applications
High remediation recipe for Envoy is an open source edge and service proxy designed for cloud-native applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-48294 - Adobe Acrobat PDF Extension (Chrome) versions 26.5.2.2 and earlier are affected by a UXSS-class cross-origin d
High remediation recipe for Adobe Acrobat PDF Extension (Chrome) versions 26.5.2.2 and earlier are affected by a UXSS-class cross-origin d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-55200 - libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2_transpor
High remediation recipe for libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2_transpor. Upgrade to fixed in commit 7acf3df contains an out-of-bounds write vulnerability and remove the vulnerable command-injection pattern.
CVE-2026-10649 - A flaw was found in Pacemaker. An unauthenticated remote attacker can exploit an integer overflow vulnerabilit
High remediation recipe for A flaw was found in Pacemaker. An unauthenticated remote attacker can exploit an integer overflow vulnerabilit. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-12289 - Privilege escalation in the Graphics: WebRender component
High remediation recipe for Privilege escalation in the Graphics: WebRender component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.
CVE-2026-12290 - Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firef
High remediation recipe for Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firef. Upgrade to fixed in Firefox 152. This vulnerability was fixed in Firefox 152 and remove the vulnerable authz pattern.
CVE-2026-12291 - Use-after-free in the Networking: HTTP component
High remediation recipe for Use-after-free in the Networking: HTTP component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.
CVE-2026-12292 - Incorrect boundary conditions in the Web Audio component
High remediation recipe for Incorrect boundary conditions in the Web Audio component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.
CVE-2026-12293 - Use-after-free in the Graphics: WebGPU component
Critical remediation recipe for Use-after-free in the Graphics: WebGPU component. Upgrade to fixed in Firefox 152 and Thunderbird 152. and remove the vulnerable authz pattern.
CVE-2026-12294 - Sandbox escape in the DOM: Workers component
Critical remediation recipe for Sandbox escape in the DOM: Workers component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.
CVE-2026-12295 - Sandbox escape in the DOM: Navigation component
Critical remediation recipe for Sandbox escape in the DOM: Navigation component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.
CVE-2026-12296 - Sandbox escape in the Security: Process Sandboxing component
Critical remediation recipe for Sandbox escape in the Security: Process Sandboxing component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.
CVE-2026-12297 - Sandbox escape due to incorrect boundary conditions in the Networking component
Critical remediation recipe for Sandbox escape due to incorrect boundary conditions in the Networking component. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.
CVE-2026-12326 - Memory safety bugs present in Firefox 151 and Thunderbird 151
High remediation recipe for Memory safety bugs present in Firefox 151 and Thunderbird 151. Upgrade to fixed in Firefox 152 and Thunderbird 152. and remove the vulnerable authz pattern.
CVE-2026-12328 - Memory safety bugs present in Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and
High remediation recipe for Memory safety bugs present in Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and. Upgrade to fixed in Firefox 152 and remove the vulnerable authz pattern.
CVE-2026-12398 - A command injection vulnerability was found in galaxy_ng
High remediation recipe for A command injection vulnerability was found in galaxy_ng. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-46331 - In the Linux kernel, the following vulnerability has been resolved: net/sched: fix pedit partial COW leading t
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/sched: fix pedit partial COW leading t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-50656 - Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Microsoft Defend
High remediation recipe for Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in Microsoft Defend. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52719 - An out-of-bounds read vulnerability was found in the VA JPEG decoder in GStreamer's gst-plugins-bad
High remediation recipe for An out-of-bounds read vulnerability was found in the VA JPEG decoder in GStreamer's gst-plugins-bad. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-52720 - A heap buffer overflow vulnerability was found in GStreamer's librfb (RFB/VNC client)
High remediation recipe for A heap buffer overflow vulnerability was found in GStreamer's librfb (RFB/VNC client). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-52722 - A signed integer overflow vulnerability was found in GStreamer's VMnc decoder
High remediation recipe for A signed integer overflow vulnerability was found in GStreamer's VMnc decoder. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-53705 - A flaw was found in GStreamer's WavPack audio decoder in gst-plugins-good
High remediation recipe for A flaw was found in GStreamer's WavPack audio decoder in gst-plugins-good. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-6040 - A heap use-after-free existed when importing the blank-width characters of an ODF number format
High remediation recipe for A heap use-after-free existed when importing the blank-width characters of an ODF number format. Upgrade to fixed versions the position is bounds-checked before use. and remove the vulnerable authz pattern.
CVE-2026-8357 - LibreOffice Calc compiles cell formulas when opening a spreadsheet
High remediation recipe for LibreOffice Calc compiles cell formulas when opening a spreadsheet. Upgrade to fixed versions the array is sized to hold the largest possible nes and remove the vulnerable authz pattern.
CVE-2026-9863 - Fortra BoKS Manager contains an OS command injection vulnerability in the client upgrade and patch tooling for
High remediation recipe for Fortra BoKS Manager contains an OS command injection vulnerability in the client upgrade and patch tooling for. Upgrade to version handling. and remove the vulnerable command-injection pattern.
CVE-2026-11769 - We have released version 5.24.0 of the Grafana Operator
High remediation recipe for We have released version 5.24.0 of the Grafana Operator. Upgrade to version 5.24.0 of the Grafana Operator. This patch includes a CRITIC and remove the vulnerable command-injection pattern.
CVE-2026-54228 - A time-of-check time-of-use (TOCTOU) race condition was found in the abrt-dbus D-Bus service's SetElement meth
High remediation recipe for A time-of-check time-of-use (TOCTOU) race condition was found in the abrt-dbus D-Bus service's SetElement meth. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-54229 - A race condition was found in the abrt-dbus D-Bus service's ChownProblemDir method
High remediation recipe for A race condition was found in the abrt-dbus D-Bus service's ChownProblemDir method. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54230 - A symlink following vulnerability was found in the ABRT post-create event handler scripts in libreport
High remediation recipe for A symlink following vulnerability was found in the ABRT post-create event handler scripts in libreport. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-12143 - form-data is a library for creating readable multipart/form-data streams
High remediation recipe for form-data is a library for creating readable multipart/form-data streams. Upgrade to Fixed in 2.5.6 and remove the vulnerable authz pattern.
CVE-2026-44168 - MariaDB server is a community developed fork of MySQL server
High remediation recipe for MariaDB server is a community developed fork of MySQL server. Upgrade to patched in versions 10.6.26 and remove the vulnerable command-injection pattern.
CVE-2026-44170 - MariaDB server is a community developed fork of MySQL server
Critical remediation recipe for MariaDB server is a community developed fork of MySQL server. Upgrade to patched in versions 10.6.26 and remove the vulnerable command-injection pattern.
CVE-2026-44172 - MariaDB server is a community developed fork of MySQL server
Critical remediation recipe for MariaDB server is a community developed fork of MySQL server. Upgrade to patched in versions 3.3.19 and 3.4.9. and remove the vulnerable authz pattern.
CVE-2026-44893 - Netty is a network application framework for development of protocol servers and clients
High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-44894 - Netty is a network application framework for development of protocol servers and clients
High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to version 4.2.15.Final and remove the vulnerable command-injection pattern.
CVE-2026-45169 - Idira Privileged Access Manager (PAM) Self-Hosted Vault versions prior to 15.0.3, 14.6.5, 14.2.7, and 14.0.8 e
High remediation recipe for Idira Privileged Access Manager (PAM) Self-Hosted Vault versions prior to 15.0.3, 14.6.5, 14.2.7, and 14.0.8 e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-46340 - Netty is a network application framework for development of protocol servers and clients
High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48059 - Netty is a network application framework for development of protocol servers and clients
High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48163 - MariaDB server is a community developed fork of MySQL server
High remediation recipe for MariaDB server is a community developed fork of MySQL server. Upgrade to patched in versions 10.6.27 and remove the vulnerable command-injection pattern.
CVE-2026-48165 - MariaDB server is a community developed fork of MySQL server
High remediation recipe for MariaDB server is a community developed fork of MySQL server. Upgrade to patched in versions 10.6.27 and remove the vulnerable command-injection pattern.
CVE-2026-48748 - Netty is a network application framework for development of protocol servers and clients
High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to version 4.2.15.Final and remove the vulnerable dos pattern.
CVE-2026-49875 - Apache CXF's EndpointReferenceUtils and W3CMultiSchemaFactory classes construct a SAXParserFactory without the
Critical remediation recipe for Apache CXF's EndpointReferenceUtils and W3CMultiSchemaFactory classes construct a SAXParserFactory without the. Upgrade to upgrade to versions 4.2.2 or 4.1.7 and remove the vulnerable authz pattern.
CVE-2026-50011 - Netty is a network application framework for development of protocol servers and clients
High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50083 - The Aqara IAM/SSO Gateway (gw-builder.aqara.com) used a hardcoded OAuth client credential, which is an instanc
Critical remediation recipe for The Aqara IAM/SSO Gateway (gw-builder.aqara.com) used a hardcoded OAuth client credential, which is an instanc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.
CVE-2026-50085 - The Aqara Board service (op-test.aqara.com) accepts arbitrary MQTT command payloads, and forwards them to the
High remediation recipe for The Aqara Board service (op-test.aqara.com) accepts arbitrary MQTT command payloads, and forwards them to the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50086 - The Aqara IAM/SSO gateway (gw-builder.aqara.com) exposes bidirectional AES round-trups against the platform's
Critical remediation recipe for The Aqara IAM/SSO gateway (gw-builder.aqara.com) exposes bidirectional AES round-trups against the platform's. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50091 - Aqara Home Android (com.lumiunited.aqarahome) 6.0.0 (and white-label clients embedding the same liblumidevsdk
Critical remediation recipe for Aqara Home Android (com.lumiunited.aqarahome) 6.0.0 (and white-label clients embedding the same liblumidevsdk. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50627 - The JwtAccessTokenValidator class in Apache CXF fails to validate the 'aud' (Audience) claims of incoming JWT
Critical remediation recipe for The JwtAccessTokenValidator class in Apache CXF fails to validate the 'aud' (Audience) claims of incoming JWT. Upgrade to upgrade to versions 4.2.2 or 4.1.7 and remove the vulnerable command-injection pattern.
CVE-2026-50628 - A logic error in OAuthRequestFilter rejects legitimate requests originating from the bound IP address, while b
Critical remediation recipe for A logic error in OAuthRequestFilter rejects legitimate requests originating from the bound IP address, while b. Upgrade to upgrade to versions 4.2.2 or 4.1.7 and remove the vulnerable mcp-auth pattern.
CVE-2026-50632 - A further incomplete fix for a previous advisory CVE-2026-44417 (Untrusted JMS configuration can lead to RCE)
High remediation recipe for A further incomplete fix for a previous advisory CVE-2026-44417 (Untrusted JMS configuration can lead to RCE). Upgrade to upgrade to versions 4.2.2 or 4.1.7 and remove the vulnerable command-injection pattern.
CVE-2026-50633 - A JNDI Injection vulnerability has been discovered in Apache CXF's JCA integration module, which can allow for
High remediation recipe for A JNDI Injection vulnerability has been discovered in Apache CXF's JCA integration module, which can allow for. Upgrade to upgrade to versions 4.2.2 or 4.1.7 and remove the vulnerable authz pattern.
CVE-2026-53406 - Insufficient Verification of Data Authenticity in Remote Control for Zoom Contact Center for Windows before ve
High remediation recipe for Insufficient Verification of Data Authenticity in Remote Control for Zoom Contact Center for Windows before ve. Upgrade to version 7.0.0 may allow an authenticated user to enable an escalatio and remove the vulnerable dos pattern.
CVE-2026-53407 - Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and
High remediation recipe for Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and. Upgrade to version 7.0.4 for Android and before 7.0.3 for iOS may allow an unau and remove the vulnerable authz pattern.
CVE-2026-11774 - An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server (389-ds-base)
High remediation recipe for An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server (389-ds-base). Upgrade to patched schema.c only and did not modify sasl_io.c. and remove the vulnerable command-injection pattern.
CVE-2026-41699 - Spring for GraphQL applications are vulnerable to Unsafe Deserialization when processing paginated GraphQL que
High remediation recipe for Spring for GraphQL applications are vulnerable to Unsafe Deserialization when processing paginated GraphQL que. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-41700 - Spring for GraphQL applications that have enabled the WebSocket transport are vulnerable to Cross-Site WebSock
High remediation recipe for Spring for GraphQL applications that have enabled the WebSocket transport are vulnerable to Cross-Site WebSock. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-41856 - The Spring GraphQL annotation detection mechanism for @Controller data fetchers may not correctly resolve anno
High remediation recipe for The Spring GraphQL annotation detection mechanism for @Controller data fetchers may not correctly resolve anno. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-44890 - Netty is a network application framework for development of protocol servers and clients
High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46519 - mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management
High remediation recipe for mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management. Upgrade to version 3.6.0 and remove the vulnerable mcp-auth pattern.
CVE-2026-47162 - Vim is an open source, command line text editor
High remediation recipe for Vim is an open source, command line text editor. Upgrade to version 9.2.0495 and remove the vulnerable command-injection pattern.
CVE-2026-49261 - MariaDB server is a community developed fork of MySQL server
Critical remediation recipe for MariaDB server is a community developed fork of MySQL server. Upgrade to fixed in 10.6.27 and remove the vulnerable command-injection pattern.
CVE-2026-5497 - vLLM versions 0.8.0 and later are vulnerable to an Out-of-Memory (OOM) Denial of Service (DoS) attack due to u
High remediation recipe for vLLM versions 0.8.0 and later are vulnerable to an Out-of-Memory (OOM) Denial of Service (DoS) attack due to u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-0270 - A path traversal vulnerability in Palo Alto Networks Cortex XSOAR engine software running on Linux allows an u
High remediation recipe for A path traversal vulnerability in Palo Alto Networks Cortex XSOAR engine software running on Linux allows an u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-0271 - A privilege escalation (PE) vulnerability in the Palo Alto Networks Prisma Access Agent app on Linux devices e
High remediation recipe for A privilege escalation (PE) vulnerability in the Palo Alto Networks Prisma Access Agent app on Linux devices e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-0272 - A privilege escalation vulnerability in Palo Alto Networks PAN-OS® software allows an authenticated administra
High remediation recipe for A privilege escalation vulnerability in Palo Alto Networks PAN-OS® software allows an authenticated administra. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-0273 - A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrato
High remediation recipe for A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrato. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-0274 - An improper validation of credentials vulnerability in the CommvaultSecurityIQ integration for Cortex XSOAR an
Critical remediation recipe for An improper validation of credentials vulnerability in the CommvaultSecurityIQ integration for Cortex XSOAR an. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable credential-leak pattern.
CVE-2026-11837 - A local privilege escalation vulnerability was found in the ansible.posix authorized_key module
High remediation recipe for A local privilege escalation vulnerability was found in the ansible.posix authorized_key module. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2049 - GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
High remediation recipe for GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-24716 - A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions
High remediation recipe for A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. Upgrade to fixed the vulnerability in the following versions and remove the vulnerable authz pattern.
CVE-2026-24719 - A command injection vulnerability has been reported to affect several QNAP operating system versions
High remediation recipe for A command injection vulnerability has been reported to affect several QNAP operating system versions. Upgrade to fixed the vulnerability in the following versions and remove the vulnerable command-injection pattern.
CVE-2026-41716 - Spring Data's internal property-lookup cache accepts and permanently retains attacker-supplied strings as cach
High remediation recipe for Spring Data's internal property-lookup cache accepts and permanently retains attacker-supplied strings as cach. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-41717 - Spring Data MongoDB contains a SpEL (Spring Expression Language) expression injection vulnerability
High remediation recipe for Spring Data MongoDB contains a SpEL (Spring Expression Language) expression injection vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-41728 - Spring Data REST's JSON Patch (application/json-patch+json) implementation does not apply the write-access fil
High remediation recipe for Spring Data REST's JSON Patch (application/json-patch+json) implementation does not apply the write-access fil. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-41731 - JsonKafkaHeaderMapper and the deprecated DefaultKafkaHeaderMapper matched type headers against trusted package
High remediation recipe for JsonKafkaHeaderMapper and the deprecated DefaultKafkaHeaderMapper matched type headers against trusted package. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-46520 - ImageMagick is free and open-source software used for editing and manipulating digital images
High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to patched in versions 6.9.13-48 and 7.1.2-23. and remove the vulnerable command-injection pattern.
CVE-2026-46522 - ImageMagick is free and open-source software used for editing and manipulating digital images
High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-46529 - Atril Document Viewer is the default document reader of the MATE desktop environment for Linux
High remediation recipe for Atril Document Viewer is the default document reader of the MATE desktop environment for Linux. Upgrade to fixed in 1.6.2 and remove the vulnerable prototype-pollution pattern.
CVE-2026-49759 - Stack-based Buffer Overflow vulnerability in Erlang OTP erts (inet_drv) allows an unauthenticated remote attac
High remediation recipe for Stack-based Buffer Overflow vulnerability in Erlang OTP erts (inet_drv) allows an unauthenticated remote attac. Upgrade to fixed tag and remove the vulnerable dos pattern.
CVE-2026-53435 - In Jenkins 2.567 and earlier, LTS 2.555.2 and earlier, it is possible for attackers to have Jenkins deserializ
High remediation recipe for In Jenkins 2.567 and earlier, LTS 2.555.2 and earlier, it is possible for attackers to have Jenkins deserializ. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-6893 - A flaw was found in dracut. A remote attacker on the adjacent network can exploit this vulnerability by provid
High remediation recipe for A flaw was found in dracut. A remote attacker on the adjacent network can exploit this vulnerability by provid. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-10263 - Arm C1-Ultra, C1-Premium, Neoverse V3 & V3AE, Neoverse V2, Neoverse V1, Neoverse-N2, Neoverse-N1, Cortex-X925,
Critical remediation recipe for Arm C1-Ultra, C1-Premium, Neoverse V3 & V3AE, Neoverse V2, Neoverse V1, Neoverse-N2, Neoverse-N1, Cortex-X925,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-26142 - Deserialization of untrusted data in Nuance PowerScribe allows an unauthorized attacker to execute code over a
Critical remediation recipe for Deserialization of untrusted data in Nuance PowerScribe allows an unauthorized attacker to execute code over a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-40983 - In Micrometer, it is possible for a user to provide specially crafted gRPC requests that may cause a denial-of
High remediation recipe for In Micrometer, it is possible for a user to provide specially crafted gRPC requests that may cause a denial-of. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40984 - In Micrometer, it is possible for a user to provide specially crafted HTTP requests that may cause a denial-of
High remediation recipe for In Micrometer, it is possible for a user to provide specially crafted HTTP requests that may cause a denial-of. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-41855 - In an untrusted JMS environment, org.springframework.jms.support.converter.MappingJackson2MessageConverter and
High remediation recipe for In an untrusted JMS environment, org.springframework.jms.support.converter.MappingJackson2MessageConverter and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-45490 - Improper authorization in .NET allows an authorized attacker to elevate privileges locally
High remediation recipe for Improper authorization in .NET allows an authorized attacker to elevate privileges locally. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-45591 - Uncontrolled resource consumption in ASP.NET Core allows an unauthorized attacker to deny service over a netwo
High remediation recipe for Uncontrolled resource consumption in ASP.NET Core allows an unauthorized attacker to deny service over a netwo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-46316 - In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46323 - In the Linux kernel, the following vulnerability has been resolved: net: gro: don't merge zcopy skbs skb_gro_r
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: gro: don't merge zcopy skbs skb_gro_r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-46328 - In the Linux kernel, the following vulnerability has been resolved: apparmor: fix rlimit for posix cpu timers
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: apparmor: fix rlimit for posix cpu timers. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-47907 - Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Access Control vulnerability that co
High remediation recipe for Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Access Control vulnerability that co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-47931 - ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Input Validation vulnerability tha
High remediation recipe for ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Input Validation vulnerability tha. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-47937 - Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Ele
High remediation recipe for Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Ele. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-5068 - A remote, unauthenticated BLE peer can trigger a 2-byte out-of-bounds write in the Bluetooth host during L2CAP
High remediation recipe for A remote, unauthenticated BLE peer can trigger a 2-byte out-of-bounds write in the Bluetooth host during L2CAP. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-9698 - DBI versions before 1.648 for Perl saved errors in a limited-sized buffer
Critical remediation recipe for DBI versions before 1.648 for Perl saved errors in a limited-sized buffer. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-11577 - A flaw was found in Keycloak. A limited administrator can exploit an improper access control vulnerability in
High remediation recipe for A flaw was found in Keycloak. A limited administrator can exploit an improper access control vulnerability in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3238 - A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller
High remediation recipe for A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-34355 - A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and earlier allows an attack by an untrusted
High remediation recipe for A buffer overflow in mod_proxy_html in Apache HTTP Server 2.4.67 and earlier allows an attack by an untrusted. Upgrade to upgrade to version 2.4.68 and remove the vulnerable authz pattern.
CVE-2026-42536 - Heap-based Buffer Overflow vulnerability in Apache HTTP Server with mod_xml2enc, xml2StartParse, and untrusted
High remediation recipe for Heap-based Buffer Overflow vulnerability in Apache HTTP Server with mod_xml2enc, xml2StartParse, and untrusted. Upgrade to upgrade to version 2.4.68 and remove the vulnerable authz pattern.
CVE-2026-44185 - Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requests to an attacker controlled OCSP
High remediation recipe for Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requests to an attacker controlled OCSP. Upgrade to upgrade to version 2.4.68 and remove the vulnerable authz pattern.
CVE-2026-46279 - In the Linux kernel, the following vulnerability has been resolved: mm/alloc_tag: clear codetag for pages allo
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mm/alloc_tag: clear codetag for pages allo. Upgrade to fixed at 8192 entries and remove the vulnerable authz pattern.
CVE-2026-46281 - In the Linux kernel, the following vulnerability has been resolved: vmalloc: fix buffer overflow in vrealloc_n
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: vmalloc: fix buffer overflow in vrealloc_n. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-46285 - In the Linux kernel, the following vulnerability has been resolved: mtd: docg3: fix use-after-free in docg3_re
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mtd: docg3: fix use-after-free in docg3_re. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46289 - In the Linux kernel, the following vulnerability has been resolved: lib/scatterlist: fix length calculations i
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: lib/scatterlist: fix length calculations i. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-46293 - In the Linux kernel, the following vulnerability has been resolved: clk: microchip: mpfs-ccc: fix out of bound
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: clk: microchip: mpfs-ccc: fix out of bound. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46301 - In the Linux kernel, the following vulnerability has been resolved: spi: topcliff-pch: fix use-after-free on u
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: spi: topcliff-pch: fix use-after-free on u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46308 - In the Linux kernel, the following vulnerability has been resolved: pmdomain: mediatek: fix use-after-free in
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: pmdomain: mediatek: fix use-after-free in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46309 - In the Linux kernel, the following vulnerability has been resolved: drm/xe/uapi: Reject coh_none PAT index for
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/xe/uapi: Reject coh_none PAT index for. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-49975 - Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http leads to denial of
High remediation recipe for Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http leads to denial of. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-11332 - A flaw was found in ansible-core. The ansible-galaxy role install command processes dependency specifications
High remediation recipe for A flaw was found in ansible-core. The ansible-galaxy role install command processes dependency specifications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-21035 - Improper input validation in Samsung Plus TV prior to version 1.0.28.6 allows remote attackers to access sensi
High remediation recipe for Improper input validation in Samsung Plus TV prior to version 1.0.28.6 allows remote attackers to access sensi. Upgrade to version 1.0.28.6 allows remote attackers to access sensitive informa and remove the vulnerable authz pattern.
CVE-2026-21037 - Improper input validation in Samsung Members prior to version 5.8.01.5 allows local attackers to access arbitr
High remediation recipe for Improper input validation in Samsung Members prior to version 5.8.01.5 allows local attackers to access arbitr. Upgrade to version 5.8.01.5 allows local attackers to access arbitrary URL and and remove the vulnerable authz pattern.
CVE-2026-50256 - A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland
High remediation recipe for A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50257 - A use-after-free flaw was found in the X.Org X server and Xwayland in miSyncDestroyFence()
High remediation recipe for A use-after-free flaw was found in the X.Org X server and Xwayland in miSyncDestroyFence(). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50258 - A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland
High remediation recipe for A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50259 - A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland
High remediation recipe for A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50260 - A use-after-free flaw was found in the X.Org X server and Xwayland in FreeCounter()
High remediation recipe for A use-after-free flaw was found in the X.Org X server and Xwayland in FreeCounter(). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50261 - A use-after-free flaw was found in the X.Org X server and Xwayland in SyncChangeCounter()
High remediation recipe for A use-after-free flaw was found in the X.Org X server and Xwayland in SyncChangeCounter(). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50264 - An out-of-bounds write flaw was found in the X.Org X server and Xwayland in DRIGetBuffers/DRIGetBuffersWithFor
High remediation recipe for An out-of-bounds write flaw was found in the X.Org X server and Xwayland in DRIGetBuffers/DRIGetBuffersWithFor. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-12694 - A local privilege escalation vulnerability exists in Forcepoint VPN Client that allows a local non-administrat
High remediation recipe for A local privilege escalation vulnerability exists in Forcepoint VPN Client that allows a local non-administrat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-10843 - A flaw was found in the OpenShift Cloud Credential Operator Mint-mode IAM policies for AWS
High remediation recipe for A flaw was found in the OpenShift Cloud Credential Operator Mint-mode IAM policies for AWS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-41283 - OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed
Critical remediation recipe for OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-22054 - Active IQ Config Advisor version 6.7.3 contains hard-coded credentials that could allow an authenticated attac
High remediation recipe for Active IQ Config Advisor version 6.7.3 contains hard-coded credentials that could allow an authenticated attac. Upgrade to version 6.7.3 contains hard-coded credentials that could allow an au and remove the vulnerable authz pattern.
CVE-2026-22055 - Active IQ OneCollect version 2.7.3 contains hard-coded credentials that could allow an authenticated attacker
High remediation recipe for Active IQ OneCollect version 2.7.3 contains hard-coded credentials that could allow an authenticated attacker. Upgrade to version 2.7.3 contains hard-coded credentials that could allow an au and remove the vulnerable authz pattern.
CVE-2026-4035 - A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment variables i
High remediation recipe for A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment variables i. Upgrade to fixed in version 3.11.0. and remove the vulnerable authz pattern.
CVE-2026-46244 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: Fix IPv6 inner_thoff
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: Fix IPv6 inner_thoff. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46246 - In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_lbc: Fix use-after-f
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_lbc: Fix use-after-f. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-46251 - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix block_group_tree dirty_list cor
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: btrfs: fix block_group_tree dirty_list cor. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-46253 - In the Linux kernel, the following vulnerability has been resolved: pstore/ram: fix buffer overflow in persist
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: pstore/ram: fix buffer overflow in persist. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-46259 - In the Linux kernel, the following vulnerability has been resolved: procfs: fix missing RCU protection when re
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: procfs: fix missing RCU protection when re. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-46260 - In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix out-of-bound access in fib6_add_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix out-of-bound access in fib6_add_. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-46265 - In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix WQ_MEM_RECLAIM warning When
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix WQ_MEM_RECLAIM warning When. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-46266 - In the Linux kernel, the following vulnerability has been resolved: inet: RAW sockets using IPPROTO_RAW MUST d
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: inet: RAW sockets using IPPROTO_RAW MUST d. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-46267 - In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work befo
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work befo. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-46270 - In the Linux kernel, the following vulnerability has been resolved: power: supply: rt9455: Fix use-after-free
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: rt9455: Fix use-after-free. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-6657 - A vulnerability in jupyter-server versions 1.12.0 through 2.17.0 allows an attacker to bypass CORS origin vali
High remediation recipe for A vulnerability in jupyter-server versions 1.12.0 through 2.17.0 allows an attacker to bypass CORS origin vali. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-10701 - Incorrect boundary conditions in the Graphics: Text component
High remediation recipe for Incorrect boundary conditions in the Graphics: Text component. Upgrade to fixed in Firefox 151.0.3. and remove the vulnerable authz pattern.
CVE-2026-1784 - The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy
High remediation recipe for The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-42504 - Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU
High remediation recipe for Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2019-25718 - Dräger Infinity Explorer C700 contains a privilege escalation vulnerability that allows attackers to break out
High remediation recipe for Dräger Infinity Explorer C700 contains a privilege escalation vulnerability that allows attackers to break out. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-70099 - A NULL pointer dereference in the ext4_dir_en_get_name_len function in include/ext4_dir.h of lwext4 1.0.0 allo
High remediation recipe for A NULL pointer dereference in the ext4_dir_en_get_name_len function in include/ext4_dir.h of lwext4 1.0.0 allo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-10118 - A flaw was found in Poppler's Splash backend
High remediation recipe for A flaw was found in Poppler's Splash backend. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-43958 - A flaw was found in rrdcached, a component of rrdtool
High remediation recipe for A flaw was found in rrdcached, a component of rrdtool. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-42965 - A flaw was found in the OpenShift Router
High remediation recipe for A flaw was found in the OpenShift Router. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-44421 - FreeRDP is a free implementation of the Remote Desktop Protocol
High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.26.0. and remove the vulnerable dos pattern.
CVE-2026-44422 - FreeRDP is a free implementation of the Remote Desktop Protocol
High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.26.0. and remove the vulnerable authz pattern.
CVE-2026-45700 - FreeRDP is a free implementation of the Remote Desktop Protocol
Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.26.0. and remove the vulnerable authz pattern.
CVE-2026-4408 - A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic
Critical remediation recipe for A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-46115 - In the Linux kernel, the following vulnerability has been resolved: block: add pgmap check to biovec_phys_merg
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: block: add pgmap check to biovec_phys_merg. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-46116 - In the Linux kernel, the following vulnerability has been resolved: xfrm: defensively unhash xfrm_state lists
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfrm: defensively unhash xfrm_state lists. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-46119 - In the Linux kernel, the following vulnerability has been resolved: libceph: Fix slab-out-of-bounds access in
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: libceph: Fix slab-out-of-bounds access in. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-46125 - In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: remove station if connecti
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: remove station if connecti. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46135 - In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix race between ICReq handling
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix race between ICReq handling. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-46145 - In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Validate rx_hash_key_len Sashik
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Validate rx_hash_key_len Sashik. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.
CVE-2026-46152 - In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: drop stray 'static' from f
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: drop stray 'static' from f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46166 - In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: use safe list iteration in
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: use safe list iteration in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46176 - In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46181 - In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-46185 - In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in syml
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in syml. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-46189 - In the Linux kernel, the following vulnerability has been resolved: RDMA/vmw_pvrdma: Fix double free on pvrdma
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/vmw_pvrdma: Fix double free on pvrdma. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46195 - In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before bu
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before bu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46215 - In the Linux kernel, the following vulnerability has been resolved: drm: Set old handle to NULL before prime s
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm: Set old handle to NULL before prime s. Upgrade to 0, 6.18.32, 7.0.9, 7.1 and remove the vulnerable authz pattern.
CVE-2026-46227 - In the Linux kernel, the following vulnerability has been resolved: sctp: revalidate list cursor after sctp_se
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: sctp: revalidate list cursor after sctp_se. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-9795 - A flaw was found in Keycloak's Fine-Grained Admin Permissions (FGAPv2) feature
High remediation recipe for A flaw was found in Keycloak's Fine-Grained Admin Permissions (FGAPv2) feature. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-9804 - A flaw was found in KubeVirt's virt-exportserver component
High remediation recipe for A flaw was found in KubeVirt's virt-exportserver component. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2025-71306 - In the Linux kernel, the following vulnerability has been resolved: ima: Fix stack-out-of-bounds in is_bprm_cr
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ima: Fix stack-out-of-bounds in is_bprm_cr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-1933 - A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes
High remediation recipe for A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-3012 - A flaw was found in Samba’s certificate auto-enrollment Group Policy handling
High remediation recipe for A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-45837 - In the Linux kernel, the following vulnerability has been resolved: bpf: Fix use-after-free in arena_vm_close
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: Fix use-after-free in arena_vm_close. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-45839 - In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indice
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indice. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-45851 - In the Linux kernel, the following vulnerability has been resolved: efi: Fix reservation of unaccepted memory
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: efi: Fix reservation of unaccepted memory. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-45852 - In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix double free in rxe_srq_from_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix double free in rxe_srq_from_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-45853 - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Use kvfree instead of kfree in
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Use kvfree instead of kfree in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-45856 - In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Validate wqe_size before usin
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Validate wqe_size before usin. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-45859 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_queue: do shared-unco
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_queue: do shared-unco. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-45860 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conncount: increase the conn
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conncount: increase the conn. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-45861 - In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix slab-use-after-free in qd_put Co
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix slab-use-after-free in qd_put Co. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-45862 - In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Flush cache for PASID table be
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Flush cache for PASID table be. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-45866 - In the Linux kernel, the following vulnerability has been resolved: serial: caif: fix use-after-free in caif_s
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: serial: caif: fix use-after-free in caif_s. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-45867 - In the Linux kernel, the following vulnerability has been resolved: power: supply: act8945a: Fix use-after-fre
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: act8945a: Fix use-after-fre. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-45878 - In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix watch_id bounds checking i
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix watch_id bounds checking i. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-45879 - In the Linux kernel, the following vulnerability has been resolved: power: supply: bq25980: Fix use-after-free
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: bq25980: Fix use-after-free. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-45882 - In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_bms_vm: Fix use-afte
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_bms_vm: Fix use-afte. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-45885 - In the Linux kernel, the following vulnerability has been resolved: power: supply: cpcap-battery: Fix use-afte
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: cpcap-battery: Fix use-afte. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-45891 - In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix double free issue for tx sp
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix double free issue for tx sp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-45893 - In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix & Optimize table creation fr
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix & Optimize table creation fr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-45896 - In the Linux kernel, the following vulnerability has been resolved: mtd: intel-dg: Fix accessing regions befor
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mtd: intel-dg: Fix accessing regions befor. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-45898 - In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix workqueue list corruption b
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix workqueue list corruption b. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-45902 - In the Linux kernel, the following vulnerability has been resolved: power: supply: bq256xx: Fix use-after-free
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: bq256xx: Fix use-after-free. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-45910 - In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix race condition in QP timer h
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix race condition in QP timer h. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-45914 - In the Linux kernel, the following vulnerability has been resolved: Revert hwmon: (ibmpex) fix use-after-free
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Revert hwmon: (ibmpex) fix use-after-free. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-45916 - In the Linux kernel, the following vulnerability has been resolved: power: supply: sbs-battery: Fix use-after-
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: sbs-battery: Fix use-after-. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-45935 - In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix slab-out-of-bounds read in D
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix slab-out-of-bounds read in D. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-45936 - In the Linux kernel, the following vulnerability has been resolved: power: supply: goldfish: Fix use-after-fre
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: goldfish: Fix use-after-fre. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-45938 - In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_lbc: Fix use-after-f
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_lbc: Fix use-after-f. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-45946 - In the Linux kernel, the following vulnerability has been resolved: power: supply: ab8500: Fix use-after-free
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: power: supply: ab8500: Fix use-after-free. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-45957 - In the Linux kernel, the following vulnerability has been resolved: rcu: Fix rcu_read_unlock() deadloop due to
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rcu: Fix rcu_read_unlock() deadloop due to. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-45970 - In the Linux kernel, the following vulnerability has been resolved: bonding: alb: fix UAF in rlb_arp_recv duri
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bonding: alb: fix UAF in rlb_arp_recv duri. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-45972 - In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF and double
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF and double. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-45984 - In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in iomap inline d
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in iomap inline d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-45988 - In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packe
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packe. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-45998 - In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix potential UAF after skb_unshare
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix potential UAF after skb_unshare. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46033 - In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - reject short ahash di
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - reject short ahash di. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46043 - In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before pay
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before pay. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-46054 - In the Linux kernel, the following vulnerability has been resolved: selinux: fix overlayfs mmap() and mprotect
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: selinux: fix overlayfs mmap() and mprotect. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-46090 - In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix peer runtime UAF during f
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix peer runtime UAF during f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46094 - In the Linux kernel, the following vulnerability has been resolved: ext4: fix bounds check in check_xattrs() t
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ext4: fix bounds check in check_xattrs() t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46097 - In the Linux kernel, the following vulnerability has been resolved: Input: edt-ft5x06 - fix use-after-free in
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Input: edt-ft5x06 - fix use-after-free in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-46099 - In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix NOREF dst use in seg6 and r
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix NOREF dst use in seg6 and r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-48962 - IO::Compress versions before 2.220 for Perl can execute arbitrary code in File::GlobMapper via an attacker-con
High remediation recipe for IO::Compress versions before 2.220 for Perl can execute arbitrary code in File::GlobMapper via an attacker-con. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-9312 - A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an
High remediation recipe for A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an. Upgrade to fixed in versions 3.17.17 and remove the vulnerable path-traversal pattern.
CVE-2026-40033 - FreeRDP before 3.26.0 contains a heap-buffer-overflow vulnerability in gdi_CacheToSurface that allows remote a
High remediation recipe for FreeRDP before 3.26.0 contains a heap-buffer-overflow vulnerability in gdi_CacheToSurface that allows remote a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-42496 - Archive::Tar versions before 3.08 for Perl extract symlinks with attacker controlled targets outside the extra
Critical remediation recipe for Archive::Tar versions before 3.08 for Perl extract symlinks with attacker controlled targets outside the extra. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-44209 - Banks generates meaningful LLM prompts using a template language that makes sense
High remediation recipe for Banks generates meaningful LLM prompts using a template language that makes sense. Upgrade to fixed in 2.4.2. and remove the vulnerable command-injection pattern.
CVE-2026-4480 - A flaw was found in the Samba printing subsystem
Critical remediation recipe for A flaw was found in the Samba printing subsystem. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-48864 - A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled
High remediation recipe for A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled. Upgrade to 0.7.38-2.hum1, 0:0.7.20-7.el8_10, 0:0.7.33-5.el10_2 and remove the vulnerable memory-corruption pattern.
CVE-2026-43503 - In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-46300 - In the Linux kernel, the following vulnerability has been resolved: net: skbuff: preserve shared-frag marker d
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: skbuff: preserve shared-frag marker d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-39821 - The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only la
Critical remediation recipe for The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only la. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-9256 - NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module
High remediation recipe for NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-43494 - In the Linux kernel, the following vulnerability has been resolved: net/rds: reset op_nents when zerocopy page
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/rds: reset op_nents when zerocopy page. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-43499 - In the Linux kernel, the following vulnerability has been resolved: rtmutex: Use waiter::task instead of curre
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rtmutex: Use waiter::task instead of curre. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-43501 - In the Linux kernel, the following vulnerability has been resolved: ipv6: rpl: reserve mac_len headroom when r
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: rpl: reserve mac_len headroom when r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-47101 - LiteLLM prior to 1.83.14 allows an authenticated internal_user to create API keys with access to routes that t
High remediation recipe for LiteLLM prior to 1.83.14 allows an authenticated internal_user to create API keys with access to routes that t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-47102 - LiteLLM prior to 1.83.10 allows a user to modify their own user_role via the /user/update endpoint
High remediation recipe for LiteLLM prior to 1.83.10 allows a user to modify their own user_role via the /user/update endpoint. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20223 - A vulnerability in the access validation of internal REST APIs of Cisco Secure Workload could allow an un
Critical remediation recipe for A vulnerability in the access validation of internal REST APIs of Cisco Secure Workload could allow an un. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-29518 - Rsync versions before 3.4.3 contain a time-of-check to time-of-use (TOCTOU) race condition in daemon file hand
High remediation recipe for Rsync versions before 3.4.3 contain a time-of-check to time-of-use (TOCTOU) race condition in daemon file hand. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3039 - BIND servers that are configured to use TKEY-based authentication via GSS-API tokens are vulnerable to excessi
High remediation recipe for BIND servers that are configured to use TKEY-based authentication via GSS-API tokens are vulnerable to excessi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33278 - NLnet Labs Unbound 1.19.1 up to and including version 1.25.0 has a vulnerability in the DNSSEC validator that
Critical remediation recipe for NLnet Labs Unbound 1.19.1 up to and including version 1.25.0 has a vulnerability in the DNSSEC validator that. Upgrade to version 1.25.0 has a vulnerability in the DNSSEC validator that enab and remove the vulnerable command-injection pattern.
CVE-2026-3593 - A use-after-free vulnerability exists within the DNS-over-HTTPS implementation
High remediation recipe for A use-after-free vulnerability exists within the DNS-over-HTTPS implementation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-41292 - NLnet Labs Unbound up to and including version 1.25.0 is vulnerable to a degradation of service attack related
High remediation recipe for NLnet Labs Unbound up to and including version 1.25.0 is vulnerable to a degradation of service attack related. Upgrade to version 1.25.0 is vulnerable to a degradation of service attack rela and remove the vulnerable dos pattern.
CVE-2026-42944 - NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a vulnerability that results in heap overflow
High remediation recipe for NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a vulnerability that results in heap overflow. Upgrade to version 1.25.0 has a vulnerability that results in heap overflow whe and remove the vulnerable dos pattern.
CVE-2026-42959 - NLnet Labs Unbound up to and including version 1.25.0 has a denial of service vulnerability in the DNSSEC vali
High remediation recipe for NLnet Labs Unbound up to and including version 1.25.0 has a denial of service vulnerability in the DNSSEC vali. Upgrade to version 1.25.0 has a denial of service vulnerability in the DNSSEC v and remove the vulnerable dos pattern.
CVE-2026-43618 - Rsync version 3.4.2 and prior contain an integer overflow vulnerability in the compressed-token decoder where
High remediation recipe for Rsync version 3.4.2 and prior contain an integer overflow vulnerability in the compressed-token decoder where. Upgrade to version 3.4.2 and prior contain an integer overflow vulnerability in and remove the vulnerable authz pattern.
CVE-2026-47783 - In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel
High remediation recipe for In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-5946 - Multiple flaws have been identified in named related to the handling of DNS messages whose CLASS is not Inte
High remediation recipe for Multiple flaws have been identified in named related to the handling of DNS messages whose CLASS is not Inte. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-5947 - Undefined behavior may result due to a race condition leading to a use-after-free violation
High remediation recipe for Undefined behavior may result due to a race condition leading to a use-after-free violation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-8631 - A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software
Critical remediation recipe for A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-8632 - A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software
High remediation recipe for A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-9064 - A flaw was found in 389-ds-base. The get_ldapmessage_controls_ext() function in the LDAP server does not enfor
High remediation recipe for A flaw was found in 389-ds-base. The get_ldapmessage_controls_ext() function in the LDAP server does not enfor. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-51427 - An issue was discovered in ModelScope 1.25.0 allowing attackers to execute arbitrary code via crafted module l
High remediation recipe for An issue was discovered in ModelScope 1.25.0 allowing attackers to execute arbitrary code via crafted module l. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-27173 - JWT tokens that were used by workers in Kubernetes Executors have been exposed to users who had read only acce
High remediation recipe for JWT tokens that were used by workers in Kubernetes Executors have been exposed to users who had read only acce. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-32740 - libheif is a HEIF and AVIF file format decoder and encoder
High remediation recipe for libheif is a HEIF and AVIF file format decoder and encoder. Upgrade to fixed in version 1.22.0. and remove the vulnerable authz pattern.
CVE-2026-32741 - libheif is a HEIF and AVIF file format decoder and encoder
High remediation recipe for libheif is a HEIF and AVIF file format decoder and encoder. Upgrade to fixed in version 1.22.0. and remove the vulnerable mcp-auth pattern.
CVE-2026-32882 - libheif is a HEIF and AVIF file format decoder and encoder
High remediation recipe for libheif is a HEIF and AVIF file format decoder and encoder. Upgrade to fixed in versionThis issue has been fixed in version 1.22.0. and remove the vulnerable dos pattern.
CVE-2026-43493 - In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Fix handling of MAY_BACKL
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Fix handling of MAY_BACKL. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-7307 - A flaw was found in Keycloak. A remote, unauthenticated attacker can send a specially crafted XML input to the
High remediation recipe for A flaw was found in Keycloak. A remote, unauthenticated attacker can send a specially crafted XML input to the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-7507 - A session fixation vulnerability was found in Keycloak's login-actions endpoints
High remediation recipe for A session fixation vulnerability was found in Keycloak's login-actions endpoints. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-8945 - Sandbox escape in Firefox and Firefox Focus for Android
High remediation recipe for Sandbox escape in Firefox and Firefox Focus for Android. Upgrade to fixed in Firefox 151. and remove the vulnerable authz pattern.
CVE-2026-8946 - Incorrect boundary conditions in the Audio/Video: Web Codecs component
High remediation recipe for Incorrect boundary conditions in the Audio/Video: Web Codecs component. Upgrade to fixed in Firefox 151 and remove the vulnerable authz pattern.
CVE-2026-8947 - Use-after-free in the DOM: Bindings (WebIDL) component
High remediation recipe for Use-after-free in the DOM: Bindings (WebIDL) component. Upgrade to fixed in Firefox 151 and remove the vulnerable authz pattern.
CVE-2026-8948 - Same-origin policy bypass in the DOM: Networking component
Critical remediation recipe for Same-origin policy bypass in the DOM: Networking component. Upgrade to fixed in Firefox 151 and Thunderbird 151. and remove the vulnerable authz pattern.
CVE-2026-8973 - Memory safety bugs present in Firefox 150
High remediation recipe for Memory safety bugs present in Firefox 150. Upgrade to fixed in Firefox 151 and Thunderbird 151. and remove the vulnerable authz pattern.
CVE-2026-8975 - Memory safety bugs present in Firefox ESR 115.35, Firefox ESR 140.10 and Firefox 150
High remediation recipe for Memory safety bugs present in Firefox ESR 115.35, Firefox ESR 140.10 and Firefox 150. Upgrade to fixed in Firefox 151 and remove the vulnerable authz pattern.
CVE-2026-42822 - Improper authentication in Azure Local Disconnected Operations allows an unauthorized attacker to elevate priv
Critical remediation recipe for Improper authentication in Azure Local Disconnected Operations allows an unauthorized attacker to elevate priv. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-54518 - Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an a
High remediation recipe for Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34253 - A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package
High remediation recipe for A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-44774 - Traefik is an HTTP reverse proxy and load balancer
Critical remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to fixed in 2.11.46 and remove the vulnerable authz pattern.
CVE-2026-46333 - In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'get_dumpable()' lo
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'get_dumpable()' lo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20224 - A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauth
High remediation recipe for A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauth. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-44216 - Wasmtime is a runtime for WebAssembly. From 30.0.0 to 36.0.8, 43.0.2, and 44.0.1, Wasmtime's allocation logic
High remediation recipe for Wasmtime is a runtime for WebAssembly. From 30.0.0 to 36.0.8, 43.0.2, and 44.0.1, Wasmtime's allocation logic. Upgrade to fixed in 36.0.8 and remove the vulnerable dos pattern.
CVE-2026-44484 - PyTorch Lightning is a deep learning framework to pretrain and finetune AI models
Critical remediation recipe for PyTorch Lightning is a deep learning framework to pretrain and finetune AI models. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-44673 - libyang is a YANG data modeling language library
High remediation recipe for libyang is a YANG data modeling language library. Upgrade to fixed in SO 5.2.15. and remove the vulnerable dos pattern.
CVE-2026-6473 - Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the se
High remediation recipe for Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the se. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-6477 - Use of inherently dangerous function PQfn(..., result_is_int=0, ...) in PostgreSQL libpq lo_export(), lo_read(
High remediation recipe for Use of inherently dangerous function PQfn(..., result_is_int=0, ...) in PostgreSQL libpq lo_export(), lo_read(. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20916 - An authenticated iControl REST user with low privileges can create or modify arbitrary files through an undisc
High remediation recipe for An authenticated iControl REST user with low privileges can create or modify arbitrary files through an undisc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-32643 - A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at
High remediation recipe for A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-32673 - A vulnerability exists in BIG-IP scripted monitors that may allow an authenticated attacker with the Resource
High remediation recipe for A vulnerability exists in BIG-IP scripted monitors that may allow an authenticated attacker with the Resource. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-33376 - When using an IPv6 allow-list for the Auth Proxy feature, it defaults to /32 addresses
High remediation recipe for When using an IPv6 allow-list for the Auth Proxy feature, it defaults to /32 addresses. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33377 - An Editor can overwrite a dashboard not owned by them to acquire admin on that specific dashboard
High remediation recipe for An Editor can overwrite a dashboard not owned by them to acquire admin on that specific dashboard. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34176 - When running in Appliance mode, an authenticated remote command injection vulnerability exists in an undisclos
High remediation recipe for When running in Appliance mode, an authenticated remote command injection vulnerability exists in an undisclos. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-36741 - U-SPEED AC1200 Gigabit Wi-Fi Router (Model: T18-21K) V1.0 is vulnerable to Command Injection
High remediation recipe for U-SPEED AC1200 Gigabit Wi-Fi Router (Model: T18-21K) V1.0 is vulnerable to Command Injection. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-39455 - When the BIG-IP Configuration utility is configured to use Lightweight Directory Access Protocol (LDAP) authen
High remediation recipe for When the BIG-IP Configuration utility is configured to use Lightweight Directory Access Protocol (LDAP) authen. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-39458 - When a BIG-IP DNS profile enabled with DNS cache is configured on a virtual server, undisclosed traffic can ca
High remediation recipe for When a BIG-IP DNS profile enabled with DNS cache is configured on a virtual server, undisclosed traffic can ca. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-39459 - A vulnerability exists in iControl REST and the TMOS Shell (tmsh) where a highly privileged, authenticated att
High remediation recipe for A vulnerability exists in iControl REST and the TMOS Shell (tmsh) where a highly privileged, authenticated att. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-40060 - When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can
High remediation recipe for When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-40061 - When BIG-IP DNS is provisioned, a vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (
High remediation recipe for When BIG-IP DNS is provisioned, a vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-40067 - When a BIG-IP APM access policy is configured on a virtual server, undisclosed traffic can cause the apmd proc
High remediation recipe for When a BIG-IP APM access policy is configured on a virtual server, undisclosed traffic can cause the apmd proc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-40423 - When a SIP profile is configured on a virtual server, undisclosed traffic can cause the Traffic Management Mic
High remediation recipe for When a SIP profile is configured on a virtual server, undisclosed traffic can cause the Traffic Management Mic. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-40618 - When an SSL profile is configured on a virtual server on BIG-IP Virtual Edition (VE) without Intel QuickAssist
High remediation recipe for When an SSL profile is configured on a virtual server on BIG-IP Virtual Edition (VE) without Intel QuickAssist. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-40629 - When SSL profiles are configured on a virtual server, undisclosed traffic can cause the virtual server to stop
High remediation recipe for When SSL profiles are configured on a virtual server, undisclosed traffic can cause the virtual server to stop. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-40631 - An authenticated attacker with the Resource Administrator or Administrator role can modify configuration objec
High remediation recipe for An authenticated attacker with the Resource Administrator or Administrator role can modify configuration objec. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-40698 - A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at
High remediation recipe for A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-42266 - JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Noteb
High remediation recipe for JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Noteb. Upgrade to fixed in 4.5.7. and remove the vulnerable command-injection pattern.
CVE-2026-42557 - jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Noteb
Critical remediation recipe for jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Noteb. Upgrade to fixed in 4.5.7. and remove the vulnerable authz pattern.
CVE-2026-42578 - Netty is an asynchronous, event-driven network application framework
High remediation recipe for Netty is an asynchronous, event-driven network application framework. Upgrade to fixed in 4.2.13.Final and 4.1.133.Final. and remove the vulnerable authz pattern.
CVE-2026-42579 - Netty is an asynchronous, event-driven network application framework
High remediation recipe for Netty is an asynchronous, event-driven network application framework. Upgrade to fixed in 4.2.13.Final and 4.1.133.Final. and remove the vulnerable command-injection pattern.
CVE-2026-42587 - Netty is an asynchronous, event-driven network application framework
High remediation recipe for Netty is an asynchronous, event-driven network application framework. Upgrade to fixed in 4.2.13.Final and 4.1.133.Final. and remove the vulnerable command-injection pattern.
CVE-2026-44573 - Next.js is a React framework for building full-stack web applications
High remediation recipe for Next.js is a React framework for building full-stack web applications. Upgrade to fixed data route and remove the vulnerable authz pattern.
CVE-2026-44574 - Next.js is a React framework for building full-stack web applications
High remediation recipe for Next.js is a React framework for building full-stack web applications. Upgrade to fixed in 15.5.16 and 16.2.5. and remove the vulnerable authz pattern.
CVE-2026-44579 - Next.js is a React framework for building full-stack web applications
High remediation recipe for Next.js is a React framework for building full-stack web applications. Upgrade to fixed in 15.5.16 and 16.2.5. and remove the vulnerable authz pattern.
CVE-2026-5773 - libcurl might in some circumstances reuse the wrong connection for SMB(S) transfers
High remediation recipe for libcurl might in some circumstances reuse the wrong connection for SMB(S) transfers. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2025-40947 - A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (
High remediation recipe for A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-40949 - A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (
Critical remediation recipe for A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-22924 - A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0)
Critical remediation recipe for A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-22925 - A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0)
High remediation recipe for A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-32177 - Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally
High remediation recipe for Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-35433 - Improper input validation in .NET allows an unauthorized attacker to elevate privileges locally
High remediation recipe for Improper input validation in .NET allows an unauthorized attacker to elevate privileges locally. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-42899 - Loop with unreachable exit condition ('infinite loop') in ASP.NET Core allows an unauthorized attacker to deny
High remediation recipe for Loop with unreachable exit condition ('infinite loop') in ASP.NET Core allows an unauthorized attacker to deny. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-44411 - A vulnerability has been identified in Solid Edge SE2026 (All versions < V226.0 Update 5)
High remediation recipe for A vulnerability has been identified in Solid Edge SE2026 (All versions < V226.0 Update 5). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-8401 - Sandbox escape in the Profile Backup component
Critical remediation recipe for Sandbox escape in the Profile Backup component. Upgrade to fixed in Firefox 150.0.3 and remove the vulnerable authz pattern.
CVE-2026-2614 - A vulnerability in the _create_model_version() handler of mlflow/server/handlers.py in mlflow/mlflow versi
High remediation recipe for A vulnerability in the _create_model_version() handler of mlflow/server/handlers.py in mlflow/mlflow versi. Upgrade to version source. The and remove the vulnerable command-injection pattern.
CVE-2026-28847 - The issue was addressed with improved memory handling
High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.
CVE-2026-28883 - A use-after-free issue was addressed with improved memory management
High remediation recipe for A use-after-free issue was addressed with improved memory management. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.
CVE-2026-28904 - The issue was addressed with improved memory handling
High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.
CVE-2026-28905 - The issue was addressed with improved memory handling
High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.
CVE-2026-28947 - A use-after-free issue was addressed with improved memory management
High remediation recipe for A use-after-free issue was addressed with improved memory management. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.
CVE-2026-28953 - The issue was addressed with improved memory handling
High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.
CVE-2026-28955 - The issue was addressed with improved memory handling
High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.
CVE-2026-43500 - In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-43658 - The issue was addressed with improved memory handling
High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.5 and remove the vulnerable dos pattern.
CVE-2026-4802 - A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary command executio
High remediation recipe for A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary command executio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-4890 - A Denial of Service (DoS) vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a
High remediation recipe for A Denial of Service (DoS) vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-4892 - A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers
High remediation recipe for A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-5172 - A buffer overflow in dnsmasq’s extract_addresses() function allows an attacker to trigger a heap out-of-bounds
High remediation recipe for A buffer overflow in dnsmasq’s extract_addresses() function allows an attacker to trigger a heap out-of-bounds. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-7210 - xml.parsers.expat and xml.etree.ElementTree use insufficient entropy for Expat hash-flooding protection, w
High remediation recipe for xml.parsers.expat and xml.etree.ElementTree use insufficient entropy for Expat hash-flooding protection, w. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-8177 - XML::LibXML versions through 2.0210 for Perl read out-of-bounds heap memory when parsing XML node names contai
High remediation recipe for XML::LibXML versions through 2.0210 for Perl read out-of-bounds heap memory when parsing XML node names contai. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-41163 - bubblewrap is a low-level unprivileged sandboxing tool
High remediation recipe for bubblewrap is a low-level unprivileged sandboxing tool. Upgrade to version 0.11.0 to before version 0.11.2 and remove the vulnerable authz pattern.
CVE-2026-42203 - LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format
High remediation recipe for LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Upgrade to version 1.80.5 to before version 1.83.7 and remove the vulnerable authz pattern.
CVE-2026-42208 - LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format
Critical remediation recipe for LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Upgrade to version 1.81.16 to before version 1.83.7 and remove the vulnerable authz pattern.
CVE-2026-43291 - In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation fo
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: nfc: nci: Fix parameter validation fo. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43296 - In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Workaround SQM/PSE stalls by
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Workaround SQM/PSE stalls by. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43304 - In the Linux kernel, the following vulnerability has been resolved: libceph: define and enforce CEPH_MAX_KEY_L
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: libceph: define and enforce CEPH_MAX_KEY_L. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable command-injection pattern.
CVE-2026-43329 - In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: strictly check for m
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: strictly check for m. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-43341 - In the Linux kernel, the following vulnerability has been resolved: net/ipv6: ioam6: prevent schema length wra
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/ipv6: ioam6: prevent schema length wra. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43378 - In the Linux kernel, the following vulnerability has been resolved: smb: server: fix use-after-free in smb2_op
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: server: fix use-after-free in smb2_op. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-43383 - In the Linux kernel, the following vulnerability has been resolved: net/tcp-md5: Fix MAC comparison to be cons
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/tcp-md5: Fix MAC comparison to be cons. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43384 - In the Linux kernel, the following vulnerability has been resolved: net/tcp-ao: Fix MAC comparison to be const
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/tcp-ao: Fix MAC comparison to be const. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43406 - In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds r
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds r. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-43407 - In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds acces. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-43414 - In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Completely fix fcport doubl
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Completely fix fcport doubl. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-43456 - In the Linux kernel, the following vulnerability has been resolved: bonding: fix type confusion in bond_setup_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bonding: fix type confusion in bond_setup_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33814 - When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames i
High remediation recipe for When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-39820 - Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU
High remediation recipe for Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40981 - When using Google Secrets Manager as a backend for the Spring Cloud Config server a client can craft a request
High remediation recipe for When using Google Secrets Manager as a backend for the Spring Cloud Config server a client can craft a request. Upgrade to upgrade to 3.1.14 or greater and remove the vulnerable authz pattern.
CVE-2026-40982 - Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-conf
Critical remediation recipe for Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-conf. Upgrade to upgrade to 3.1.14 or greater and remove the vulnerable authz pattern.
CVE-2026-41142 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma
High remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to patched in versions 3.2.9 and remove the vulnerable authz pattern.
CVE-2026-42216 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma
Critical remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to patched in versions 3.2.9 and remove the vulnerable authz pattern.
CVE-2026-42499 - Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322
High remediation recipe for Pathological inputs could cause DoS through consumePhrase when parsing an email address according to RFC 5322. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-8090 - Use-after-free in the DOM: Networking component
High remediation recipe for Use-after-free in the DOM: Networking component. Upgrade to fixed in Firefox 150.0.2 and remove the vulnerable authz pattern.
CVE-2026-8091 - Incorrect boundary conditions in the Audio/Video: Playback component
Critical remediation recipe for Incorrect boundary conditions in the Audio/Video: Playback component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.
CVE-2026-8092 - Memory safety bugs present in Firefox ESR 115.35.1, Firefox ESR 140.10.1 and Firefox 150.0.1
High remediation recipe for Memory safety bugs present in Firefox ESR 115.35.1, Firefox ESR 140.10.1 and Firefox 150.0.1. Upgrade to fixed in Firefox 150.0.2 and remove the vulnerable authz pattern.
CVE-2026-8093 - Memory safety bugs present in Firefox 150.0.1
High remediation recipe for Memory safety bugs present in Firefox 150.0.1. Upgrade to fixed in Firefox 150.0.2 and Thunderbird 150.0.2. and remove the vulnerable authz pattern.
CVE-2026-8094 - Other issue in the WebRTC component. This vulnerability was fixed in Firefox ESR 140.10.2 and Thunderbird 140
Critical remediation recipe for Other issue in the WebRTC component. This vulnerability was fixed in Firefox ESR 140.10.2 and Thunderbird 140. Upgrade to fixed in Firefox ESR 140.10.2 and Thunderbird 140.10.2. and remove the vulnerable authz pattern.
CVE-2026-20167 - A vulnerability in the web-based management interface of Cisco IoT Field Network Director could allow an authe
High remediation recipe for A vulnerability in the web-based management interface of Cisco IoT Field Network Director could allow an authe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33079 - In versions 3.0.0a1 through 3.2.0 of Mistune, there is a ReDoS (Regular Expression Denial of Service) vulnerab
High remediation recipe for In versions 3.0.0a1 through 3.2.0 of Mistune, there is a ReDoS (Regular Expression Denial of Service) vulnerab. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-43078 - In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Fix page reassignment ove
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Fix page reassignment ove. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43112 - In the Linux kernel, the following vulnerability has been resolved: fs/smb/client: fix out-of-bounds read in c
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: fs/smb/client: fix out-of-bounds read in c. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-43117 - In the Linux kernel, the following vulnerability has been resolved: btrfs: tracepoints: get correct superblock
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: btrfs: tracepoints: get correct superblock. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43125 - In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlm_search_rsb_tre
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlm_search_rsb_tre. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-43128 - In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix double dma_buf_unpin in fai
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix double dma_buf_unpin in fai. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43133 - In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Always use vmcb01 in VMLOAD/VMS
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Always use vmcb01 in VMLOAD/VMS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-43134 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix missing key size che
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix missing key size che. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43139 - In the Linux kernel, the following vulnerability has been resolved: xfrm6: fix uninitialized saddr in xfrm6_ge
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfrm6: fix uninitialized saddr in xfrm6_ge. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43141 - In the Linux kernel, the following vulnerability has been resolved: ntb: ntb_hw_switchtec: Fix shift-out-of-bo
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ntb: ntb_hw_switchtec: Fix shift-out-of-bo. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-43150 - In the Linux kernel, the following vulnerability has been resolved: perf/arm-cmn: Reject unsupported hardware
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: perf/arm-cmn: Reject unsupported hardware. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43153 - In the Linux kernel, the following vulnerability has been resolved: xfs: remove xfs_attr_leaf_hasname The call
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfs: remove xfs_attr_leaf_hasname The call. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43158 - In the Linux kernel, the following vulnerability has been resolved: xfs: fix freemap adjustments when adding x
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfs: fix freemap adjustments when adding x. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43178 - In the Linux kernel, the following vulnerability has been resolved: procfs: fix possible double mmput() in do_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: procfs: fix possible double mmput() in do_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-43180 - In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: remove TX queue manipula
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: remove TX queue manipula. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43184 - In the Linux kernel, the following vulnerability has been resolved: rnbd-srv: Zero the rsp buffer before using
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rnbd-srv: Zero the rsp buffer before using. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43186 - In the Linux kernel, the following vulnerability has been resolved: ipv6: ioam: fix heap buffer overflow in __
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: ioam: fix heap buffer overflow in __. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-43187 - In the Linux kernel, the following vulnerability has been resolved: xfs: delete attr leaf freemap entries when
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfs: delete attr leaf freemap entries when. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43190 - In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_tcpmss: check remaining leng
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_tcpmss: check remaining leng. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43194 - In the Linux kernel, the following vulnerability has been resolved: net: consume xmit errors of GSO frames udp
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: consume xmit errors of GSO frames udp. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43196 - In the Linux kernel, the following vulnerability has been resolved: soc: ti: pruss: Fix double free in pruss_c
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: soc: ti: pruss: Fix double free in pruss_c. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-43198 - In the Linux kernel, the following vulnerability has been resolved: tcp: fix potential race in tcp_v6_syn_recv
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: tcp: fix potential race in tcp_v6_syn_recv. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-43199 - In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix scheduling while atomic i
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix scheduling while atomic i. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43203 - In the Linux kernel, the following vulnerability has been resolved: atm: fore200e: fix use-after-free in taskl
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: atm: fore200e: fix use-after-free in taskl. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-43205 - In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: validate num_ifs to prevent
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: validate num_ifs to prevent. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-43206 - In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix out-of-bounds write in kfd
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix out-of-bounds write in kfd. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-43207 - In the Linux kernel, the following vulnerability has been resolved: media: mtk-mdp: Fix error handling in prob
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: media: mtk-mdp: Fix error handling in prob. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable command-injection pattern.
CVE-2026-43211 - In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pci_slot_trylock() error handling
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pci_slot_trylock() error handling. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43212 - In the Linux kernel, the following vulnerability has been resolved: LoongArch: Make cpumask_of_node() robust a
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: LoongArch: Make cpumask_of_node() robust a. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43214 - In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Add SRCU protection for reading
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Add SRCU protection for reading. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43215 - In the Linux kernel, the following vulnerability has been resolved: cifs: Fix locking usage for tcon fields We
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: cifs: Fix locking usage for tcon fields We. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43222 - In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: AV1: Fix tile info buf
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: AV1: Fix tile info buf. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43230 - In the Linux kernel, the following vulnerability has been resolved: net/rds: Clear reconnect pending bit When
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/rds: Clear reconnect pending bit When. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43233 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: fix OOB read
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: fix OOB read. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43236 - In the Linux kernel, the following vulnerability has been resolved: drm/atmel-hlcdc: fix use-after-free of drm
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/atmel-hlcdc: fix use-after-free of drm. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-43239 - In the Linux kernel, the following vulnerability has been resolved: smb: client: prevent races in ->query_inte
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: prevent races in ->query_inte. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43241 - In the Linux kernel, the following vulnerability has been resolved: ntb: ntb_hw_switchtec: Fix array-index-out
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ntb: ntb_hw_switchtec: Fix array-index-out. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-43248 - In the Linux kernel, the following vulnerability has been resolved: vhost: move vdpa group bound check to vhos
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: vhost: move vdpa group bound check to vhos. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43249 - In the Linux kernel, the following vulnerability has been resolved: 9p/xen: protect xen_9pfs_front_free agains
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: 9p/xen: protect xen_9pfs_front_free agains. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43250 - In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: udc: fix DMA and SG cleanup
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: udc: fix DMA and SG cleanup. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43253 - In the Linux kernel, the following vulnerability has been resolved: iommu/amd: move wait_on_sem() out of spinl
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: iommu/amd: move wait_on_sem() out of spinl. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43256 - In the Linux kernel, the following vulnerability has been resolved: media: qcom: camss: vfe: Fix out-of-bounds
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: media: qcom: camss: vfe: Fix out-of-bounds. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-43258 - In the Linux kernel, the following vulnerability has been resolved: alpha: fix user-space corruption during me
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: alpha: fix user-space corruption during me. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable dos pattern.
CVE-2026-43278 - In the Linux kernel, the following vulnerability has been resolved: dm: clear cloned request bio pointer when
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dm: clear cloned request bio pointer when. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43279 - In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Add sanity check for OOB
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Add sanity check for OOB. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43283 - In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ec_bhf: Fix dma_free_cohere
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ec_bhf: Fix dma_free_cohere. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-5081 - Apache::Session::Generate::ModUniqueId versions from 1.54 through 1.94 for Perl session ids are insecure
Critical remediation recipe for Apache::Session::Generate::ModUniqueId versions from 1.54 through 1.94 for Perl session ids are insecure. Upgrade to version 1.54 and remove the vulnerable authz pattern.
CVE-2026-23479 - Redis is an in-memory data structure store
High remediation recipe for Redis is an in-memory data structure store. Upgrade to patched in version 8.6.3. and remove the vulnerable authz pattern.
CVE-2026-23631 - Redis is an in-memory data structure store
High remediation recipe for Redis is an in-memory data structure store. Upgrade to patched in version 8.6.3. and remove the vulnerable authz pattern.
CVE-2026-25243 - Redis is an in-memory data structure store
High remediation recipe for Redis is an in-memory data structure store. Upgrade to patched in version 8.6.3. and remove the vulnerable authz pattern.
CVE-2026-28780 - Heap-based Buffer Overflow vulnerability in mod_proxy_ajp of Apache HTTP Server
Critical remediation recipe for Heap-based Buffer Overflow vulnerability in mod_proxy_ajp of Apache HTTP Server. Upgrade to upgrade to version 2.4.67 and remove the vulnerable authz pattern.
CVE-2026-35397 - Jupyter Server is the backend for Jupyter web applications
High remediation recipe for Jupyter Server is the backend for Jupyter web applications. Upgrade to Version 2.18.0 contains a fix. As a workaround and remove the vulnerable path-traversal pattern.
CVE-2026-35579 - CoreDNS is a DNS server written in Go. In versions prior to 1.14.3, the gRPC, QUIC, DoH, and DoH3 transport im
Critical remediation recipe for CoreDNS is a DNS server written in Go. In versions prior to 1.14.3, the gRPC, QUIC, DoH, and DoH3 transport im. Upgrade to fixed in version 1.14.3. As a workaround and remove the vulnerable command-injection pattern.
CVE-2026-42997 - An issue was discovered in idrac in OpenStack Ironic before 35.0.1
High remediation recipe for An issue was discovered in idrac in OpenStack Ironic before 35.0.1. Upgrade to fixed versions are 26.1.6 and remove the vulnerable authz pattern.
CVE-2026-43071 - In the Linux kernel, the following vulnerability has been resolved: dcache: Limit the minimal number of bucket
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dcache: Limit the minimal number of bucket. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43869 - Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift
High remediation recipe for Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift. Upgrade to upgrade to version 0.23.0 and remove the vulnerable cert-validation pattern.
CVE-2026-6322 - fast-uri normalize() decoded percent-encoded authority delimiters inside the host component and then re-emitte
High remediation recipe for fast-uri normalize() decoded percent-encoded authority delimiters inside the host component and then re-emitte. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-6918 - In Eclipse Open9J versions 0.21 to 0.58, a pre-authentication remote attacker can crash JITServer by sending a
High remediation recipe for In Eclipse Open9J versions 0.21 to 0.58, a pre-authentication remote attacker can crash JITServer by sending a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-70069 - An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp and
High remediation recipe for An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-23918 - Double Free and possible RCE vulnerability in Apache HTTP Server with the HTTP/2 protocol
High remediation recipe for Double Free and possible RCE vulnerability in Apache HTTP Server with the HTTP/2 protocol. Upgrade to upgrade to version 2.4.67 and remove the vulnerable command-injection pattern.
CVE-2026-24082 - Memory Corruption when copying data from a freed source while executing performance counter deselect operation
High remediation recipe for Memory Corruption when copying data from a freed source while executing performance counter deselect operation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-29004 - BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client (udhcpc6) DNS
High remediation recipe for BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client (udhcpc6) DNS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-37459 - An integer underflow in FRRouting (FRR) stable/10.0 to stable/10.6 allows attackers to cause a Denial of Servi
High remediation recipe for An integer underflow in FRRouting (FRR) stable/10.0 to stable/10.6 allows attackers to cause a Denial of Servi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-40682 - XML External Entity (XXE) via Unsanitized Dictionary Parsing in Apache OpenNLP DictionaryEntryPersistor Versio
Critical remediation recipe for XML External Entity (XXE) via Unsanitized Dictionary Parsing in Apache OpenNLP DictionaryEntryPersistor Versio. Upgrade to upgrade to 2.5.9. 3.x users should upgrade to 3.0.0-M3. Users who canno and remove the vulnerable prototype-pollution pattern.
CVE-2026-42027 - Arbitrary Class Instantiation via Model Manifest in Apache OpenNLP ExtensionLoader Versions Affected: before 1
Critical remediation recipe for Arbitrary Class Instantiation via Model Manifest in Apache OpenNLP ExtensionLoader Versions Affected: before 1. Upgrade to upgrade to 2.5.9. and remove the vulnerable prototype-pollution pattern.
CVE-2026-42151 - Prometheus is an open-source monitoring system and time series database
High remediation recipe for Prometheus is an open-source monitoring system and time series database. Upgrade to patched in versions 3.5.3 and 3.11.3. and remove the vulnerable command-injection pattern.
CVE-2026-42154 - Prometheus is an open-source monitoring system and time series database
High remediation recipe for Prometheus is an open-source monitoring system and time series database. Upgrade to patched in versions 3.5.3 and 3.11.3. and remove the vulnerable command-injection pattern.
CVE-2026-42440 - OOM Denial of Service via Unbounded Array Allocation in Apache OpenNLP AbstractModelReader Versions Affected:
High remediation recipe for OOM Denial of Service via Unbounded Array Allocation in Apache OpenNLP AbstractModelReader Versions Affected:. Upgrade to upgrade to 2.5.9. and remove the vulnerable command-injection pattern.
CVE-2026-6266 - A flaw was found in the AAP gateway. The user auto-link strategy, introduced in AAP 2.6, automatically links a
High remediation recipe for A flaw was found in the AAP gateway. The user auto-link strategy, introduced in AAP 2.6, automatically links a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-31703 - In the Linux kernel, the following vulnerability has been resolved: writeback: Fix use after free in inode_swi
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: writeback: Fix use after free in inode_swi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-31709 - In the Linux kernel, the following vulnerability has been resolved: smb: client: validate the whole DACL befor
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: validate the whole DACL befor. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-37457 - An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_ut
High remediation recipe for An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_ut. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-43001 - An issue was discovered in OpenStack Keystone before 29.0.2
High remediation recipe for An issue was discovered in OpenStack Keystone before 29.0.2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-43011 - In the Linux kernel, the following vulnerability has been resolved: net/x25: Fix potential double free of skb
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/x25: Fix potential double free of skb. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-43033 - In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - Do not place hiseq at
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - Do not place hiseq at. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-43037 - In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: clear skb2->cb[] in ip4ip6_err
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: clear skb2->cb[] in ip4ip6_err. Upgrade to fixed 40-byte stack buffer and remove the vulnerable authz pattern.
CVE-2026-43038 - In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2->cb[] in ip6_err_ge
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2->cb[] in ip6_err_ge. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-5403 - SBC codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code exe
High remediation recipe for SBC codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code exe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-5405 - RDP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and poss
High remediation recipe for RDP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and poss. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-5656 - Profile import path traversal in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and pos
High remediation recipe for Profile import path traversal in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and pos. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-7598 - A security vulnerability has been detected in libssh2 up to 1.11.1
High remediation recipe for A security vulnerability has been detected in libssh2 up to 1.11.1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-31693 - In the Linux kernel, the following vulnerability has been resolved: cifs: some missing initializations on repl
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: cifs: some missing initializations on repl. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-7246 - Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit() functio
High remediation recipe for Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit() functio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-37555 - An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec
High remediation recipe for An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec. Upgrade to fixed with and remove the vulnerable dos pattern.
CVE-2026-42198 - pgjdbc is an open source postgresql JDBC Driver
High remediation recipe for pgjdbc is an open source postgresql JDBC Driver. Upgrade to version 42.2.0 to before version 42.7.11 and remove the vulnerable command-injection pattern.
CVE-2024-54013 - Penetration Testing engineers at Amazon have identified a security flaw related to request handling in the web
High remediation recipe for Penetration Testing engineers at Amazon have identified a security flaw related to request handling in the web. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-48431 - Mismatched Memory Management Routines vulnerability in Apache Thrift c_glib language bindings
High remediation recipe for Mismatched Memory Management Routines vulnerability in Apache Thrift c_glib language bindings. Upgrade to upgrade to version 0.23.0 and remove the vulnerable dos pattern.
CVE-2026-40976 - In certain circumstances, Spring Boot's default web security is ineffective allowing unauthorized access to al
Critical remediation recipe for In certain circumstances, Spring Boot's default web security is ineffective allowing unauthorized access to al. Upgrade to upgrade to 4.0.6 or later per vendor advisory. and remove the vulnerable authz pattern.
CVE-2026-41603 - Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift
High remediation recipe for Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift. Upgrade to upgrade to version 0.23.0 and remove the vulnerable cert-validation pattern.
CVE-2026-41604 - Out-of-bounds Read vulnerability in Apache Thrift
High remediation recipe for Out-of-bounds Read vulnerability in Apache Thrift. Upgrade to upgrade to version 0.23.0 and remove the vulnerable authz pattern.
CVE-2026-41605 - Integer Overflow or Wraparound vulnerability in Apache Thrift
High remediation recipe for Integer Overflow or Wraparound vulnerability in Apache Thrift. Upgrade to upgrade to version 0.23.0 and remove the vulnerable authz pattern.
CVE-2026-7320 - Information disclosure due to incorrect boundary conditions in the Audio/Video component
High remediation recipe for Information disclosure due to incorrect boundary conditions in the Audio/Video component. Upgrade to fixed in Firefox 150.0.1 and remove the vulnerable authz pattern.
CVE-2026-7322 - Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0
High remediation recipe for Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Upgrade to fixed in Firefox 150.0.1 and remove the vulnerable authz pattern.
CVE-2026-7323 - Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0
High remediation recipe for Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Upgrade to fixed in Firefox 150.0.1 and remove the vulnerable authz pattern.
CVE-2026-7324 - Memory safety bugs present in Thunderbird 150.0.0
High remediation recipe for Memory safety bugs present in Thunderbird 150.0.0. Upgrade to fixed in Firefox 150.0.1 and Thunderbird 150.0.1. and remove the vulnerable authz pattern.
CVE-2026-3006 - Successful exploitation of the race condition vulnerability could allow an attacker to trigger a kernel heap o
High remediation recipe for Successful exploitation of the race condition vulnerability could allow an attacker to trigger a kernel heap o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40022 - When authentication is enabled on the Apache Camel embedded HTTP server or embedded management server (camel-p
High remediation recipe for When authentication is enabled on the Apache Camel embedded HTTP server or embedded management server (camel-p. Upgrade to upgrade to version 4.20.0 and remove the vulnerable ssrf pattern.
CVE-2026-6785 - Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Th
High remediation recipe for Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Th. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.
CVE-2026-6786 - Memory safety bugs present in Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149
High remediation recipe for Memory safety bugs present in Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird 149. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.
CVE-2026-31682 - In the Linux kernel, the following vulnerability has been resolved: bridge: br_nd_send: linearize skb before p
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bridge: br_nd_send: linearize skb before p. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-31685 - In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_eui64: reject invalid MAC
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_eui64: reject invalid MAC. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable command-injection pattern.
CVE-2026-6951 - Versions of the package simple-git before 3.36.0 are vulnerable to Remote Code Execution (RCE) due to an incom
Critical remediation recipe for Versions of the package simple-git before 3.36.0 are vulnerable to Remote Code Execution (RCE) due to an incom. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-21728 - Tempo queries with large limits can cause large memory allocations which can impact the availability of the se
High remediation recipe for Tempo queries with large limits can cause large memory allocations which can impact the availability of the se. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-31607 - In the Linux kernel, the following vulnerability has been resolved: usbip: validate number_of_packets in usbip
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: usbip: validate number_of_packets in usbip. Upgrade to fixed at URB allocation time based on the and remove the vulnerable command-injection pattern.
CVE-2026-31637 - In the Linux kernel, the following vulnerability has been resolved: rxrpc: reject undecryptable rxkad response
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rxrpc: reject undecryptable rxkad response. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-31641 - In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix RxGK token loading to check bou
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix RxGK token loading to check bou. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-31649 - In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix integer underflow in chai
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix integer underflow in chai. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-31657 - In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways b
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways b. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-31659 - In the Linux kernel, the following vulnerability has been resolved: batman-adv: reject oversized global TT res
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: batman-adv: reject oversized global TT res. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-31663 - In the Linux kernel, the following vulnerability has been resolved: xfrm: hold dev ref until after transport_f
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfrm: hold dev ref until after transport_f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-31668 - In the Linux kernel, the following vulnerability has been resolved: seg6: separate dst_cache for input and out
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: seg6: separate dst_cache for input and out. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-31669 - In the Linux kernel, the following vulnerability has been resolved: mptcp: fix slab-use-after-free in __inet_l
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mptcp: fix slab-use-after-free in __inet_l. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-40466 - Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache A
High remediation recipe for Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache A. Upgrade to upgrade to version 5.19.6 or 6.2.5 and remove the vulnerable command-injection pattern.
CVE-2026-41044 - Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache A
High remediation recipe for Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache A. Upgrade to upgrade to version 6.2.5 or 5.19.6 and remove the vulnerable command-injection pattern.
CVE-2026-41316 - ERB is a templating system for Ruby. Ruby 2.7.0 (before ERB 2.2.0 was published on rubygems.org) introduced an
High remediation recipe for ERB is a templating system for Ruby. Ruby 2.7.0 (before ERB 2.2.0 was published on rubygems.org) introduced an. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-5367 - A flaw was found in OVN (Open Virtual Network)
High remediation recipe for A flaw was found in OVN (Open Virtual Network). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33999 - A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatib
High remediation recipe for A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatib. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-34001 - A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering
High remediation recipe for A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-34003 - A flaw was found in the X.Org X server's XKB key types request validation
High remediation recipe for A flaw was found in the X.Org X server's XKB key types request validation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-41176 - Rclone is a command-line program to sync files and directories to and from different cloud storage providers
Critical remediation recipe for Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Upgrade to version 1.45.0 and prior to version 1.73.5 and remove the vulnerable authz pattern.
CVE-2026-41179 - Rclone is a command-line program to sync files and directories to and from different cloud storage providers
Critical remediation recipe for Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Upgrade to version 1.48.0 and prior to version 1.73.5 and remove the vulnerable authz pattern.
CVE-2026-22754 - Vulnerability in Spring Spring Security. If an application uses <sec:intercept-url servlet-path=/servlet-path
High remediation recipe for Vulnerability in Spring Spring Security. If an application uses <sec:intercept-url servlet-path=/servlet-path. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-31431 - In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating o
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-31436 - In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix possible wrong descri
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix possible wrong descri. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-31448 - In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by resid
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by resid. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable dos pattern.
CVE-2026-31474 - In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix tx.buf use-after-free in i
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix tx.buf use-after-free in i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-31478 - In the Linux kernel, the following vulnerability has been resolved: ksmbd: replace hardcoded hdr2_len with off
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ksmbd: replace hardcoded hdr2_len with off. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-31488 - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Do not skip unrelated mod
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Do not skip unrelated mod. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-31504 - In the Linux kernel, the following vulnerability has been resolved: net: fix fanout UAF in packet_release() vi
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: fix fanout UAF in packet_release() vi. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-40542 - Missing critical step in authentication in Apache HttpClient 5.6 allows an attacker to cause the client to acc
High remediation recipe for Missing critical step in authentication in Apache HttpClient 5.6 allows an attacker to cause the client to acc. Upgrade to upgrade to version 5.6.1 and remove the vulnerable authz pattern.
CVE-2026-40575 - OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers
Critical remediation recipe for OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Upgrade to patched in and remove the vulnerable command-injection pattern.
CVE-2026-6846 - A flaw was found in binutils. A heap-buffer-overflow vulnerability exists when processing a specially crafted
High remediation recipe for A flaw was found in binutils. A heap-buffer-overflow vulnerability exists when processing a specially crafted. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-6857 - A flaw was found in camel-infinispan. This vulnerability involves unsafe deserialization in the ProtoStream re
High remediation recipe for A flaw was found in camel-infinispan. This vulnerability involves unsafe deserialization in the ProtoStream re. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-40244 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma
High remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to fixed in other locations by the recent CVE-2026-34589 batch and remove the vulnerable authz pattern.
CVE-2026-40895 - follow-redirects is an open source, drop-in replacement for Node's http and https modules that automatical
High remediation recipe for follow-redirects is an open source, drop-in replacement for Node's http and https modules that automatical. Upgrade to fixed in 1.16.0. and remove the vulnerable command-injection pattern.
CVE-2026-40906 - Electric is a Postgres sync engine. From 1.1.12 to before 1.5.0, the order_by parameter in the ElectricSQL /v1
Critical remediation recipe for Electric is a Postgres sync engine. From 1.1.12 to before 1.5.0, the order_by parameter in the ElectricSQL /v1. Upgrade to fixed in 1.5.0. and remove the vulnerable authz pattern.
CVE-2026-6746 - Use-after-free in the DOM: Core & HTML component
High remediation recipe for Use-after-free in the DOM: Core & HTML component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.
CVE-2026-6747 - Use-after-free in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thund
High remediation recipe for Use-after-free in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thund. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.
CVE-2026-6748 - Uninitialized memory in the Audio/Video: Web Codecs component
Critical remediation recipe for Uninitialized memory in the Audio/Video: Web Codecs component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.
CVE-2026-6749 - Information disclosure due to uninitialized memory in the Graphics: Canvas2D component
High remediation recipe for Information disclosure due to uninitialized memory in the Graphics: Canvas2D component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.
CVE-2026-6750 - Privilege escalation in the Graphics: WebRender component
High remediation recipe for Privilege escalation in the Graphics: WebRender component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.
CVE-2026-6751 - Uninitialized memory in the Audio/Video: Web Codecs component
High remediation recipe for Uninitialized memory in the Audio/Video: Web Codecs component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.
CVE-2026-6752 - Incorrect boundary conditions in the WebRTC component
High remediation recipe for Incorrect boundary conditions in the WebRTC component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.
CVE-2026-6753 - Incorrect boundary conditions in the WebRTC component
High remediation recipe for Incorrect boundary conditions in the WebRTC component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.
CVE-2026-6784 - Memory safety bugs present in Firefox 149 and Thunderbird 149
High remediation recipe for Memory safety bugs present in Firefox 149 and Thunderbird 149. Upgrade to fixed in Firefox 150 and Thunderbird 150. and remove the vulnerable authz pattern.
CVE-2026-33557 - A possible security vulnerability has been identified in Apache Kafka
Critical remediation recipe for A possible security vulnerability has been identified in Apache Kafka. Upgrade to fixed and will correctly validate the JWT token. and remove the vulnerable crypto pattern.
CVE-2026-3605 - An authenticated user with access to a kvv2 path through a policy containing a glob may be able to delete secr
High remediation recipe for An authenticated user with access to a kvv2 path through a policy containing a glob may be able to delete secr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40066 - Anviz CX2 Lite and CX7 are vulnerable to unverified update packages that can be uploaded
High remediation recipe for Anviz CX2 Lite and CX7 are vulnerable to unverified update packages that can be uploaded. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-4525 - If a Vault auth mount is configured to pass through the Authorization header, and the Authorization header
High remediation recipe for If a Vault auth mount is configured to pass through the Authorization header, and the Authorization header. Upgrade to Fixed in 2.0.0 and remove the vulnerable authz pattern.
CVE-2026-5720 - miniupnpd contains an integer underflow vulnerability in SOAPAction header parsing that allows remote attacker
Critical remediation recipe for miniupnpd contains an integer underflow vulnerability in SOAPAction header parsing that allows remote attacker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-5807 - Vault is vulnerable to a denial-of-service condition where an unauthenticated attacker can repeatedly initiate
High remediation recipe for Vault is vulnerable to a denial-of-service condition where an unauthenticated attacker can repeatedly initiate. Upgrade to fixed in Vault Community Edition 2.0.0 and Vault Enterprise 2.0.0. and remove the vulnerable authz pattern.
CVE-2025-54502 - Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privilege
High remediation recipe for Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privilege. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40170 - ngtcp2 is a C implementation of the IETF QUIC protocol
High remediation recipe for ngtcp2 is a C implementation of the IETF QUIC protocol. Upgrade to fixed 1024-byte stack buffer without bounds checking. When qlog is and remove the vulnerable authz pattern.
CVE-2026-41035 - In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort call, leading t
High remediation recipe for In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort call, leading t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-41082 - In OCaml opam before 2.5.1, a .install field containing a destination filepath can use ../ to reach a parent d
High remediation recipe for In OCaml opam before 2.5.1, a .install field containing a destination filepath can use ../ to reach a parent d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-41118 - Pyroscope is an open-source continuous profiling database
Critical remediation recipe for Pyroscope is an open-source continuous profiling database. Upgrade to fixed in versions and remove the vulnerable command-injection pattern.
CVE-2026-20186 - A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execu
Critical remediation recipe for A vulnerability in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-33805 - @fastify/reply-from v12.6.1 and earlier and @fastify/http-proxy v11.4.3 and earlier process the client's Conne
High remediation recipe for @fastify/reply-from v12.6.1 and earlier and @fastify/http-proxy v11.4.3 and earlier process the client's Conne. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33806 - Impact: Fastify applications using schema.body.content for per-content-type body validation can have validatio
High remediation recipe for Impact: Fastify applications using schema.body.content for per-content-type body validation can have validatio. Upgrade to Upgrade to fastify v5.8.5 or later. and remove the vulnerable authz pattern.
CVE-2026-34632 - Adobe Photoshop Installer was affected by an Uncontrolled Search Path Element vulnerability that could have re
High remediation recipe for Adobe Photoshop Installer was affected by an Uncontrolled Search Path Element vulnerability that could have re. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-6384 - A flaw was found in gimp. This buffer overflow vulnerability in the GIF image loading component's ReadJeffsIm
High remediation recipe for A flaw was found in gimp. This buffer overflow vulnerability in the GIF image loading component's ReadJeffsIm. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-6388 - A flaw was found in ArgoCD Image Updater
Critical remediation recipe for A flaw was found in ArgoCD Image Updater. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-2332 - In Eclipse Jetty, the HTTP/1.1 parser is vulnerable to request smuggling when chunk extensions are used, simil
High remediation recipe for In Eclipse Jetty, the HTTP/1.1 parser is vulnerable to request smuggling when chunk extensions are used, simil. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable request-smuggling pattern.
CVE-2026-23666 - Improper input validation in .NET Framework allows an unauthorized attacker to deny service over a network
High remediation recipe for Improper input validation in .NET Framework allows an unauthorized attacker to deny service over a network. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-26171 - Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network
High remediation recipe for Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-32178 - Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a
High remediation recipe for Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-32203 - Stack-based buffer overflow in .NET and Visual Studio allows an unauthorized attacker to deny service over a n
High remediation recipe for Stack-based buffer overflow in .NET and Visual Studio allows an unauthorized attacker to deny service over a n. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33414 - Podman is a tool for managing OCI containers and pods
High remediation recipe for Podman is a tool for managing OCI containers and pods. Upgrade to patched in version 5.8.2. and remove the vulnerable command-injection pattern.
CVE-2026-0233 - A certificate validation vulnerability in Palo Alto Networks Autonomous Digital Experience Manager on Windows
High remediation recipe for A certificate validation vulnerability in Palo Alto Networks Autonomous Digital Experience Manager on Windows. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-0234 - An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM plat
Critical remediation recipe for An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM plat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-1462 - A vulnerability in the TFSMLayer class of the keras package, version 3.13.0, allows attacker-controlled Te
High remediation recipe for A vulnerability in the TFSMLayer class of the keras package, version 3.13.0, allows attacker-controlled Te. Upgrade to version 3.13.0 and remove the vulnerable deserialization pattern.
CVE-2026-31419 - In the Linux kernel, the following vulnerability has been resolved: net: bonding: fix use-after-free in bond_x
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: bonding: fix use-after-free in bond_x. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-33901 - ImageMagick is free and open-source software used for editing and manipulating digital images
High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to fixed in versions 6.9.13-44 and 7.1.2-19. and remove the vulnerable command-injection pattern.
CVE-2026-33908 - ImageMagick is free and open-source software used for editing and manipulating digital images
High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to fixed in versions 6.9.13-44 and 7.1.2-19. and remove the vulnerable command-injection pattern.
CVE-2026-4786 - Mitgation of CVE-2026-4519 was incomplete
High remediation recipe for Mitgation of CVE-2026-4519 was incomplete. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-5936 - An attacker can control a server-side HTTP request by supplying a crafted URL, causing the server to initiate
High remediation recipe for An attacker can control a server-side HTTP request by supplying a crafted URL, causing the server to initiate. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-6100 - Use-after-free (UAF) was possible in the lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile w
High remediation recipe for Use-after-free (UAF) was possible in the lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile w. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2019-25695 - R 3.4.4 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by inje
High remediation recipe for R 3.4.4 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by inje. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-32146 - Improper path validation vulnerability in the Gleam compiler's handling of git dependencies allows arbitrary f
High remediation recipe for Improper path validation vulnerability in the Gleam compiler's handling of git dependencies allows arbitrary f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-4150 - GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability
High remediation recipe for GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-4151 - GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability
High remediation recipe for GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-4152 - GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
High remediation recipe for GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-4153 - GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
High remediation recipe for GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-4154 - GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability
High remediation recipe for GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34481 - Apache Log4j's JsonTemplateLayout https://logging.apache.org/log4j/2.x/manual/json-template-layout.html , in v
High remediation recipe for Apache Log4j's JsonTemplateLayout https://logging.apache.org/log4j/2.x/manual/json-template-layout.html , in v. Upgrade to upgrade to Apache Log4j JSON Template Layout 2.25.4 and remove the vulnerable authz pattern.
CVE-2026-40217 - LiteLLM through 2026-04-08 allows remote attackers to execute arbitrary code via bytecode rewriting at the /gu
High remediation recipe for LiteLLM through 2026-04-08 allows remote attackers to execute arbitrary code via bytecode rewriting at the /gu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-13914 - A Key Exchange without Entity Authentication vulnerability in the SSH implementation of Juniper Networks Apstr
High remediation recipe for A Key Exchange without Entity Authentication vulnerability in the SSH implementation of Juniper Networks Apstr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-29146 - Padding Oracle vulnerability in Apache Tomcat's EncryptInterceptor with default configuration
High remediation recipe for Padding Oracle vulnerability in Apache Tomcat's EncryptInterceptor with default configuration. Upgrade to upgrade to version 11.0.19 and remove the vulnerable command-injection pattern.
CVE-2026-33771 - A Weak Password Requirements vulnerability in the password management function of Juniper Networks CTP OS migh
High remediation recipe for A Weak Password Requirements vulnerability in the password management function of Juniper Networks CTP OS migh. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34486 - Missing Encryption of Sensitive Data vulnerability in Apache Tomcat due to the fix for CVE-2026-29146 allowing
High remediation recipe for Missing Encryption of Sensitive Data vulnerability in Apache Tomcat due to the fix for CVE-2026-29146 allowing. Upgrade to upgrade to version 11.0.21 and remove the vulnerable command-injection pattern.
CVE-2026-34734 - HDF5 is software for managing data. In 1.14.1-2 and earlier, a heap-use-after-free was found in the h5dump hel
High remediation recipe for HDF5 is software for managing data. In 1.14.1-2 and earlier, a heap-use-after-free was found in the h5dump hel. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34971 - Wasmtime is a runtime for WebAssembly. From 32.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Cranelift
High remediation recipe for Wasmtime is a runtime for WebAssembly. From 32.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's Cranelift. Upgrade to fixed in 36.0.7 and remove the vulnerable authz pattern.
CVE-2026-35204 - Helm is a package manager for Charts for Kubernetes
High remediation recipe for Helm is a package manager for Charts for Kubernetes. Upgrade to fixed in 4.1.4. and remove the vulnerable authz pattern.
CVE-2026-35205 - Helm is a package manager for Charts for Kubernetes
High remediation recipe for Helm is a package manager for Charts for Kubernetes. Upgrade to fixed in 4.1.4. and remove the vulnerable crypto pattern.
CVE-2026-4660 - HashiCorp’s go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain gi
High remediation recipe for HashiCorp’s go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain gi. Upgrade to fixed in go-getter v1.8.6. This vulnerability does not affect the go- and remove the vulnerable path-traversal pattern.
CVE-2026-27140 - SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code exe
High remediation recipe for SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code exe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-32589 - A flaw was found in Red Hat Quay's container image upload process
High remediation recipe for A flaw was found in Red Hat Quay's container image upload process. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-32590 - A flaw was found in Red Hat Quay's handling of resumable container image layer uploads
High remediation recipe for A flaw was found in Red Hat Quay's handling of resumable container image layer uploads. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33810 - When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly ap
High remediation recipe for When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly ap. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-5795 - In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal
High remediation recipe for In Eclipse Jetty, the class JASPIAuthenticator initiates the authentication checks, which set two ThreadLocal. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-14821 - A flaw was found in libssh. This vulnerability allows local man-in-the-middle attacks, security downgrades of
High remediation recipe for A flaw was found in libssh. This vulnerability allows local man-in-the-middle attacks, security downgrades of. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-20884 - An integer overflow vulnerability exists in the deflate_dng_load_raw functionality of LibRaw Commit 8dc68e2
High remediation recipe for An integer overflow vulnerability exists in the deflate_dng_load_raw functionality of LibRaw Commit 8dc68e2. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-20889 - A heap-based buffer overflow vulnerability exists in the x3f_thumb_loader functionality of LibRaw Commit d2031
Critical remediation recipe for A heap-based buffer overflow vulnerability exists in the x3f_thumb_loader functionality of LibRaw Commit d2031. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20911 - A heap-based buffer overflow vulnerability exists in the HuffTable::initval functionality of LibRaw Commit 0b5
Critical remediation recipe for A heap-based buffer overflow vulnerability exists in the HuffTable::initval functionality of LibRaw Commit 0b5. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-21413 - A heap-based buffer overflow vulnerability exists in the lossless_jpeg_load_raw functionality of LibRaw Commit
Critical remediation recipe for A heap-based buffer overflow vulnerability exists in the lossless_jpeg_load_raw functionality of LibRaw Commit. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-24450 - An integer overflow vulnerability exists in the uncompressed_fp_dng_load_raw functionality of LibRaw Commit 8d
High remediation recipe for An integer overflow vulnerability exists in the uncompressed_fp_dng_load_raw functionality of LibRaw Commit 8d. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-24660 - A heap-based buffer overflow vulnerability exists in the x3f_load_huffman functionality of LibRaw Commit d2031
High remediation recipe for A heap-based buffer overflow vulnerability exists in the x3f_load_huffman functionality of LibRaw Commit d2031. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-28808 - Incorrect Authorization vulnerability in Erlang OTP (inets modules) allows unauthenticated access to CGI scrip
Critical remediation recipe for Incorrect Authorization vulnerability in Erlang OTP (inets modules) allows unauthenticated access to CGI scrip. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-33816 - Memory-safety vulnerability in github.com/jackc/pgx/v5
Critical remediation recipe for Memory-safety vulnerability in github.com/jackc/pgx/v5. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34045 - Podman Desktop is a graphical tool for developing on containers and Kubernetes
High remediation recipe for Podman Desktop is a graphical tool for developing on containers and Kubernetes. Upgrade to fixed in 1.26.2. and remove the vulnerable dos pattern.
CVE-2026-34078 - Flatpak is a Linux application sandboxing and distribution framework
Critical remediation recipe for Flatpak is a Linux application sandboxing and distribution framework. Upgrade to fixed in 1.16.4. and remove the vulnerable path-traversal pattern.
CVE-2026-34580 - Botan is a C++ cryptography library. In 3.11.0, the function Certificate_Store::certificate_known had a mislea
High remediation recipe for Botan is a C++ cryptography library. In 3.11.0, the function Certificate_Store::certificate_known had a mislea. Upgrade to fixed in 3.11.1. and remove the vulnerable cert-validation pattern.
CVE-2026-4740 - A flaw was found in Open Cluster Management (OCM), the technology underlying Red Hat Advanced Cluster Manageme
High remediation recipe for A flaw was found in Open Cluster Management (OCM), the technology underlying Red Hat Advanced Cluster Manageme. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-5731 - Memory safety bugs present in Firefox ESR 115.34.0, Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149
Critical remediation recipe for Memory safety bugs present in Firefox ESR 115.34.0, Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149. Upgrade to fixed in Firefox 149.0.2 and remove the vulnerable authz pattern.
CVE-2026-5732 - Incorrect boundary conditions, integer overflow in the Graphics: Text component
High remediation recipe for Incorrect boundary conditions, integer overflow in the Graphics: Text component. Upgrade to fixed in Firefox 149.0.2 and remove the vulnerable authz pattern.
CVE-2026-5733 - Incorrect boundary conditions in the Graphics: WebGPU component
High remediation recipe for Incorrect boundary conditions in the Graphics: WebGPU component. Upgrade to fixed in Firefox 149.0.2 and Thunderbird 149.0.2. and remove the vulnerable authz pattern.
CVE-2026-5734 - Memory safety bugs present in Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149.0.1 and Thunderbird 14
Critical remediation recipe for Memory safety bugs present in Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149.0.1 and Thunderbird 14. Upgrade to fixed in Firefox 149.0.2 and remove the vulnerable authz pattern.
CVE-2026-5735 - Memory safety bugs present in Firefox 149.0.1 and Thunderbird 149.0.1
Critical remediation recipe for Memory safety bugs present in Firefox 149.0.1 and Thunderbird 149.0.1. Upgrade to fixed in Firefox 149.0.2 and Thunderbird 149.0.2. and remove the vulnerable authz pattern.
CVE-2026-34379 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma
High remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to version by casting an unaligned uint8_t and remove the vulnerable command-injection pattern.
CVE-2026-34588 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma
High remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to fixed in 3.2.7 and remove the vulnerable authz pattern.
CVE-2026-34982 - Vim is an open source, command line text editor
High remediation recipe for Vim is an open source, command line text editor. Upgrade to version 9.2.0276 and remove the vulnerable command-injection pattern.
CVE-2026-35030 - LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format
Critical remediation recipe for LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Upgrade to Fixed in v1.83.0. and remove the vulnerable authz pattern.
CVE-2026-35172 - Distribution is a toolkit to pack, ship, store, and deliver container content
High remediation recipe for Distribution is a toolkit to pack, ship, store, and deliver container content. Upgrade to fixed in 3.1.0. and remove the vulnerable authz pattern.
CVE-2026-0545 - In mlflow/mlflow, the FastAPI job endpoints under /ajax-api/3.0/jobs/* are not protected by authentication o
Critical remediation recipe for In mlflow/mlflow, the FastAPI job endpoints under /ajax-api/3.0/jobs/* are not protected by authentication o. Upgrade to version of the repository. If job execution is enabled and remove the vulnerable command-injection pattern.
CVE-2026-23428 - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of share_conf in
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of share_conf in. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-23450 - In the Linux kernel, the following vulnerability has been resolved: net/smc: fix NULL dereference and UAF in s
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/smc: fix NULL dereference and UAF in s. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable dos pattern.
CVE-2026-23455 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: check for ze
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: check for ze. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-31402 - In the Linux kernel, the following vulnerability has been resolved: nfsd: fix heap overflow in NFSv4.0 LOCK re
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: nfsd: fix heap overflow in NFSv4.0 LOCK re. Upgrade to fixed 112-byte inline buffer and remove the vulnerable authz pattern.
CVE-2026-35535 - In Sudo through 1.9.17p2 before 3e474c2, a failure of a setuid, setgid, or setgroups call, during a privilege
High remediation recipe for In Sudo through 1.9.17p2 before 3e474c2, a failure of a setuid, setgid, or setgroups call, during a privilege. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34785 - Rack is a modular Ruby web server interface
High remediation recipe for Rack is a modular Ruby web server interface. Upgrade to patched in versions 2.2.23 and remove the vulnerable authz pattern.
CVE-2026-34827 - Rack is a modular Ruby web server interface
High remediation recipe for Rack is a modular Ruby web server interface. Upgrade to patched in versions 3.1.21 and 3.2.6. and remove the vulnerable dos pattern.
CVE-2026-34829 - Rack is a modular Ruby web server interface
High remediation recipe for Rack is a modular Ruby web server interface. Upgrade to patched in versions 2.2.23 and remove the vulnerable dos pattern.
CVE-2026-35385 - In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contrary to som
High remediation recipe for In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contrary to som. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3872 - A flaw was found in Keycloak. This issue allows an attacker, who controls another path on the same web server,
High remediation recipe for A flaw was found in Keycloak. This issue allows an attacker, who controls another path on the same web server,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-4282 - A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper type and nam
High remediation recipe for A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper type and nam. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-4634 - A flaw was found in Keycloak. An unauthenticated attacker can exploit this vulnerability by sending a speciall
High remediation recipe for A flaw was found in Keycloak. An unauthenticated attacker can exploit this vulnerability by sending a speciall. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-4636 - A flaw was found in Keycloak. An authenticated user with the uma_protection role can bypass User-Managed Acces
High remediation recipe for A flaw was found in Keycloak. An authenticated user with the uma_protection role can bypass User-Managed Acces. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-20160 - A vulnerability in Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an unauthenticated, remote a
Critical remediation recipe for A vulnerability in Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an unauthenticated, remote a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-27489 - Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability
High remediation recipe for Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Upgrade to version 1.21.0 and remove the vulnerable path-traversal pattern.
CVE-2026-34545 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma
High remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to version 3.4.0 to before version 3.4.7 and remove the vulnerable authz pattern.
CVE-2026-35093 - A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain
High remediation recipe for A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34040 - Moby is an open source container framework
High remediation recipe for Moby is an open source container framework. Upgrade to version 29.3.1 and remove the vulnerable command-injection pattern.
CVE-2026-4800 - Impact: The fix for CVE-2021-23337 (https://github.com/advisories/GHSA-35jh-r3h4-6jhm) added validation for th
High remediation recipe for Impact: The fix for CVE-2021-23337 (https://github.com/advisories/GHSA-35jh-r3h4-6jhm) added validation for th. Upgrade to upgrade to version 4.18.0. and remove the vulnerable prototype-pollution pattern.
CVE-2026-5201 - A flaw was found in the gdk-pixbuf library
High remediation recipe for A flaw was found in the gdk-pixbuf library. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-15036 - A path traversal vulnerability exists in the extract_archive_to_dir function within the mlflow/pyfunc/dbcon
Critical remediation recipe for A path traversal vulnerability exists in the extract_archive_to_dir function within the mlflow/pyfunc/dbcon. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-2370 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18
High remediation recipe for GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33984 - FreeRDP is a free implementation of the Remote Desktop Protocol
High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.24.2 and remove the vulnerable authz pattern.
CVE-2026-33986 - FreeRDP is a free implementation of the Remote Desktop Protocol
High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.24.2 and remove the vulnerable authz pattern.
CVE-2026-34714 - Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default
Critical remediation recipe for Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-15381 - In the latest version of mlflow/mlflow, when the basic-auth app is enabled, tracing and assessment endpoints
High remediation recipe for In the latest version of mlflow/mlflow, when the basic-auth app is enabled, tracing and assessment endpoints. Upgrade to version of mlflow and remove the vulnerable ssrf pattern.
CVE-2025-59032 - ManageSieve AUTHENTICATE command crashes when using literal as SASL initial response
High remediation recipe for ManageSieve AUTHENTICATE command crashes when using literal as SASL initial response. Upgrade to upgrade to a fixed version. No publicly available exploits are known. and remove the vulnerable dos pattern.
CVE-2026-24031 - Dovecot SQL based authentication can be bypassed when auth_username_chars is cleared by admin
High remediation recipe for Dovecot SQL based authentication can be bypassed when auth_username_chars is cleared by admin. Upgrade to fixed version. No publicly available exploits are known. and remove the vulnerable authz pattern.
CVE-2026-27856 - Doveadm credentials are verified using direct comparison which is susceptible to timing oracle attack
High remediation recipe for Doveadm credentials are verified using direct comparison which is susceptible to timing oracle attack. Upgrade to fixed version. No publicly available exploits are known. and remove the vulnerable authz pattern.
CVE-2026-27858 - Attacker can send a specifically crafted message before authentication that causes managesieve to allocate lar
High remediation recipe for Attacker can send a specifically crafted message before authentication that causes managesieve to allocate lar. Upgrade to fixed version. No publicly available exploits are known. and remove the vulnerable command-injection pattern.
CVE-2026-27876 - A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execu
Critical remediation recipe for A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-27880 - The OpenFeature feature toggle evaluation endpoint reads unbounded values into memory, which can cause out-of-
High remediation recipe for The OpenFeature feature toggle evaluation endpoint reads unbounded values into memory, which can cause out-of-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-32695 - Traefik is an HTTP reverse proxy and load balancer
High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33433 - Traefik is an HTTP reverse proxy and load balancer
High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to version of that header to impersonate any identity to the backend. T and remove the vulnerable authz pattern.
CVE-2026-33757 - OpenBao is an open source identity-based secrets management system
Critical remediation recipe for OpenBao is an open source identity-based secrets management system. Upgrade to version 2.5.2 and remove the vulnerable command-injection pattern.
CVE-2026-33870 - Netty is an asynchronous, event-driven network application framework
High remediation recipe for Netty is an asynchronous, event-driven network application framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable request-smuggling pattern.
CVE-2026-33871 - Netty is an asynchronous, event-driven network application framework
High remediation recipe for Netty is an asynchronous, event-driven network application framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-1961 - A flaw was found in Foreman. A remote attacker could exploit a command injection vulnerability in Foreman's We
High remediation recipe for A flaw was found in Foreman. A remote attacker could exploit a command injection vulnerability in Foreman's We. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-28377 - A vulnerability in Grafana Tempo exposes the S3 SSE-C encryption key in plaintext through the /status/config e
High remediation recipe for A vulnerability in Grafana Tempo exposes the S3 SSE-C encryption key in plaintext through the /status/config e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-32285 - The Delete function fails to properly validate offsets when processing malformed JSON input
High remediation recipe for The Delete function fails to properly validate offsets when processing malformed JSON input. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-32286 - The DataRow.Decode function fails to properly validate field lengths
High remediation recipe for The DataRow.Decode function fails to properly validate field lengths. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-32748 - Squid is a caching proxy for the Web. Prior to version 7.5, due to premature release of resource during expect
High remediation recipe for Squid is a caching proxy for the Web. Prior to version 7.5, due to premature release of resource during expect. Upgrade to version 7.5 and remove the vulnerable command-injection pattern.
CVE-2026-33526 - Squid is a caching proxy for the Web. Prior to version 7.5, due to heap Use-After-Free, Squid is vulnerable to
High remediation recipe for Squid is a caching proxy for the Web. Prior to version 7.5, due to heap Use-After-Free, Squid is vulnerable to. Upgrade to version 7.5 and remove the vulnerable dos pattern.
CVE-2026-4926 - Impact: A bad regular expression is generated any time you have multiple sequential optional groups (curly bra
High remediation recipe for Impact: A bad regular expression is generated any time you have multiple sequential optional groups (curly bra. Upgrade to Fixed in version 8.4.0. and remove the vulnerable dos pattern.
CVE-2025-67030 - Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils
High remediation recipe for Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-1519 - If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may
High remediation recipe for If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-23392 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: release flowtable af
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: release flowtable af. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-27889 - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system
High remediation recipe for NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Upgrade to version 2.2.0 and prior to versions 2.11.14 and 2.12.5 and remove the vulnerable dos pattern.
CVE-2026-29785 - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system
High remediation recipe for NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-3104 - A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domai
High remediation recipe for A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domai. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33216 - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system
High remediation recipe for NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33217 - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system
High remediation recipe for NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33218 - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system
High remediation recipe for NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-33247 - NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system
High remediation recipe for NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-3608 - Sending a maliciously crafted message to the kea-ctrl-agent, kea-dhcp-ddns, kea-dhcp4, or kea-dhcp6 daemons ov
High remediation recipe for Sending a maliciously crafted message to the kea-ctrl-agent, kea-dhcp-ddns, kea-dhcp4, or kea-dhcp6 daemons ov. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-27651 - When the ngx_mail_auth_http_module module is enabled on NGINX Plus or NGINX Open Source, undisclosed requests
High remediation recipe for When the ngx_mail_auth_http_module module is enabled on NGINX Plus or NGINX Open Source, undisclosed requests. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-27654 - NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_dav_module module that might allow an at
High remediation recipe for NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_dav_module module that might allow an at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-27784 - The 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module module, which mi
High remediation recipe for The 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module module, which mi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-32647 - NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module module, which might allow an
High remediation recipe for NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module module, which might allow an. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-33195 - Active Storage allows users to attach cloud and local files in Rails applications
Critical remediation recipe for Active Storage allows users to attach cloud and local files in Rails applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-4371 - A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory
High remediation recipe for A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory. Upgrade to fixed in Thunderbird 149 and Thunderbird 140.9. and remove the vulnerable dos pattern.
CVE-2026-4684 - Race condition, use-after-free in the Graphics: WebRender component
High remediation recipe for Race condition, use-after-free in the Graphics: WebRender component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4685 - Incorrect boundary conditions in the Graphics: Canvas2D component
High remediation recipe for Incorrect boundary conditions in the Graphics: Canvas2D component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4686 - Incorrect boundary conditions in the Graphics: Canvas2D component
High remediation recipe for Incorrect boundary conditions in the Graphics: Canvas2D component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4687 - Sandbox escape due to incorrect boundary conditions in the Telemetry component
High remediation recipe for Sandbox escape due to incorrect boundary conditions in the Telemetry component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4688 - Sandbox escape due to use-after-free in the Disability Access APIs component
Critical remediation recipe for Sandbox escape due to use-after-free in the Disability Access APIs component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4689 - Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component
Critical remediation recipe for Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4690 - Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component
High remediation recipe for Sandbox escape due to incorrect boundary conditions, integer overflow in the XPCOM component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4691 - Use-after-free in the CSS Parsing and Computation component
Critical remediation recipe for Use-after-free in the CSS Parsing and Computation component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4692 - Sandbox escape in the Responsive Design Mode component
Critical remediation recipe for Sandbox escape in the Responsive Design Mode component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4693 - Incorrect boundary conditions in the Audio/Video: Playback component
High remediation recipe for Incorrect boundary conditions in the Audio/Video: Playback component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4694 - Incorrect boundary conditions, integer overflow in the Graphics component
High remediation recipe for Incorrect boundary conditions, integer overflow in the Graphics component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4695 - Incorrect boundary conditions in the Audio/Video: Web Codecs component
High remediation recipe for Incorrect boundary conditions in the Audio/Video: Web Codecs component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4696 - Use-after-free in the Layout: Text and Fonts component
Critical remediation recipe for Use-after-free in the Layout: Text and Fonts component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4697 - Incorrect boundary conditions in the Audio/Video: Web Codecs component
High remediation recipe for Incorrect boundary conditions in the Audio/Video: Web Codecs component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4699 - Incorrect boundary conditions in the Layout: Text and Fonts component
High remediation recipe for Incorrect boundary conditions in the Layout: Text and Fonts component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4700 - Mitigation bypass in the Networking: HTTP component
Critical remediation recipe for Mitigation bypass in the Networking: HTTP component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4720 - Memory safety bugs present in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148
Critical remediation recipe for Memory safety bugs present in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4721 - Memory safety bugs present in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Th
Critical remediation recipe for Memory safety bugs present in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Th. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-4729 - Memory safety bugs present in Firefox 148 and Thunderbird 148
Critical remediation recipe for Memory safety bugs present in Firefox 148 and Thunderbird 148. Upgrade to fixed in Firefox 149 and Thunderbird 149. and remove the vulnerable authz pattern.
CVE-2026-4775 - A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerabili
High remediation recipe for A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerabili. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-4598 - Versions of the package jsrsasign before 11.1.1 are vulnerable to Infinite loop via the bnModInverse function
High remediation recipe for Versions of the package jsrsasign before 11.1.1 are vulnerable to Infinite loop via the bnModInverse function. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-4599 - Versions of the package jsrsasign from 7.0.0 and before 11.1.1 are vulnerable to Incomplete Comparison with Mi
Critical remediation recipe for Versions of the package jsrsasign from 7.0.0 and before 11.1.1 are vulnerable to Incomplete Comparison with Mi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-4600 - Versions of the package jsrsasign before 11.1.1 are vulnerable to Improper Verification of Cryptographic Signa
High remediation recipe for Versions of the package jsrsasign before 11.1.1 are vulnerable to Improper Verification of Cryptographic Signa. Upgrade to fixed r=1 and remove the vulnerable cert-validation pattern.
CVE-2026-4601 - Versions of the package jsrsasign before 11.1.1 are vulnerable to Missing Cryptographic Step via the KJUR.cryp
High remediation recipe for Versions of the package jsrsasign before 11.1.1 are vulnerable to Missing Cryptographic Step via the KJUR.cryp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-4602 - Versions of the package jsrsasign before 11.1.1 are vulnerable to Incorrect Conversion between Numeric Types d
High remediation recipe for Versions of the package jsrsasign before 11.1.1 are vulnerable to Incorrect Conversion between Numeric Types d. Upgrade to version between Numeric Types due to handling negative exponents in and remove the vulnerable command-injection pattern.
CVE-2026-23272 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: unconditionally bump
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: unconditionally bump. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-23274 - In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_IDLETIMER: reject rev0 reuse
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_IDLETIMER: reject rev0 reuse. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-23278 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: always walk all pend
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: always walk all pend. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-23536 - A security issue was discovered in the Feast Feature Server's /read-document endpoint that allows an unauthe
High remediation recipe for A security issue was discovered in the Feast Feature Server's /read-document endpoint that allows an unauthe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-32829 - lz4_flex is a pure Rust implementation of LZ4 compression/decompression
High remediation recipe for lz4_flex is a pure Rust implementation of LZ4 compression/decompression. Upgrade to fixed in versions 0.11.6 and 0.12.1. and remove the vulnerable authz pattern.
CVE-2026-33150 - libfuse is the reference implementation of the Linux FUSE
High remediation recipe for libfuse is the reference implementation of the Linux FUSE. Upgrade to version 3.18.0 to before version 3.18.2 and remove the vulnerable command-injection pattern.
CVE-2026-33210 - Ruby JSON is a JSON implementation for Ruby
Critical remediation recipe for Ruby JSON is a JSON implementation for Ruby. Upgrade to version 2.14.0 to before versions 2.15.2.1 and remove the vulnerable dos pattern.
CVE-2006-10003 - XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack
Critical remediation recipe for XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3029 - A path traversal and arbitrary file write vulnerability exist in the embedded get function in '_main_.py' in P
High remediation recipe for A path traversal and arbitrary file write vulnerability exist in the embedded get function in '_main_.py' in P. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-4342 - A security issue was discovered in ingress-nginx where a combination of Ingress annotations can be used to inj
High remediation recipe for A security issue was discovered in ingress-nginx where a combination of Ingress annotations can be used to inj. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-4424 - A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processin
High remediation recipe for A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-15031 - A vulnerability in MLflow's pyfunc extraction process allows for arbitrary file writes due to improper handlin
Critical remediation recipe for A vulnerability in MLflow's pyfunc extraction process allows for arbitrary file writes due to improper handlin. Upgrade to version of MLflow and poses a high and remove the vulnerable path-traversal pattern.
CVE-2026-2092 - A flaw was found in Keycloak. Keycloak's Security Assertion Markup Language (SAML) broker endpoint does not pr
High remediation recipe for A flaw was found in Keycloak. Keycloak's Security Assertion Markup Language (SAML) broker endpoint does not pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-23242 - In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix potential NULL pointer deref
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix potential NULL pointer deref. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-23243 - In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative data_len in ib_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative data_len in ib_. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-23262 - In the Linux kernel, the following vulnerability has been resolved: gve: Fix stats report corruption on queue
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: gve: Fix stats report corruption on queue. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-2603 - A flaw was found in Keycloak. A remote attacker could bypass security controls by sending a valid SAML respons
High remediation recipe for A flaw was found in Keycloak. A remote attacker could bypass security controls by sending a valid SAML respons. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-26740 - Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the
High remediation recipe for Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-27135 - nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C
High remediation recipe for nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. Upgrade to version 2 in C. Prior to version 1.68.1 and remove the vulnerable authz pattern.
CVE-2026-28500 - Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability
High remediation recipe for Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Upgrade to patched versions are available. and remove the vulnerable command-injection pattern.
CVE-2026-33001 - Jenkins 2.554 and earlier, LTS 2.541.2 and earlier does not safely handle symbolic links during the extraction
High remediation recipe for Jenkins 2.554 and earlier, LTS 2.541.2 and earlier does not safely handle symbolic links during the extraction. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-32981 - A path traversal vulnerability was identified in Ray Dashboard (default port 8265) in Ray versions prior to 2
High remediation recipe for A path traversal vulnerability was identified in Ray Dashboard (default port 8265) in Ray versions prior to 2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-3564 - A condition in the ScreenConnect server component may allow an actor with access to server-level cryptographic
Critical remediation recipe for A condition in the ScreenConnect server component may allow an actor with access to server-level cryptographic. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2920 - GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability
High remediation recipe for GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2921 - GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability
High remediation recipe for GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2922 - GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability
High remediation recipe for GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2923 - GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability
High remediation recipe for GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3081 - GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability
High remediation recipe for GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3082 - GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability
High remediation recipe for GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3083 - GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability
High remediation recipe for GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3084 - GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability
High remediation recipe for GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3085 - GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability
High remediation recipe for GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3086 - GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability
High remediation recipe for GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3644 - The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete
High remediation recipe for The fix for CVE-2026-0672, which rejected control characters in http.cookies.Morsel, was incomplete. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-4177 - YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-seve
Critical remediation recipe for YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-seve. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-31806 - FreeRDP is a free implementation of the Remote Desktop Protocol
Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.24.0. and remove the vulnerable authz pattern.
CVE-2026-4111 - A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within t
High remediation recipe for A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2023-43010 - The issue was addressed with improved memory handling
High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in iOS 17.2 and iPadOS 17.2 and remove the vulnerable authz pattern.
CVE-2026-1528 - ImpactA server can reply with a WebSocket frame using the 64-bit length form and an extremely large length
High remediation recipe for ImpactA server can reply with a WebSocket frame using the 64-bit length form and an extremely large length. Upgrade to Patched in the undici version v7.24.0 and v6.24.0. Users should upgrade and remove the vulnerable authz pattern.
CVE-2026-3497 - Vulnerability in the OpenSSH GSSAPI delta included in various Linux distributions
High remediation recipe for Vulnerability in the OpenSSH GSSAPI delta included in various Linux distributions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-24294 - Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally
High remediation recipe for Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-26130 - Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny s
High remediation recipe for Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny s. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-28691 - ImageMagick is free and open-source software used for editing and manipulating digital images
High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to fixed in 7.1.2-16 and 6.9.13-41. and remove the vulnerable command-injection pattern.
CVE-2026-28693 - ImageMagick is free and open-source software used for editing and manipulating digital images
High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to fixed in 7.1.2-16 and 6.9.13-41. and remove the vulnerable command-injection pattern.
CVE-2026-31837 - Istio is an open platform to connect, manage, and secure microservices
High remediation recipe for Istio is an open platform to connect, manage, and secure microservices. Upgrade to fixed in 1.29.1 and remove the vulnerable command-injection pattern.
CVE-2026-0846 - A vulnerability in the filestring() function of the nltk.util module in nltk version 3.9.2 allows arbitrar
High remediation recipe for A vulnerability in the filestring() function of the nltk.util module in nltk version 3.9.2 allows arbitrar. Upgrade to version 3.9.2 allows arbitrary file read due to improper validation and remove the vulnerable path-traversal pattern.
CVE-2026-25960 - vLLM is an inference and serving engine for large language models (LLMs)
High remediation recipe for vLLM is an inference and serving engine for large language models (LLMs). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-3823 - EHG2408 series switch developed by Atop Technologies has a Stack-based Buffer Overflow vulnerability, allowing
Critical remediation recipe for EHG2408 series switch developed by Atop Technologies has a Stack-based Buffer Overflow vulnerability, allowing. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-24281 - Hostname verification in Apache ZooKeeper ZKTrustManager falls back to reverse DNS (PTR) when IP SAN validatio
High remediation recipe for Hostname verification in Apache ZooKeeper ZKTrustManager falls back to reverse DNS (PTR) when IP SAN validatio. Upgrade to upgrade to version 3.8.6 or 3.9.5 and remove the vulnerable cert-validation pattern.
CVE-2026-24308 - Improper handling of configuration values in ZKConfig in Apache ZooKeeper 3.8.5 and 3.9.4 on all platforms all
High remediation recipe for Improper handling of configuration values in ZKConfig in Apache ZooKeeper 3.8.5 and 3.9.4 on all platforms all. Upgrade to upgrade to version 3.8.6 or 3.9.5 which fixes this issue. and remove the vulnerable authz pattern.
CVE-2026-25679 - url.Parse insufficiently validated the host/authority component and accepted some invalid URLs
High remediation recipe for url.Parse insufficiently validated the host/authority component and accepted some invalid URLs. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-26017 - CoreDNS is a DNS server that chains plugins
High remediation recipe for CoreDNS is a DNS server that chains plugins. Upgrade to version 1.14.2 and remove the vulnerable command-injection pattern.
CVE-2026-26018 - CoreDNS is a DNS server that chains plugins
High remediation recipe for CoreDNS is a DNS server that chains plugins. Upgrade to version 1.14.2 and remove the vulnerable dos pattern.
CVE-2026-27137 - When verifying a certificate chain which contains a certificate containing multiple email address constraints
High remediation recipe for When verifying a certificate chain which contains a certificate containing multiple email address constraints. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-29063 - Immutable.js provides many Persistent Immutable data structures
Critical remediation recipe for Immutable.js provides many Persistent Immutable data structures. Upgrade to patched in versions 3.8.3 and remove the vulnerable prototype-pollution pattern.
CVE-2025-45691 - An Arbitrary File Read vulnerability exists in the ImageTextPromptValue class in Exploding Gradients RAGAS v0
High remediation recipe for An Arbitrary File Read vulnerability exists in the ImageTextPromptValue class in Exploding Gradients RAGAS v0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-1605 - In Eclipse Jetty, versions 12.0.0-12.0.31 and 12.1.0-12.0.5, class GzipHandler exposes a vulnerability when a
High remediation recipe for In Eclipse Jetty, versions 12.0.0-12.0.31 and 12.1.0-12.0.5, class GzipHandler exposes a vulnerability when a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-25048 - xgrammar is an open-source library for efficient, flexible, and portable structured generation
High remediation recipe for xgrammar is an open-source library for efficient, flexible, and portable structured generation. Upgrade to version 0.1.32 and remove the vulnerable command-injection pattern.
CVE-2026-29054 - Traefik is an HTTP reverse proxy and load balancer
High remediation recipe for Traefik is an HTTP reverse proxy and load balancer. Upgrade to version 2.11.9 to 2.11.37 and from version 3.1.3 to 3.6.8 and remove the vulnerable authz pattern.
CVE-2026-3009 - A security flaw in the IdentityBrokerService.performLogin endpoint of Keycloak allows authentication to procee
High remediation recipe for A security flaw in the IdentityBrokerService.performLogin endpoint of Keycloak allows authentication to procee. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-3047 - A flaw was found in org.keycloak.broker.saml
High remediation recipe for A flaw was found in org.keycloak.broker.saml. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-71238 - In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix bsg_done() causing doub
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix bsg_done() causing doub. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-23233 - In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid mapping wrong physical
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid mapping wrong physical. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-23234 - In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fs_write_end_i
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fs_write_end_i. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-23235 - In the Linux kernel, the following vulnerability has been resolved: f2fs: fix out-of-bounds access in sysfs at
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: f2fs: fix out-of-bounds access in sysfs at. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-23236 - In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-27446 - Missing Authentication for Critical Function (CWE-306) vulnerability in Apache Artemis, Apache ActiveMQ Artemi
Critical remediation recipe for Missing Authentication for Critical Function (CWE-306) vulnerability in Apache Artemis, Apache ActiveMQ Artemi. Upgrade to upgrade to Apache Artemis version 2.52.0 and remove the vulnerable command-injection pattern.
CVE-2026-27622 - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma
High remediation recipe for OpenEXR provides the specification and reference implementation of the EXR file format, an image storage forma. Upgrade to fixed in v3.2.6 and remove the vulnerable authz pattern.
CVE-2026-3336 - Improper certificate validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass certifica
High remediation recipe for Improper certificate validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass certifica. Upgrade to upgrade to AWS-LC version 1.69.0. and remove the vulnerable cert-validation pattern.
CVE-2026-3338 - Improper signature validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass signature v
High remediation recipe for Improper signature validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass signature v. Upgrade to upgrade to AWS-LC version 1.69.0. and remove the vulnerable crypto pattern.
CVE-2026-2293 - A NestJS application using @nestjs/platform-fastify can allow bypass of authentication/authorization middlewar
Critical remediation recipe for A NestJS application using @nestjs/platform-fastify can allow bypass of authentication/authorization middlewar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-28364 - In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime/intern.c)
High remediation recipe for In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime/intern.c). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-1693 - The OAuth grant type Resource Owner Password Credentials (ROPC) flow is still used by the werbservices used by
High remediation recipe for The OAuth grant type Resource Owner Password Credentials (ROPC) flow is still used by the werbservices used by. Upgrade to version 12.0.0 through 16.3.3 included despite being deprecated. It and remove the vulnerable credential-leak pattern.
CVE-2026-26103 - A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUK
High remediation recipe for A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUK. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-26965 - FreeRDP is a free implementation of the Remote Desktop Protocol
High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.23.0 and remove the vulnerable authz pattern.
CVE-2026-27148 - Storybook is a frontend workshop for building user interface components and pages in isolation
Critical remediation recipe for Storybook is a frontend workshop for building user interface components and pages in isolation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-27595 - Parse Dashboard is a standalone dashboard for managing Parse Server apps
High remediation recipe for Parse Dashboard is a standalone dashboard for managing Parse Server apps. Upgrade to version 9.0.0-alpha.8 adds authentication and remove the vulnerable authz pattern.
CVE-2026-27608 - Parse Dashboard is a standalone dashboard for managing Parse Server apps
High remediation recipe for Parse Dashboard is a standalone dashboard for managing Parse Server apps. Upgrade to version 9.0.0-alpha.8 adds per-app authorization checks and restrict and remove the vulnerable command-injection pattern.
CVE-2026-25794 - ImageMagick is free and open-source software used for editing and manipulating digital images
High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to version 7.1.2-15 and remove the vulnerable command-injection pattern.
CVE-2026-25965 - ImageMagick is free and open-source software used for editing and manipulating digital images
High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-25985 - ImageMagick is free and open-source software used for editing and manipulating digital images
High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-2757 - Incorrect boundary conditions in the WebRTC: Audio/Video component
Critical remediation recipe for Incorrect boundary conditions in the WebRTC: Audio/Video component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2759 - Incorrect boundary conditions in the Graphics: ImageLib component
Critical remediation recipe for Incorrect boundary conditions in the Graphics: ImageLib component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2760 - Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component
Critical remediation recipe for Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2761 - Sandbox escape in the Graphics: WebRender component
Critical remediation recipe for Sandbox escape in the Graphics: WebRender component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2768 - Sandbox escape in the Storage: IndexedDB component
Critical remediation recipe for Sandbox escape in the Storage: IndexedDB component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2769 - Use-after-free in the Storage: IndexedDB component
High remediation recipe for Use-after-free in the Storage: IndexedDB component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2770 - Use-after-free in the DOM: Bindings (WebIDL) component
Critical remediation recipe for Use-after-free in the DOM: Bindings (WebIDL) component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2771 - Undefined behavior in the DOM: Core & HTML component
Critical remediation recipe for Undefined behavior in the DOM: Core & HTML component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2772 - Use-after-free in the Audio/Video: Playback component
Critical remediation recipe for Use-after-free in the Audio/Video: Playback component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2773 - Incorrect boundary conditions in the Web Audio component
Critical remediation recipe for Incorrect boundary conditions in the Web Audio component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2774 - Integer overflow in the Audio/Video component
Critical remediation recipe for Integer overflow in the Audio/Video component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2775 - Mitigation bypass in the DOM: HTML Parser component
Critical remediation recipe for Mitigation bypass in the DOM: HTML Parser component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2776 - Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software
Critical remediation recipe for Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2777 - Privilege escalation in the Messaging System component
Critical remediation recipe for Privilege escalation in the Messaging System component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2778 - Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component
Critical remediation recipe for Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2792 - Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147
Critical remediation recipe for Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2793 - Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Th
Critical remediation recipe for Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Th. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2794 - Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android
High remediation recipe for Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android. Upgrade to fixed in Firefox 148. and remove the vulnerable authz pattern.
CVE-2026-2798 - Use-after-free in the DOM: Core & HTML component
High remediation recipe for Use-after-free in the DOM: Core & HTML component. Upgrade to fixed in Firefox 148 and Thunderbird 148. and remove the vulnerable authz pattern.
CVE-2026-2799 - Use-after-free in the DOM: Core & HTML component
Critical remediation recipe for Use-after-free in the DOM: Core & HTML component. Upgrade to fixed in Firefox 148 and Thunderbird 148. and remove the vulnerable authz pattern.
CVE-2026-2807 - Memory safety bugs present in Firefox 147 and Thunderbird 147
Critical remediation recipe for Memory safety bugs present in Firefox 147 and Thunderbird 147. Upgrade to fixed in Firefox 148 and Thunderbird 148. and remove the vulnerable authz pattern.
CVE-2025-14905 - A flaw was found in the 389-ds-base server
High remediation recipe for A flaw was found in the 389-ds-base server. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-67733 - Valkey is a distributed key-value database
High remediation recipe for Valkey is a distributed key-value database. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-21863 - Valkey is a distributed key-value database
High remediation recipe for Valkey is a distributed key-value database. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-27623 - Valkey is a distributed key-value database
High remediation recipe for Valkey is a distributed key-value database. Upgrade to version 9.0.0 and prior to version 9.0.3 and remove the vulnerable authz pattern.
CVE-2019-25434 - SpotAuditor 5.3.1.0 contains a denial of service vulnerability that allows unauthenticated attackers to crash
High remediation recipe for SpotAuditor 5.3.1.0 contains a denial of service vulnerability that allows unauthenticated attackers to crash. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-0797 - GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
High remediation recipe for GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2033 - MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability
High remediation recipe for MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2044 - GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability
High remediation recipe for GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2045 - GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
High remediation recipe for GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2047 - GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
High remediation recipe for GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2048 - GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
High remediation recipe for GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2492 - TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
High remediation recipe for TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-25896 - fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C+
Critical remediation recipe for fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C+. Upgrade to fixed in 5.3.5. and remove the vulnerable xss pattern.
CVE-2026-2635 - MLflow Use of Default Password Authentication Bypass Vulnerability
High remediation recipe for MLflow Use of Default Password Authentication Bypass Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-2818 - A zip-slip path traversal vulnerability in Spring Data Geode's import snapshot functionality allows attackers
High remediation recipe for A zip-slip path traversal vulnerability in Spring Data Geode's import snapshot functionality allows attackers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-24834 - Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machine
Critical remediation recipe for Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machine. Upgrade to Version 3.27.0 patches the issue. and remove the vulnerable command-injection pattern.
CVE-2026-26200 - HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an h5 file parsed
High remediation recipe for HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an h5 file parsed. Upgrade to version 1.14.4-2 and remove the vulnerable authz pattern.
CVE-2026-26278 - fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C+
High remediation recipe for fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C+. Upgrade to Version 5.3.6 fixes the issue. As a workaround and remove the vulnerable command-injection pattern.
CVE-2025-71231 - In the Linux kernel, the following vulnerability has been resolved: crypto: iaa - Fix out-of-bounds index in f
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: iaa - Fix out-of-bounds index in f. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2026-22860 - Rack is a modular Ruby web server interface
High remediation recipe for Rack is a modular Ruby web server interface. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-23216 - In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-23221 - In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driver_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driver_. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-23222 - In the Linux kernel, the following vulnerability has been resolved: crypto: omap - Allocate OMAP_CRYPTO_FORCE_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: crypto: omap - Allocate OMAP_CRYPTO_FORCE_. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable command-injection pattern.
CVE-2026-23230 - In the Linux kernel, the following vulnerability has been resolved: smb: client: split cached_fid bitfields to
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: split cached_fid bitfields to. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-24708 - An issue was discovered in OpenStack Nova before 30.2.2, 31 before 31.2.1, and 32 before 32.1.1
High remediation recipe for An issue was discovered in OpenStack Nova before 30.2.2, 31 before 31.2.1, and 32 before 32.1.1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-24734 - Improper Input Validation vulnerability in Apache Tomcat Native, Apache Tomcat
High remediation recipe for Improper Input Validation vulnerability in Apache Tomcat Native, Apache Tomcat. Upgrade to upgrade to versions 1.3.5 or later or 2.0.12 or later and remove the vulnerable cert-validation pattern.
CVE-2026-2447 - Heap buffer overflow in libvpx. This vulnerability was fixed in Firefox 147.0.4, Firefox ESR 140.7.1, Firefox
High remediation recipe for Heap buffer overflow in libvpx. This vulnerability was fixed in Firefox 147.0.4, Firefox ESR 140.7.1, Firefox. Upgrade to fixed in Firefox 147.0.4 and remove the vulnerable authz pattern.
CVE-2026-23169 - In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race in mptcp_pm_nl_flush_addrs
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race in mptcp_pm_nl_flush_addrs. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable dos pattern.
CVE-2026-23180 - In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: add bounds check for if_id i
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: add bounds check for if_id i. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-23185 - In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mld: cancel mlo_scan_start_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mld: cancel mlo_scan_start_. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-23193 - In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-23198 - In the Linux kernel, the following vulnerability has been resolved: KVM: Don't clobber irqfd routing type when
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: KVM: Don't clobber irqfd routing type when. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-23111 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix inverted genmask
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix inverted genmask. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2023-31313 - An unintended proxy or intermediary in the AMD power management firmware (PMFW) could allow a privileged attac
High remediation recipe for An unintended proxy or intermediary in the AMD power management firmware (PMFW) could allow a privileged attac. Upgrade to ROCm 6.4.2 and remove the vulnerable authz pattern.
CVE-2026-2004 - Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an
High remediation recipe for Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2005 - Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the oper
High remediation recipe for Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the oper. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2006 - Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to iss
High remediation recipe for Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to iss. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2007 - Heap buffer overflow in PostgreSQL pg_trgm allows a database user to achieve unknown impacts via a crafted inp
High remediation recipe for Heap buffer overflow in PostgreSQL pg_trgm allows a database user to achieve unknown impacts via a crafted inp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2020-37196 - Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the
High remediation recipe for Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2020-37197 - Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the
High remediation recipe for Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2020-37199 - NBMonitor 1.6.6.0 contains a denial of service vulnerability in its registration key input that allows attacke
High remediation recipe for NBMonitor 1.6.6.0 contains a denial of service vulnerability in its registration key input that allows attacke. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2020-37200 - NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration key input that allows att
High remediation recipe for NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration key input that allows att. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2020-37201 - NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration name input that allows at
High remediation recipe for NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration name input that allows at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2020-37204 - RemShutdown 2.9.0.0 contains a denial of service vulnerability in its registration key input that allows attac
High remediation recipe for RemShutdown 2.9.0.0 contains a denial of service vulnerability in its registration key input that allows attac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2020-37205 - RemShutdown 2.9.0.0 contains a denial of service vulnerability that allows attackers to crash the application
High remediation recipe for RemShutdown 2.9.0.0 contains a denial of service vulnerability that allows attackers to crash the application. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2020-37206 - ShareAlarmPro contains a denial of service vulnerability that allows attackers to crash the application by sup
High remediation recipe for ShareAlarmPro contains a denial of service vulnerability that allows attackers to crash the application by sup. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2020-37207 - SpotDialup 1.6.7 contains a denial of service vulnerability in the registration key input field that allows at
High remediation recipe for SpotDialup 1.6.7 contains a denial of service vulnerability in the registration key input field that allows at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2020-37208 - SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attac
High remediation recipe for SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2020-37209 - SpotFTP 3.0.0.0 contains a denial of service vulnerability in the registration name input field that allows at
High remediation recipe for SpotFTP 3.0.0.0 contains a denial of service vulnerability in the registration name input field that allows at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2020-37210 - SpotIE 2.9.5 contains a denial of service vulnerability in the registration key input that allows attackers to
High remediation recipe for SpotIE 2.9.5 contains a denial of service vulnerability in the registration key input that allows attackers to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2020-37211 - SpotIM 2.2 contains a denial of service vulnerability that allows attackers to crash the application by inputt
High remediation recipe for SpotIM 2.2 contains a denial of service vulnerability that allows attackers to crash the application by inputt. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2020-37212 - SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field that allows atta
High remediation recipe for SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field that allows atta. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-1669 - Arbitrary file read in the model loading mechanism (HDF5 integration) in Keras versions 3.0.0 through 3.13.1 o
High remediation recipe for Arbitrary file read in the model loading mechanism (HDF5 integration) in Keras versions 3.0.0 through 3.13.1 o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-1837 - A specially-crafted file can cause libjxl's decoder to write pixel data to uninitialized unallocated memory
High remediation recipe for A specially-crafted file can cause libjxl's decoder to write pixel data to uninitialized unallocated memory. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20652 - The issue was addressed with improved memory handling
High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.3 and remove the vulnerable authz pattern.
CVE-2026-26157 - A flaw was found in BusyBox. Incomplete path sanitization in its archive extraction utilities allows an attack
High remediation recipe for A flaw was found in BusyBox. Incomplete path sanitization in its archive extraction utilities allows an attack. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-26158 - A flaw was found in BusyBox. This vulnerability allows an attacker to modify files outside of the intended ext
High remediation recipe for A flaw was found in BusyBox. This vulnerability allows an attacker to modify files outside of the intended ext. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2025-35998 - Missing protection mechanism for alternate hardware interface in the Intel(R) Quick Assist Technology for some
High remediation recipe for Missing protection mechanism for alternate hardware interface in the Intel(R) Quick Assist Technology for some. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-25506 - MUNGE is an authentication service for creating and validating user credentials
High remediation recipe for MUNGE is an authentication service for creating and validating user credentials. Upgrade to fixed in 0.5.18. and remove the vulnerable authz pattern.
CVE-2026-25646 - LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network
High remediation recipe for LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network. Upgrade to fixed in 1.6.55. and remove the vulnerable dos pattern.
CVE-2026-1486 - A flaw was found in Keycloak. A vulnerability exists in the jwt-authorization-grant flow where the server fail
High remediation recipe for A flaw was found in Keycloak. A vulnerability exists in the jwt-authorization-grant flow where the server fail. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-1529 - A flaw was found in Keycloak. An attacker can exploit this vulnerability by modifying the organization ID and
High remediation recipe for A flaw was found in Keycloak. An attacker can exploit this vulnerability by modifying the organization ID and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-24678 - FreeRDP is a free implementation of the Remote Desktop Protocol
High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.22.0. and remove the vulnerable authz pattern.
CVE-2026-23074 - In the Linux kernel, the following vulnerability has been resolved: net/sched: Enforce that teql can only be u
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/sched: Enforce that teql can only be u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-25536 - MCP TypeScript SDK is the official TypeScript SDK for Model Context Protocol servers and clients
High remediation recipe for MCP TypeScript SDK is the official TypeScript SDK for Model Context Protocol servers and clients. Upgrade to version 1.10.0 to 1.25.3 and remove the vulnerable mcp-auth pattern.
CVE-2026-1530 - A flaw was found in fog-kubevirt. This vulnerability allows a remote attacker to perform a Man-in-the-Middle (
High remediation recipe for A flaw was found in fog-kubevirt. This vulnerability allows a remote attacker to perform a Man-in-the-Middle (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-1531 - A flaw was found in foreman_kubevirt. When configuring the connection to OpenShift, the system disables SSL ve
High remediation recipe for A flaw was found in foreman_kubevirt. When configuring the connection to OpenShift, the system disables SSL ve. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-1761 - A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multi
High remediation recipe for A flaw was found in libsoup. This stack-based buffer overflow vulnerability occurs during the parsing of multi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-22778 - vLLM is an inference and serving engine for large language models (LLMs)
Critical remediation recipe for vLLM is an inference and serving engine for large language models (LLMs). Upgrade to fixed in 0.14.1. and remove the vulnerable authz pattern.
CVE-2024-4027 - A flaw was found in Undertow. Servlets using a method that calls HttpServletRequestImpl.getParameterNames() ca
High remediation recipe for A flaw was found in Undertow. Servlets using a method that calls HttpServletRequestImpl.getParameterNames() ca. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-61140 - The value function in jsonpath 1.1.1 lib/index.js is vulnerable to Prototype Pollution
Critical remediation recipe for The value function in jsonpath 1.1.1 lib/index.js is vulnerable to Prototype Pollution. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable prototype-pollution pattern.
CVE-2025-61726 - The net/url package does not set a limit on the number of query parameters in a query
High remediation recipe for The net/url package does not set a limit on the number of query parameters in a query. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-21720 - Every uncached /avatar/:hash request spawns a goroutine that refreshes the Gravatar image
High remediation recipe for Every uncached /avatar/:hash request spawns a goroutine that refreshes the Gravatar image. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-21721 - The dashboard permissions API does not verify the target dashboard scope and only checks the dashboards.permis
High remediation recipe for The dashboard permissions API does not verify the target dashboard scope and only checks the dashboards.permis. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-24869 - Use-after-free in the Layout: Scrolling and Overflow component
High remediation recipe for Use-after-free in the Layout: Scrolling and Overflow component. Upgrade to fixed in Firefox 147.0.2. and remove the vulnerable authz pattern.
CVE-2026-24881 - In GnuPG before 2.5.17, a crafted CMS (S/MIME) EnvelopedData message carrying an oversized wrapped session key
High remediation recipe for In GnuPG before 2.5.17, a crafted CMS (S/MIME) EnvelopedData message carrying an oversized wrapped session key. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-24882 - In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the PKDECRYPT co
High remediation recipe for In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the PKDECRYPT co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-14459 - A flaw was found in KubeVirt Containerized Data Importer (CDI)
High remediation recipe for A flaw was found in KubeVirt Containerized Data Importer (CDI). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-23864 - Multiple denial of service vulnerabilities exist in React Server Components, affecting the following packages:
High remediation recipe for Multiple denial of service vulnerabilities exist in React Server Components, affecting the following packages:. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-15059 - GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
High remediation recipe for GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-0603 - A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injectio
High remediation recipe for A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQL injectio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-1260 - Invalid memory access in Sentencepiece versions less than 0.2.1 when using a vulnerable model file, which is n
High remediation recipe for Invalid memory access in Sentencepiece versions less than 0.2.1 when using a vulnerable model file, which is n. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-20736 - Gitea does not properly verify repository context when deleting attachments
High remediation recipe for Gitea does not properly verify repository context when deleting attachments. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-13878 - Malformed BRID/HHIT records can cause named to terminate unexpectedly
High remediation recipe for Malformed BRID/HHIT records can cause named to terminate unexpectedly. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-22822 - External Secrets Operator reads information from a third-party service and automatically injects the values as
High remediation recipe for External Secrets Operator reads information from a third-party service and automatically injects the values as. Upgrade to version 0.20.2 and prior to version 1.2.0 and remove the vulnerable command-injection pattern.
CVE-2026-24046 - Backstage is an open framework for building developer portals
High remediation recipe for Backstage is an open framework for building developer portals. Upgrade to fixed in and remove the vulnerable path-traversal pattern.
CVE-2026-22797 - An issue was discovered in OpenStack keystonemiddleware 10.5 through 10.7 before 10.7.2, 10.8 and 10.9 before
Critical remediation recipe for An issue was discovered in OpenStack keystonemiddleware 10.5 through 10.7 before 10.7.2, 10.8 and 10.9 before. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-23530 - FreeRDP is a free implementation of the Remote Desktop Protocol
Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.
CVE-2026-23531 - FreeRDP is a free implementation of the Remote Desktop Protocol
Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.
CVE-2026-23532 - FreeRDP is a free implementation of the Remote Desktop Protocol
Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.
CVE-2026-23533 - FreeRDP is a free implementation of the Remote Desktop Protocol
Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.
CVE-2026-23534 - FreeRDP is a free implementation of the Remote Desktop Protocol
Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.
CVE-2026-23883 - FreeRDP is a free implementation of the Remote Desktop Protocol
Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.
CVE-2026-23884 - FreeRDP is a free implementation of the Remote Desktop Protocol
Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.21.0 and remove the vulnerable dos pattern.
CVE-2021-47814 - NBMonitor 1.6.8 contains a denial of service vulnerability that allows attackers to crash the application by o
High remediation recipe for NBMonitor 1.6.8 contains a denial of service vulnerability that allows attackers to crash the application by o. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-0532 - External Control of File Name or Path (CWE-73) combined with Server-Side Request Forgery (CWE-918) can allow a
High remediation recipe for External Control of File Name or Path (CWE-73) combined with Server-Side Request Forgery (CWE-918) can allow a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-22853 - FreeRDP is a free implementation of the Remote Desktop Protocol
Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.20.1. and remove the vulnerable authz pattern.
CVE-2026-22855 - FreeRDP is a free implementation of the Remote Desktop Protocol
Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.20.1. and remove the vulnerable authz pattern.
CVE-2026-22858 - FreeRDP is a free implementation of the Remote Desktop Protocol
Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.20.1. and remove the vulnerable authz pattern.
CVE-2026-22859 - FreeRDP is a free implementation of the Remote Desktop Protocol
Critical remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to fixed in 3.20.1. and remove the vulnerable authz pattern.
CVE-2025-71089 - In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIG_X86 is set
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIG_X86 is set. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-0877 - Mitigation bypass in the DOM: Security component
High remediation recipe for Mitigation bypass in the DOM: Security component. Upgrade to fixed in Firefox 147 and remove the vulnerable authz pattern.
CVE-2026-0878 - Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component
High remediation recipe for Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. Upgrade to fixed in Firefox 147 and remove the vulnerable authz pattern.
CVE-2026-0879 - Sandbox escape due to incorrect boundary conditions in the Graphics component
Critical remediation recipe for Sandbox escape due to incorrect boundary conditions in the Graphics component. Upgrade to fixed in Firefox 147 and remove the vulnerable authz pattern.
CVE-2026-0880 - Sandbox escape due to integer overflow in the Graphics component
High remediation recipe for Sandbox escape due to integer overflow in the Graphics component. Upgrade to fixed in Firefox 147 and remove the vulnerable authz pattern.
CVE-2026-0881 - Sandbox escape in the Messaging System component
Critical remediation recipe for Sandbox escape in the Messaging System component. Upgrade to fixed in Firefox 147 and Thunderbird 147. and remove the vulnerable authz pattern.
CVE-2026-0882 - Use-after-free in the IPC component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox
High remediation recipe for Use-after-free in the IPC component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox. Upgrade to fixed in Firefox 147 and remove the vulnerable authz pattern.
CVE-2026-0891 - Memory safety bugs present in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146
High remediation recipe for Memory safety bugs present in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146. Upgrade to fixed in Firefox 147 and remove the vulnerable authz pattern.
CVE-2025-15514 - Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability in the multi
High remediation recipe for Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability in the multi. Upgrade to version 0.13.5 contain a null pointer dereference vulnerability in t and remove the vulnerable dos pattern.
CVE-2025-68493 - Missing XML Validation vulnerability in Apache Struts, Apache Struts
High remediation recipe for Missing XML Validation vulnerability in Apache Struts, Apache Struts. Upgrade to upgrade to version 6.1.1 and remove the vulnerable authz pattern.
CVE-2025-61686 - React Router is a router for React. In @react-router/node versions 7.0.0 through 7.9.3, @remix-run/deno prior
Critical remediation recipe for React Router is a router for React. In @react-router/node versions 7.0.0 through 7.9.3, @remix-run/deno prior. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-13761 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.3, and 18.7 before
High remediation recipe for GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.3, and 18.7 before. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-13772 - GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.5.5, 18.6 before 18.6.3
High remediation recipe for GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.5.5, 18.6 before 18.6.3. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-9222 - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2.2 before 18.5.5, 18.6 before 1
High remediation recipe for GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2.2 before 18.5.5, 18.6 before 1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2025-50334 - An issue in Technitium DNS Server v.13.5 allows a remote attacker to cause a denial of service via the rate-li
High remediation recipe for An issue in Technitium DNS Server v.13.5 allows a remote attacker to cause a denial of service via the rate-li. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-0719 - A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME and other
High remediation recipe for A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME and other. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-22184 - zlib versions up to and including 1.3.1.2 include a global buffer overflow in the untgz utility located under
High remediation recipe for zlib versions up to and including 1.3.1.2 include a global buffer overflow in the untgz utility located under. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-67268 - gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/driver_nmea2
Critical remediation recipe for gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/driver_nmea2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-67269 - An integer underflow vulnerability exists in the nextstate() function in gpsd/packet.c of gpsd versions pr
High remediation recipe for An integer underflow vulnerability exists in the nextstate() function in gpsd/packet.c of gpsd versions pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-2515 - A vulnerability was found in BlueChi, a multi-node systemd service controller used in RHIVOS
High remediation recipe for A vulnerability was found in BlueChi, a multi-node systemd service controller used in RHIVOS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-68263 - In the Linux kernel, the following vulnerability has been resolved: ksmbd: ipc: fix use-after-free in ipc_msg_
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ksmbd: ipc: fix use-after-free in ipc_msg_. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2025-14523 - A flaw in libsoup’s HTTP header handling allows multiple Host: headers in a request and returns the last occur
High remediation recipe for A flaw in libsoup’s HTTP header handling allows multiple Host: headers in a request and returns the last occur. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-66287 - A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to i
High remediation recipe for A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-13947 - A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can
High remediation recipe for A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-13601 - A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the
High remediation recipe for A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-13502 - A flaw was found in WebKitGTK and WPE WebKit
High remediation recipe for A flaw was found in WebKitGTK and WPE WebKit. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-13609 - A vulnerability has been identified in keylime where an attacker can exploit this flaw by registering a new ag
High remediation recipe for A vulnerability has been identified in keylime where an attacker can exploit this flaw by registering a new ag. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-41115 - SCIM provisioning was introduced in Grafana Enterprise and Grafana Cloud in April to improve how organizations
Critical remediation recipe for SCIM provisioning was introduced in Grafana Enterprise and Grafana Cloud in April to improve how organizations. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable supply-chain pattern.
CVE-2025-61662 - A Use-After-Free vulnerability has been discovered in GRUB's gettext module
High remediation recipe for A Use-After-Free vulnerability has been discovered in GRUB's gettext module. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-59088 - If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration,
High remediation recipe for If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2025-30398 - Missing authorization in Nuance PowerScribe allows an unauthorized attacker to disclose information over a net
High remediation recipe for Missing authorization in Nuance PowerScribe allows an unauthorized attacker to disclose information over a net. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-10230 - A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are pa
Critical remediation recipe for A flaw was found in Samba, in the front-end WINS hook handling: NetBIOS names from registration packets are pa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-43433 - The issue was addressed with improved memory handling
High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 26.1 and remove the vulnerable authz pattern.
CVE-2025-62230 - A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client resource cleanup
High remediation recipe for A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client resource cleanup. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-62231 - A flaw was identified in the X.Org X server’s X Keyboard (Xkb) extension where improper bounds checking in the
High remediation recipe for A flaw was identified in the X.Org X server’s X Keyboard (Xkb) extension where improper bounds checking in the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-40082 - In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hf
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hf. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable memory-corruption pattern.
CVE-2025-12105 - A flaw was found in the asynchronous message queue handling of the libsoup library, widely used by GNOME and W
High remediation recipe for A flaw was found in the asynchronous message queue handling of the libsoup library, widely used by GNOME and W. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2023-53673 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: call disconnect call
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: call disconnect call. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2025-11021 - A flaw was found in the cookie date handling logic of the libsoup HTTP library, widely used by GNOME and other
High remediation recipe for A flaw was found in the cookie date handling logic of the libsoup HTTP library, widely used by GNOME and other. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-9900 - A flaw was found in Libtiff. This vulnerability is a write-what-where condition, triggered when the library
High remediation recipe for A flaw was found in Libtiff. This vulnerability is a write-what-where condition, triggered when the library. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2025-5962 - A flaw was found in the Lightspeed history service
High remediation recipe for A flaw was found in the Lightspeed history service. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-4953 - A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during
High remediation recipe for A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-9566 - There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when
High remediation recipe for There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-8067 - A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-B
High remediation recipe for A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-B. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2023-32256 - A flaw was found in the Linux kernel's ksmbd component
High remediation recipe for A flaw was found in the Linux kernel's ksmbd component. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-31277 - The issue was addressed with improved memory handling
High remediation recipe for The issue was addressed with improved memory handling. Upgrade to fixed in Safari 18.6 and remove the vulnerable authz pattern.
CVE-2025-4056 - A flaw was found in GLib. A denial of service on Windows platforms may occur if an application attempts to spa
High remediation recipe for A flaw was found in GLib. A denial of service on Windows platforms may occur if an application attempts to spa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-6018 - A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Auth
High remediation recipe for A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Auth. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-23266 - NVIDIA Container Toolkit for all platforms contains a vulnerability in some hooks used to initialize the conta
Critical remediation recipe for NVIDIA Container Toolkit for all platforms contains a vulnerability in some hooks used to initialize the conta. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-6965 - There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed
High remediation recipe for There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed. Upgrade to version 3.50.2 or above. and remove the vulnerable authz pattern.
CVE-2025-7424 - A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input da
High remediation recipe for A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input da. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-7425 - A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts interna
High remediation recipe for A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts interna. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-7345 - A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’
High remediation recipe for A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-5318 - A flaw was found in the libssh library in versions less than 0.11.2
High remediation recipe for A flaw was found in the libssh library in versions less than 0.11.2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-6019 - A Local Privilege Escalation (LPE) vulnerability was found in libblockdev
High remediation recipe for A Local Privilege Escalation (LPE) vulnerability was found in libblockdev. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-4404 - A privilege escalation from host to domain vulnerability was found in the FreeIPA project
Critical remediation recipe for A privilege escalation from host to domain vulnerability was found in the FreeIPA project. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-49176 - A flaw was found in the Big Requests extension
High remediation recipe for A flaw was found in the Big Requests extension. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-49179 - A flaw was found in the X Record extension
High remediation recipe for A flaw was found in the X Record extension. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-49180 - A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validat
High remediation recipe for A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-6020 - A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper pr
High remediation recipe for A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2025-49794 - A use-after-free vulnerability was found in libxml2
Critical remediation recipe for A use-after-free vulnerability was found in libxml2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-49795 - A NULL pointer dereference vulnerability was found in libxml2 when processing XPath XML expressions
High remediation recipe for A NULL pointer dereference vulnerability was found in libxml2 when processing XPath XML expressions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-49796 - A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger
Critical remediation recipe for A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-6021 - A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can
High remediation recipe for A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-5914 - A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar
High remediation recipe for A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-48796 - A flaw was found in GIMP. The GIMP ani_load_image() function is vulnerable to a stack-based overflow
High remediation recipe for A flaw was found in GIMP. The GIMP ani_load_image() function is vulnerable to a stack-based overflow. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-48797 - A flaw was found in GIMP when processing certain TGA image files
High remediation recipe for A flaw was found in GIMP when processing certain TGA image files. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-48798 - A flaw was found in GIMP when processing XCF image files
High remediation recipe for A flaw was found in GIMP when processing XCF image files. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-5222 - A stack buffer overflow was found in Internationl components for unicode (ICU )
High remediation recipe for A stack buffer overflow was found in Internationl components for unicode (ICU ). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-5024 - A flaw was found in gnome-remote-desktop
High remediation recipe for A flaw was found in gnome-remote-desktop. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-37924 - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in kerberos auth
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in kerberos auth. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2025-31223 - The issue was addressed with improved checks
High remediation recipe for The issue was addressed with improved checks. Upgrade to fixed in Safari 18.5 and remove the vulnerable authz pattern.
CVE-2025-37822 - In the Linux kernel, the following vulnerability has been resolved: riscv: uprobes: Add missing fence.i after
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: riscv: uprobes: Add missing fence.i after. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2025-37778 - In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix dangling pointer in krb_authent
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix dangling pointer in krb_authent. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2025-3891 - A flaw was found in the mod_auth_openidc module for Apache httpd
High remediation recipe for A flaw was found in the mod_auth_openidc module for Apache httpd. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-46397 - A flaw was found in xfig. This vulnerability allows possible code execution via local input manipulation via b
High remediation recipe for A flaw was found in xfig. This vulnerability allows possible code execution via local input manipulation via b. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-32911 - A use-after-free type vulnerability was found in libsoup, in the soup_message_headers_get_content_disposition(
Critical remediation recipe for A use-after-free type vulnerability was found in libsoup, in the soup_message_headers_get_content_disposition(. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-32906 - A flaw was found in libsoup, where the soup_headers_parse_request() function may be vulnerable to an out-of-bo
High remediation recipe for A flaw was found in libsoup, where the soup_headers_parse_request() function may be vulnerable to an out-of-bo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-32908 - A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers
High remediation recipe for A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-32913 - A flaw was found in libsoup, where the soup_message_headers_get_content_disposition() function is vulnerable t
High remediation recipe for A flaw was found in libsoup, where the soup_message_headers_get_content_disposition() function is vulnerable t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-32914 - A flaw was found in libsoup, where the soup_multipart_new_from_message() function is vulnerable to an out-of-b
High remediation recipe for A flaw was found in libsoup, where the soup_multipart_new_from_message() function is vulnerable to an out-of-b. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-2784 - A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via th
High remediation recipe for A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-3155 - A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary script
High remediation recipe for A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary script. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-32049 - A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause
High remediation recipe for A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message, which may cause. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-24196 - A type confusion issue was addressed with improved memory handling
High remediation recipe for A type confusion issue was addressed with improved memory handling. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-24207 - A permissions issue was addressed with additional restrictions
Critical remediation recipe for A permissions issue was addressed with additional restrictions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-24211 - This issue was addressed with improved memory handling
Critical remediation recipe for This issue was addressed with improved memory handling. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-24246 - An injection issue was addressed with improved validation
Critical remediation recipe for An injection issue was addressed with improved validation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-24250 - This issue was addressed with improved access restrictions
Critical remediation recipe for This issue was addressed with improved access restrictions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-24253 - This issue was addressed with improved handling of symlinks
Critical remediation recipe for This issue was addressed with improved handling of symlinks. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2025-31183 - The issue was addressed with improved restriction of data container access
Critical remediation recipe for The issue was addressed with improved restriction of data container access. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2024-8176 - A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive entity expan
High remediation recipe for A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive entity expan. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-23368 - A flaw was found in Wildfly Elytron integration
High remediation recipe for A flaw was found in Wildfly Elytron integration. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2024-45782 - A flaw was found in the HFS filesystem. When reading an HFS volume's name at grub_fs_mount(), the HFS filesyst
High remediation recipe for A flaw was found in the HFS filesystem. When reading an HFS volume's name at grub_fs_mount(), the HFS filesyst. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-0678 - A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module uses user-con
High remediation recipe for A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module uses user-con. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-0689 - When reading data from disk, the grub's UDF filesystem module utilizes the user controlled data length metadat
High remediation recipe for When reading data from disk, the grub's UDF filesystem module utilizes the user controlled data length metadat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2025-1125 - When reading data from a hfs filesystem, grub's hfs filesystem module uses user-controlled parameters from the
High remediation recipe for When reading data from a hfs filesystem, grub's hfs filesystem module uses user-controlled parameters from the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2025-26988 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozy Vis
Critical remediation recipe for Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozy Vis. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-26594 - A use-after-free flaw was found in X.Org and Xwayland
High remediation recipe for A use-after-free flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-26595 - A buffer overflow flaw was found in X.Org and Xwayland
High remediation recipe for A buffer overflow flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-26596 - A heap overflow flaw was found in X.Org and Xwayland
High remediation recipe for A heap overflow flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-26597 - A buffer overflow flaw was found in X.Org and Xwayland
High remediation recipe for A buffer overflow flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-26598 - An out-of-bounds write flaw was found in X.Org and Xwayland
High remediation recipe for An out-of-bounds write flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-26599 - An access to an uninitialized pointer flaw was found in X.Org and Xwayland
High remediation recipe for An access to an uninitialized pointer flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-26600 - A use-after-free flaw was found in X.Org and Xwayland
High remediation recipe for A use-after-free flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-26601 - A use-after-free flaw was found in X.Org and Xwayland
High remediation recipe for A use-after-free flaw was found in X.Org and Xwayland. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-0624 - A flaw was found in grub2. During the network boot process, when trying to search for the configuration file,
High remediation recipe for A flaw was found in grub2. During the network boot process, when trying to search for the configuration file,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-1244 - A command injection flaw was found in the text editor Emacs
High remediation recipe for A command injection flaw was found in the text editor Emacs. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2024-11218 - A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using
High remediation recipe for A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2024-45331 - A incorrect privilege assignment vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.3, FortiAnalyzer 7
High remediation recipe for A incorrect privilege assignment vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.3, FortiAnalyzer 7. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2024-12084 - A heap-based buffer overflow flaw was found in the rsync daemon
Critical remediation recipe for A heap-based buffer overflow flaw was found in the rsync daemon. Upgrade to fixed SUM_LENGTH and remove the vulnerable authz pattern.
CVE-2024-12085 - A flaw was found in rsync which could be triggered when rsync compares file checksums
High remediation recipe for A flaw was found in rsync which could be triggered when rsync compares file checksums. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2024-48884 - A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet For
High remediation recipe for A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet For. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2025-0306 - A vulnerability was found in Ruby. The Ruby interpreter is vulnerable to the Marvin Attack
High remediation recipe for A vulnerability was found in Ruby. The Ruby interpreter is vulnerable to the Marvin Attack. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2024-9675 - A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the
High remediation recipe for A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2024-8418 - A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processi
High remediation recipe for A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2024-21522 - All versions of the package audify are vulnerable to Improper Validation of Array Index when frameSize is prov
High remediation recipe for All versions of the package audify are vulnerable to Improper Validation of Array Index when frameSize is prov. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2024-21523 - All versions of the package images are vulnerable to Denial of Service (DoS) due to providing unexpected input
High remediation recipe for All versions of the package images are vulnerable to Denial of Service (DoS) due to providing unexpected input. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2024-23667 - An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana
High remediation recipe for An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2024-23668 - An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana
High remediation recipe for An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2024-23670 - An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana
High remediation recipe for An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, FortiWebMana. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2024-35862 - In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_is_
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_is_. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2024-3727 - A flaw was found in the github.com/containers/image library
High remediation recipe for A flaw was found in the github.com/containers/image library. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2024-22257 - In Spring Security, versions 5.7.x prior to 5.7.12, 5.8.x prior to 5.8.11, versions 6.0.x prior to 6.0.9, vers
High remediation recipe for In Spring Security, versions 5.7.x prior to 5.7.12, 5.8.x prior to 5.8.11, versions 6.0.x prior to 6.0.9, vers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2023-42789 - A out-of-bounds write vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2.5, Fort
Critical remediation recipe for A out-of-bounds write vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2.5, Fort. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2023-42790 - A stack-based buffer overflow vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2
High remediation recipe for A stack-based buffer overflow vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2024-21626 - runc is a CLI tool for spawning and running containers on Linux according to the OCI specification
High remediation recipe for runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2023-40547 - A remote code execution vulnerability was found in Shim
High remediation recipe for A remote code execution vulnerability was found in Shim. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2023-38950 - A path traversal vulnerability in the iclock API of ZKTeco BioTime v8.5.5 allows unauthenticated attackers to
High remediation recipe for A path traversal vulnerability in the iclock API of ZKTeco BioTime v8.5.5 allows unauthenticated attackers to. Upgrade to fixed in version 9.0.120240617.19506 of ZKBioTime. and remove the vulnerable path-traversal pattern.
CVE-2023-3640 - A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU d
High remediation recipe for A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU d. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2023-2373 - A vulnerability was identified in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6
High remediation recipe for A vulnerability was identified in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2023-2374 - A security flaw has been discovered in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6
High remediation recipe for A security flaw has been discovered in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2023-2375 - A weakness has been identified in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6
High remediation recipe for A weakness has been identified in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2023-2376 - A security vulnerability has been detected in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6
High remediation recipe for A security vulnerability has been detected in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2023-2377 - A vulnerability was detected in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6
High remediation recipe for A vulnerability was detected in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2023-2378 - A flaw has been found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6
High remediation recipe for A flaw has been found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2022-30065 - A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when pr
High remediation recipe for A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when pr. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2022-26258 - D-Link DIR-820L 1.05B03 was discovered to contain remote command execution (RCE) vulnerability via HTTP POST t
Critical remediation recipe for D-Link DIR-820L 1.05B03 was discovered to contain remote command execution (RCE) vulnerability via HTTP POST t. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2021-42237 - Sitecore XP 7.5 Initial Release to Sitecore XP 8.2 Update-7 is vulnerable to an insecure deserialization attac
Critical remediation recipe for Sitecore XP 7.5 Initial Release to Sitecore XP 8.2 Update-7 is vulnerable to an insecure deserialization attac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2021-29441 - Nacos is a platform designed for dynamic service discovery and configuration and service management
High remediation recipe for Nacos is a platform designed for dynamic service discovery and configuration and service management. Upgrade to version 1.4.1 and remove the vulnerable authz pattern.
CVE-2020-24881 - SSRF exists in osTicket before 1.14.3, where an attacker can add malicious file to server or perform port scan
Critical remediation recipe for SSRF exists in osTicket before 1.14.3, where an attacker can add malicious file to server or perform port scan. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2020-26867 - ARC Informatique PcVue prior to version 12.0.17 is vulnerable due to the deserialization of untrusted data, wh
Critical remediation recipe for ARC Informatique PcVue prior to version 12.0.17 is vulnerable due to the deserialization of untrusted data, wh. Upgrade to version 12.0.17 is vulnerable due to the deserialization of untruste and remove the vulnerable deserialization pattern.
CVE-2020-26868 - ARC Informatique PcVue prior to version 12.0.17 is vulnerable to a denial-of-service attack due to the ability
High remediation recipe for ARC Informatique PcVue prior to version 12.0.17 is vulnerable to a denial-of-service attack due to the ability. Upgrade to version 12.0.17 is vulnerable to a denial-of-service attack due to t and remove the vulnerable authz pattern.
CVE-2020-26869 - ARC Informatique PcVue prior to version 12.0.17 is vulnerable to information exposure, allowing unauthorized u
High remediation recipe for ARC Informatique PcVue prior to version 12.0.17 is vulnerable to information exposure, allowing unauthorized u. Upgrade to version 12.0.17 is vulnerable to information exposure and remove the vulnerable authz pattern.
CVE-2019-14749 - An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1
High remediation recipe for An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2018-10902 - It was found that the raw midi kernel driver does not protect against concurrent access which leads to a doubl
High remediation recipe for It was found that the raw midi kernel driver does not protect against concurrent access which leads to a doubl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2018-1259 - Spring Data Commons, versions 1.13 prior to 1.13.12 and 2.0 prior to 2.0.7, used in combination with XMLBeam 1
High remediation recipe for Spring Data Commons, versions 1.13 prior to 1.13.12 and 2.0 prior to 2.0.7, used in combination with XMLBeam 1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2018-1274 - Spring Data Commons, versions 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a propert
High remediation recipe for Spring Data Commons, versions 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a propert. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2018-1273 - Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain
Critical remediation recipe for Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2018-7195 - Enhancesoft osTicket before 1.10.2 allows remote attackers to reset arbitrary passwords (when an associated e-
High remediation recipe for Enhancesoft osTicket before 1.10.2 allows remote attackers to reset arbitrary passwords (when an associated e-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2016-6650 - EMC RecoverPoint versions prior to 5.0 and EMC RecoverPoint for Virtual Machines versions prior to 5.0 have an
High remediation recipe for EMC RecoverPoint versions prior to 5.0 and EMC RecoverPoint for Virtual Machines versions prior to 5.0 have an. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
general/source7 recipes
CVE-2026-13547 - Hanwang e-Face General Management Platform 6 unrestricted file upload
High unrestricted file upload in Hanwang e-Face General Management Platform 6. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-11703 - Missing SNI/ALPN binding on TLS session binding bypass
High TLS session binding bypass in Missing SNI/ALPN binding on. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-6325 - Out-of-bounds write in SetSuitesHashSigAlgo out-of-bounds write
High out-of-bounds write in Out-of-bounds write in SetSuitesHashSigAlgo. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-6731 - X.509 name constraint bypass certificate constraint bypass
High certificate constraint bypass in X.509 name constraint bypass. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-7511 - PKCS7_verify signer confusion allows signature verification bypass
High signature verification bypass in PKCS7_verify signer confusion allows. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2024-54013 - Penetration Testing engineers at security control bypass
High security control bypass in Penetration Testing engineers at. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-3256 - HTTP Session versions before security control bypass
Critical security control bypass in HTTP Session versions before. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
github-actions/supply-chain1 recipe
go133 recipes
CVE-2026-50551 - SiYuan: Stored XSS to RCE via Unsanitized Attribute View Asset Cell Content
Critical remediation recipe for SiYuan: Stored XSS to RCE via Unsanitized Attribute View Asset Cell Content. Upgrade to 0.0.0-20260628153353-2d5d72223df4 and remove the vulnerable command-injection pattern.
CVE-2026-54063 - Excelize: Unbounded Row Index Allocation in Worksheet Parser (checkSheet OOM/Panic DoS)
High remediation recipe for Excelize: Unbounded Row Index Allocation in Worksheet Parser (checkSheet OOM/Panic DoS). Upgrade to 2.11.0 and remove the vulnerable dos pattern.
CVE-2026-54066 - SiYuan: Path Traversal via Double URL Encoding in /assets/*path (publish mode arbitrary file─read), Incomplete fix of CV
High remediation recipe for SiYuan: Path Traversal via Double URL Encoding in /assets/*path (publish mode arbitrary file─read), Incomplete fix of CV. Upgrade to 0.0.0-20260628153353-2d5d72223df4 and remove the vulnerable path-traversal pattern.
CVE-2026-54067 - SiYuan: Stored XSS to RCE via CSS-snippet <style> breakout in renderSnippet()
Critical remediation recipe for SiYuan: Stored XSS to RCE via CSS-snippet <style> breakout in renderSnippet(). Upgrade to 0.0.0-20260628153353-2d5d72223df4 and remove the vulnerable command-injection pattern.
CVE-2026-54069 - SiYuan: Unauthenticated Admin API Access via Blanket chrome-extension:// Origin Allowlist
Critical remediation recipe for SiYuan: Unauthenticated Admin API Access via Blanket chrome-extension:// Origin Allowlist. Upgrade to 0.0.0-20260628153353-2d5d72223df4 and remove the vulnerable authz pattern.
CVE-2026-54070 - SiYuan: Stored XSS in Bazaar marketplace via package README event handlers
High remediation recipe for SiYuan: Stored XSS in Bazaar marketplace via package README event handlers. Upgrade to 0.0.0-20260628153353-2d5d72223df4 and remove the vulnerable xss pattern.
CVE-2026-54072 - Authorizer: Unvalidated redirect_uri in /authorize leaks OAuth2 tokens to attacker-controlled URL
Critical remediation recipe for Authorizer: Unvalidated redirect_uri in /authorize leaks OAuth2 tokens to attacker-controlled URL. Upgrade to 0.0.0-20260409051328-bd3f5baf6d3d and remove the vulnerable mcp-auth pattern.
CVE-2026-54088 - File Browser: Command Injection via Authentication Hook Shell Substitution (Pre-Authentication RCE)
Critical remediation recipe for File Browser: Command Injection via Authentication Hook Shell Substitution (Pre-Authentication RCE). Upgrade to 2.63.6 and remove the vulnerable command-injection pattern.
CVE-2026-54089 - File Browser: Authentication Bypass via Proxy Auth Header Forgery
Critical remediation recipe for File Browser: Authentication Bypass via Proxy Auth Header Forgery. Upgrade to Vendor-fixed release and remove the vulnerable auth-bypass pattern.
CVE-2026-54158 - SiYuan: Stored XSS to RCE via attribute-view cell rendering in genAVValueHTML()
Critical remediation recipe for SiYuan: Stored XSS to RCE via attribute-view cell rendering in genAVValueHTML(). Upgrade to 0.0.0-20260628153353-2d5d72223df4 and remove the vulnerable command-injection pattern.
CVE-2026-54174 - melange: Incomplete package integrity verification allows data section substitution
High remediation recipe for melange: Incomplete package integrity verification allows data section substitution. Upgrade to 0.50.4, 1.2.9 and remove the vulnerable authz pattern.
CVE-2026-55229 - Gotenberg is a Docker-powered stateless API for PDF files
High remediation recipe for Gotenberg is a Docker-powered stateless API for PDF files. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55882 - Tilt defines dev environments as code for microservice apps on Kubernetes
High remediation recipe for Tilt defines dev environments as code for microservice apps on Kubernetes. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56254 - In @capgo/capacitor-updater (Cap-go/capgo) before 12.128.2, the end-to-end encryption scheme distributes the p
High remediation recipe for In @capgo/capacitor-updater (Cap-go/capgo) before 12.128.2, the end-to-end encryption scheme distributes the p. Upgrade to 12.128.2 and remove the vulnerable crypto pattern.
CVE-2026-56261 - Crawl4AI before 0.8.7 contains a server-side request forgery (SSRF) vulnerability in the Docker API server's /
Critical remediation recipe for Crawl4AI before 0.8.7 contains a server-side request forgery (SSRF) vulnerability in the Docker API server's /. Upgrade to 0.8.7 and remove the vulnerable ssrf pattern.
CVE-2026-56279 - Capgo before 12.128.2 contains an information disclosure vulnerability in the get_orgs_v7(userid) RPC function
High remediation recipe for Capgo before 12.128.2 contains an information disclosure vulnerability in the get_orgs_v7(userid) RPC function. Upgrade to 12.128.2 and remove the vulnerable authz pattern.
CVE-2026-56305 - Capgo before 12.128.2 contains an authentication bypass vulnerability in the password change endpoint that all
High remediation recipe for Capgo before 12.128.2 contains an authentication bypass vulnerability in the password change endpoint that all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-56335 - Capgo before 12.128.2 contains an authorization bypass vulnerability where write-scoped API keys can directly
High remediation recipe for Capgo before 12.128.2 contains an authorization bypass vulnerability where write-scoped API keys can directly. Upgrade to 12.128.2 and remove the vulnerable authz pattern.
CVE-2026-59161 - Excelize is a Go language library for reading and writing Microsoft Excel spreadsheets
High remediation recipe for Excelize is a Go language library for reading and writing Microsoft Excel spreadsheets. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50553 - Note Mark: Path traversal via unsanitized book/note slug in migrate export (sibling of GHSA-g49p)
High remediation recipe for Note Mark: Path traversal via unsanitized book/note slug in migrate export (sibling of GHSA-g49p). Upgrade to 0.0.0-20260601210719-67b7de04308a and remove the vulnerable path-traversal pattern.
CVE-2026-59726 - Ruflo is an agent meta-harness for Claude Code and Codex
Critical remediation recipe for Ruflo is an agent meta-harness for Claude Code and Codex. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59832 - SiYuan is an open-source personal knowledge management system
High remediation recipe for SiYuan is an open-source personal knowledge management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-50197 - Skipper: opaAuthorizeRequestWithBody filter bypasses OPA policy on Transfer-Encoding — chunked / HTTP/2 requests
High remediation recipe for Skipper: opaAuthorizeRequestWithBody filter bypasses OPA policy on Transfer-Encoding — chunked / HTTP/2 requests. Upgrade to 0.26.10 and remove the vulnerable command-injection pattern.
CVE-2026-52831 - Nuclio: Unsanitized cron trigger event headers/body injected into CronJob shell command leads to persistent RCE
Critical remediation recipe for Nuclio: Unsanitized cron trigger event headers/body injected into CronJob shell command leads to persistent RCE. Upgrade to 0.0.0-20260601075854-3356b86a8bfa and remove the vulnerable command-injection pattern.
CVE-2026-53649 - Joro: Unauthenticated Cross-Origin Plugin Upload Leads to RCE
Critical remediation recipe for Joro: Unauthenticated Cross-Origin Plugin Upload Leads to RCE. Upgrade to 0.0.0-20260601151442-5c0ca35db828 and remove the vulnerable command-injection pattern.
CVE-2026-54784 - CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core
High remediation recipe for CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33655 - New API: SSRF Protection Bypass via Unresolved Hostname in Notification URLs
High remediation recipe for New API: SSRF Protection Bypass via Unresolved Hostname in Notification URLs. Upgrade to 0.12.0-alpha.1 and remove the vulnerable command-injection pattern.
CVE-2026-53552 - Goploy: Cross-namespace IDOR and RCE via body-supplied row id in project and project_file handlers
Critical remediation recipe for Goploy: Cross-namespace IDOR and RCE via body-supplied row id in project and project_file handlers. Upgrade to Vendor-fixed release and remove the vulnerable command-injection pattern.
CVE-2026-53553 - Goploy: Arbitrary File Read via Path Traversal in /deploy/fileDiff allows Remote Server Compromise
High remediation recipe for Goploy: Arbitrary File Read via Path Traversal in /deploy/fileDiff allows Remote Server Compromise. Upgrade to Vendor-fixed release and remove the vulnerable command-injection pattern.
CVE-2026-20896 - Gitea Docker image versions up to and including 1.26.2 use REVERSE_PROXY_TRUSTED_PROXIES=* by default, allowin
Critical remediation recipe for Gitea Docker image versions up to and including 1.26.2 use REVERSE_PROXY_TRUSTED_PROXIES=* by default, allowin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-44454 - Coder vulnerable to workspace auto-creation via crafted URL parameters without user consent
High remediation recipe for Coder vulnerable to workspace auto-creation via crafted URL parameters without user consent. Upgrade to 2.29.7, 2.30.2 and remove the vulnerable command-injection pattern.
CVE-2026-14363 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in The Wiki
Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in The Wiki. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-53488 - containerd is an open-source container runtime
High remediation recipe for containerd is an open-source container runtime. Upgrade to fixed in versions 1.7.33 and remove the vulnerable command-injection pattern.
CVE-2026-58521 - Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in The Wiki
Critical remediation recipe for Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in The Wiki. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-27957 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases
High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to fixed in 4.0.0-beta.464. and remove the vulnerable command-injection pattern.
CVE-2026-49478 - Fulcio has OIDC Discovery Redirect Following Allows SSRF and JWKS Substitution for Meta-Issuer Paths, with Kubernetes Se
High remediation recipe for Fulcio has OIDC Discovery Redirect Following Allows SSRF and JWKS Substitution for Meta-Issuer Paths, with Kubernetes Se. Upgrade to 1.8.6 and remove the vulnerable ssrf pattern.
CVE-2026-49821 - Fission: Cross-namespace Environment reference in Package allows build-time command execution and SA token exfiltration
High remediation recipe for Fission: Cross-namespace Environment reference in Package allows build-time command execution and SA token exfiltration. Upgrade to 1.24.0 and remove the vulnerable ssrf pattern.
CVE-2026-49822 - Fission: Cross-namespace event leakage via KubernetesWatchTrigger allows persistent tenant surveillance
High remediation recipe for Fission: Cross-namespace event leakage via KubernetesWatchTrigger allows persistent tenant surveillance. Upgrade to 1.24.0 and remove the vulnerable command-injection pattern.
CVE-2026-49823 - Fission: Cross-namespace Package read via unvalidated PackageRef in Function admission webhook
High remediation recipe for Fission: Cross-namespace Package read via unvalidated PackageRef in Function admission webhook. Upgrade to 1.24.0 and remove the vulnerable command-injection pattern.
CVE-2026-49824 - Fission: Cross-namespace Environment reference via unvalidated EnvironmentRef in Function admission webhook
High remediation recipe for Fission: Cross-namespace Environment reference via unvalidated EnvironmentRef in Function admission webhook. Upgrade to 1.24.0 and remove the vulnerable ssrf pattern.
CVE-2026-50545 - Fission Environment CRD PodSpec Injection Leading to Node Escape and Cluster Takeover
Critical remediation recipe for Fission Environment CRD PodSpec Injection Leading to Node Escape and Cluster Takeover. Upgrade to 1.24.0 and remove the vulnerable cert-validation pattern.
CVE-2026-50563 - Fission Container Executor Function PodSpec Injection Leading to Node Escape
Critical remediation recipe for Fission Container Executor Function PodSpec Injection Leading to Node Escape. Upgrade to 1.24.0 and remove the vulnerable command-injection pattern.
CVE-2026-50564 - Fission Environment CRD podspec passthrough enables hostPID/hostNetwork/privileged pods, node escape
Critical remediation recipe for Fission Environment CRD podspec passthrough enables hostPID/hostNetwork/privileged pods, node escape. Upgrade to 1.24.0 and remove the vulnerable command-injection pattern.
CVE-2026-50566 - Fission: Environment Runtime.Container and Builder.Container SecurityContext bypass allows privileged pod creation
Critical remediation recipe for Fission: Environment Runtime.Container and Builder.Container SecurityContext bypass allows privileged pod creation. Upgrade to 1.24.0 and remove the vulnerable command-injection pattern.
CVE-2026-56219 - Capgo before 12.128.2 contains a NULL-auth bypass vulnerability in the public.get_org_user_access_rbac functio
High remediation recipe for Capgo before 12.128.2 contains a NULL-auth bypass vulnerability in the public.get_org_user_access_rbac functio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56230 - Capgo before 12.128.2 contains a broken object level authorization vulnerability in middlewareKey() that accep
High remediation recipe for Capgo before 12.128.2 contains a broken object level authorization vulnerability in middlewareKey() that accep. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-56233 - Capgo before 12.128.2 contains a path traversal vulnerability in the builder upload proxy that allows authenti
High remediation recipe for Capgo before 12.128.2 contains a path traversal vulnerability in the builder upload proxy that allows authenti. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-56247 - Capgo before 12.128.2 allows org admins to assign org-scoped RBAC roles at app scope without validating role s
High remediation recipe for Capgo before 12.128.2 allows org admins to assign org-scoped RBAC roles at app scope without validating role s. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56249 - Capgo before 12.128.2 contains an authorization bypass vulnerability in the channel creation endpoint that all
High remediation recipe for Capgo before 12.128.2 contains an authorization bypass vulnerability in the channel creation endpoint that all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56286 - Capgo before 12.128.2 contains an authentication bypass vulnerability in the account deletion endpoint that al
High remediation recipe for Capgo before 12.128.2 contains an authentication bypass vulnerability in the account deletion endpoint that al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-56300 - Capgo before 12.128.2 contains unauthenticated security definer RPC functions get_user_id and get_org_perm_for
High remediation recipe for Capgo before 12.128.2 contains unauthenticated security definer RPC functions get_user_id and get_org_perm_for. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56320 - Capgo before 12.128.2 contains an authorization flaw in POST /private/create_device that accepts a caller-supp
High remediation recipe for Capgo before 12.128.2 contains an authorization flaw in POST /private/create_device that accepts a caller-supp. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58165 - OpenZiti through 2.0.0, fixed in commit 3027fdf, contains a privilege escalation vulnerability that allows aut
High remediation recipe for OpenZiti through 2.0.0, fixed in commit 3027fdf, contains a privilege escalation vulnerability that allows aut. Upgrade to fixed in commit 3027fdf and remove the vulnerable authz pattern.
CVE-2026-44840 - Dgraph Vulnerable to DQL Injection via checkUserPassword GraphQL Query
High remediation recipe for Dgraph Vulnerable to DQL Injection via checkUserPassword GraphQL Query. Upgrade to 25.3.4 and remove the vulnerable command-injection pattern.
CVE-2026-49338 - gonic playlist path traversal
High-severity gonic path traversal in Subsonic playlist endpoints. Upgrade to 0.21.0+ and constrain playlist paths and ownership checks before filesystem access.
CVE-2026-49339 - gonic playlist ownership bypass
High-severity gonic access control failure in playlist retrieval and deletion. Upgrade to 0.21.0+ and enforce ownership checks after canonical path resolution.
CVE-2026-49340 - gonic playlist arbitrary file write
High-severity gonic arbitrary file write in playlist create/update handlers. Upgrade to 0.21.0+ and enforce contained paths plus least-privilege directory creation.
CVE-2026-45405 - Dokku is a docker-powered PaaS. Prior to 0.38.2, the git:from-archive and certs:add commands extract user-supp
Critical remediation recipe for Dokku is a docker-powered PaaS. Prior to 0.38.2, the git:from-archive and certs:add commands extract user-supp. Upgrade to fixed in 0.38.2. and remove the vulnerable command-injection pattern.
CVE-2026-45406 - Dokku is a docker-powered PaaS. Prior to 0.38.2, the openresty-vhosts plugin copies files from an app's openre
Critical remediation recipe for Dokku is a docker-powered PaaS. Prior to 0.38.2, the openresty-vhosts plugin copies files from an app's openre. Upgrade to fixed in 0.38.2. and remove the vulnerable command-injection pattern.
CVE-2026-46386 - OpenProject is open-source, web-based project management software
Critical remediation recipe for OpenProject is open-source, web-based project management software. Upgrade to fixed in . and remove the vulnerable command-injection pattern.
CVE-2026-48749 - Incus has an arbitrary file read+write on host via rootfs/ symlink in malicious image
Critical remediation recipe for Incus has an arbitrary file read+write on host via rootfs/ symlink in malicious image. Upgrade to 7.2.0 and remove the vulnerable path-traversal pattern.
CVE-2026-48750 - Incus has an arbitrary file write on host via exec-output symlink in crafted image
Critical remediation recipe for Incus has an arbitrary file write on host via exec-output symlink in crafted image. Upgrade to 7.2.0 and remove the vulnerable path-traversal pattern.
CVE-2026-48751 - Incus has a restricted project bypass leading to arbitrary command execution
Critical remediation recipe for Incus has a restricted project bypass leading to arbitrary command execution. Upgrade to 7.2.0 and remove the vulnerable command-injection pattern.
CVE-2026-48752 - Incus has arbitrary file read+write on host via templates/ symlink in malicious image
Critical remediation recipe for Incus has arbitrary file read+write on host via templates/ symlink in malicious image. Upgrade to 7.2.0 and remove the vulnerable path-traversal pattern.
CVE-2026-48753 - Incus has an arbitrary file write via path traversal in S3 multipart upload
Critical remediation recipe for Incus has an arbitrary file write via path traversal in S3 multipart upload. Upgrade to 7.1.0 and remove the vulnerable command-injection pattern.
CVE-2026-48755 - Incus has an argument injection in backup compression algorithm leading to AFW and ACE
Critical remediation recipe for Incus has an argument injection in backup compression algorithm leading to AFW and ACE. Upgrade to 7.2.0 and remove the vulnerable command-injection pattern.
CVE-2026-48769 - Incus has an arbitrary file write on its client due to trusted image hash
Critical remediation recipe for Incus has an arbitrary file write on its client due to trusted image hash. Upgrade to 7.2.0 and remove the vulnerable command-injection pattern.
CVE-2026-48788 - Remark42: Cross-Site Scripting (XSS) on /api/v1/img via content-type spoofing
High remediation recipe for Remark42: Cross-Site Scripting (XSS) on /api/v1/img via content-type spoofing. Upgrade to 1.16.0 and remove the vulnerable command-injection pattern.
CVE-2026-49258 - Nebula Mesh: Web UI lacks ownership checks, enabling cross-operator access to hosts and networks (read, block, delete)
High remediation recipe for Nebula Mesh: Web UI lacks ownership checks, enabling cross-operator access to hosts and networks (read, block, delete). Upgrade to Vendor-fixed release and remove the vulnerable command-injection pattern.
CVE-2026-53519 - Nezha dashboard path traversal leaks JWT secret
Critical Nezha pre-auth path traversal where dashboard prefix confusion can disclose config.yaml and JWT secrets. Upgrade to 2.0.13+ and enforce segment-aware static file containment.
CVE-2026-53576 - Kestra is an open-source, event-driven orchestration platform
Critical remediation recipe for Kestra is an open-source, event-driven orchestration platform. Upgrade to fixed in 1.0.45 and 1.3.21. and remove the vulnerable command-injection pattern.
CVE-2026-54350 - Budibase is an open-source low-code platform
Critical remediation recipe for Budibase is an open-source low-code platform. Upgrade to fixed in 3.39.12. and remove the vulnerable command-injection pattern.
CVE-2026-54636 - Dokku is a docker-powered PaaS. Prior to 0.38.7, the cron plugin utilizes commands in the app.json file to man
Critical remediation recipe for Dokku is a docker-powered PaaS. Prior to 0.38.7, the cron plugin utilizes commands in the app.json file to man. Upgrade to fixed in 0.38.7. and remove the vulnerable command-injection pattern.
GHSA-q6xx-5vr8-p898 - Nezha WebSocket stream ownership bypass
Critical Nezha cross-tenant terminal and file-manager hijack where WebSocket stream UUIDs are not bound to their creator. Upgrade to 2.0.10+ and enforce stream ownership before WebSocket upgrade.
CVE-2026-39829 - golang.org/x/crypto/ssh: Invoking pathological RSA/DSA parameters may cause DoS
High remediation recipe for golang.org/x/crypto/ssh: Invoking pathological RSA/DSA parameters may cause DoS. Upgrade to 0.52.0 and remove the vulnerable command-injection pattern.
CVE-2026-46597 - golang.org/x/crypto/ssh: Invoking byte arithmetic causes underflow and panic
High remediation recipe for golang.org/x/crypto/ssh: Invoking byte arithmetic causes underflow and panic. Upgrade to 0.52.0 and remove the vulnerable dos pattern.
CVE-2026-48702 - Rekor has an OOM Condition due to Unbounded gzip Decompression in Alpine APK Parsing Logic
High remediation recipe for Rekor has an OOM Condition due to Unbounded gzip Decompression in Alpine APK Parsing Logic. Upgrade to 1.5.2 and remove the vulnerable ssrf pattern.
CVE-2026-53145 - In the Linux kernel, the following vulnerability has been resolved: drm/gem: Try to fix change_handle ioctl, a
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: drm/gem: Try to fix change_handle ioctl, a. Upgrade to fixed now. Very clearly that and remove the vulnerable authz pattern.
CVE-2026-53176 - In the Linux kernel, the following vulnerability has been resolved: IB/isert: Reject login PDUs shorter than I
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: IB/isert: Reject login PDUs shorter than I. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-6325 - Out-of-bounds write in SetSuitesHashSigAlgo when processing an oversized signature algorithms list, allowing a
High remediation recipe for Out-of-bounds write in SetSuitesHashSigAlgo when processing an oversized signature algorithms list, allowing a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable crypto pattern.
CVE-2026-50189 - Appsmith is a platform to build admin panels, internal tools, and dashboards
High remediation recipe for Appsmith is a platform to build admin panels, internal tools, and dashboards. Upgrade to fixed in 2.1. and remove the vulnerable authz pattern.
CVE-2026-53090 - In the Linux kernel, the following vulnerability has been resolved: bpf: Fix ld_{abs,ind} failure path analysi
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: bpf: Fix ld_{abs,ind} failure path analysi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2023-54365 - Traefik before 2.10.5 and 3.0.0-beta4 is affected by a denial-of-service vulnerability in HTTP/2 request handl
High remediation recipe for Traefik before 2.10.5 and 3.0.0-beta4 is affected by a denial-of-service vulnerability in HTTP/2 request handl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-52806 - Gogs vulnerable to RCE via git rebase --exec argument injection in pull request merge
Critical remediation recipe for Gogs vulnerable to RCE via git rebase --exec argument injection in pull request merge. Upgrade to 0.14.3 and remove the vulnerable command-injection pattern.
CVE-2026-53754 - Crawl4AI is an open-source LLM friendly web crawler & scraper
High remediation recipe for Crawl4AI is an open-source LLM friendly web crawler & scraper. Upgrade to fixed in 0.8.8. and remove the vulnerable command-injection pattern.
CVE-2026-53755 - Crawl4AI is an open-source LLM friendly web crawler & scraper
High remediation recipe for Crawl4AI is an open-source LLM friendly web crawler & scraper. Upgrade to fixed in 0.8.9. and remove the vulnerable command-injection pattern.
CVE-2026-49396 - Nezha has cross-site GET request that can trigger stored cron commands on a victim's agents
High remediation recipe for Nezha has cross-site GET request that can trigger stored cron commands on a victim's agents. Upgrade to 2.0.14 and remove the vulnerable command-injection pattern.
CVE-2026-47724 - nebula-mesh API ownership authorization bypass
Critical nebula-mesh API authorization bypass across operator, host, network, firewall, and mobile-bundle endpoints. Upgrade to 0.3.4+, add per-resource ownership checks, and verify non-owner operators receive 403.
CVE-2026-47252 - Anyquery browser plugin AppleScript/JXA injection
Critical Anyquery browser-plugin code injection through unescaped URLs passed into AppleScript/JXA. Upgrade affected plugin modules, remove script-source string interpolation, and restrict SQL write access to browser tab tables.
CVE-2026-46243 - In the Linux kernel, the following vulnerability has been resolved: smb: client: reject userspace cifs.spnego
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb: client: reject userspace cifs.spnego. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48119 - Nezha service-monitor result forgery
High-severity Nezha authorization flaw where authenticated agents can forge service-monitor results for other users' services. Upgrade to Nezha 2.0.12+ or the patched 1.x commit, enforce ownership checks on inbound task results, and review cross-tenant monitoring integrity.
CVE-2026-46384 - iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, several Avro decoder paths read attacker-controlled
High remediation recipe for iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, several Avro decoder paths read attacker-controlled. Upgrade to fixed in 2.33.0. and remove the vulnerable dos pattern.
CVE-2026-46385 - iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, the Avro array and map decoders looped over an attac
High remediation recipe for iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, the Avro array and map decoders looped over an attac. Upgrade to fixed in 2.33.0. and remove the vulnerable dos pattern.
CVE-2026-46117 - In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Remove user triggerable WARN_ON
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Remove user triggerable WARN_ON. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-9094 - Casdoor: GetTokenExchangeToken bypass through lack of cross-organization JWT signature check
Critical remediation recipe for Casdoor: GetTokenExchangeToken bypass through lack of cross-organization JWT signature check. Upgrade to 2.387.0 and remove the vulnerable crypto pattern.
CVE-2026-3473 - Mattermost doesn't validate file ownership and access control
High remediation recipe for Mattermost doesn't validate file ownership and access control. Upgrade to 10.11.15, 11.4.5, 11.5.4, 11.6.1 and remove the vulnerable authz pattern.
CVE-2026-5308 - Mattermost doesn't enforce request body size limits on plugin HTTP endpoints
High remediation recipe for Mattermost doesn't enforce request body size limits on plugin HTTP endpoints. Upgrade to 1.0.1-0.20260410143745-9b41b1fd43c4, 10.11.15, 11.4.5, 11.5.4, 11.6.1 and remove the vulnerable command-injection pattern.
CVE-2026-5740 - Mattermost doesn't properly validate msgpack-encoded WebSocket frames before memory allocation
High remediation recipe for Mattermost doesn't properly validate msgpack-encoded WebSocket frames before memory allocation. Upgrade to 10.11.15, 11.4.5, 11.5.4, 11.6.1, 8.0.0-20260410202636-17939826efa2 and remove the vulnerable dos pattern.
CVE-2026-7374 - KubeVirt has a Link Following vulnerability
Critical remediation recipe for KubeVirt has a Link Following vulnerability. Upgrade to 1.6.6, 1.7.4, 1.8.3 and remove the vulnerable path-traversal pattern.
CVE-2026-46716 - Nezha Monitoring: RoleMember can run shell on every server (cross-tenant RCE) via POST /api/v1/cron
Critical remediation recipe for Nezha Monitoring: RoleMember can run shell on every server (cross-tenant RCE) via POST /api/v1/cron. Upgrade to 1.14.15-0.20260517022419-d7526351cf97 and remove the vulnerable command-injection pattern.
CVE-2026-46717 - Nezha Monitoring: RoleMember-reachable SSRF with full response-body reflection via POST /api/v1/notification
High remediation recipe for Nezha Monitoring: RoleMember-reachable SSRF with full response-body reflection via POST /api/v1/notification. Upgrade to 1.14.15-0.20260517022419-d06d539d34c1 and remove the vulnerable command-injection pattern.
CVE-2026-42595 - Gotenberg Chromium URL SSRF
High-severity Gotenberg SSRF through Chromium URL conversion and redirect bypass. Upgrade to 8.32.0+, block metadata/internal egress, and test redirect-aware URL policy.
CVE-2026-42294 - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete
High remediation recipe for Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete. Upgrade to patched in versions 3.7.14 and 4.0.5. and remove the vulnerable command-injection pattern.
CVE-2026-42296 - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete
High remediation recipe for Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete. Upgrade to patched in versions 3.7.14 and 4.0.5. and remove the vulnerable command-injection pattern.
CVE-2026-42297 - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete
High remediation recipe for Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete. Upgrade to version 4.0.0 to before version 4.0.5 and remove the vulnerable command-injection pattern.
CVE-2026-33811 - When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C me
High remediation recipe for When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C me. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-42880 - Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes
Critical remediation recipe for Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Upgrade to patched in versions 3.2.11 and 3.3.9. and remove the vulnerable authz pattern.
CVE-2026-44542 - FileBrowser public share DELETE path traversal
Critical FileBrowser public-share DELETE path traversal. Upgrade to the fixed commit, disable public-share delete permissions during rollout, and verify canonical path enforcement.
CVE-2025-71261 - Harvester's SUSE Virtualization Registration Client Vulnerable to MITM and DOS
High remediation recipe for Harvester's SUSE Virtualization Registration Client Vulnerable to MITM and DOS. Upgrade to 1.8.0 and remove the vulnerable command-injection pattern.
CVE-2026-43226 - In the Linux kernel, the following vulnerability has been resolved: net/rds: No shortcut out of RDS_CONN_ERROR
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net/rds: No shortcut out of RDS_CONN_ERROR. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2026-41602 - Integer Overflow or Wraparound vulnerability in Apache Thrift TFramedTransport Go language implementation This
High remediation recipe for Integer Overflow or Wraparound vulnerability in Apache Thrift TFramedTransport Go language implementation This. Upgrade to upgrade to version 0.23.0 and remove the vulnerable authz pattern.
CVE-2026-40886 - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete
High remediation recipe for Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete. Upgrade to fixed in 4.0.5 and 3.7.14. and remove the vulnerable command-injection pattern.
CVE-2026-41246 - Contour is a Kubernetes ingress controller using Envoy proxy
High remediation recipe for Contour is a Kubernetes ingress controller using Envoy proxy. Upgrade to fixed in v1.33.4 and remove the vulnerable command-injection pattern.
CVE-2026-40611 - Let's Encrypt client and ACME library written in Go (Lego)
High remediation recipe for Let's Encrypt client and ACME library written in Go (Lego). Upgrade to fixed in 4.34.0. and remove the vulnerable path-traversal pattern.
CVE-2026-35469 - spdystream is a Go library for multiplexing streams over SPDY connections
High remediation recipe for spdystream is a Go library for multiplexing streams over SPDY connections. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-27806 - Fleet Affected by Local Privilege Escalation via Tcl Command Injection in Orbit
High remediation recipe for Fleet Affected by Local Privilege Escalation via Tcl Command Injection in Orbit. Upgrade to 4.81.1 and remove the vulnerable command-injection pattern.
CVE-2026-39883 - OpenTelemetry-Go is the Go implementation of OpenTelemetry
High remediation recipe for OpenTelemetry-Go is the Go implementation of OpenTelemetry. Upgrade to fixed in 1.43.0. and remove the vulnerable authz pattern.
CVE-2026-29181 - OpenTelemetry-Go is the Go implementation of OpenTelemetry
High remediation recipe for OpenTelemetry-Go is the Go implementation of OpenTelemetry. Upgrade to fixed in 1.41.0. and remove the vulnerable authz pattern.
CVE-2026-33815 - pgx contains memory-safety vulnerability
Critical remediation recipe for pgx contains memory-safety vulnerability. Upgrade to 5.9.0 and remove the vulnerable authz pattern.
CVE-2026-34742 - The Go MCP SDK used Go's standard encoding/json
High remediation recipe for The Go MCP SDK used Go's standard encoding/json. Upgrade to version 1.4.0 and remove the vulnerable command-injection pattern.
CVE-2026-33487 - goxmlsig provides XML Digital Signatures implemented in Go
High remediation recipe for goxmlsig provides XML Digital Signatures implemented in Go. Upgrade to version 1.6.0 and remove the vulnerable crypto pattern.
CVE-2026-33186 - gRPC-Go is the Go language implementation of gRPC
Critical remediation recipe for gRPC-Go is the Go language implementation of gRPC. Upgrade to version 1.79.3 ensures that any request with a and remove the vulnerable command-injection pattern.
CVE-2026-28229 - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete
Critical remediation recipe for Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete. Upgrade to fixed in 4.0.2 and 3.7.11. and remove the vulnerable command-injection pattern.
CVE-2026-31892 - Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete
High remediation recipe for Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernete. Upgrade to fixed in 4.0.2 and 3.7.11. and remove the vulnerable command-injection pattern.
CVE-2026-30861 - WeKnora MCP stdio command injection
Critical WeKnora MCP stdio command-injection risk in versions 0.2.5 through 0.2.9. Upgrade to 0.2.10+, disable user-defined stdio launch, and harden registration and MCP-service policy.
CVE-2025-15558 - Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that doe
High remediation recipe for Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that doe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-28400 - Docker Model Runner (DMR) is software used to manage, run, and deploy AI models using Docker
High remediation recipe for Docker Model Runner (DMR) is software used to manage, run, and deploy AI models using Docker. Upgrade to version 4.46.0 and remove the vulnerable authz pattern.
CVE-2026-28406 - kaniko is a tool to build container images from a Dockerfile, inside a container or Kubernetes cluster
High remediation recipe for kaniko is a tool to build container images from a Dockerfile, inside a container or Kubernetes cluster. Upgrade to version 1.25.4 and prior to version 1.25.10 and remove the vulnerable authz pattern.
CVE-2026-27896 - The Go MCP SDK used Go's standard encoding/json.Unmarshal for JSON-RPC and MCP protocol message parsing in ver
High remediation recipe for The Go MCP SDK used Go's standard encoding/json.Unmarshal for JSON-RPC and MCP protocol message parsing in ver. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable mcp-auth pattern.
CVE-2025-61732 - A discrepancy between how Go and C/C++ comments were parsed allowed for code smuggling into the resulting cgo
High remediation recipe for A discrepancy between how Go and C/C++ comments were parsed allowed for code smuggling into the resulting cgo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-61731 - Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial
High remediation recipe for Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-4948 - A flaw was found in the soup_multipart_new_from_message() function of the libsoup HTTP library, which is commo
High remediation recipe for A flaw was found in the soup_multipart_new_from_message() function of the libsoup HTTP library, which is commo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2024-52009 - Git credentials are exposed in Atlantis logs
High remediation recipe for Git credentials are exposed in Atlantis logs. Upgrade to 0.30.0 and remove the vulnerable command-injection pattern.
go/cli2 recipes
CVE-2026-48501 - GitHub CLI TUF token leakage
High-severity GitHub CLI authorization-header leakage during attestation and release verification. Upgrade gh to 2.93.0+, remove stale CLI pins, isolate verification tokens, and document token rotation.
CVE-2026-45803 - GitHub CLI Actions log terminal escape injection
Low-severity but reviewer-relevant GitHub CLI terminal escape sequence injection when maintainers inspect Actions logs with gh run view. Upgrade gh to 2.92.0+, sanitize untrusted logs on older clients, and guard CI/reviewer tooling.
go/container2 recipes
CVE-2026-55092 - Trivy OCI artifact title path traversal
High-severity Trivy OCI artifact title path traversal. A scanner job that fetches a malicious OCI artifact can write files outside its workspace on CI or developer hosts.
CVE-2026-55092 - Trivy security control bypass
High security control bypass in Trivy. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
go/container-security1 recipe
go/docker2 recipes
CVE-2026-58053 - Gitea act_runner Docker container options host escape
Critical remediation recipe for Gitea act_runner Docker container options host escape. Apply vendor-patched act_runner/act release; deny unsafe container.options immediately and remove the vulnerable container-escape pattern.
CVE-2026-58053 - Gitea act_runner Docker container options host escape
Critical-severity Gitea act_runner Docker container options host escape. A workflow author can turn a non-privileged CI job into root-level access on the runner host.
go/gomod27 recipes
CVE-2026-39830 - Go x/crypto ssh unsolicited response deadlock
Critical Go SSH denial-of-service where unsolicited global responses can block the read loop and leak a stuck connection. Upgrade to 0.52.0+ and audit peer-input handling.
CVE-2026-39831 - Go x/crypto ssh FIDO presence bypass
Critical Go SSH flaw where FIDO/U2F signature verification does not enforce the user-presence flag. Upgrade to 0.52.0+ and review security-key policy extensions.
CVE-2026-39832 - Go x/crypto ssh agent forwarded constraint loss
Critical Go ssh-agent flaw where forwarding a key strips constraint extensions such as destination restrictions. Upgrade to 0.52.0+ and audit forwarded-agent trust boundaries.
CVE-2026-39833 - Go x/crypto ssh agent confirm constraint bypass
Critical Go ssh-agent flaw where NewKeyring accepts ConfirmBeforeUse constraints but never enforces them. Upgrade to 0.52.0+ and reject unsupported key constraints.
CVE-2026-39834 - Go x/crypto ssh large channel write infinite loop
Critical Go SSH denial-of-service where a single channel write over 4GB can trigger an internal infinite loop. Upgrade to 0.52.0+ and audit large-buffer write paths.
CVE-2026-42508 - Go x/crypto knownhosts revoked CA bypass
Critical Go knownhosts validation flaw where revoked CA SignatureKey state is not enforced. Upgrade to 0.52.0+ and re-check SSH host key trust policy.
CVE-2026-46595 - Go x/crypto ssh VerifiedPublicKeyCallback auth bypass
Critical Go x/crypto SSH server authorization bypass where misused callback combinations can skip source-address validation. Upgrade to 0.52.0+ and audit custom server callback wiring.
CVE-2026-48708 - OliveTin template race command contamination
High-severity OliveTin race condition where a shared Go text/template instance can cross-contaminate concurrent action executions and crash the process. Upgrade to 3000.13.0+ and isolate template parsing per request.
CVE-2026-42129 - Grafana Loki datasource callResource traversal
High-severity Grafana Loki datasource traversal that lets Viewer-role users reach administrative Loki endpoints. Upgrade Grafana to fixed trains, constrain datasource access, and remove unintended internal exposure.
CVE-2026-53999 - Radius controller confused-deputy delete
High-severity Radius controller cross-tenant deletion via tampered deployment annotations. Upgrade to 0.58.0+, validate tenant ownership on annotation-derived resource IDs, and harden multi-tenant install boundaries.
CVE-2026-54090 - File Browser shell metacharacter command injection
High-severity File Browser command-execution allowlist bypass when a shell interpreter is configured. Upgrade to 2.33.8+, disable shell-backed exec, and remove execute permission until hardened.
GHSA-hf2g-6j7h-98wg - Klever-Go direct-message goroutine DoS
High-severity Klever-Go libp2p direct-message denial of service. Upgrade to 1.7.18+, bound ingress goroutine creation before ProcessReceivedMessage, and test DirectSendID flood controls locally.
GHSA-rm5c-5x2p-48wr - Klever-Go P2P nil RawData DoS
High-severity Klever-Go P2P transaction-interceptor denial of service. Upgrade to 1.7.18+, reject nil transaction RawData before version checks, and add panic-free P2P validation tests.
GHSA-w4c6-7r69-w7j9 - Klever-Go REST API slow-header DoS
High-severity Klever-Go REST API slow-header denial of service. Upgrade to 1.7.18+, replace Gin Engine.Run with explicit HTTP server limits, and add local slow-header regression tests.
CVE-2026-44210 - Kata virtiofsd annotation VM escape
High-impact Kata Containers virtiofsd argument-injection escape through default-enabled pod annotations. Upgrade Kata, remove dangerous annotation allowances, and verify RuntimeClass admission controls.
CVE-2026-39383 - Gotenberg webhook SSRF
High-severity blind SSRF in Gotenberg webhook handling. Upgrade to 8.31.0+ and require explicit webhook allow-lists plus egress controls.
CVE-2026-40280 - Gotenberg SSRF deny-list bypass
Critical Gotenberg SSRF bypass through case-insensitive URL schemes. Upgrade to 8.31.0+ and enforce normalized URL allow-lists plus egress policy.
CVE-2026-40281 - Gotenberg ExifTool argument injection
Critical Gotenberg metadata value newline injection into ExifTool stdin. Upgrade to 8.31.0+ and restrict metadata-write exposure until patched.
CVE-2026-42461 - Arcane Compose template secret disclosure
High-severity Arcane authorization gap exposing custom Compose templates and .env secrets. Upgrade to 1.18.0+, require auth on template reads, rotate exposed secrets, and verify API policy fails closed.
CVE-2026-42560 - go-pkgz/auth Patreon identity collision
Critical Patreon OAuth identity collision in go-pkgz/auth. Upgrade to 1.25.2 or 2.1.2, verify unique Patreon IDs, and clean up any accounts keyed by the shared broken identifier.
GHSA-rh99-wc69-c255 - Contrast CopyFile policy symlink subversion
High-severity Contrast/Kata agent policy gap where CopyFile verification can be subverted through symlinks. Upgrade Contrast to 1.19.1+, regenerate agent policies, and contain host-to-guest CopyFile trust.
CVE-2026-42274 - Heimdall policy interpretation bypass cluster
High-severity Heimdall authorization bypass cluster caused by path, host, and encoded-slash interpretation mismatches. Upgrade to 0.17.14+, deny by default, normalize edge requests, and verify rule identity downstream.
GHSA-74m3 - zrok WebDAV DriveRoot symlink escape
High-severity zrok WebDAV drive backend symlink escape that can expose files outside DriveRoot. Upgrade zrok/v2 to 2.0.2+, remove unsupported v1 shares, and harden shared context roots.
CVE-2026-39858 - Traefik forwarded alias auth bypass
High-severity Traefik ForwardAuth and snippet-based authentication bypass through forwarded-header alias spoofing. Upgrade to 2.11.43, 3.6.14, or 3.7.0-rc.2+ and verify auth backends reject underscore-form forwarded headers.
CVE-2026-41574 - Nhost OAuth email verification bypass
Critical Nhost account takeover through unsafe OAuth email verification and provider linking. Upgrade to the fixed Nhost revision, require verified provider email claims, and audit linked identities.
CVE-2026-41589 - Wish SCP path traversal
Critical path traversal in Wish SCP middleware. Upgrade charm.land/wish/v2 to 2.0.1+, replace unsafe root-prefix checks, and verify SCP read/write operations cannot escape their configured root.
CVE-2026-40884 - goshs empty-username SFTP authentication bypass
Critical goshs SFTP authentication bypass. Upgrade to goshs v2.0.0+ or v2.0.0-beta.6+, reject empty-username SFTP auth, and verify unauthenticated SFTP sessions cannot read or modify files.
java/maven108 recipes
CVE-2026-44795 - Spinnaker is an open source, multi-cloud continuous delivery platform
High remediation recipe for Spinnaker is an open source, multi-cloud continuous delivery platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-55405 - LangChain4j is a Java library for building LLM-powered applications on the JVM
High remediation recipe for LangChain4j is a Java library for building LLM-powered applications on the JVM. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-49485 - org.hl7.fhir.core: ReDoS via FHIRPath matches()/replaceMatches() in FHIR Validator HTTP Endpoint
High remediation recipe for org.hl7.fhir.core: ReDoS via FHIRPath matches()/replaceMatches() in FHIR Validator HTTP Endpoint. Upgrade to 6.9.4.2, 6.9.9 and remove the vulnerable command-injection pattern.
CVE-2026-59826 - Metabase is an open-source business intelligence and embedded analytics tool
Critical remediation recipe for Metabase is an open-source business intelligence and embedded analytics tool. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59827 - Metabase is an open-source business intelligence and embedded analytics tool
Critical remediation recipe for Metabase is an open-source business intelligence and embedded analytics tool. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-49464 - NL Portal: IDOR allows any authenticated user to complete and tamper with another user's taak
High remediation recipe for NL Portal: IDOR allows any authenticated user to complete and tamper with another user's taak. Upgrade to 3.0.1 and remove the vulnerable authz pattern.
CVE-2026-49832 - DSpace has possible Remote Code Execution (RCE) through Velocity Templates used by LDN
High remediation recipe for DSpace has possible Remote Code Execution (RCE) through Velocity Templates used by LDN. Upgrade to 10.0, 8.4, 9.3 and remove the vulnerable command-injection pattern.
CVE-2026-55470 - HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java
High remediation recipe for HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55471 - HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java
High remediation recipe for HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55760 - Handlebars.java provides logic-less and semantic Mustache templates with Java
High remediation recipe for Handlebars.java provides logic-less and semantic Mustache templates with Java. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34151 - XWiki Platform Old Core: Resource path traversal via /skin/ action endpoint in Jetty 12+
High remediation recipe for XWiki Platform Old Core: Resource path traversal via /skin/ action endpoint in Jetty 12+. Upgrade to 17.10.5, 18.2.0 and remove the vulnerable command-injection pattern.
CVE-2026-14265 - Deserialization of untrusted data in the RemoteQueryCachePlugin in Amazon Web Services AWS Advanced JDBC Wrapp
High remediation recipe for Deserialization of untrusted data in the RemoteQueryCachePlugin in Amazon Web Services AWS Advanced JDBC Wrapp. Upgrade to version 4.0.1 or later. and remove the vulnerable deserialization pattern.
CVE-2026-39379 - GeoNetwork has reflected XSS through client-side template injection
High remediation recipe for GeoNetwork has reflected XSS through client-side template injection. Upgrade to 4.2.15, 4.4.10 and remove the vulnerable command-injection pattern.
CVE-2026-46487 - GeoNetwork has ACL bypass on Elasticsearch search when request body omits query field
High remediation recipe for GeoNetwork has ACL bypass on Elasticsearch search when request body omits query field. Upgrade to 4.2.16, 4.4.11 and remove the vulnerable ssrf pattern.
CVE-2026-12856 - A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code
High remediation recipe for A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13528 - YunaiV/zhijiantianya ruoyi-vue-pro path traversal
High path traversal in YunaiV/zhijiantianya ruoyi-vue-pro. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-47424 - OpenAM Authenticated RCE via Groovy Sandbox Escape
High remediation recipe for OpenAM Authenticated RCE via Groovy Sandbox Escape. Upgrade to 16.1.1 and remove the vulnerable command-injection pattern.
CVE-2026-47426 - OpenAM OAuth Client Impersonation via JWKS Resolver Cache
High remediation recipe for OpenAM OAuth Client Impersonation via JWKS Resolver Cache. Upgrade to 16.1.1 and remove the vulnerable mcp-auth pattern.
CVE-2026-13500 - antlr ANTLR4 code injection
High code injection in antlr ANTLR4. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13500 - ANTLR4 grammar action block code injection
High-severity ANTLR4 grammar action block code injection. A malicious grammar submitted through a plugin, PR, or tenant extension can inject code into generated parser output and reach CI or runtime execution.
CVE-2026-2053 - The WSO2 API Manager's message flow component, when processing WS-Addressing headers, does not sufficiently va
High remediation recipe for The WSO2 API Manager's message flow component, when processing WS-Addressing headers, does not sufficiently va. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-46619 - OpenAM Authentication Bypass via MSISDN LDAP Injection
High remediation recipe for OpenAM Authentication Bypass via MSISDN LDAP Injection. Upgrade to 16.1.1 and remove the vulnerable auth-bypass pattern.
CVE-2026-46623 - OpenAM Account Takeover via Unverified Password Change in OAuth2 Module
High remediation recipe for OpenAM Account Takeover via Unverified Password Change in OAuth2 Module. Upgrade to 16.1.1 and remove the vulnerable mcp-auth pattern.
CVE-2026-53914 - JetBrains Kotlin unsafe deserialization
Critical unsafe deserialization in JetBrains Kotlin. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-12569 - PTC Windchill and FlexPLM Improper Input Validation Vulnerability
High remediation recipe for PTC Windchill and FlexPLM Improper Input Validation Vulnerability. Upgrade to Apply mitigations or fixed release per vendor/CISA KEV instructions and remove the vulnerable command-injection pattern.
CVE-2026-12975 - A flaw was found in Apicurio Registry. The ContentTypeUtil.isParsableXml() method creates a SAXParserFactory w
High remediation recipe for A flaw was found in Apicurio Registry. The ContentTypeUtil.isParsableXml() method creates a SAXParserFactory w. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-12992 - A flaw was found in Apicurio Registry. The WSDLReaderAccessor creates a wsdl4j WSDLReader without disabling th
High remediation recipe for A flaw was found in Apicurio Registry. The WSDLReaderAccessor creates a wsdl4j WSDLReader without disabling th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-45051 - OpenAM WebAuthn deserialization RCE
Critical OpenAM WebAuthn Java deserialization RCE when attacker-controlled attributes are read by the authenticator storage path. Upgrade to 16.1.1 and lock WebAuthn storage to server-managed attributes.
CVE-2026-45052 - OpenAM Liberty Discovery authz bypass
Critical OpenAM Liberty SOAP receiver authorization bypass that lets unauthenticated callers persist discovery entries with elevated server-side privileges. Upgrade to 16.1.1 and disable Liberty endpoints where unused.
CVE-2026-50193 - jackson-databind contains the general-purpose security control bypass
High security control bypass in jackson-databind contains the general-purpose. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-50193 - jackson-databind deeply nested JsonNode denial of service
High remediation recipe for jackson-databind deeply nested JsonNode denial of service. Apply jackson-databind 2.14.0 or later and remove the vulnerable dos pattern.
CVE-2026-50193 - jackson-databind JsonNode deep nesting denial of service
High-severity jackson-databind JsonNode deep nesting denial of service. Small nested JSON payloads can consume outsized CPU/stack resources and take down API nodes.
CVE-2026-11745 - Central Dogma Git mirror SSH host-key verification bypass
High-severity Central Dogma Git mirror flaw where git+ssh mirrors accept any host key, enabling on-path repository compromise. Upgrade to 0.84.0+, pin host keys, and rotate mirror credentials.
CVE-2026-11746 - Central Dogma ZooKeeper replication secret cluster takeover
Critical Central Dogma replication-secret fallback flaw that can let a network attacker join the ZooKeeper-backed replication quorum and execute replicated actions. Upgrade to 0.84.0+, set an explicit secret, and rotate credentials.
CVE-2026-50559 - Quarkus is a Java framework for building cloud-native applications
High remediation recipe for Quarkus is a Java framework for building cloud-native applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-40987 - Spring Integration remote file sync arbitrary write
High-severity Spring Integration remote file synchronizer path handling flaw. Upgrade to the fixed Spring Integration line and verify server-supplied filenames cannot escape the configured local directory.
CVE-2026-40993 - An attacker with write security control bypass
High security control bypass in An attacker with write. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-40993 - Spring Security JDBC SAML credential deserialization
High-severity Spring Security JDBC SAML credential deserialization. A writable SAML metadata table can turn a database-write foothold into credential deserialization and identity-provider trust compromise.
CVE-2026-40993 - Spring Security SAML credential BLOB deserialization RCE
High remediation recipe for Spring Security SAML credential BLOB deserialization RCE. Apply Spring Security 7.0.6 OSS or 7.0.5.1 enterprise and remove the vulnerable deserialization pattern.
CVE-2026-40994 - Spring WS BSP validation disabled by default
High-severity Spring Web Services WS-Security validation weakness. Upgrade to the fixed Spring WS release or explicitly force BSP compliance for inbound WSS4J validation.
CVE-2026-40998 - Spring WS XPath XXE via StreamSource and SAXSource
High-severity Spring Web Services XPath XXE exposure. Upgrade to the fixed Spring WS release and verify untrusted XML never reaches Jaxp13XPathTemplate through vulnerable source types.
CVE-2026-41003 - Spring Security generated form XSS
High-severity Spring Security generated HTML XSS exposure. Upgrade Spring Security and verify attacker-influenced RelyingPartyRegistration values cannot flow into generated forms without encoding.
CVE-2026-41838 - IDs for WebSocket sessions security control bypass
High security control bypass in IDs for WebSocket sessions. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-41848 - Applications may be vulnerable ReDoS
High ReDoS in Applications may be vulnerable. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-41851 - Applications which accept user-supplied denial of service
High denial of service in Applications which accept user-supplied. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-41842 - Spring versioned resource resolution DoS
High-severity Spring MVC and WebFlux static resource resolution DoS. Upgrade Spring Framework and verify versioned file-system resource handlers cannot be tied up by malicious requests.
CVE-2026-41849 - Spring SpEL integer overflow DoS
High-severity Spring Framework SpEL integer overflow denial of service. Upgrade Spring Framework 5.3.x and verify untrusted SpEL evaluation is removed or tightly constrained.
CVE-2026-41850 - Spring SpEL algorithmic DoS
High-severity Spring Framework SpEL algorithmic denial of service. Upgrade Spring Framework and verify untrusted expression evaluation is patched and bounded with the new maxOperations control.
CVE-2026-44249 - Netty IPv6 subnet filter bypass
High-severity Netty IPv6 access-control bypass in IpSubnetFilterRule. Upgrade netty-handler to 4.1.135.Final or 4.2.15.Final and add deny-by-default regression tests for IPv6 boundary checks.
CVE-2026-44250 - Netty Redis array depth denial of service
High-severity Netty RedisArrayAggregator memory exhaustion. Upgrade netty-codec-redis to 4.1.135.Final or 4.2.15.Final and enforce nested-array depth limits on untrusted Redis traffic.
CVE-2026-47691 - Netty DNS bailiwick cache poisoning
Netty DNS resolver cache-poisoning via insufficient bailiwick checks for NS and CNAME records. Upgrade netty-resolver-dns to 4.1.135.Final or 4.2.15.Final+, align Netty modules, flush resolver caches, and audit DNS-sensitive outbound clients.
CVE-2026-50010 - Netty trust manager hostname verification bypass
High-severity Netty TLS client flaw where wrapping a plain X509TrustManager can silently disable hostname verification. Upgrade netty-handler and stop passing plain trust managers into forClient() contexts.
CVE-2026-47065 - ZDRES-232: resolveProxyClass Not Overridden - acceptMatchers Filter Bypass via java.lang.reflect.Proxy Assessm
Critical remediation recipe for ZDRES-232: resolveProxyClass Not Overridden - acceptMatchers Filter Bypass via java.lang.reflect.Proxy Assessm. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-35563 - Apache Directory LDAP API lacks server certificate verification for LDAP hostnames
High remediation recipe for Apache Directory LDAP API lacks server certificate verification for LDAP hostnames. Upgrade to 2.1.8 and remove the vulnerable command-injection pattern.
CVE-2026-42588 - Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ have a Code Injection issue
High remediation recipe for Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ have a Code Injection issue. Upgrade to 5.19.7, 6.2.6 and remove the vulnerable authz pattern.
CVE-2026-44825 - Apache Solr has hardcoded credentials in the Basic Authentication setup tool
High remediation recipe for Apache Solr has hardcoded credentials in the Basic Authentication setup tool. Upgrade to Vendor-fixed release and remove the vulnerable credential-leak pattern.
CVE-2026-45505 - Apache ActiveMQ Jolokia discovery wrapper bypass
High-severity Apache ActiveMQ Classic Jolokia/JMX RCE bypass of the CVE-2026-34197 fix. Upgrade to 5.19.7 or 6.2.6, restrict Jolokia, and prove broker-management operations are admin-only.
CVE-2026-48827 - Apache MINA SSHD bundle sshd-git has a path traversal vulnerability
High remediation recipe for Apache MINA SSHD bundle sshd-git has a path traversal vulnerability. Upgrade to 2.18.0, 3.0.0-M4 and remove the vulnerable path-traversal pattern.
CVE-2026-49157 - Apache ActiveMQ has an Incorrect Default Permissions vulnerability
High remediation recipe for Apache ActiveMQ has an Incorrect Default Permissions vulnerability. Upgrade to 5.19.7, 6.2.6 and remove the vulnerable authz pattern.
CVE-2026-49361 - Apache Fluss: Unauthenticated remote attackers can exhaust JVM heap memory using crafted frame headers via TabletServer/
High remediation recipe for Apache Fluss: Unauthenticated remote attackers can exhaust JVM heap memory using crafted frame headers via TabletServer/. Upgrade to 0.9.1-incubating and remove the vulnerable dos pattern.
CVE-2026-42782 - Apache Syncope has an Improper Isolation or Compartmentalization vulnerability
High remediation recipe for Apache Syncope has an Improper Isolation or Compartmentalization vulnerability. Upgrade to 4.0.6, 4.1.1 and remove the vulnerable authz pattern.
CVE-2026-44417 - Apache CXF: Untrusted JMS configuration can lead to RCE
High remediation recipe for Apache CXF: Untrusted JMS configuration can lead to RCE. Upgrade to 3.6.11, 4.1.6, 4.2.1 and remove the vulnerable command-injection pattern.
CVE-2026-44930 - Apache CXF has an LDAP injection vulnerability
Critical remediation recipe for Apache CXF has an LDAP injection vulnerability. Upgrade to 3.6.11, 4.1.6, 4.2.1 and remove the vulnerable cert-validation pattern.
CVE-2026-44632 - Yamcs Janino expression RCE
Critical Yamcs algorithm-evaluation code injection through JavaExprAlgorithmExecutionFactory. Upgrade Yamcs, restrict mission-database mutation privileges, and add safe checks around algorithm override routes.
CVE-2026-6009 - Jaspersoft Reports: Java Deserialization Vulnerability Lleads to Remote Code Execution (RCE)
High remediation recipe for Jaspersoft Reports: Java Deserialization Vulnerability Lleads to Remote Code Execution (RCE). Upgrade to 7.0.7 and remove the vulnerable command-injection pattern.
CVE-2026-7504 - A flaw was found in Keycloak's URL validation logic during redirect operations
High remediation recipe for A flaw was found in Keycloak's URL validation logic during redirect operations. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-43515 - Apache Tomcat security constraints authorization bypass
Critical Apache Tomcat authorization bypass when multiple method constraints use the same extension pattern. Upgrade Tomcat, collapse ambiguous security constraints, and add route-level tests for protected HTTP methods.
CVE-2026-27478 - Unity Catalog JWT issuer bypass
Critical Unity Catalog token-exchange authentication bypass. Upgrade to 0.4.1+, pin trusted issuers and audiences, and add forged-issuer negative tests.
CVE-2026-42582 - Netty HTTP/3 QPACK literal unbounded allocation
High remediation recipe for Netty HTTP/3 QPACK literal unbounded allocation. Upgrade to 4.2.13.Final and remove the vulnerable cert-validation pattern.
CVE-2026-44241 - Micronaut has unbounded formattersCache in TimeConverterRegistrar that Allows Memory Exhaustion via Accept-Language Head
High remediation recipe for Micronaut has unbounded formattersCache in TimeConverterRegistrar that Allows Memory Exhaustion via Accept-Language Head. Upgrade to 3.10.6, 3.8.14, 4.10.22 and remove the vulnerable authz pattern.
CVE-2026-39852 - Quarkus matrix-parameter authorization bypass
High-severity Quarkus path-normalization authorization bypass. Upgrade supported Quarkus streams, add semicolon path regression tests, and audit path-based security policy for protected APIs.
CVE-2026-42779 - Apache MINA resolveClass deserialization RCE
Critical Apache MINA deserialization filter bypass in 2.1.x and 2.2.x. Upgrade mina-core to 2.1.12 or 2.2.7+, remove untrusted object deserialization exposure, and verify no vulnerable runtime path remains.
CVE-2026-27172 - The ConsulRegistry in the camel-consul component (class org.apache.camel.component.consul.ConsulRegistry and i
High remediation recipe for The ConsulRegistry in the camel-consul component (class org.apache.camel.component.consul.ConsulRegistry and i. Upgrade to upgrade to version 4.19.0 and remove the vulnerable authz pattern.
CVE-2026-40473 - The camel-mina component's MinaConverter.toObjectInput(IoBuffer) type converter wraps an IoBuffer in a java.io
High remediation recipe for The camel-mina component's MinaConverter.toObjectInput(IoBuffer) type converter wraps an IoBuffer in a java.io. Upgrade to version to ObjectInput and remove the vulnerable authz pattern.
CVE-2026-40858 - The camel-infinispan component's ProtoStream-based remote aggregation repository deserializes data read from a
High remediation recipe for The camel-infinispan component's ProtoStream-based remote aggregation repository deserializes data read from a. Upgrade to upgrade to version 4.20.0 and remove the vulnerable authz pattern.
CVE-2026-40860 - JmsBinding.extractBodyFromJms() in camel-jms, and the equivalent JmsBinding class in camel-sjms, deserialized
Critical remediation recipe for JmsBinding.extractBodyFromJms() in camel-jms, and the equivalent JmsBinding class in camel-sjms, deserialized. Upgrade to upgrade to version 4.20.0 and remove the vulnerable deserialization pattern.
CVE-2026-23902 — Apache DolphinScheduler authorization bypass
Incorrect authorization in DolphinScheduler before 3.4.1 allows authenticated users to run workflows with undefined tenants. Upgrade to 3.4.1+.
CVE-2026-22016 - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac
High remediation recipe for Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34282 - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac
High remediation recipe for Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-14813 - Bouncy Castle for Java GOST 28147 CTR mode reuses keystream after 255 blocks
Critical remediation recipe for Bouncy Castle for Java GOST 28147 CTR mode reuses keystream after 255 blocks. Upgrade to 1.80.2, 1.81.1, 1.84 and remove the vulnerable authz pattern.
CVE-2026-40477 - Thymeleaf is a server-side Java template engine for web and standalone environments
Critical remediation recipe for Thymeleaf is a server-side Java template engine for web and standalone environments. Upgrade to fixed in version 3.1.4.RELEASE. and remove the vulnerable authz pattern.
CVE-2026-40478 - Thymeleaf is a server-side Java template engine for web and standalone environments
Critical remediation recipe for Thymeleaf is a server-side Java template engine for web and standalone environments. Upgrade to fixed in version 3.1.4.RELEASE. and remove the vulnerable authz pattern.
CVE-2026-3505 - Allocation of resources without limits or throttling, Uncontrolled Resource Consumption vulnerability in Legio
High remediation recipe for Allocation of resources without limits or throttling, Uncontrolled Resource Consumption vulnerability in Legio. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-5588 - Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc
High remediation recipe for Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-5598 - Covert timing channel vulnerability in Legion of the Bouncy Castle Inc
High remediation recipe for Covert timing channel vulnerability in Legion of the Bouncy Castle Inc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-28367 - Undertow HTTP request smuggling
Critical HTTP request smuggling in Undertow. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-28368 - Undertow HTTP request smuggling
Critical HTTP request smuggling in Undertow. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-33701 - OpenTelemetry Java Instrumentation provides OpenTelemetry auto-instrumentation and instrumentation libraries f
Critical remediation recipe for OpenTelemetry Java Instrumentation provides OpenTelemetry auto-instrumentation and instrumentation libraries f. Upgrade to version 16 and earlier and remove the vulnerable authz pattern.
CVE-2026-33180 - HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java
High remediation recipe for HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. Upgrade to version 6.9.0 and remove the vulnerable authz pattern.
CVE-2026-33228 - flatted security control bypass
Critical security control bypass in flatted. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-29062 - jackson-core contains core low-level incremental (streaming) parser and generator abstractions used by Jacks
High remediation recipe for jackson-core contains core low-level incremental (streaming) parser and generator abstractions used by Jacks. Upgrade to version 3.0.0 to before version 3.1.0 and remove the vulnerable command-injection pattern.
CVE-2026-27830 - c3p0, a JDBC Connection pooling library, is vulnerable to attack via maliciously crafted Java-serialized objec
High remediation recipe for c3p0, a JDBC Connection pooling library, is vulnerable to attack via maliciously crafted Java-serialized objec. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-27727 - mchange-commons-java, a library that provides Java utilities, includes code that mirrors early implementations
Critical remediation recipe for mchange-commons-java, a library that provides Java utilities, includes code that mirrors early implementations. Upgrade to version 0.4.0. No known workarounds are available. Versions prior to and remove the vulnerable authz pattern.
CVE-2026-25747 - Deserialization of Untrusted Data vulnerability in Apache Camel LevelDB component
High remediation recipe for Deserialization of Untrusted Data vulnerability in Apache Camel LevelDB component. Upgrade to upgrade to version 4.18.0 and remove the vulnerable deserialization pattern.
CVE-2026-25521 - versions from 2.0.12 to prototype pollution
Critical prototype pollution in versions from 2.0.12 to. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-21932 - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac
High remediation recipe for Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-21945 - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac
High remediation recipe for Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Orac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-12543 - A flaw was found in the Undertow HTTP server core, which is used in WildFly, JBoss EAP, and other Java applica
Critical remediation recipe for A flaw was found in the Undertow HTTP server core, which is used in WildFly, JBoss EAP, and other Java applica. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-9784 - Undertow MadeYouReset HTTP/2 DDoS Vulnerability
High remediation recipe for Undertow MadeYouReset HTTP/2 DDoS Vulnerability. Upgrade to 2.2.38.Final, 2.3.20.Final and remove the vulnerable dos pattern.
CVE-2024-38286 - Apache Tomcat Allocation of Resources Without Limits or Throttling vulnerability
High remediation recipe for Apache Tomcat Allocation of Resources Without Limits or Throttling vulnerability. Upgrade to 10.1.25, 11.0.0-M21, 9.0.90 and remove the vulnerable command-injection pattern.
CVE-2022-21952 - A Missing Authentication for Critical Function vulnerability in spacewalk-java of SUSE Manager Server 4.1, SUS
High remediation recipe for A Missing Authentication for Critical Function vulnerability in spacewalk-java of SUSE Manager Server 4.1, SUS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2015-1778 - Opendaylight will authenticate any username and password combination
Critical remediation recipe for Opendaylight will authenticate any username and password combination. Upgrade to 0.2.3-Helium-SR3 and remove the vulnerable authz pattern.
CVE-2016-0750 - Infinispan: Deserialization of untrusted data in the Hot Rod Java client via automatic byte-array deserialization
High remediation recipe for Infinispan: Deserialization of untrusted data in the Hot Rod Java client via automatic byte-array deserialization. Upgrade to 9.1.0.Final and remove the vulnerable deserialization pattern.
CVE-2022-23913 - Apache ActiveMQ Artemis Uncontrolled Resource Consumption (DoS)
High remediation recipe for Apache ActiveMQ Artemis Uncontrolled Resource Consumption (DoS). Upgrade to 2.19.1 and remove the vulnerable command-injection pattern.
CVE-2021-44228 — Log4Shell
JNDI-lookup RCE in Log4j 2.x. Upgrade to 2.17.1+, set `formatMsgNoLookups=true`, remove `JndiLookup.class` from vendored JARs.
CVE-2021-26118 - Apache ActiveMQ Artemis vulnerable to Improper Access Control
High remediation recipe for Apache ActiveMQ Artemis vulnerable to Improper Access Control. Upgrade to 2.16.0 and remove the vulnerable authz pattern.
CVE-2019-16869 - HTTP Request Smuggling in Netty
High remediation recipe for HTTP Request Smuggling in Netty. Upgrade to 4.1.42.Final and remove the vulnerable request-smuggling pattern.
CVE-2017-8046 - Malicious PATCH requests submitted to servers using Spring Data REST versions prior to 2.6.9 (Ingalls SR9), ve
Critical remediation recipe for Malicious PATCH requests submitted to servers using Spring Data REST versions prior to 2.6.9 (Ingalls SR9), ve. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
javascript/npm222 recipes
CVE-2026-49866 - libp2p: CPU DoS via oversized IHAVE and IWANT control message arrays
High remediation recipe for libp2p: CPU DoS via oversized IHAVE and IWANT control message arrays. Upgrade to 16.0.0 and remove the vulnerable authz pattern.
CVE-2026-55665 - Grist is spreadsheet software using Python as its formula language
High remediation recipe for Grist is spreadsheet software using Python as its formula language. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-56667 - ZITADEL is an open source identity management platform
High remediation recipe for ZITADEL is an open source identity management platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-57214 - RabbitMQ is a messaging and streaming broker
High remediation recipe for RabbitMQ is a messaging and streaming broker. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13461 - When coupled with the SSL bypass vulnerability, JavaScript can be injected into a WebView in the PayRange vers
Critical remediation recipe for When coupled with the SSL bypass vulnerability, JavaScript can be injected into a WebView in the PayRange vers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14245 - The miniOrange OTP Login, Verification and SMS Notifications plugin for WordPress is vulnerable to Authenticat
Critical remediation recipe for The miniOrange OTP Login, Verification and SMS Notifications plugin for WordPress is vulnerable to Authenticat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-55424 - Discourse is an open-source discussion platform
High remediation recipe for Discourse is an open-source discussion platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59833 - SiYuan is an open-source personal knowledge management system
High remediation recipe for SiYuan is an open-source personal knowledge management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59855 - SiYuan is an open-source personal knowledge management system
High remediation recipe for SiYuan is an open-source personal knowledge management system. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-54527 - JupyterLab Git is a Git extension for JupyterLab
Critical remediation recipe for JupyterLab Git is a Git extension for JupyterLab. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55575 - LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript
High remediation recipe for LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55596 - Plate is a rich-text editor with AI and shadcn/ui
High remediation recipe for Plate is a rich-text editor with AI and shadcn/ui. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55849 - @cyclonedx/cyclonedx-npm creates CycloneDX Software Bill of Materials from npm projects
High remediation recipe for @cyclonedx/cyclonedx-npm creates CycloneDX Software Bill of Materials from npm projects. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55878 - Symfony UX is a JavaScript ecosystem for Symfony
High remediation recipe for Symfony UX is a JavaScript ecosystem for Symfony. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57256 - When the application opens a PDF and executes JavaScript, it performs abnormal operations on the list box fiel
High remediation recipe for When the application opens a PDF and executes JavaScript, it performs abnormal operations on the list box fiel. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57480 - Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js
High remediation recipe for Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59802 - PasswordPusher before 2.8.1 accepts data URI schemes in URL push payloads due to insufficient validation in th
High remediation recipe for PasswordPusher before 2.8.1 accepts data URI schemes in URL push payloads due to insufficient validation in th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59869 - js-yaml is a JavaScript YAML parser and dumper
High remediation recipe for js-yaml is a JavaScript YAML parser and dumper. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59873 - node-tar is a tar archive manipulation library for Node.js
High remediation recipe for node-tar is a tar archive manipulation library for Node.js. Upgrade to fixed in version 7.5.19. and remove the vulnerable authz pattern.
CVE-2026-59874 - node-tar is a tar archive manipulation library for Node.js
High remediation recipe for node-tar is a tar archive manipulation library for Node.js. Upgrade to fixed in version 7.5.18. and remove the vulnerable authz pattern.
CVE-2026-53512 - Better Auth: OAuth refresh-token replay via missing client authentication on oidc-provider and mcp plugins
Critical remediation recipe for Better Auth: OAuth refresh-token replay via missing client authentication on oidc-provider and mcp plugins. Upgrade to 1.6.11 and remove the vulnerable command-injection pattern.
CVE-2026-53513 - @better-auth/sso provider registration has server-side request forgery via unvalidated OIDC endpoints
Critical remediation recipe for @better-auth/sso provider registration has server-side request forgery via unvalidated OIDC endpoints. Upgrade to 1.6.11 and remove the vulnerable command-injection pattern.
CVE-2026-53514 - Better Auth vulnerable to unauthorized invitation acceptance via unverified email match in organization plugin
High remediation recipe for Better Auth vulnerable to unauthorized invitation acceptance via unverified email match in organization plugin. Upgrade to 1.6.11 and remove the vulnerable command-injection pattern.
CVE-2026-53516 - Better Auth has an account takeover issue via OAuth auto-link to unverified pre-registered email
High remediation recipe for Better Auth has an account takeover issue via OAuth auto-link to unverified pre-registered email. Upgrade to 1.6.11 and remove the vulnerable command-injection pattern.
CVE-2026-53517 - Better Auth: OAuth refresh-token rotation forks the token family on concurrent redemption
High remediation recipe for Better Auth: OAuth refresh-token rotation forks the token family on concurrent redemption. Upgrade to 1.6.0, 1.6.11 and remove the vulnerable command-injection pattern.
CVE-2026-53518 - @better-auth/oauth-provider's OAuth authorization-code grant allows concurrent redemption when two token requests race t
High remediation recipe for @better-auth/oauth-provider's OAuth authorization-code grant allows concurrent redemption when two token requests race t. Upgrade to 1.6.11 and remove the vulnerable command-injection pattern.
CVE-2026-56812 - Improper Check for Unusual or Exceptional Conditions vulnerability in phoenixframework phoenix (Presence JavaS
High remediation recipe for Improper Check for Unusual or Exceptional Conditions vulnerability in phoenixframework phoenix (Presence JavaS. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-59800 - 9router: Missing Authorization and OS Command Injection
Critical remediation recipe for 9router: Missing Authorization and OS Command Injection. Upgrade to 0.4.44 and remove the vulnerable command-injection pattern.
CVE-2026-14181 - @fastify/middie versions 9.1.0 through 9.3.2 fail to guard the URL normalization step used by the standalone e
High remediation recipe for @fastify/middie versions 9.1.0 through 9.3.2 fail to guard the URL normalization step used by the standalone e. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-11589 - The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not properly validate uploade
High remediation recipe for The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not properly validate uploade. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-48795 - @adonisjs/bodyparser has an incomplete fix for CVE-2026-25754
High remediation recipe for @adonisjs/bodyparser has an incomplete fix for CVE-2026-25754. Upgrade to 10.1.5, 11.0.3 and remove the vulnerable prototype-pollution pattern.
CVE-2026-49473 - @cedar-policy/authorization-for-expressjs has an authorization bypass via query string manipulation
High remediation recipe for @cedar-policy/authorization-for-expressjs has an authorization bypass via query string manipulation. Upgrade to 0.3.0 and remove the vulnerable command-injection pattern.
CVE-2026-56264 - Crawl4AI before 0.8.7 contains an arbitrary JavaScript execution vulnerability in the Docker API server's /exe
High remediation recipe for Crawl4AI before 0.8.7 contains an arbitrary JavaScript execution vulnerability in the Docker API server's /exe. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-58138 - Orkes Conductor 3.21.21 before 3.30.2 contains an unauthenticated remote code execution vulnerability that all
Critical remediation recipe for Orkes Conductor 3.21.21 before 3.30.2 contains an unauthenticated remote code execution vulnerability that all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-10083 - The APCu Manager WordPress plugin before 4.5.0 does not escape APCu object-cache keys before rendering them in
High remediation recipe for The APCu Manager WordPress plugin before 4.5.0 does not escape APCu object-cache keys before rendering them in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-56017 - JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first me
High remediation recipe for JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first me. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-56018 - JavaScript::Minifier::XS versions before 0.16 for Perl leak memory on every call to minify(), allowing unbound
High remediation recipe for JavaScript::Minifier::XS versions before 0.16 for Perl leak memory on every call to minify(), allowing unbound. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-55487 - pnpm allowBuilds identity spoof
Critical pnpm allowBuilds bypass where alternate identities can evade expected package checks. Upgrade to 10.34.2+ or 11.5.3+ and canonicalize dependency identities before trust decisions.
CVE-2026-55697 - pnpm global bin name traversal
Critical pnpm arbitrary file write/delete through crafted global executable names. Upgrade to 10.34.2+ or 11.5.3+ and constrain generated bin paths to the intended root.
CVE-2026-55698 - pnpm env lockfile short-circuit
Critical pnpm path traversal where project env lockfile handling can short-circuit expected checks. Upgrade to 10.34.2+ or 11.5.3+ and hard-fail on traversal-shaped env lockfile inputs.
CVE-2026-55700 - pnpm stage download symlink traversal
Critical pnpm path traversal where stage-download symlink targets incorporate crafted package names. Upgrade to 10.34.3+ or 11.5.3+ and enforce final-path containment before symlink creation.
GHSA-72r4-9c5j-mj57 - pnpm better-node-range CPU exhaustion
High-severity pnpm denial of service in better-node-range parsing. Upgrade to 10.34.4+ or 11.8.0+ and reject attacker-controlled engine range parsing on untrusted install metadata.
GHSA-72R4-9C5J-MJ57 - pnpm security control bypass
High security control bypass in pnpm. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
GHSA-fr4h-3cph-29xv - pnpm protocol specifier bypass
High-severity pnpm integrity bypass where protocol-style specifiers can short-circuit dependency verification. Upgrade to 10.34.4+ or 11.8.0+ and fail closed on malformed dependency identities.
GHSA-FR4H-3CPH-29XV - pnpm security control bypass
High security control bypass in pnpm. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
GHSA-qrv3-253h-g69c - pnpm configDependencies symlink traversal
High-severity pnpm path traversal where env lockfile configDependencies names can create symlinks outside node_modules/.pnpm-config. Upgrade to 10.34.4+ or 11.8.0+ and reject traversal-shaped lockfile dependency names.
GHSA-QRV3-253H-G69C - pnpm path traversal
High path traversal in pnpm. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-48615 - A flaw in Node.js proxy tunnel error handling could expose proxy credentials in ERR_PROXY_TUNNEL error messa
High remediation recipe for A flaw in Node.js proxy tunnel error handling could expose proxy credentials in ERR_PROXY_TUNNEL error messa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-48619 - A flaw in Node.js HTTP/2 client allows a server to send an unlimited number of ORIGIN frames, which could lead
High remediation recipe for A flaw in Node.js HTTP/2 client allows a server to send an unlimited number of ORIGIN frames, which could lead. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-48801 - LinkifyIt#match scan loop has quadratic algorithmic complexity
High remediation recipe for LinkifyIt#match scan loop has quadratic algorithmic complexity. Upgrade to 5.0.1 and remove the vulnerable authz pattern.
CVE-2026-48930 - A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebindin
Critical remediation recipe for A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebindin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-48933 - A flaw in Node.js WebCrypto implementation can crash the process if the input of subtle.encrypt() is a multi
High remediation recipe for A flaw in Node.js WebCrypto implementation can crash the process if the input of subtle.encrypt() is a multi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-49252 - deepstream is vulnerable to prototype pollution
Critical remediation recipe for deepstream is vulnerable to prototype pollution. Upgrade to 10.0.5 and remove the vulnerable prototype-pollution pattern.
CVE-2026-49293 - js-toml vulnerable to CPU exhaustion via O(n^2) BigInt construction on radix-prefixed integer literals
High remediation recipe for js-toml vulnerable to CPU exhaustion via O(n^2) BigInt construction on radix-prefixed integer literals. Upgrade to 1.1.1 and remove the vulnerable prototype-pollution pattern.
CVE-2026-49357 - Streamable HTTP mode exposes LINE Desktop read/send tools without MCP authentication
High remediation recipe for Streamable HTTP mode exposes LINE Desktop read/send tools without MCP authentication. Upgrade to 1.1.2 and remove the vulnerable command-injection pattern.
CVE-2026-50015 - pnpm malicious patch path traversal
Critical pnpm arbitrary file write/delete via malicious patch file paths. Upgrade to 10.34.0+ or 11.4.0+ and constrain patch extraction and application paths to the intended workspace root.
CVE-2026-50016 - pnpm: Transitive dependency alias path traversal allows project path override via symlink replacement
High remediation recipe for pnpm: Transitive dependency alias path traversal allows project path override via symlink replacement. Upgrade to 10.34.0, 11.4.0 and remove the vulnerable path-traversal pattern.
CVE-2026-48995 - pnpm is a package manager. Prior to 10.33.4 and 11.0.7, a malicious codeload.github.com server can serve whate
High remediation recipe for pnpm is a package manager. Prior to 10.33.4 and 11.0.7, a malicious codeload.github.com server can serve whate. Upgrade to fixed in 10.33.4 and 11.0.7. and remove the vulnerable supply-chain pattern.
CVE-2026-9086 - A flaw was found in Keycloak. A remote attacker with administrative privileges, specifically those with manag
High remediation recipe for A flaw was found in Keycloak. A remote attacker with administrative privileges, specifically those with manag. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-11998 - A flaw in AngularJS' Strict Contextual Escaping (SCE) logic allows bypassing certain SCE policies for resource
High remediation recipe for A flaw in AngularJS' Strict Contextual Escaping (SCE) logic allows bypassing certain SCE policies for resource. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-44726 - Deno is a JavaScript, TypeScript, and WebAssembly runtime
High remediation recipe for Deno is a JavaScript, TypeScript, and WebAssembly runtime. Upgrade to upgraded to TLS and remove the vulnerable authz pattern.
CVE-2026-49401 - Deno is a JavaScript, TypeScript, and WebAssembly runtime
High remediation recipe for Deno is a JavaScript, TypeScript, and WebAssembly runtime. Upgrade to fixed in 2.7.14. and remove the vulnerable command-injection pattern.
CVE-2026-49402 - Deno is a JavaScript, TypeScript, and WebAssembly runtime
High remediation recipe for Deno is a JavaScript, TypeScript, and WebAssembly runtime. Upgrade to fixed in 2.7.10. and remove the vulnerable command-injection pattern.
CVE-2026-49241 - The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates
High remediation recipe for The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. Upgrade to fixed in 21.2.4. and remove the vulnerable authz pattern.
CVE-2026-50168 - Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript
High remediation recipe for Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript. Upgrade to fixed in 22.0.0-rc.2 and remove the vulnerable command-injection pattern.
CVE-2026-50170 - Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript
High remediation recipe for Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript. Upgrade to fixed in 22.0.0-rc.2 and remove the vulnerable authz pattern.
CVE-2026-50178 - The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates
High remediation recipe for The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. Upgrade to fixed in 21.2.4. and remove the vulnerable authz pattern.
CVE-2026-54268 - Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript
High remediation recipe for Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript. Upgrade to fixed in 22.0.1 and remove the vulnerable command-injection pattern.
CVE-2026-55602 - http-proxy-middleware is node.js http-proxy middleware
High remediation recipe for http-proxy-middleware is node.js http-proxy middleware. Upgrade to fixed in 2.0.10 and remove the vulnerable ssrf pattern.
CVE-2026-12048 - Stored cross-site scripting in pgAdmin 4's error-rendering and plan-node-rendering paths
Critical remediation recipe for Stored cross-site scripting in pgAdmin 4's error-rendering and plan-node-rendering paths. Upgrade to patched to _.escape Recheck Cond and Exact Heap Blocks at constructi and remove the vulnerable xss pattern.
CVE-2026-58399 - @acastellon/auth: Authentication bypass via spoofable headers in validateToken()
Critical remediation recipe for @acastellon/auth: Authentication bypass via spoofable headers in validateToken(). Upgrade to 2.3.0 and remove the vulnerable authz pattern.
CVE-2026-48779 - ws is an open source WebSocket client and server for Node.js
High remediation recipe for ws is an open source WebSocket client and server for Node.js. Upgrade to fixed in versions 5.2.5 and remove the vulnerable command-injection pattern.
CVE-2026-6734 - Impact When using Socks5ProxyAgent security control bypass
High security control bypass in Impact When using Socks5ProxyAgent. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-6734 - undici Socks5ProxyAgent cross-origin pool confusion
High-severity undici Socks5ProxyAgent cross-origin pool confusion. A shared SOCKS proxy pool can silently send credentials and request bodies for one customer origin to another origin.
CVE-2026-6734 - undici Socks5ProxyAgent cross-origin pool reuse
High remediation recipe for undici Socks5ProxyAgent cross-origin pool reuse. Apply undici 7.26.0 or 8.2.0 and remove the vulnerable proxy-routing pattern.
CVE-2026-44486 - Axios is a promise based HTTP client for the browser and Node.js
High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 0.32.0 and 1.16.0. and remove the vulnerable authz pattern.
CVE-2026-44487 - Axios is a promise based HTTP client for the browser and Node.js
High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 0.32.0 and 1.16.0. and remove the vulnerable authz pattern.
CVE-2026-44488 - Axios is a promise based HTTP client for the browser and Node.js
High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 0.32.0 and 1.16.0. and remove the vulnerable command-injection pattern.
CVE-2026-44492 - Axios is a promise based HTTP client for the browser and Node.js
High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 0.32.0 and 1.16.0. and remove the vulnerable authz pattern.
CVE-2026-44494 - Axios is a promise based HTTP client for the browser and Node.js
High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 1.16.0. and remove the vulnerable prototype-pollution pattern.
CVE-2026-44495 - Axios is a promise based HTTP client for the browser and Node.js
High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 0.31.1 and 1.15.2. and remove the vulnerable prototype-pollution pattern.
CVE-2026-44496 - Axios is a promise based HTTP client for the browser and Node.js
High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 0.32.0 and 1.16.0. and remove the vulnerable authz pattern.
CVE-2026-46625 - JavaScript Cookie is a JavaScript API for handling cookies, client-side
High remediation recipe for JavaScript Cookie is a JavaScript API for handling cookies, client-side. Upgrade to version 3.0.7 and remove the vulnerable prototype-pollution pattern.
CVE-2025-71319 - image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanentl
High remediation recipe for image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanentl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-42570 - Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien
High remediation recipe for Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien. Upgrade to version 5.6.3 to before version 5.8.1 and remove the vulnerable command-injection pattern.
CVE-2026-47430 - Cordova InAppBrowser callback spoofing on iOS
Critical iOS callback spoofing in cordova-plugin-inappbrowser. Upgrade to 6.0.1+, treat InAppBrowser content as untrusted, and avoid keeping sensitive plugin callbacks pending while third-party pages are loaded.
CVE-2026-47684 - Sync-in Server: SSRF protection bypass via IPv4-mapped IPv6 addresses in regExpPrivateIP
High remediation recipe for Sync-in Server: SSRF protection bypass via IPv4-mapped IPv6 addresses in regExpPrivateIP. Upgrade to 2.3.0 and remove the vulnerable command-injection pattern.
CVE-2024-52011 - launch-editor allows users to open files with line numbers in editor from Node.js
High remediation recipe for launch-editor allows users to open files with line numbers in editor from Node.js. Upgrade to version 2.9.0 and remove the vulnerable authz pattern.
CVE-2026-44724 - systeminformation is a System and OS information library for node.js
High remediation recipe for systeminformation is a System and OS information library for node.js. Upgrade to fixed in 5.31.6. and remove the vulnerable command-injection pattern.
CVE-2026-45357 - LiquidJS has a memory and render limit bypass via unbounded width padding in date filter (strftime)
High remediation recipe for LiquidJS has a memory and render limit bypass via unbounded width padding in date filter (strftime). Upgrade to Vendor-fixed release and remove the vulnerable authz pattern.
CVE-2026-45617 - LiquidJS Vulnerable to ReDoS via Quadratic Backtracking in strip_html Filter Regex
High remediation recipe for LiquidJS Vulnerable to ReDoS via Quadratic Backtracking in strip_html Filter Regex. Upgrade to 10.26.0 and remove the vulnerable authz pattern.
CVE-2026-42089 - yeoman-environment Vulnerable to Arbitrary Package Installation without User Confirmation
High remediation recipe for yeoman-environment Vulnerable to Arbitrary Package Installation without User Confirmation. Upgrade to 6.0.1 and remove the vulnerable command-injection pattern.
CVE-2026-9277 - shell-quote's quote() function did not validate object-token inputs against the operator model used by pars
High remediation recipe for shell-quote's quote() function did not validate object-token inputs against the operator model used by pars. Upgrade to Fixed by replacing the per-character escape with strict shape vali and remove the vulnerable command-injection pattern.
CVE-2026-47759 - TinyMCE data-mce attribute XSS
High-severity TinyMCE stored XSS via unsafe data-mce-* attributes. Upgrade TinyMCE to 5.11.1 LTS, 7.9.3+, or 8.5.1+, and verify stored HTML sanitization.
CVE-2026-47760 - TinyMCE nested SVG sanitizer XSS
High-severity TinyMCE stored XSS in 6.8.x through 7.0.x caused by SVG namespace sanitizer handling. Upgrade to 7.1.0+ or a newer fixed line and verify rich-text SVG handling.
CVE-2026-47761 - TinyMCE media data-mce-object XSS
High-severity TinyMCE stored XSS in the media plugin via data-mce-object and data-mce-p-* attributes. Upgrade to 5.11.1 LTS, 7.9.3+, or 8.5.1+ and recheck rich-media rendering.
CVE-2026-47762 - TinyMCE mce:protected comment XSS
High-severity TinyMCE stored XSS through forged mce:protected comments when the protect option is used. Upgrade to 5.11.1 LTS, 7.9.3+, or 8.5.1+ and verify protected-content restoration.
CVE-2026-38728 - smtp-server's command parser memory exhaustion denial-of-service
High remediation recipe for smtp-server's command parser memory exhaustion denial-of-service. Upgrade to 3.18.3 and remove the vulnerable dos pattern.
CVE-2026-46477 - FlowiseAI: Dataset create+update mass-assignment allows cross-workspace dataset takeover
High remediation recipe for FlowiseAI: Dataset create+update mass-assignment allows cross-workspace dataset takeover. Upgrade to 3.1.2 and remove the vulnerable command-injection pattern.
CVE-2026-46478 - FlowiseAI: DatasetRow create+update mass-assignment allows cross-workspace row takeover
High remediation recipe for FlowiseAI: DatasetRow create+update mass-assignment allows cross-workspace row takeover. Upgrade to 3.1.2 and remove the vulnerable command-injection pattern.
CVE-2026-46479 - FlowiseAI: Evaluation create+update mass-assignment allows cross-workspace evaluation takeover
High remediation recipe for FlowiseAI: Evaluation create+update mass-assignment allows cross-workspace evaluation takeover. Upgrade to 3.1.2 and remove the vulnerable command-injection pattern.
CVE-2026-43997 - vm2 is an open source vm/sandbox for Node.js
Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable command-injection pattern.
CVE-2026-43998 - vm2 is an open source vm/sandbox for Node.js
High remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable command-injection pattern.
CVE-2026-43999 - vm2 is an open source vm/sandbox for Node.js
Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable command-injection pattern.
CVE-2026-44001 - vm2 is an open source vm/sandbox for Node.js
High remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable prototype-pollution pattern.
CVE-2026-44004 - vm2 is an open source vm/sandbox for Node.js
High remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable command-injection pattern.
CVE-2026-44005 - vm2 is an open source vm/sandbox for Node.js
Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable command-injection pattern.
CVE-2026-44006 - vm2 is an open source vm/sandbox for Node.js
Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.0. and remove the vulnerable command-injection pattern.
CVE-2026-44008 - vm2 is an open source vm/sandbox for Node.js
Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.2. and remove the vulnerable command-injection pattern.
CVE-2026-44009 - vm2 is an open source vm/sandbox for Node.js
Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.2. and remove the vulnerable command-injection pattern.
CVE-2026-44289 - protobufjs compiles protobuf definitions into JavaScript (JS) functions
High remediation recipe for protobufjs compiles protobuf definitions into JavaScript (JS) functions. Upgrade to fixed in 7.5.6 and 8.0.2. and remove the vulnerable authz pattern.
CVE-2026-44293 - protobufjs compiles protobuf definitions into JavaScript (JS) functions
High remediation recipe for protobufjs compiles protobuf definitions into JavaScript (JS) functions. Upgrade to version could include an unsafe expression derived from a schema-con and remove the vulnerable authz pattern.
CVE-2026-44578 - Next.js is a React framework for building full-stack web applications
High remediation recipe for Next.js is a React framework for building full-stack web applications. Upgrade to fixed in 15.5.16 and 16.2.5. and remove the vulnerable command-injection pattern.
CVE-2026-45411 - vm2 is an open source vm/sandbox for Node.js
Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to fixed in 3.11.3. and remove the vulnerable command-injection pattern.
CVE-2026-8389 - JIT miscompilation in the JavaScript Engine: JIT component
High remediation recipe for JIT miscompilation in the JavaScript Engine: JIT component. Upgrade to fixed in Firefox 150.0.3. and remove the vulnerable authz pattern.
CVE-2026-8390 - Use-after-free in the JavaScript: WebAssembly component
High remediation recipe for Use-after-free in the JavaScript: WebAssembly component. Upgrade to fixed in Firefox 150.0.3. and remove the vulnerable authz pattern.
CVE-2026-42264 - Axios is a promise based HTTP client for the browser and Node.js
High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to version 1.0.0 to before version 1.15.2 and remove the vulnerable prototype-pollution pattern.
CVE-2026-41139 - Math.js is an extensive math library for JavaScript and Node.js
High remediation recipe for Math.js is an extensive math library for JavaScript and Node.js. Upgrade to version 13.1.0 to before version 15.2.0 and remove the vulnerable authz pattern.
CVE-2026-41672 - xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module
High remediation recipe for xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. Upgrade to version 0.6.0 and prior and remove the vulnerable authz pattern.
CVE-2026-41673 - xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module
High remediation recipe for xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. Upgrade to version 0.6.0 and prior and remove the vulnerable dos pattern.
CVE-2026-41674 - xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module
High remediation recipe for xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. Upgrade to version 0.6.0 and prior and remove the vulnerable authz pattern.
CVE-2026-41675 - xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module
High remediation recipe for xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. Upgrade to version 0.6.0 and prior and remove the vulnerable authz pattern.
CVE-2026-24118 - vm2 is an open source vm/sandbox for Node.js
Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to version 3.11.0 and remove the vulnerable command-injection pattern.
CVE-2026-24120 - vm2 is an open source vm/sandbox for Node.js
Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to version 3.10.5 and remove the vulnerable command-injection pattern.
CVE-2026-24781 - vm2 is an open source vm/sandbox for Node.js
Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to version 3.11.0 and remove the vulnerable command-injection pattern.
CVE-2026-26332 - vm2 is an open source vm/sandbox for Node.js
Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to version 3.11.0 and remove the vulnerable command-injection pattern.
CVE-2026-26956 - vm2 is an open source vm/sandbox for Node.js
Critical remediation recipe for vm2 is an open source vm/sandbox for Node.js. Upgrade to version 3.10.4 and remove the vulnerable command-injection pattern.
CVE-2026-6321 - fast-uri encoded path traversal
fast-uri can normalize encoded dot segments into policy-bypassing paths. Upgrade to 3.1.1+ and audit URL path checks.
CVE-2025-14576 - Insufficient validation of node IDs in Qt SVG module allows arbitrary QML/JavaScript code injection when loadi
High remediation recipe for Insufficient validation of node IDs in Qt SVG module allows arbitrary QML/JavaScript code injection when loadi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-40897 - Math.js is an extensive math library for JavaScript and Node.js
High remediation recipe for Math.js is an extensive math library for JavaScript and Node.js. Upgrade to fixed in 15.2.0. and remove the vulnerable command-injection pattern.
CVE-2026-42033 - Axios is a promise based HTTP client for the browser and Node.js
High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 1.15.1 and 0.31.1. and remove the vulnerable prototype-pollution pattern.
CVE-2026-42039 - Axios is a promise based HTTP client for the browser and Node.js
High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 1.15.1 and 0.31.1. and remove the vulnerable dos pattern.
CVE-2026-42043 - Axios is a promise based HTTP client for the browser and Node.js
High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 1.15.1 and 0.31.1. and remove the vulnerable authz pattern.
CVE-2026-6754 - Use-after-free in the JavaScript Engine component
High remediation recipe for Use-after-free in the JavaScript Engine component. Upgrade to fixed in Firefox 150 and remove the vulnerable authz pattern.
CVE-2026-41478 - Saltcorn mobile-sync SQL injection
Critical Saltcorn mobile-sync SQL injection in /sync/load_changes and /sync/deletes. Upgrade to fixed Saltcorn releases, disable exposed sync routes until patched, and verify sync metadata is bound and type-checked.
CVE-2026-28291 - simple-git enables running native Git commands from JavaScript
High remediation recipe for simple-git enables running native Git commands from JavaScript. Upgrade to fixed in version 3.32.0. and remove the vulnerable authz pattern.
CVE-2026-5483 - A flaw was found in odh-dashboard in Red Hat Openshift AI
High remediation recipe for A flaw was found in odh-dashboard in Red Hat Openshift AI. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-62718 - Axios is a promise based HTTP client for the browser and Node.js
Critical remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in 1.15.0 and 0.31.0. and remove the vulnerable command-injection pattern.
CVE-2026-39983 - basic-ftp is an FTP client for Node.js. Prior to 5.2.1, basic-ftp allows FTP command injection via CRLF sequen
High remediation recipe for basic-ftp is an FTP client for Node.js. Prior to 5.2.1, basic-ftp allows FTP command injection via CRLF sequen. Upgrade to fixed in 5.2.1. and remove the vulnerable command-injection pattern.
CVE-2026-39363 - Vite is a frontend tooling framework for JavaScript
High remediation recipe for Vite is a frontend tooling framework for JavaScript. Upgrade to fixed in 6.4.2 and remove the vulnerable command-injection pattern.
CVE-2026-39364 - Vite is a frontend tooling framework for JavaScript
High remediation recipe for Vite is a frontend tooling framework for JavaScript. Upgrade to fixed in 7.3.2 and 8.0.5. and remove the vulnerable authz pattern.
CVE-2026-34986 - Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, inc
High remediation recipe for Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, inc. Upgrade to fixed in 4.1.4 and 3.0.5. and remove the vulnerable crypto pattern.
CVE-2026-34769 - Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS
High remediation recipe for Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. Upgrade to patched in versions 38.8.6 and remove the vulnerable authz pattern.
CVE-2026-34771 - Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS
High remediation recipe for Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. Upgrade to patched in versions 38.8.6 and remove the vulnerable dos pattern.
CVE-2026-34774 - Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS
High remediation recipe for Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. Upgrade to patched in versions 39.8.1 and remove the vulnerable dos pattern.
CVE-2026-34780 - Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS
High remediation recipe for Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. Upgrade to patched in versions 39.8.0 and remove the vulnerable xss pattern.
CVE-2026-34601 - xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module
High remediation recipe for xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. Upgrade to patched in xmldom version 0.6.0 and and remove the vulnerable authz pattern.
CVE-2026-21710 - A flaw in Node.js HTTP request handling causes an uncaught TypeError when a request is received with a heade
High remediation recipe for A flaw in Node.js HTTP request handling causes an uncaught TypeError when a request is received with a heade. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable prototype-pollution pattern.
CVE-2026-33891 - Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript
High remediation recipe for Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript. Upgrade to version 1.4.0 and remove the vulnerable dos pattern.
CVE-2026-33894 - Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript
High remediation recipe for Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript. Upgrade to version 1.4.0 and remove the vulnerable crypto pattern.
CVE-2026-33895 - Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript
High remediation recipe for Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript. Upgrade to version 1.4.0 and remove the vulnerable authz pattern.
CVE-2026-33896 - Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript
High remediation recipe for Forge (also called node-forge) is a native implementation of Transport Layer Security in JavaScript. Upgrade to version 1.4.0 and remove the vulnerable command-injection pattern.
CVE-2026-33937 - Handlebars provides the power necessary to let users build semantic templates
Critical remediation recipe for Handlebars provides the power necessary to let users build semantic templates. Upgrade to Version 4.7.9 fixes the issue. Some workarounds are available. Valid and remove the vulnerable authz pattern.
CVE-2026-33938 - Handlebars provides the power necessary to let users build semantic templates
High remediation recipe for Handlebars provides the power necessary to let users build semantic templates. Upgrade to Version 4.7.9 fixes the issue. Some workarounds are available. First and remove the vulnerable authz pattern.
CVE-2026-33939 - Handlebars provides the power necessary to let users build semantic templates
High remediation recipe for Handlebars provides the power necessary to let users build semantic templates. Upgrade to Version 4.7.9 fixes the issue. Some workarounds are available. Wrap and remove the vulnerable dos pattern.
CVE-2026-33940 - Handlebars provides the power necessary to let users build semantic templates
High remediation recipe for Handlebars provides the power necessary to let users build semantic templates. Upgrade to Version 4.7.9 fixes the issue. Some workarounds are available. First and remove the vulnerable command-injection pattern.
CVE-2026-33941 - Handlebars provides the power necessary to let users build semantic templates
High remediation recipe for Handlebars provides the power necessary to let users build semantic templates. Upgrade to Version 4.7.9 fixes the issue. Some workarounds are available. First and remove the vulnerable authz pattern.
CVE-2026-33943 - Happy DOM is a JavaScript implementation of a web browser without its graphical user interface
High remediation recipe for Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. Upgrade to Version 20.8.8 fixes the issue. and remove the vulnerable command-injection pattern.
CVE-2026-34226 - Happy DOM is a JavaScript implementation of a web browser without its graphical user interface
High remediation recipe for Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. Upgrade to Version 20.8.9 fixes the issue. and remove the vulnerable authz pattern.
CVE-2026-35633 - OpenClaw: Remote media error responses could trigger unbounded memory allocation before failure
High remediation recipe for OpenClaw: Remote media error responses could trigger unbounded memory allocation before failure. Upgrade to 2026.3.22 and remove the vulnerable command-injection pattern.
CVE-2026-4698 - JIT miscompilation in the JavaScript Engine: JIT component
Critical remediation recipe for JIT miscompilation in the JavaScript Engine: JIT component. Upgrade to fixed in Firefox 149 and remove the vulnerable authz pattern.
CVE-2026-33228 - flatted is a circular JSON parser. Prior to version 3.4.2, the parse() function in flatted can use attacker-co
Critical remediation recipe for flatted is a circular JSON parser. Prior to version 3.4.2, the parse() function in flatted can use attacker-co. Upgrade to version 3.4.2 and remove the vulnerable prototype-pollution pattern.
CVE-2026-31898 - jsPDF is a library to generate PDFs in JavaScript
High remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to version 4.2.1 and remove the vulnerable authz pattern.
CVE-2026-31938 - jsPDF is a library to generate PDFs in JavaScript
Critical remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to version 4.2.1 and remove the vulnerable authz pattern.
CVE-2026-32304 - Locutus brings stdlibs of other programming languages to JavaScript for educational purposes
Critical remediation recipe for Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. Upgrade to fixed in 3.0.14. and remove the vulnerable prototype-pollution pattern.
CVE-2026-1526 - The undici WebSocket client is vulnerable to a denial-of-service attack via unbounded memory consumption durin
High remediation recipe for The undici WebSocket client is vulnerable to a denial-of-service attack via unbounded memory consumption durin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-2229 - ImpactThe undici WebSocket client is vulnerable to a denial-of-service attack due to improper validation of th
High remediation recipe for ImpactThe undici WebSocket client is vulnerable to a denial-of-service attack due to improper validation of th. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-32141 - flatted is a circular JSON parser. Prior to 3.4.0, flatted's parse() function uses a recursive revive() phase
High remediation recipe for flatted is a circular JSON parser. Prior to 3.4.0, flatted's parse() function uses a recursive revive() phase. Upgrade to fixed in 3.4.0. and remove the vulnerable dos pattern.
CVE-2026-28292 - simple-git, an interface for running git commands in any node.js application, has an issue in versions 3.15
Critical remediation recipe for simple-git, an interface for running git commands in any node.js application, has an issue in versions 3.15. Upgrade to Version 3.23.0 contains an updated fix for the vulnerability. and remove the vulnerable authz pattern.
CVE-2026-30951 - Sequelize is a Node.js ORM tool. Prior to 6.37.8, there is SQL injection via unescaped cast type in JSON/JSONB
High remediation recipe for Sequelize is a Node.js ORM tool. Prior to 6.37.8, there is SQL injection via unescaped cast type in JSON/JSONB. Upgrade to fixed in 6.37.8. and remove the vulnerable authz pattern.
CVE-2026-29074 - SVGO, short for SVG Optimizer, is a Node.js library and command-line application for optimizing SVG files
High remediation recipe for SVGO, short for SVG Optimizer, is a Node.js library and command-line application for optimizing SVG files. Upgrade to version 2.1.0 to before version 2.8.1 and remove the vulnerable dos pattern.
CVE-2026-29091 - Locutus brings stdlibs of other programming languages to JavaScript for educational purposes
High remediation recipe for Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. Upgrade to version 3.0.0 and remove the vulnerable command-injection pattern.
CVE-2026-3520 - Multer is a node.js middleware for handling multipart/form-data
High remediation recipe for Multer is a node.js middleware for handling multipart/form-data. Upgrade to version 2.1.1 allows an attacker to trigger a Denial of Service and remove the vulnerable dos pattern.
CVE-2026-2359 - Multer is a node.js middleware for handling multipart/form-data
High remediation recipe for Multer is a node.js middleware for handling multipart/form-data. Upgrade to version 2.1.0 allows an attacker to trigger a Denial of Service and remove the vulnerable command-injection pattern.
CVE-2026-3304 - Multer is a node.js middleware for handling multipart/form-data
High remediation recipe for Multer is a node.js middleware for handling multipart/form-data. Upgrade to version 2.1.0 allows an attacker to trigger a Denial of Service and remove the vulnerable command-injection pattern.
CVE-2026-27959 - Koa is middleware for Node.js using ES2017 async functions
High remediation recipe for Koa is middleware for Node.js using ES2017 async functions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable cert-validation pattern.
CVE-2026-2758 - Use-after-free in the JavaScript: GC component
Critical remediation recipe for Use-after-free in the JavaScript: GC component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2762 - Integer overflow in the JavaScript: Standard Library component
Critical remediation recipe for Integer overflow in the JavaScript: Standard Library component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2763 - Use-after-free in the JavaScript Engine component
Critical remediation recipe for Use-after-free in the JavaScript Engine component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2764 - JIT miscompilation, use-after-free in the JavaScript Engine: JIT component
Critical remediation recipe for JIT miscompilation, use-after-free in the JavaScript Engine: JIT component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2765 - Use-after-free in the JavaScript Engine component
Critical remediation recipe for Use-after-free in the JavaScript Engine component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2766 - Use-after-free in the JavaScript Engine: JIT component
Critical remediation recipe for Use-after-free in the JavaScript Engine: JIT component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2767 - Use-after-free in the JavaScript: WebAssembly component
Critical remediation recipe for Use-after-free in the JavaScript: WebAssembly component. Upgrade to fixed in Firefox 148 and remove the vulnerable authz pattern.
CVE-2026-2795 - Use-after-free in the JavaScript: GC component
Critical remediation recipe for Use-after-free in the JavaScript: GC component. Upgrade to fixed in Firefox 148 and Thunderbird 148. and remove the vulnerable authz pattern.
CVE-2026-2796 - JIT miscompilation in the JavaScript: WebAssembly component
Critical remediation recipe for JIT miscompilation in the JavaScript: WebAssembly component. Upgrade to fixed in Firefox 148 and Thunderbird 148. and remove the vulnerable authz pattern.
CVE-2026-2797 - Use-after-free in the JavaScript: GC component
Critical remediation recipe for Use-after-free in the JavaScript: GC component. Upgrade to fixed in Firefox 148 and Thunderbird 148. and remove the vulnerable authz pattern.
CVE-2026-2472 - Stored Cross-Site Scripting (XSS) in the _genai/_evals_visualization component of Google Cloud Vertex AI SDK (
High remediation recipe for Stored Cross-Site Scripting (XSS) in the _genai/_evals_visualization component of Google Cloud Vertex AI SDK (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-25535 - jsPDF is a library to generate PDFs in JavaScript
High remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to fixed in jsPDF 4.2.0. As a workaround and remove the vulnerable dos pattern.
CVE-2026-25755 - jsPDF is a library to generate PDFs in JavaScript
High remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to fixed in jspdf and remove the vulnerable authz pattern.
CVE-2026-25940 - jsPDF is a library to generate PDFs in JavaScript
High remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to fixed in jsPDF and remove the vulnerable authz pattern.
CVE-2026-26280 - systeminformation is a System and OS information library for node.js
High remediation recipe for systeminformation is a System and OS information library for node.js. Upgrade to Version 5.30.8 fixes the issue. and remove the vulnerable command-injection pattern.
CVE-2026-26318 - systeminformation is a System and OS information library for node.js
High remediation recipe for systeminformation is a System and OS information library for node.js. Upgrade to Version 5.31.0 fixes the issue. and remove the vulnerable command-injection pattern.
CVE-2026-26329 - OpenClaw browser upload file read
OpenClaw browser uploads can read Gateway host files. Upgrade to 2026.2.14+ and confine uploads to a safe temp root.
CVE-2026-1615 - Versions of the package jsonpath before 1.3.0 are vulnerable to Arbitrary Code Injection via unsafe evaluation
Critical remediation recipe for Versions of the package jsonpath before 1.3.0 are vulnerable to Arbitrary Code Injection via unsafe evaluation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-25639 - Axios is a promise based HTTP client for the browser and Node.js
High remediation recipe for Axios is a promise based HTTP client for the browser and Node.js. Upgrade to fixed in versions 0.30.3 and 1.13.5. and remove the vulnerable prototype-pollution pattern.
CVE-2026-25640 - Pydantic AI is a Python agent framework for building applications and workflows with Generative AI
High remediation recipe for Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. Upgrade to version query parameter from the request URL. This parameter is not and remove the vulnerable command-injection pattern.
CVE-2026-25521 - Locutus brings stdlibs of other programming languages to JavaScript for educational purposes
High remediation recipe for Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. Upgrade to patched in version 2.0.39. and remove the vulnerable prototype-pollution pattern.
CVE-2026-25223 - Fastify is a fast and low overhead web framework, for Node.js
High remediation recipe for Fastify is a fast and low overhead web framework, for Node.js. Upgrade to version 5.7.2 and remove the vulnerable authz pattern.
CVE-2026-24737 - jsPDF is a library to generate PDFs in JavaScript
High remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to fixed in jsPDF and remove the vulnerable authz pattern.
CVE-2026-25153 - Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides co
High remediation recipe for Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides co. Upgrade to upgrade to the latest version and remove the vulnerable authz pattern.
CVE-2025-57283 - The Node.js package browserstack-local 1.5.8 contains a command injection vulnerability
High remediation recipe for The Node.js package browserstack-local 1.5.8 contains a command injection vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-24842 - node-tar,a Tar for Node.js, contains a vulnerability in versions prior to 7.5.7 where the security check for h
High remediation recipe for node-tar,a Tar for Node.js, contains a vulnerability in versions prior to 7.5.7 where the security check for h. Upgrade to Version 7.5.7 contains a fix for the issue. and remove the vulnerable path-traversal pattern.
CVE-2026-0775 - npm cli Incorrect Permission Assignment Local Privilege Escalation Vulnerability
High remediation recipe for npm cli Incorrect Permission Assignment Local Privilege Escalation Vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-24001 - jsdiff is a JavaScript text differencing implementation
High remediation recipe for jsdiff is a JavaScript text differencing implementation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-55130 - A flaw in Node.js’s Permissions model allows attackers to bypass --allow-fs-read and --allow-fs-write rest
Critical remediation recipe for A flaw in Node.js’s Permissions model allows attackers to bypass --allow-fs-read and --allow-fs-write rest. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2025-55131 - A flaw in Node.js's buffer allocation logic can expose uninitialized memory when allocations are interrupted,
High remediation recipe for A flaw in Node.js's buffer allocation logic can expose uninitialized memory when allocations are interrupted,. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-59465 - A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggeri
High remediation recipe for A malformed HTTP/2 HEADERS frame with oversized, invalid HPACK data can cause Node.js to crash by triggeri. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-23950 - node-tar,a Tar for Node.js, has a race condition vulnerability in versions up to and including 7.5.3
High remediation recipe for node-tar,a Tar for Node.js, has a race condition vulnerability in versions up to and including 7.5.3. Upgrade to patch in version 7.5.4 updates and remove the vulnerable path-traversal pattern.
CVE-2021-47839 - Marky 0.0.1 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious
High remediation recipe for Marky 0.0.1 contains a persistent cross-site scripting vulnerability that allows attackers to inject malicious. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-22774 - Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien
High remediation recipe for Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien. Upgrade to fixed in 5.6.2. and remove the vulnerable command-injection pattern.
CVE-2026-22775 - Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien
High remediation recipe for Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficien. Upgrade to fixed in 5.6.2. and remove the vulnerable command-injection pattern.
CVE-2025-59057 - React Router is a router for React. In @remix-run/react versions 1.15.0 through 2.17.0
High remediation recipe for React Router is a router for React. In @remix-run/react versions 1.15.0 through 2.17.0. Upgrade to patched in and remove the vulnerable xss pattern.
CVE-2026-21884 - React Router is a router for React. In @remix-run/react version prior to 2.17.3
High remediation recipe for React Router is a router for React. In @remix-run/react version prior to 2.17.3. Upgrade to version prior to 2.17.3. and react-router 7.0.0 through 7.11.0 and remove the vulnerable xss pattern.
CVE-2026-22029 - React Router is a router for React. In @remix-run/router version prior to 1.23.2 and react-router 7.0.0 throug
High remediation recipe for React Router is a router for React. In @remix-run/router version prior to 1.23.2 and react-router 7.0.0 throug. Upgrade to version prior to 1.23.2 and react-router 7.0.0 through 7.11.0 and remove the vulnerable authz pattern.
CVE-2025-69263 - pnpm is a package manager. Versions 10.26.2 and below store HTTP tarball dependencies (and git-hosted tarballs
High remediation recipe for pnpm is a package manager. Versions 10.26.2 and below store HTTP tarball dependencies (and git-hosted tarballs. Upgrade to fixed in version 10.26.0. and remove the vulnerable supply-chain pattern.
CVE-2025-69264 - pnpm is a package manager. Versions 10.0.0 through 10.25 allow git-hosted dependencies to execute arbitrary co
High remediation recipe for pnpm is a package manager. Versions 10.0.0 through 10.25 allow git-hosted dependencies to execute arbitrary co. Upgrade to fixed in version 10.26.0. and remove the vulnerable supply-chain pattern.
CVE-2025-68428 - jsPDF is a library to generate PDFs in JavaScript
High remediation recipe for jsPDF is a library to generate PDFs in JavaScript. Upgrade to version 4.0.0 and remove the vulnerable path-traversal pattern.
CVE-2025-67288 - An arbitrary file upload vulnerability in Umbraco CMS v16.3.3 allows attackers to execute arbitrary code by up
Critical remediation recipe for An arbitrary file upload vulnerability in Umbraco CMS v16.3.3 allows attackers to execute arbitrary code by up. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-7443 - The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and Ja
High remediation recipe for The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and Ja. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.
CVE-2025-8101 - Linkify Allows Prototype Pollution & HTML Attribute Injection (XSS)
High remediation recipe for Linkify Allows Prototype Pollution & HTML Attribute Injection (XSS). Upgrade to 4.3.2 and remove the vulnerable prototype-pollution pattern.
CVE-2024-55591 - An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS version
Critical remediation recipe for An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS version. Upgrade to version 7.0.0 through 7.0.16 and FortiProxy version 7.0.0 through 7. and remove the vulnerable auth-bypass pattern.
CVE-2024-21490 - This affects versions of the package angular from 1.3.0; versions of the package angularjs from 1.3.0
High remediation recipe for This affects versions of the package angular from 1.3.0; versions of the package angularjs from 1.3.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
linux/c++4 recipes
CVE-2026-41045 - qSnapper polkit TOCTOU authentication bypass
High remediation recipe for qSnapper polkit TOCTOU authentication bypass. Apply qSnapper 1.3.3 and remove the vulnerable authz pattern.
CVE-2026-41046 - qSnapper configName path traversal privilege escalation
High remediation recipe for qSnapper configName path traversal privilege escalation. Apply qSnapper 1.3.3 and remove the vulnerable path-traversal pattern.
CVE-2026-41048 - qSnapper method-level polkit authorization cache confusion
High remediation recipe for qSnapper method-level polkit authorization cache confusion. Apply qSnapper 1.3.3 and remove the vulnerable auth-cache pattern.
CVE-2026-41049 - qSnapper cross-user polkit authorization cache confusion
High remediation recipe for qSnapper cross-user polkit authorization cache confusion. Apply qSnapper 1.3.3 and remove the vulnerable auth-cache pattern.
linux/system6 recipes
CVE-2026-41045 - qSnapper polkit authentication TOCTOU bypass
High-severity qSnapper polkit authentication TOCTOU bypass. A local user can cross an authentication race and perform snapshot operations as root.
CVE-2026-41046 - qSnapper configName path traversal
High-severity qSnapper configName path traversal. A local attacker can point qSnapper at attacker-controlled snapper config and drive root-owned snapshot behavior.
CVE-2026-41048 - qSnapper polkit authorization cache cross-method bypass
High-severity qSnapper polkit authorization cache cross-method bypass. A user authorized for a low-risk snapshot action can reuse cached approval for destructive root-level actions.
CVE-2026-41049 - qSnapper polkit authorization cache cross-user bypass
High-severity qSnapper polkit authorization cache cross-user bypass. One privileged user approval can be reused by another local user to execute root-level snapshot actions.
CVE-2026-41651 — PackageKit local root exploit
TOCTOU in PackageKit allows local privilege escalation to root on unpatched systems. Upgrade to 1.3.5+ and reduce local attack surface.
CVE-2024-3094 — xz-utils backdoor
Maintainer-implanted backdoor in liblzma reachable through sshd. Roll back to 5.4.x; treat any network-exposed affected host as compromised.
network-appliance/c1 recipe
npm42 recipes
CVE-2026-54271 - protobufjs-cli JSON descriptor code injection
High-severity protobufjs-cli static code-generation flaw where crafted JSON descriptor names can inject code into generated JavaScript. Upgrade protobufjs-cli, reject untrusted JSON descriptors, and isolate codegen.
CVE-2026-48068 - grpc-js malformed request server crash
High-severity @grpc/grpc-js server crash on malformed HTTP/2 stream initiation. Upgrade to a fixed branch release and keep Node gRPC services from exposing stale vulnerable versions.
CVE-2026-48069 - grpc-js malformed compressed message crash
High-severity @grpc/grpc-js client and server crash on malformed compressed messages. Upgrade to a fixed branch release and verify every shipped gRPC runtime moves off the vulnerable ranges.
CVE-2026-11417 - aws-cdk-lib NodejsFunction bundling command injection
High-severity command injection in aws-cdk-lib NodejsFunction local bundling. Upgrade aws-cdk-lib, stop passing untrusted bundling fields, and audit custom constructs that build esbuild arguments.
CVE-2026-48063 - Baileys protocolMessage spoofing and state corruption
Critical Baileys spoofing and app-state corruption through malicious protocolMessage payloads. Upgrade to 6.7.22 or 7.0.0-rc12+, and harden event handling until every session is patched.
CVE-2026-54281 - Nest Fastify trailing-slash middleware bypass
High-severity Nest Fastify authorization bypass where MiddlewareConsumer.forRoutes() protections can be skipped with a trailing slash. Upgrade @nestjs/platform-fastify and add route-level auth regressions.
CVE-2026-54257 - Electron Buffer heap under/overflow
Critical Electron npm package defect where incorrect Buffer byte-length calculations can crash apps or misallocate memory. Upgrade electron past 42.3.2 and rebuild shipped desktop packages.
CVE-2026-33245 - React Router RSC redirect XSS
High-severity React Router v7 unstable RSC redirect XSS. Upgrade to 7.13.2+, audit untrusted redirect targets, and add route-level tests that reject scriptable URLs.
CVE-2026-34077 - React Router Single Fetch serialization DoS
High-severity React Router Framework Mode and Remix Single Fetch serialization DoS. Upgrade react-router to 7.14.0+ or turbo-stream to 3.0.0+, prove whether Single Fetch is exposed, and add bounded-response regression checks.
CVE-2026-40181 - React Router protocol-relative open redirect
Moderate-severity React Router open redirect caused by same-origin redirect paths that start with //. Upgrade React Router, centralize redirect validation, and add tests for protocol-relative and encoded URL variants.
CVE-2026-42211 - React Router Framework Mode deserialization RCE
High-severity React Router Framework Mode deserialization issue that can become unauthorized RCE when application code already has prototype pollution. Upgrade react-router to 7.14.2+, remove pollution gadgets, and add server-side regression tests.
CVE-2026-42342 - React Router __manifest path-expansion DoS
High-severity React Router and Remix Framework Mode resource-exhaustion issue in the __manifest endpoint. Upgrade react-router to 7.15.0+ and @remix-run/server-runtime to 2.17.5+, then add throttling and manifest-endpoint regression checks.
CVE-2026-47423 - DOMPurify selectedcontent re-clone XSS
High-severity DOMPurify sanitization bypass through selectedcontent re-cloning. Upgrade dompurify to 3.4.5+, remove unsafe string-to-HTML sinks, and add sanitizer regression fixtures for attacker-controlled markup.
CVE-2026-47428 - Vitest browser otelCarrier token RCE
Critical Vitest browser-mode inline script injection through otelCarrier. Upgrade @vitest/browser to 4.1.6+ or 5.0.0-beta.3+, keep browser runners local, and disable privileged APIs on networked servers.
CVE-2026-47429 - Vitest UI API file read and RCE
Critical Vitest UI/API file access and execution exposure, especially on Windows or network-bound servers. Upgrade Vitest to 4.1.0+, bind UI/API locally, and disable privileged operations on exposed test servers.
CVE-2026-53633 - Vitest Browser Mode CDP API RCE
Critical Vitest Browser Mode API exposure where raw CDP access bypasses write and exec restrictions. Upgrade @vitest/browser, keep the API on loopback, and disable privileged browser APIs on exposed runners.
CVE-2026-49143 - browserstack-runner log handler RCE
High-severity browserstack-runner dev-server RCE with no patched package release. Remove or replace browserstack-runner, contain local test servers, and check for the related path-traversal file-read issue.
CVE-2026-48017 - DbGate loadReader functionName RCE
High-severity DbGate server-side code injection in the /runners/load-reader endpoint. Upgrade dbgate-api to 7.1.9+, validate shell API function names, gate load-reader access, and review database-management secrets.
CVE-2026-44974 - @hapi/content parameter smuggling upload-filter bypass
High-severity @hapi/content header parameter-smuggling issue that can bypass upload filename filters. Upgrade to 6.0.2+, reject duplicate Content-Disposition and Content-Type parameters at trust boundaries, and align parser behavior across upload controls.
CVE-2026-47668 - DbGate JSON script runner unauthenticated RCE
Critical DbGate JSON script runner RCE that can be unauthenticated in anonymous/default deployments. Upgrade dbgate-serve to 7.1.9+, disable anonymous auth, and remove generated-code execution from untrusted request fields.
CVE-2026-47669 - DbGate archive unzip arbitrary write RCE
Critical DbGate Zip Slip in archive unzip handling. Upgrade dbgate to 7.1.9+, constrain extraction paths to the archive workspace, add archive traversal tests, and harden DbGate auth/runtime privileges.
CVE-2026-47670 - DbGate loadReader dynamic import RCE
Critical DbGate loadReader functionName code injection. Upgrade dbgate-api to 7.1.9+, remove request-controlled JavaScript generation, gate reader execution, and rotate secrets if untrusted users had access.
CVE-2026-44990 - sanitize-html xmp raw-text XSS
Critical sanitize-html default sanitizer bypass in version 2.17.3 through xmp raw-text handling. Upgrade to 2.17.4+, verify sanitizer-to-sink rendering paths, and add inert regression fixtures for stored HTML.
CVE-2026-25244 - WebdriverIO BrowserStack branch command injection
Critical command injection in @wdio/browserstack-service git branch metadata handling. Upgrade to 9.24.0+, remove shell interpolation, and harden CI against malicious branch names.
CVE-2026-43898 - SandboxJS Function.caller sandbox escape
Critical SandboxJS sandbox escape via Function.caller leakage. Upgrade to 0.9.6+, remove trusted-secret exposure from sandboxed runtimes, and add isolation policy tests.
GHSA-v6wj-c83f-v46x - profullstack MCP server command injection
Critical unauthenticated command injection in @profullstack/mcp-server domain_lookup. Remove exposed vulnerable servers, replace shell execution with argv-based process calls, and require MCP auth/bind controls.
CVE-2026-44007 - vm2 NodeVM nesting sandbox escape
Critical vm2 NodeVM nesting sandbox escape. Upgrade to 3.11.1+, remove nesting for untrusted code, and add sandbox policy tests before accepting agent-authored changes.
CVE-2026-45109 - Next.js segment-prefetch middleware bypass
High-severity Next.js App Router middleware/proxy bypass follow-up for Turbopack builds. Upgrade Next.js, test segment-prefetch route protection, and contain sensitive middleware-gated paths.
CVE-2026-45033 - GitHub Copilot CLI nested bare repo RCE
High-severity GitHub Copilot CLI arbitrary command execution through nested bare Git repository discovery. Upgrade @github/copilot to 1.0.43+, force safe.bareRepository=explicit, and reject buried bare repos in agent workspaces.
CVE-2026-42349 - Clerk combined authorization bypass
High-severity Clerk authorization predicate bypass. Upgrade affected Clerk SDK packages, split combined authorization checks during rollout, and add regression tests for role, permission, billing, and reverification gates.
CVE-2026-42449 - n8n-mcp IPv4-mapped IPv6 SSRF
High-severity SSRF in n8n-mcp SDK embedder URL validation. Upgrade to 2.47.14+, reject IP-literal n8nApiUrl inputs, and block metadata/private egress.
CVE-2026-42231 - n8n XML webhook prototype pollution RCE
Critical n8n RCE via XML webhook body prototype pollution. Upgrade to 1.123.32, 2.17.4, or 2.18.1+ and restrict workflow authors until patched.
CVE-2026-42232 - n8n XML node prototype pollution RCE
Critical n8n RCE via XML node prototype pollution. Upgrade to 1.123.32, 2.17.4, or 2.18.1+ and restrict XML workflow authors until patched.
CVE-2026-41680 - marked tokenizer OOM denial of service
High-severity marked tokenizer recursion DoS in versions 18.0.0 and 18.0.1. Upgrade to 18.0.2+, verify untrusted Markdown render paths, and add resource-bounded parser regression tests.
CVE-2026-41242 - protobufjs generated-code RCE
Critical protobufjs generated-code execution through attacker-influenced protobuf descriptors. Upgrade to 7.5.5 or 8.0.1+, block untrusted schema loading, and add descriptor-source tests.
CVE-2026-23869 - React Server Components DoS
High-severity React Server Components denial of service affecting Next.js App Router and react-server-dom packages. Upgrade fixed framework or RSC package lines, avoid unsafe live DoS probes, and add server-function regression checks.
CVE-2026-33696 - n8n GSuiteAdmin prototype pollution RCE
Critical n8n prototype pollution in GSuiteAdmin node parameters that can lead to RCE. Upgrade to 1.123.27+, 2.13.3+, or 2.14.1+ and restrict workflow authors until patched.
CVE-2026-27494 - n8n Python Code node sandbox escape
n8n Python Code node sandbox escape when Task Runners are enabled. Upgrade to 1.123.22, 2.9.3, or 2.10.1+, restrict workflow authors, and disable the Code node only as temporary containment.
CVE-2026-27606 - Rollup path traversal arbitrary write
Critical Rollup arbitrary file write through path traversal in output names. Upgrade to 2.80.0+, 3.30.0+, or 4.59.0+, and harden untrusted build/plugin workflows.
CVE-2026-25049 - n8n expression escape RCE
Critical n8n RCE via crafted workflow expressions. Upgrade to 1.123.17 or 2.5.2+, restrict workflow authors until patched, and harden n8n workers.
CVE-2025-55182 - React Server Components RCE
Critical React Server Components pre-authentication RCE affecting react-server-dom packages and downstream frameworks such as Next.js App Router. Upgrade fixed RSC packages/framework lines, refresh lockfiles and images, and rotate secrets for exposed unpatched services.
CVE-2025-12735 - expr-eval context function RCE
Critical expr-eval code-injection issue. Replace the unpatched original package or move to expr-eval-fork 3.0.1+, restrict evaluator context objects to inert data, and add regression tests for function/member call rejection.
npm/supply-chain3 recipes
GHSA-jpvj-wpmj-h7rv - @cap-js/openapi package compromise
Critical malicious @cap-js/openapi 1.4.1 package compromise. Upgrade to 1.4.2+, purge caches and build artifacts, and rotate credentials reachable from affected SAP CAP dependency installs.
CVE-2026-45321 - TanStack npm supply-chain compromise
Critical KEV-listed compromise of 84 malicious versions across 42 @tanstack/* npm packages. Remove affected versions, reinstall from clean lockfiles, purge caches, rotate exposed credentials, and harden GitHub Actions OIDC publishing boundaries.
CVE-2026-34841 - @usebruno/cli axios supply-chain RAT
Critical @usebruno/cli exposure to compromised axios npm releases. Upgrade to Bruno CLI 3.2.1+, purge package caches and generated artifacts, block malicious axios versions, and rotate credentials from affected install environments.
nuget4 recipes
CVE-2026-49451 - Microsoft.OpenAPI: Circular schema references may terminate OpenAPI parsing
High remediation recipe for Microsoft.OpenAPI: Circular schema references may terminate OpenAPI parsing. Upgrade to 2.7.5, 3.5.4 and remove the vulnerable command-injection pattern.
CVE-2026-49218 - ImageMagick: Policy Bypass in DCM decoder could result in image with invalid dimensions
High remediation recipe for ImageMagick: Policy Bypass in DCM decoder could result in image with invalid dimensions. Upgrade to 14.14.0 and remove the vulnerable dos pattern.
CVE-2026-53460 - ImageMagick: Policy Bypass can Trigger an Out-of-Memory condition
High remediation recipe for ImageMagick: Policy Bypass can Trigger an Out-of-Memory condition. Upgrade to 14.14.0 and remove the vulnerable authz pattern.
CVE-2026-53461 - ImageMagick has out-of-bounds write in ICON decoder due to incorrect loop
High remediation recipe for ImageMagick has out-of-bounds write in ICON decoder due to incorrect loop. Upgrade to 14.14.0 and remove the vulnerable dos pattern.
openssh/system1 recipe
openssl/system1 recipe
php6 recipes
CVE-2026-13485 - SourceCodester preview course_year_section SQL injection
High-severity SourceCodester preview course_year_section SQL injection. A remote unauthenticated SQL injection in a school scheduling app can expose or modify student, class, and staff data.
CVE-2026-13486 - SourceCodester preview6 course_year_section SQL injection
High-severity SourceCodester preview6 course_year_section SQL injection. A remote unauthenticated SQL injection in a school scheduling app can expose or modify student, class, and staff data.
CVE-2026-13487 - SourceCodester archive sy SQL injection
High-severity SourceCodester archive sy SQL injection. A remote unauthenticated SQL injection in a school scheduling app can expose or modify student, class, and staff data.
CVE-2026-13488 - SourceCodester preview7 course_year_section SQL injection
High-severity SourceCodester preview7 course_year_section SQL injection. A remote unauthenticated SQL injection in a school scheduling app can expose or modify student, class, and staff data.
CVE-2026-13498 - restaurant-management-system forgotpassword email SQL injection
High-severity restaurant-management-system forgotpassword email SQL injection. SQL injection in a password-reset endpoint can expose customer/admin accounts and compromise ordering operations.
CVE-2026-58054 - MyBB limited ACP user group privilege escalation
High-severity MyBB limited ACP user group privilege escalation. A delegated helpdesk/admin user can promote any account to full forum administrator.
php/composer196 recipes
CVE-2025-6784 - The Code Engine plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and includi
High remediation recipe for The Code Engine plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and includi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13114 - The Motors – Car Dealership & Classified Listings Plugin plugin for WordPress is vulnerable to Stored Cross-Si
High remediation recipe for The Motors – Car Dealership & Classified Listings Plugin plugin for WordPress is vulnerable to Stored Cross-Si. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-13353 - The WP Ultimate CSV Importer – WordPress Import & Export for CSV, XML & Excel plugin for WordPress is vulnerab
High remediation recipe for The WP Ultimate CSV Importer – WordPress Import & Export for CSV, XML & Excel plugin for WordPress is vulnerab. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13378 - The Form Vibes – Database Manager for Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting
High remediation recipe for The Form Vibes – Database Manager for Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-13756 - The WP Grid Builder plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and incl
High remediation recipe for The WP Grid Builder plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and incl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14262 - The Simple JWT Login – Allows you to use JWT on REST endpoints
High remediation recipe for The Simple JWT Login – Allows you to use JWT on REST endpoints. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15155 - The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable
High remediation recipe for The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15335 - The Booking Package plugin for WordPress is vulnerable to generic SQL Injection via 'email' Form Parameter (fo
High remediation recipe for The Booking Package plugin for WordPress is vulnerable to generic SQL Injection via 'email' Form Parameter (fo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-15338 - The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all vers
High remediation recipe for The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all vers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-2354 - The Swiss Toolkit For WP plugin for WordPress is vulnerable to arbitrary file upload due to a flawed file type
High remediation recipe for The Swiss Toolkit For WP plugin for WordPress is vulnerable to arbitrary file upload due to a flawed file type. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.
CVE-2026-3576 - The Planyo Online Reservation System plugin for WordPress is vulnerable to Server-Side Request Forgery leading
High remediation recipe for The Planyo Online Reservation System plugin for WordPress is vulnerable to Server-Side Request Forgery leading. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-4661 - The WP CTA – Sticky CTA Builder, Generate Leads, Promote Sales plugin for WordPress is vulnerable to time-base
High remediation recipe for The WP CTA – Sticky CTA Builder, Generate Leads, Promote Sales plugin for WordPress is vulnerable to time-base. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-6939 - The CorvusPay WooCommerce Payment Gateway plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi
High remediation recipe for The CorvusPay WooCommerce Payment Gateway plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-7655 - The SureCart plugin for WordPress is vulnerable to privilege escalation via account takeover in versions up to
High remediation recipe for The SureCart plugin for WordPress is vulnerable to privilege escalation via account takeover in versions up to. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-12685 - The EscortWP escortwp WordPress theme through 3.6.2 was distributed with a vendor-authored, obfuscated backdoo
High remediation recipe for The EscortWP escortwp WordPress theme through 3.6.2 was distributed with a vendor-authored, obfuscated backdoo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-12761 - The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress is vulnerab
Critical remediation recipe for The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress is vulnerab. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-13347 - The Hide My WP Lite plugin for WordPress is vulnerable to Arbitrary File Read in versions up to and including
High remediation recipe for The Hide My WP Lite plugin for WordPress is vulnerable to Arbitrary File Read in versions up to and including. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-13430 - The Post Export Import with Media plugin for WordPress is vulnerable to Arbitrary File Upload in all versions
High remediation recipe for The Post Export Import with Media plugin for WordPress is vulnerable to Arbitrary File Upload in all versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.
CVE-2026-14894 - The Super Forms – Drag & Drop Form Builder plugin for WordPress is vulnerable to Arbitrary File Upload in all
Critical remediation recipe for The Super Forms – Drag & Drop Form Builder plugin for WordPress is vulnerable to Arbitrary File Upload in all. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.
CVE-2026-15070 - The Salon Booking System – Free Version plugin for WordPress is vulnerable to Cross-Site Request Forgery in al
High remediation recipe for The Salon Booking System – Free Version plugin for WordPress is vulnerable to Cross-Site Request Forgery in al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15282 - The Instant Appointment plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type
Critical remediation recipe for The Instant Appointment plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.
CVE-2026-15288 - The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Improper Input
High remediation recipe for The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Improper Input. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15290 - The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Pl
High remediation recipe for The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Pl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-15291 - The Chat Help – Click to Chat Button & Form plugin for WordPress is vulnerable to Sensitive Information Exposu
High remediation recipe for The Chat Help – Click to Chat Button & Form plugin for WordPress is vulnerable to Sensitive Information Exposu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15293 - The WP Business Intelligence Lite plugin for WordPress is vulnerable to authorization bypass in all versions u
High remediation recipe for The WP Business Intelligence Lite plugin for WordPress is vulnerable to authorization bypass in all versions u. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15298 - The TelSender plugin for WordPress is vulnerable to DOM-Based Cross-Site Scripting in all versions up to, and
High remediation recipe for The TelSender plugin for WordPress is vulnerable to DOM-Based Cross-Site Scripting in all versions up to, and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-15300 - The GEO my WP plugin for WordPress was vulnerable to SQL Injection via the 'distance', 'lat', and 'lng' parame
Critical remediation recipe for The GEO my WP plugin for WordPress was vulnerable to SQL Injection via the 'distance', 'lat', and 'lng' parame. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable sql-injection pattern.
CVE-2026-1667 - The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to Arbitrary Post Creation and Stored Cross-
High remediation recipe for The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to Arbitrary Post Creation and Stored Cross-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-39903 - Simple Machines Forum 2.1 prior to 2.1.8 and 3.0 prior to 3.0 Alpha 5 contains an authorization bypass vulnera
High remediation recipe for Simple Machines Forum 2.1 prior to 2.1.8 and 3.0 prior to 3.0 Alpha 5 contains an authorization bypass vulnera. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-54159 - prestashop/ps_facetedsearch: PHP Object Injection in faceted search cache allows unauthenticated RCE
Critical remediation recipe for prestashop/ps_facetedsearch: PHP Object Injection in faceted search cache allows unauthenticated RCE. Upgrade to 4.0.4 and remove the vulnerable command-injection pattern.
CVE-2026-54736 - Phalcon is a high-performance, full-stack PHP framework
High remediation recipe for Phalcon is a high-performance, full-stack PHP framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-57584 - Phalcon is a high-performance, full-stack PHP framework
High remediation recipe for Phalcon is a high-performance, full-stack PHP framework. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-61450 - Grav before 2.0.2 contains a Twig sandbox bypass that allows a page author (any admin.pages user, or anyone ab
High remediation recipe for Grav before 2.0.2 contains a Twig sandbox bypass that allows a page author (any admin.pages user, or anyone ab. Upgrade to 2.0.2 and remove the vulnerable template-injection pattern.
CVE-2026-11571 - The Everest Forms WordPress plugin before 3.5.0 does not reliably delete temporary CSV files generated during
High remediation recipe for The Everest Forms WordPress plugin before 3.5.0 does not reliably delete temporary CSV files generated during. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-12116 - A vulnerability in the Xerte Online Tools allows for RCE through the antivirus binary path in the tools server
Critical remediation recipe for A vulnerability in the Xerte Online Tools allows for RCE through the antivirus binary path in the tools server. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-12595 - The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via Unverified OAuth Email in a
High remediation recipe for The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via Unverified OAuth Email in a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-12597 - The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via the GitHub OAuth callback i
High remediation recipe for The LoginPress Pro plugin for WordPress is vulnerable to Authentication Bypass via the GitHub OAuth callback i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-12598 - The LoginPress Pro plugin for WordPress is vulnerable to authentication bypass in versions up to and including
High remediation recipe for The LoginPress Pro plugin for WordPress is vulnerable to authentication bypass in versions up to and including. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable auth-bypass pattern.
CVE-2026-13441 - The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to Stored Cross-Site
High remediation recipe for The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to Stored Cross-Site. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-13492 - The UsersWP plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 1
High remediation recipe for The UsersWP plugin for WordPress is vulnerable to Arbitrary File Deletion in versions up to, and including, 1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-14372 - The Bit Form – Contact Form, Payment Forms, Multi Step Forms, Calculator & Custom Form Builder plugin for Word
High remediation recipe for The Bit Form – Contact Form, Payment Forms, Multi Step Forms, Calculator & Custom Form Builder plugin for Word. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-15000 - The Connect Contact Form 7 and Mailchimp plugin for WordPress is vulnerable to Stored Cross-Site Scripting via
High remediation recipe for The Connect Contact Form 7 and Mailchimp plugin for WordPress is vulnerable to Stored Cross-Site Scripting via. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-15158 - The Blocksy Companion plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and i
Critical remediation recipe for The Blocksy Companion plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and i. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.
CVE-2026-4275 - The Divi Torque Lite – Divi Theme, Divi Builder & Extra Theme plugin for WordPress is vulnerable to Cross-Site
High remediation recipe for The Divi Torque Lite – Divi Theme, Divi Builder & Extra Theme plugin for WordPress is vulnerable to Cross-Site. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-51924 - An issue in docuForm GmbH Client v.11.11c allows a remote attacker to execute arbitrary code via the file uplo
High remediation recipe for An issue in docuForm GmbH Client v.11.11c allows a remote attacker to execute arbitrary code via the file uplo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-51925 - A Local File Inclusion (LFI) vulnerability exists in docuForm GmbH Client v.11.11c that allows a remote attack
High remediation recipe for A Local File Inclusion (LFI) vulnerability exists in docuForm GmbH Client v.11.11c that allows a remote attack. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-51926 - An issue in docuForm GmbH FSM Client v.11.11c allows a remote attacker to obtain sensitive information via the
High remediation recipe for An issue in docuForm GmbH FSM Client v.11.11c allows a remote attacker to obtain sensitive information via the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-52762 - YesWiki: Authenticated (Admin) Server-Side Template Injection to Remote Code Execution via Bazar Semantic Templates
High remediation recipe for YesWiki: Authenticated (Admin) Server-Side Template Injection to Remote Code Execution via Bazar Semantic Templates. Upgrade to 4.6.6 and remove the vulnerable template-injection pattern.
CVE-2026-52766 - YesWiki vulnerable to unauthenticated arbitrary page deletion via {{erasespamedcomments}} action
Critical remediation recipe for YesWiki vulnerable to unauthenticated arbitrary page deletion via {{erasespamedcomments}} action. Upgrade to 4.6.6 and remove the vulnerable authz pattern.
CVE-2026-52767 - YesWiki Vulnerable to Unauthenticated ActivityPub Signature-Verification Bypass via !openssl_verify(...) accepting int(-
High remediation recipe for YesWiki Vulnerable to Unauthenticated ActivityPub Signature-Verification Bypass via !openssl_verify(...) accepting int(-. Upgrade to 4.6.6 and remove the vulnerable crypto pattern.
CVE-2026-52769 - YesWiki has Unauthenticated Server-Side Request Forgery via ActivityPub Signature.keyId
High remediation recipe for YesWiki has Unauthenticated Server-Side Request Forgery via ActivityPub Signature.keyId. Upgrade to 4.6.6 and remove the vulnerable ssrf pattern.
CVE-2026-52770 - YesWiki: SQL Injection possible through public Bazar entry-listing APIs via numeric query/queries filters
High remediation recipe for YesWiki: SQL Injection possible through public Bazar entry-listing APIs via numeric query/queries filters. Upgrade to 4.6.6 and remove the vulnerable sql-injection pattern.
CVE-2026-52771 - YesWiki: Second-Order SQL Injection in Page Delete API via Unescaped Page Tag (ApiController::deletePage)
High remediation recipe for YesWiki: Second-Order SQL Injection in Page Delete API via Unescaped Page Tag (ApiController::deletePage). Upgrade to 4.6.6 and remove the vulnerable sql-injection pattern.
CVE-2026-52775 - YesWiki has Authenticated SQL Injection via ReactionManager
High remediation recipe for YesWiki has Authenticated SQL Injection via ReactionManager. Upgrade to 4.6.6 and remove the vulnerable sql-injection pattern.
CVE-2026-52777 - YesWiki Vulnerable to Authenticated PHP Object Injection in BazarImportAction via unserialize
Critical remediation recipe for YesWiki Vulnerable to Authenticated PHP Object Injection in BazarImportAction via unserialize. Upgrade to 4.6.6 and remove the vulnerable authz pattern.
CVE-2026-52778 - YesWiki has Unsafe eval() in its Formula Calculato, Leading to Remote Code Execution & Denial of Service
Critical remediation recipe for YesWiki has Unsafe eval() in its Formula Calculato, Leading to Remote Code Execution & Denial of Service. Upgrade to 4.6.6 and remove the vulnerable command-injection pattern.
CVE-2026-53932 - laravel-backup-restore has an OS Command Injection during database restore
High remediation recipe for laravel-backup-restore has an OS Command Injection during database restore. Upgrade to 1.9.4 and remove the vulnerable command-injection pattern.
CVE-2026-55212 - Pimcore is an Open Source Data & Experience Management Platform
High remediation recipe for Pimcore is an Open Source Data & Experience Management Platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-5523 - The Divi Form Builder plugin for WordPress is vulnerable to Missing Authorization in versions up to, and inclu
High remediation recipe for The Divi Form Builder plugin for WordPress is vulnerable to Missing Authorization in versions up to, and inclu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58143 - Cotonti Siena 0.9.26 and earlier contains a cross-site request forgery vulnerability that allows unauthenticat
High remediation recipe for Cotonti Siena 0.9.26 and earlier contains a cross-site request forgery vulnerability that allows unauthenticat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59734 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases
High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59856 - Vim is an open source, command line text editor
High remediation recipe for Vim is an open source, command line text editor. Upgrade to fixed in version 9.2.0736. and remove the vulnerable command-injection pattern.
CVE-2026-8848 - The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder plugin for
High remediation recipe for The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder plugin for. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-9253 - The WP Cost Estimation & Payment Forms Builder (E&P Forms) plugin for WordPress is vulnerable to Stored Cross-
High remediation recipe for The WP Cost Estimation & Payment Forms Builder (E&P Forms) plugin for WordPress is vulnerable to Stored Cross-. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-58480 - Blocksy Companion Pro plugin for WordPress before 2.1.47 contains an unauthenticated arbitrary file upload vul
Critical remediation recipe for Blocksy Companion Pro plugin for WordPress before 2.1.47 contains an unauthenticated arbitrary file upload vul. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-59948 - Composer is a dependency Manager for the PHP language
High remediation recipe for Composer is a dependency Manager for the PHP language. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-27823 - EGroupware has a Remote Code Execution Vulnerability
Critical remediation recipe for EGroupware has a Remote Code Execution Vulnerability. Upgrade to 23.1.20260224, 26.2.20260224 and remove the vulnerable command-injection pattern.
CVE-2026-40187 - EGroupware has Authenticated RCE via Malicious eTemplate Upload
High remediation recipe for EGroupware has Authenticated RCE via Malicious eTemplate Upload. Upgrade to 23.1.20260601, 26.4.20260413 and remove the vulnerable command-injection pattern.
CVE-2026-10750 - The Royal MCP WordPress plugin before 1.4.26 does not perform capability checks on the majority of its MCP too
High remediation recipe for The Royal MCP WordPress plugin before 1.4.26 does not perform capability checks on the majority of its MCP too. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-11387 - The SMS Alert – SMS & OTP for WooCommerce, Order Notifications & Abandoned Cart Recovery plugin for WordPress
Critical remediation recipe for The SMS Alert – SMS & OTP for WooCommerce, Order Notifications & Abandoned Cart Recovery plugin for WordPress. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-11568 - The Product Configurator for WooCommerce WordPress plugin before 1.7.3 does not perform any authorisation or p
High remediation recipe for The Product Configurator for WooCommerce WordPress plugin before 1.7.3 does not perform any authorisation or p. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-11794 - The Advanced Form Integration — Connect Forms to 200+ Apps WordPress plugin before 2.1.1 does not restrict the
High remediation recipe for The Advanced Form Integration — Connect Forms to 200+ Apps WordPress plugin before 2.1.1 does not restrict the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-11823 - The BookingPress Appointment Booking Pro plugin for WordPress is vulnerable to SQL Injection via the 'store_se
High remediation recipe for The BookingPress Appointment Booking Pro plugin for WordPress is vulnerable to SQL Injection via the 'store_se. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-11883 - The WebAuthn Provider for Two Factor WordPress plugin before 2.5.6 does not correctly validate the second-fact
High remediation recipe for The WebAuthn Provider for Two Factor WordPress plugin before 2.5.6 does not correctly validate the second-fact. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-12142 - The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Sc
High remediation recipe for The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Sc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-12158 - The RegistrationMagic – User Registration Forms Plugin plugin for WordPress is vulnerable to Cross-Site Reques
High remediation recipe for The RegistrationMagic – User Registration Forms Plugin plugin for WordPress is vulnerable to Cross-Site Reques. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-12224 - The Dokan Pro plugin for WordPress is vulnerable to privilege escalation via update_capabilities REST Endpoint
High remediation recipe for The Dokan Pro plugin for WordPress is vulnerable to privilege escalation via update_capabilities REST Endpoint. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-1239 - The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to unauthori
High remediation recipe for The Ninja Forms – The Contact Form Builder That Grows With You plugin for WordPress is vulnerable to unauthori. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-12923 - The Youtube Showcase plugin for WordPress is vulnerable to Arbitrary Function Call in versions up to and inclu
High remediation recipe for The Youtube Showcase plugin for WordPress is vulnerable to Arbitrary Function Call in versions up to and inclu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13228 - The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Priv
High remediation recipe for The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Priv. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13468 - The Visualizer – Tables & Charts Manager with Built-in AI Generator plugin for WordPress is vulnerable to auth
High remediation recipe for The Visualizer – Tables & Charts Manager with Built-in AI Generator plugin for WordPress is vulnerable to auth. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-13706 - Improper input validation vulnerability in Wikimedia Foundation UrlShortener
High remediation recipe for Improper input validation vulnerability in Wikimedia Foundation UrlShortener. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13731 - The WPBot – AI ChatBot for Live Support, Lead Generation, AI Services plugin for WordPress is vulnerable to St
High remediation recipe for The WPBot – AI ChatBot for Live Support, Lead Generation, AI Services plugin for WordPress is vulnerable to St. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-34099 - Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in job_info.php (l
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in job_info.php (l. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34100 - Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in media.php (line
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in media.php (line. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34101 - Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in text_file.php (
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in text_file.php (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34102 - Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in job_info_get.ph
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in job_info_get.ph. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34103 - Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in subtitles.php (
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in subtitles.php (. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34104 - Guardian language-system passes the name GET parameter directly into an unsanitized SQL query in designer.php
Critical remediation recipe for Guardian language-system passes the name GET parameter directly into an unsanitized SQL query in designer.php. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34105 - Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in translate_text
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in translate_text. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-34106 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in subtitles.php (line 19
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in subtitles.php (line 19. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34107 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in translate.php (line 14
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in translate.php (line 14. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34108 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in text.php (line 15) wit
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in text.php (line 15) wit. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34109 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in speech.php (line 18) w
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in speech.php (line 18) w. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34110 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in complex_start.php (lin
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in complex_start.php (lin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34111 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in speechmac_text.php (li
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in speechmac_text.php (li. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34112 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in speechmac.php (line 18
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in speechmac.php (line 18. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34113 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in speech_text.php (line
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in speech_text.php (line. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34114 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in translate_text.php (li
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in translate_text.php (li. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34115 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in transcribe_amazon.php
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in transcribe_amazon.php. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34116 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in transcribe.php (line 1
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in transcribe.php (line 1. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-34117 - Guardian language-system passes the id GET parameter directly into a PHP exec() call in text_to_subtitles.php
Critical remediation recipe for Guardian language-system passes the id GET parameter directly into a PHP exec() call in text_to_subtitles.php. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-57517 - Control Web Panel before 0.9.8.1225 contains a blind SQL injection vulnerability that allows unauthenticated r
Critical remediation recipe for Control Web Panel before 0.9.8.1225 contains a blind SQL injection vulnerability that allows unauthenticated r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-58025 - Deserialization of untrusted data vulnerability in Wikimedia Foundation MediaWiki
Critical remediation recipe for Deserialization of untrusted data vulnerability in Wikimedia Foundation MediaWiki. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-58036 - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki
High remediation recipe for Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-6070 - The WP-BusinessDirectory plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Deletion in vers
Critical remediation recipe for The WP-BusinessDirectory plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Deletion in vers. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-7517 - The Custom Payment Gateways for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting
High remediation recipe for The Custom Payment Gateways for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-8857 - A vulnerability in Wikimedia Foundation timeline
High remediation recipe for A vulnerability in Wikimedia Foundation timeline. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-10513 - The Webmention plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and includi
High remediation recipe for The Webmention plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and includi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2026-11590 - The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not sanitize user-supplied ar
High remediation recipe for The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not sanitize user-supplied ar. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-12073 - The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to privilege escala
Critical remediation recipe for The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to privilege escala. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-12240 - The Export User Data plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file pa
High remediation recipe for The Export User Data plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file pa. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-37106 - An issue in DokuWiki 2025-05-14b Librarian 56.2 allows a remote attacker to create an account via the regist
Critical remediation recipe for An issue in DokuWiki 2025-05-14b Librarian 56.2 allows a remote attacker to create an account via the regist. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-47198 - Paymenter has URL parameter injection that bypasses paid plan limits at checkout
High remediation recipe for Paymenter has URL parameter injection that bypasses paid plan limits at checkout. Upgrade to 1.5.1 and remove the vulnerable command-injection pattern.
CVE-2026-56700 - Grav CMS before 2.0.0-beta.2 contains multiple code-execution vulnerabilities
Critical remediation recipe for Grav CMS before 2.0.0-beta.2 contains multiple code-execution vulnerabilities. Upgrade to fixed in 2.0.0-beta.2. and remove the vulnerable command-injection pattern.
CVE-2026-57995 - phpMyFAQ before 4.1.5 contains a privilege escalation vulnerability in GroupController::updatePermissions that
High remediation recipe for phpMyFAQ before 4.1.5 contains a privilege escalation vulnerability in GroupController::updatePermissions that. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58376 - Dolibarr through 23.0.3, fixed in commit 14db36e, contains a sql injection vulnerability that allows authentic
High remediation recipe for Dolibarr through 23.0.3, fixed in commit 14db36e, contains a sql injection vulnerability that allows authentic. Upgrade to fixed in commit 14db36e and remove the vulnerable command-injection pattern.
CVE-2026-8141 - The Ajax Load More - Filters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'taxono
High remediation recipe for The Ajax Load More - Filters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'taxono. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-9711 - The EventON - WordPress Virtual Event Calendar Plugin plugin for WordPress (full) is vulnerable to SQL Injecti
Critical remediation recipe for The EventON - WordPress Virtual Event Calendar Plugin plugin for WordPress (full) is vulnerable to SQL Injecti. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-13555 - A vulnerability was found in itsourcecode Online Hotel Management System 1.0
High remediation recipe for A vulnerability was found in itsourcecode Online Hotel Management System 1.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-13565 - A vulnerability was determined in SourceCodester Class and Exam Timetabling System 1.0/1.php
High remediation recipe for A vulnerability was determined in SourceCodester Class and Exam Timetabling System 1.0/1.php. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-13566 - A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0
High remediation recipe for A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-13568 - A weakness has been identified in SourceCodester Inventory Management System 1.0
High remediation recipe for A weakness has been identified in SourceCodester Inventory Management System 1.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-37637 - An issue in Alexantr filemanager v.1.0 allows a remote attacker to execute arbitrary code via the filemanager
Critical remediation recipe for An issue in Alexantr filemanager v.1.0 allows a remote attacker to execute arbitrary code via the filemanager. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40521 - FrontAccounting before 2.4.20 contains a path traversal vulnerability in the attachment upload handler that al
High remediation recipe for FrontAccounting before 2.4.20 contains a path traversal vulnerability in the attachment upload handler that al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-41896 - Coolify is an open-source and self-hostable tool for managing servers, applications, and databases
High remediation recipe for Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Upgrade to fixed in 4.0.0-beta.474. and remove the vulnerable command-injection pattern.
CVE-2026-56124 - phpUploader before 2.0.2 contains an unauthenticated information disclosure vulnerability that allows remote a
High remediation recipe for phpUploader before 2.0.2 contains an unauthenticated information disclosure vulnerability that allows remote a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-10820 - The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content Wor
High remediation recipe for The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content Wor. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-48979 - PHP Standard Library: HTTP/2 server-side missing content-length validation enables request smuggling
High remediation recipe for PHP Standard Library: HTTP/2 server-side missing content-length validation enables request smuggling. Upgrade to 6.1.2, 6.2.1 and remove the vulnerable command-injection pattern.
CVE-2026-49260 - php-weasyprint: shell command injection via configurable WeasyPrint binary path due to inverted is_executable() guard (m
High remediation recipe for php-weasyprint: shell command injection via configurable WeasyPrint binary path due to inverted is_executable() guard (m. Upgrade to 2.5.1 and remove the vulnerable prototype-pollution pattern.
CVE-2026-49286 - PhpWeasyPrint vulnerable to PHAR deserialization via output filename (CVE-2023-28115 case-insensitive bypass)
High remediation recipe for PhpWeasyPrint vulnerable to PHAR deserialization via output filename (CVE-2023-28115 case-insensitive bypass). Upgrade to 2.6.0 and remove the vulnerable command-injection pattern.
CVE-2026-49287 - Statamic CMS's unsafe method invocation via collection sorting allows data destruction
High remediation recipe for Statamic CMS's unsafe method invocation via collection sorting allows data destruction. Upgrade to 5.73.23, 6.20.0 and remove the vulnerable authz pattern.
CVE-2026-12077 - The Dokan Pro plugin for WordPress is vulnerable to time-based SQL Injection via the via 'latitude' and 'longi
High remediation recipe for The Dokan Pro plugin for WordPress is vulnerable to time-based SQL Injection via the via 'latitude' and 'longi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40079 - Cacti is an open source performance and fault management framework
Critical remediation recipe for Cacti is an open source performance and fault management framework. Upgrade to version 1.2.31. and remove the vulnerable command-injection pattern.
CVE-2026-40083 - Cacti is an open source performance and fault management framework
High remediation recipe for Cacti is an open source performance and fault management framework. Upgrade to fixed in version 1.2.31. and remove the vulnerable command-injection pattern.
CVE-2026-12417 - The SignUp & SignIn plugin for WordPress is vulnerable to Authentication Bypass via Weak Password Reset Valida
Critical remediation recipe for The SignUp & SignIn plugin for WordPress is vulnerable to Authentication Bypass via Weak Password Reset Valida. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-39948 - Cacti is an open source performance and fault management framework
Critical remediation recipe for Cacti is an open source performance and fault management framework. Upgrade to fixed in version 1.2.31. and remove the vulnerable command-injection pattern.
CVE-2026-9643 - The WP Meta SEO plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting via the REQU
High remediation recipe for The WP Meta SEO plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting via the REQU. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable xss pattern.
CVE-2026-48507 - Snipe-IT bulk user lockout privilege escalation
High-severity Snipe-IT authorization flaw where users with only users.edit can bulk-change login and reset-related flags for other accounts. Upgrade to 8.6.0 and hard-stop privilege-sensitive fields in bulk user edits.
CVE-2026-52845 - Caddy is an extensible server platform that uses TLS by default
High remediation recipe for Caddy is an extensible server platform that uses TLS by default. Upgrade to fixed in 2.11.4. and remove the vulnerable authz pattern.
CVE-2026-54329 - Snipe-IT cross-tenant accessory injection
High-severity Snipe-IT FMCS tenant-boundary failure where API accessory creation accepts a foreign company_id. Upgrade to 8.6.2 and enforce server-side tenant ownership on API create paths.
CVE-2026-56425 - The Azure Active Directory (AAD) authentication implementation contained multiple weaknesses in its OAuth 2.0
High remediation recipe for The Azure Active Directory (AAD) authentication implementation contained multiple weaknesses in its OAuth 2.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-48908 - A vulnerability in SP Page Builder for Joomla allows unauthenticated users to upload arbitrary files, ultimate
Critical remediation recipe for A vulnerability in SP Page Builder for Joomla allows unauthenticated users to upload arbitrary files, ultimate. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-48939 - A vulnerability in the iCagenda extension for Joomla allows the upload of arbitrary files in the file attachme
Critical remediation recipe for A vulnerability in the iCagenda extension for Joomla allows the upload of arbitrary files in the file attachme. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-48062 - CodeIgniter4 ext_in upload validation bypass
Critical CodeIgniter4 upload validation bypass where ext_in trusts MIME-derived extension mapping. Upgrade to 4.7.3+, stop preserving untrusted filenames, and keep uploads out of executable web roots.
CVE-2026-49741 - TYPO3 form framework privilege escalation and SQL injection
High-severity TYPO3 Form Framework privilege-escalation and SQL-injection path through DataHandler bypasses. Upgrade to 14.3.3+, remove direct form_definition writes, and verify backend role boundaries.
CVE-2026-45034 - PHPSpreadsheet PHAR wrapper patch bypass
Critical PHPSpreadsheet bypass of the CVE-2026-34084 stream-wrapper fix. Upgrade phpoffice/phpspreadsheet to 1.30.5+, block all wrapper-style paths before spreadsheet loading, and add PHAR triple-slash regression checks.
CVE-2026-47743 - Shopper admin Livewire integrity and disclosure flaws
High-severity Shopper admin Livewire IDOR, plaintext password disclosure, and stored XSS. Upgrade shopper/framework to 2.8.0, lock model identifiers, stop round-tripping passwords, and escape barcode rendering.
CVE-2026-48907 - A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthen
Critical remediation recipe for A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthen. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-41236 - Froxlor SSH key symlink root access
High-severity Froxlor customer-to-root privilege escalation through SSH key synchronization symlink handling. Upgrade Froxlor to 2.3.7+, audit customer authorized_keys paths, and close the related TXT zone-file injection incomplete fix.
CVE-2026-41237 - Froxlor has an incomplete fix for CVE-2026-30932
High remediation recipe for Froxlor has an incomplete fix for CVE-2026-30932. Upgrade to 2.3.7 and remove the vulnerable command-injection pattern.
CVE-2026-47745 - Shopper payment, currency, and carrier authorization bypass
Moderate Shopper admin-table authorization bypass that lets low-privilege users disable payment methods, currencies, or carriers. Upgrade to 2.8.0 and enforce per-action access_setting checks.
CVE-2026-5394 - Pimcore Platform - SQL Injection in DataObject composite index handling during class definition import/save
High remediation recipe for Pimcore Platform - SQL Injection in DataObject composite index handling during class definition import/save. Upgrade to 11.5.17, 12.3.7, 2026.1.3 and remove the vulnerable sql-injection pattern.
CVE-2026-44739 - Pimcore Vulnerable to SQL Injection in Custom Reports Column Configuration
High remediation recipe for Pimcore Vulnerable to SQL Injection in Custom Reports Column Configuration. Upgrade to 11.5.17, 12.3.6, 2026.1.2 and remove the vulnerable sql-injection pattern.
CVE-2026-44741 - Pimcore Admin Classic Bundle Vulnerable to SQL Injection in Translation Grid Date Filter via Unsanitized Property Parame
High remediation recipe for Pimcore Admin Classic Bundle Vulnerable to SQL Injection in Translation Grid Date Filter via Unsanitized Property Parame. Upgrade to 1.7.18, 2.3.6 and remove the vulnerable sql-injection pattern.
CVE-2026-45162 - Pimcore has Unsafe PHP Deserialization in Multiple Locations Without allowed_classes Restriction
High remediation recipe for Pimcore has Unsafe PHP Deserialization in Multiple Locations Without allowed_classes Restriction. Upgrade to 11.5.17, 12.3.7, 2026.1.3 and remove the vulnerable deserialization pattern.
CVE-2026-45260 - Pimcore: Missing Authorization in WebDAV MOVE via unchecked asset move handling
High remediation recipe for Pimcore: Missing Authorization in WebDAV MOVE via unchecked asset move handling. Upgrade to 11.5.17, 12.3.7, 2026.1.3 and remove the vulnerable authz pattern.
CVE-2026-45704 - Pimcore has a CustomReports Share Bypass
High remediation recipe for Pimcore has a CustomReports Share Bypass. Upgrade to 11.5.17, 12.3.6, 2026.1.2 and remove the vulnerable authz pattern.
CVE-2026-46636 - Twig cached template sandbox-state bypass
Twig sandbox allow-list bypass when cached Template instances keep an old sandbox-state verdict. Upgrade twig/twig to 3.27.0+, restart long-lived PHP workers, and separate trusted and untrusted Twig environments.
CVE-2018-25357 - Dolibarr ERP CRM contains a remote code evaluation vulnerability
Critical remediation recipe for Dolibarr ERP CRM contains a remote code evaluation vulnerability. Upgrade to 6.0.8, 7.0.4 and remove the vulnerable command-injection pattern.
CVE-2026-24425 - Twig SourcePolicyInterface callback bypass
Twig sandbox callback policy bypass when SourcePolicyInterface enables sandboxing. Upgrade twig/twig to 3.26.0+ or preferably 3.27.0+, and verify callback filters cannot accept arbitrary PHP callables.
CVE-2026-45063 - Symfony X509Authenticator DN identity spoofing
High-severity Symfony X509Authenticator identity-spoofing flaw in client-certificate Subject DN parsing. Upgrade to fixed Symfony security-http trains and verify mTLS identity mapping does not trust attacker-controlled DN fragments.
CVE-2026-46640 - Twig macro-reference compilation RCE
Twig sandbox bypass and arbitrary PHP code execution through _self.(string) macro-reference compilation. Upgrade twig/twig to 3.26.0+ or preferably 3.27.0+, clear compiled templates, and audit user-controlled template surfaces.
CVE-2026-47732 - Twig toString sandbox bypass
Twig sandbox bypass through unguarded string-coercion sites that can invoke disallowed __toString methods. Upgrade twig/twig to 3.26.0+ or preferably 3.27.0+, and audit sandboxed template contexts.
CVE-2026-47742 - Shopper product Livewire authorization bypass
Moderate Shopper product-admin Livewire authorization bypass. Upgrade shopper/framework to 2.8.0, require edit_products inside sub-form store methods, lock product bindings, and test low-privilege wire requests.
CVE-2026-47744 - Shopper team RBAC privilege escalation
Critical Shopper framework team-settings authorization bypass and RBAC privilege escalation. Upgrade shopper/framework to 2.8.0 and verify manage_users authorization on team role writes.
CVE-2026-46725 - TYPO3 Remote Code Execution in extension Content Element Selector (ceselector)
Critical remediation recipe for TYPO3 Remote Code Execution in extension Content Element Selector (ceselector). Upgrade to 3.0.3, 4.0.2, 5.0.1, 6.0.1 and remove the vulnerable authz pattern.
CVE-2026-8727 - TYPO3 Remote Code Execution in extension Site Crawler (crawler)
High remediation recipe for TYPO3 Remote Code Execution in extension Site Crawler (crawler). Upgrade to 11.0.13, 12.0.11 and remove the vulnerable authz pattern.
CVE-2026-8827 - TYPO3 SQL Injection in extension Address List (tt_address)
High remediation recipe for TYPO3 SQL Injection in extension Address List (tt_address). Upgrade to 10.0.1, 8.1.2, 9.1.1 and remove the vulnerable authz pattern.
CVE-2026-6433 - The Custom css-js-php WordPress plugin through 2.0.7 does not properly sanitize user input before using it in
High remediation recipe for The Custom css-js-php WordPress plugin through 2.0.7 does not properly sanitize user input before using it in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-14179 - In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the PDO
Critical remediation recipe for In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the PDO. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-6104 - In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, when an encoding name containing an embedded NUL b
Critical remediation recipe for In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, when an encoding name containing an embedded NUL b. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-6722 - In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the SOA
Critical remediation recipe for In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the SOA. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-7262 - In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when a
High remediation recipe for In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-7263 - In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, DOMNode::C14N() method may process the XML data in
High remediation recipe for In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, DOMNode::C14N() method may process the XML data in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-7568 - In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the met
High remediation recipe for In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the met. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-3844 - The Breeze Cache plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validat
Critical remediation recipe for The Breeze Cache plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validat. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.
CVE-2026-41247 - elFinder ImageMagick bg command injection
High-severity elFinder command injection in the resize background-color parameter when ImageMagick CLI processing is enabled. Upgrade to 2.1.67+, disable unsafe resize handling during rollout, and add argument-safety tests.
CVE-2026-40176 - Composer is a dependency manager for PHP
High remediation recipe for Composer is a dependency manager for PHP. Upgrade to fixed in Composer 2.2.27 and remove the vulnerable command-injection pattern.
CVE-2026-40261 - Composer is a dependency manager for PHP
High remediation recipe for Composer is a dependency manager for PHP. Upgrade to fixed versions. This issue has been fixed in Composer 2.2.27 and remove the vulnerable command-injection pattern.
CVE-2026-0740 - The Ninja Forms - File Uploads plugin for WordPress is vulnerable to arbitrary file uploads due to missing fil
Critical remediation recipe for The Ninja Forms - File Uploads plugin for WordPress is vulnerable to arbitrary file uploads due to missing fil. Upgrade to patched in version 3.3.25 and fully patched in version 3.3.27. and remove the vulnerable unsafe-upload pattern.
CVE-2026-3300 - The Everest Forms Pro plugin for WordPress is vulnerable to Remote Code Execution via PHP Code Injection in al
Critical remediation recipe for The Everest Forms Pro plugin for WordPress is vulnerable to Remote Code Execution via PHP Code Injection in al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2020-37094 - EspoCRM 5.7.0 prior to 5.9.0 contains an authentication token reuse vulnerability that allows authenticated at
High remediation recipe for EspoCRM 5.7.0 prior to 5.9.0 contains an authentication token reuse vulnerability that allows authenticated at. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-24293 - # Active Storage allowed transformation methods potentially unsafe Active Storage attempts to prevent the use
High remediation recipe for # Active Storage allowed transformation methods potentially unsafe Active Storage attempts to prevent the use. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-68616 - WeasyPrint helps web developers to create PDF documents
High remediation recipe for WeasyPrint helps web developers to create PDF documents. Upgrade to version 68.0 and remove the vulnerable command-injection pattern.
CVE-2025-65518 - Plesk Obsidian versions 8.0.1 through 18.0.73 are vulnerable to a Denial of Service (DoS) condition
High remediation recipe for Plesk Obsidian versions 8.0.1 through 18.0.73 are vulnerable to a Denial of Service (DoS) condition. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2025-7852 - The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation
Critical remediation recipe for The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.
CVE-2020-36847 - The Simple-File-List Plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and includ
Critical remediation recipe for The Simple-File-List Plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and includ. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-44203 - In HotelDruid 3.0.0 and 3.0.7, the unauthenticated database-setup endpoint creadb.php can be reached before se
High remediation recipe for In HotelDruid 3.0.0 and 3.0.7, the unauthenticated database-setup endpoint creadb.php can be reached before se. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2020-36326 - Object injection in PHPMailer/PHPMailer
Critical remediation recipe for Object injection in PHPMailer/PHPMailer. Upgrade to 6.4.1 and remove the vulnerable deserialization pattern.
CVE-2021-25296 - Nagios XI version xi-5.7.5 is affected by OS command injection
High remediation recipe for Nagios XI version xi-5.7.5 is affected by OS command injection. Upgrade to version xi-5.7.5 is affected by OS command injection. The vulnerabil and remove the vulnerable command-injection pattern.
CVE-2021-25297 - Nagios XI version xi-5.7.5 is affected by OS command injection
High remediation recipe for Nagios XI version xi-5.7.5 is affected by OS command injection. Upgrade to version xi-5.7.5 is affected by OS command injection. The vulnerabil and remove the vulnerable command-injection pattern.
CVE-2021-25298 - Nagios XI version xi-5.7.5 is affected by OS command injection
High remediation recipe for Nagios XI version xi-5.7.5 is affected by OS command injection. Upgrade to version xi-5.7.5 is affected by OS command injection. The vulnerabil and remove the vulnerable command-injection pattern.
CVE-2020-25213 - The File Manager (wp-file-manager) plugin before 6.9 for WordPress allows remote attackers to upload and execu
Critical remediation recipe for The File Manager (wp-file-manager) plugin before 6.9 for WordPress allows remote attackers to upload and execu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable unsafe-upload pattern.
CVE-2019-19634 - class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension fo
Critical remediation recipe for class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension fo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2019-19576 - class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 extension for
Critical remediation recipe for class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 extension for. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
php/mysql5 recipes
CVE-2026-13485 - SourceCodester preview.php course_year_section SQL injection
High remediation recipe for SourceCodester preview.php course_year_section SQL injection. Apply local prepared-statement patch; no upstream fixed release named in NVD and remove the vulnerable sql-injection pattern.
CVE-2026-13486 - SourceCodester preview6.php course_year_section SQL injection
High remediation recipe for SourceCodester preview6.php course_year_section SQL injection. Apply local prepared-statement patch; no upstream fixed release named in NVD and remove the vulnerable sql-injection pattern.
CVE-2026-13487 - SourceCodester archive.php sy SQL injection
High remediation recipe for SourceCodester archive.php sy SQL injection. Apply local prepared-statement patch; no upstream fixed release named in NVD and remove the vulnerable sql-injection pattern.
CVE-2026-13488 - SourceCodester preview7.php course_year_section SQL injection
High remediation recipe for SourceCodester preview7.php course_year_section SQL injection. Apply local prepared-statement patch; no upstream fixed release named in NVD and remove the vulnerable sql-injection pattern.
CVE-2026-58054 - MyBB limited ACP user management administrator escalation
High remediation recipe for MyBB limited ACP user management administrator escalation. Apply vendor-patched MyBB release or local group-assignment allowlist patch and remove the vulnerable authz pattern.
php/webapp17 recipes
CVE-2026-13521 - SourceCodester Class and Exam Timetabling System 1 sql injection
High sql injection in SourceCodester Class and Exam Timetabling System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13526 - SourceCodester Class and Exam Timetabling System 1 sql injection
High sql injection in SourceCodester Class and Exam Timetabling System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13527 - SourceCodester Class and Exam Timetabling System 1 sql injection
High sql injection in SourceCodester Class and Exam Timetabling System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13546 - Feehi CMS missing authentication
High missing authentication in Feehi CMS. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13550 - itsourcecode Baptism Information Management System 1 sql injection
High sql injection in itsourcecode Baptism Information Management System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13551 - itsourcecode Baptism Information Management System 1 sql injection
High sql injection in itsourcecode Baptism Information Management System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13552 - itsourcecode Online Hotel Management System 1 sql injection
High sql injection in itsourcecode Online Hotel Management System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13553 - itsourcecode Online Hotel Management System 1 unrestricted file upload
High unrestricted file upload in itsourcecode Online Hotel Management System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13559 - code-projects Real State Services 1 sql injection
High sql injection in code-projects Real State Services 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13485 - SourceCodester Class and Exam Timetabling System 1 sql injection
High sql injection in SourceCodester Class and Exam Timetabling System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13486 - SourceCodester Class and Exam Timetabling System 1 sql injection
High sql injection in SourceCodester Class and Exam Timetabling System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13487 - SourceCodester Class and Exam Timetabling System 1 sql injection
High sql injection in SourceCodester Class and Exam Timetabling System 1. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13488 - A security flaw has sql injection
High sql injection in A security flaw has. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-13498 - yashpokharna2555 restaurent-management-system sql injection
High sql injection in yashpokharna2555 restaurent-management-system. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-58054 - MyBB 1.8.40 does not security control bypass
High security control bypass in MyBB 1.8.40 does not. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-8095 - The Frontend File Manager Plugin plugin for WordPress arbitrary file write/read
High arbitrary file write/read in The Frontend File Manager Plugin plugin for WordPress. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-12415 - The Invoice Generator plugin for WordPress privilege escalation
Critical privilege escalation in The Invoice Generator plugin for WordPress. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
php/wordpress7 recipes
CVE-2026-8095 - WordPress Frontend File Manager arbitrary file deletion
High-severity WordPress Frontend File Manager arbitrary file deletion. A low-privilege WordPress user can delete wp-config.php or other server files and turn file deletion into site takeover.
CVE-2026-12415 - Invoice Generator unauthenticated account takeover
Critical WordPress Invoice Generator plugin flaw where an unauthenticated AJAX action can change any user's email and enable password-reset takeover. Disable affected versions and add authentication, capability, ownership, and nonce checks.
CVE-2026-6933 - Premmerce Dev Tools plugin creation RCE
High-severity authenticated RCE in Premmerce Dev Tools plugin creation. Remove or disable the unpatched plugin, add capability and nonce checks, constrain namespace generation, and verify no attacker-written plugin files remain.
CVE-2026-8176 - LatePoint agent privilege escalation
High-severity LatePoint privilege-escalation chain. Upgrade to 5.5.2+, close IDOR and password-reset flaws, re-check role mapping, and verify no agent can mutate privileged WordPress users.
CVE-2026-8442 - WP Review Slider Pro arbitrary file deletion
High-severity arbitrary file deletion in WP Review Slider Pro. Upgrade to 12.7.0+, lock down AJAX handlers, replace prefix checks with canonical path validation, and audit for follow-on code execution risk.
CVE-2026-8443 - WP Review Slider Pro stypes SQL injection
High-severity SQL injection in WP Review Slider Pro chart data queries. Upgrade to 12.7.0+, parameterize all dynamic filters, and prove attacker-controlled arrays never reach raw SQL.
CVE-2026-8444 - WP Review Slider Pro curselrevs SQL injection
High-severity SQL injection in WP Review Slider Pro review lookup logic. Upgrade to 12.7.0+, type-check ID arrays, prepare IN-clause queries correctly, and verify subscriber inputs never reach raw SQL.
python/pip205 recipes
CVE-2026-14480 - OpenPLC Runtime v3 contains an authenticated arbitrary file write vulnerability in the legacy web UI program‑u
Critical remediation recipe for OpenPLC Runtime v3 contains an authenticated arbitrary file write vulnerability in the legacy web UI program‑u. Upgrade to v4 and remove the vulnerable path-traversal pattern.
CVE-2026-40006 - Memory Allocation with Excessive Size Value, Allocation of Resources Without Limits or Throttling, Missing Aut
High remediation recipe for Memory Allocation with Excessive Size Value, Allocation of Resources Without Limits or Throttling, Missing Aut. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-40007 - Uncontrolled Recursion, Uncontrolled Resource Consumption vulnerability in Apache IoTDB
High remediation recipe for Uncontrolled Recursion, Uncontrolled Resource Consumption vulnerability in Apache IoTDB. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-40008 - Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Apache IoT
Critical remediation recipe for Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Apache IoT. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54071 - BabelDOC: Arbitrary Code Execution via CMap Pickle Deserialization in babeldoc/pdfminer/cmapdb.py
High remediation recipe for BabelDOC: Arbitrary Code Execution via CMap Pickle Deserialization in babeldoc/pdfminer/cmapdb.py. Upgrade to 0.6.3 and remove the vulnerable deserialization pattern.
CVE-2026-54149 - MaxKB is an open-source AI assistant for enterprise
High remediation recipe for MaxKB is an open-source AI assistant for enterprise. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-55659 - Grist is spreadsheet software using Python as its formula language
High remediation recipe for Grist is spreadsheet software using Python as its formula language. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59796 - In JetBrains TeamCity before 2026.1.2 pipeline modification was possible due to improper permission checks
High remediation recipe for In JetBrains TeamCity before 2026.1.2 pipeline modification was possible due to improper permission checks. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-61437 - PraisonAI (pip package praisonaiagents) before 1.6.78 contains an unsafe dynamic module loading vulnerability
High remediation recipe for PraisonAI (pip package praisonaiagents) before 1.6.78 contains an unsafe dynamic module loading vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-61444 - PraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where the agents_file
Critical remediation recipe for PraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where the agents_file. Upgrade to 4.6.78 and remove the vulnerable authz pattern.
CVE-2026-49476 - Soup Sieve has Memory Exhaustion via Large Comma-Separated Selector Lists
High remediation recipe for Soup Sieve has Memory Exhaustion via Large Comma-Separated Selector Lists. Upgrade to 2.8.4 and remove the vulnerable authz pattern.
CVE-2026-49477 - Soup Sieve: Regular Expression Denial of Service (ReDoS) via Selector Parser
High remediation recipe for Soup Sieve: Regular Expression Denial of Service (ReDoS) via Selector Parser. Upgrade to 2.8.4 and remove the vulnerable dos pattern.
CVE-2026-54695 - Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents
High remediation recipe for Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-54769 - Langroid is a framework for building large-language-model-powered applications
Critical remediation recipe for Langroid is a framework for building large-language-model-powered applications. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55865 - Python Liquid is a Python engine for the Liquid template language
High remediation recipe for Python Liquid is a Python engine for the Liquid template language. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59214 - Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform
High remediation recipe for Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Upgrade to fixed in version 0.10.0. and remove the vulnerable authz pattern.
CVE-2026-59216 - Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform
High remediation recipe for Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-49471 - Serena: Unauthenticated Flask dashboard on fixed port enables DNS rebinding → memory poisoning → RCE
High remediation recipe for Serena: Unauthenticated Flask dashboard on fixed port enables DNS rebinding → memory poisoning → RCE. Upgrade to 1.5.2 and remove the vulnerable command-injection pattern.
CVE-2026-49825 - lxml_html_clean.Cleaner does not strip javascript: URLs from namespaced URL attributes
High remediation recipe for lxml_html_clean.Cleaner does not strip javascript: URLs from namespaced URL attributes. Upgrade to 0.4.5 and remove the vulnerable command-injection pattern.
CVE-2026-54499 - Stanza is a Stanford NLP Python library for tokenization, sentence segmentation, NER, and parsing of many huma
High remediation recipe for Stanza is a Stanford NLP Python library for tokenization, sentence segmentation, NER, and parsing of many huma. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54591 - AsyncSSH is a Python package which provides an asynchronous client and server implementation of the SSHv2 prot
High remediation recipe for AsyncSSH is a Python package which provides an asynchronous client and server implementation of the SSHv2 prot. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-54772 - CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core
High remediation recipe for CoreWCF is a port of the service side of Windows Communication Foundation (WCF) to .NET Core. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55195 - py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and
High remediation recipe for py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55206 - py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and
High remediation recipe for py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-55830 - RestrictedPython is a tool that helps to define a subset of the Python language which allows to provide a prog
High remediation recipe for RestrictedPython is a tool that helps to define a subset of the Python language which allows to provide a prog. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59922 - Mistune is a Python Markdown parser with renderers and plugins
High remediation recipe for Mistune is a Python Markdown parser with renderers and plugins. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-59935 - pypdf is a free and open-source pure-python PDF library
High remediation recipe for pypdf is a free and open-source pure-python PDF library. Upgrade to fixed in version 6.14.2. and remove the vulnerable command-injection pattern.
CVE-2026-59936 - pypdf is a free and open-source pure-python PDF library
High remediation recipe for pypdf is a free and open-source pure-python PDF library. Upgrade to fixed in version 6.14.1. and remove the vulnerable command-injection pattern.
CVE-2026-59937 - pypdf is a free and open-source pure-python PDF library
High remediation recipe for pypdf is a free and open-source pure-python PDF library. Upgrade to fixed in version 6.14.0. and remove the vulnerable command-injection pattern.
CVE-2026-59939 - httplib2 is a comprehensive HTTP client library for Python
High remediation recipe for httplib2 is a comprehensive HTTP client library for Python. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-46719 - Open WebUI vulnerable to stored XSS via unescaped markdown token in MarkdownTokens.svelte leading to full account takeov
High remediation recipe for Open WebUI vulnerable to stored XSS via unescaped markdown token in MarkdownTokens.svelte leading to full account takeov. Upgrade to 0.6.6 and remove the vulnerable command-injection pattern.
CVE-2026-26192 - Open WebUI vulnerable to Stored XSS via iFrame in citations model
High remediation recipe for Open WebUI vulnerable to Stored XSS via iFrame in citations model. Upgrade to 0.7.0 and remove the vulnerable command-injection pattern.
CVE-2026-26193 - Open WebUI vulnerable to Stored XSS via iFrame embeds in response messages
High remediation recipe for Open WebUI vulnerable to Stored XSS via iFrame embeds in response messages. Upgrade to 0.6.44 and remove the vulnerable command-injection pattern.
CVE-2026-14535 - In Trail of Bits fickling versions up to and including 0.1.11, the UnsafeImportsML analysis pass unconditional
High remediation recipe for In Trail of Bits fickling versions up to and including 0.1.11, the UnsafeImportsML analysis pass unconditional. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2022-37331 - Open Babel has out-of-bounds write in Gaussian coords_type orientation parser
High remediation recipe for Open Babel has out-of-bounds write in Gaussian coords_type orientation parser. Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2022-41793 - Open Babel has out-of-bounds write in CSR PadString (title field)
High remediation recipe for Open Babel has out-of-bounds write in CSR PadString (title field). Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2022-42885 - Open Babel has uninitialized pointer dereference in GRO residue parser
High remediation recipe for Open Babel has uninitialized pointer dereference in GRO residue parser. Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2022-43467 - Open Babel has out-of-bounds write in PQS coord_file parser
High remediation recipe for Open Babel has out-of-bounds write in PQS coord_file parser. Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2022-43607 - Open Babel has out-of-bounds write in MOL2 attribute/value parser
High remediation recipe for Open Babel has out-of-bounds write in MOL2 attribute/value parser. Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2022-44451 - Open Babel has uninitialized pointer dereference in MSI atom parser
High remediation recipe for Open Babel has uninitialized pointer dereference in MSI atom parser. Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2022-46280 - Open Babel has uninitialized pointer dereference in PQS pFormat
High remediation recipe for Open Babel has uninitialized pointer dereference in PQS pFormat. Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2022-46289 - Open Babel has out-of-bounds write in ORCA nAtoms parser
High remediation recipe for Open Babel has out-of-bounds write in ORCA nAtoms parser. Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2022-46290 - Open Babel has out-of-bounds write in ORCA nAtoms parser (second variant)
High remediation recipe for Open Babel has out-of-bounds write in ORCA nAtoms parser (second variant). Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2022-46291 - Open Babel has out-of-bounds write in Gaussian translationVectors[]
High remediation recipe for Open Babel has out-of-bounds write in Gaussian translationVectors[]. Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2022-46293 - Open Babel has out-of-bounds write in MOPAC translationVectors[] (FINAL POINT)
High remediation recipe for Open Babel has out-of-bounds write in MOPAC translationVectors[] (FINAL POINT). Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2022-46294 - Open Babel has out-of-bounds write in MOPAC IN translationVectors[] (Tv atom)
High remediation recipe for Open Babel has out-of-bounds write in MOPAC IN translationVectors[] (Tv atom). Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2022-46295 - Open Babel has out-of-bounds write in MSI translationVectors[]
High remediation recipe for Open Babel has out-of-bounds write in MSI translationVectors[]. Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2025-10997 - Open Babel has heap buffer overflow in ChemKin ChemKinFormat::CheckSpecies
High remediation recipe for Open Babel has heap buffer overflow in ChemKin ChemKinFormat::CheckSpecies. Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2026-57516 - Ray prior to 2.56.0 contains an unsafe deserialization vulnerability in the WebDataset reader that allows atta
High remediation recipe for Ray prior to 2.56.0 contains an unsafe deserialization vulnerability in the WebDataset reader that allows atta. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-6682 - In FatFS R0.16 and earlier contains a FAT32 integer overflow bug in mount_volume() where fasize *= fs->n_fats
High remediation recipe for In FatFS R0.16 and earlier contains a FAT32 integer overflow bug in mount_volume() where fasize *= fs->n_fats. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable ssrf pattern.
CVE-2025-10996 - Open Babel has heap buffer overflow in SMILES OBSmilesParser::ParseSmiles
High remediation recipe for Open Babel has heap buffer overflow in SMILES OBSmilesParser::ParseSmiles. Upgrade to 3.2.0 and remove the vulnerable authz pattern.
CVE-2025-71349 - picklescan before 0.0.29 fails to detect the built-in trace.Trace.run function when analyzing pickle files, al
High remediation recipe for picklescan before 0.0.29 fails to detect the built-in trace.Trace.run function when analyzing pickle files, al. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-71350 - picklescan before 0.0.28 fails to detect malicious pickle files using torch.utils.collect_env.run function in
High remediation recipe for picklescan before 0.0.28 fails to detect malicious pickle files using torch.utils.collect_env.run function in. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-71352 - picklescan before 0.0.29 fails to detect the built-in Python trace.Trace.runctx function when used in pickle f
High remediation recipe for picklescan before 0.0.29 fails to detect the built-in Python trace.Trace.runctx function when used in pickle f. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-71363 - picklescan before 0.0.30 fails to detect cProfile.run function calls in pickle reduce methods, allowing attack
High remediation recipe for picklescan before 0.0.30 fails to detect cProfile.run function calls in pickle reduce methods, allowing attack. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2025-71368 - picklescan before 0.0.30 fails to detect the doctest.debug_script function when analyzing pickle files, allowi
High remediation recipe for picklescan before 0.0.30 fails to detect the doctest.debug_script function when analyzing pickle files, allowi. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-71371 - picklescan before 0.0.29 fails to detect malicious pickle files using code.InteractiveInterpreter.runcode in r
High remediation recipe for picklescan before 0.0.29 fails to detect malicious pickle files using code.InteractiveInterpreter.runcode in r. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-71374 - picklescan before 0.0.29 fails to detect the built-in python profile.Profile.run function when used in pickle
High remediation recipe for picklescan before 0.0.29 fails to detect the built-in python profile.Profile.run function when used in pickle. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-12243 - NLTK version 3.9.4 is vulnerable to a path traversal attack due to an incomplete fix for GitHub Issue #3504
High remediation recipe for NLTK version 3.9.4 is vulnerable to a path traversal attack due to an incomplete fix for GitHub Issue #3504. Upgrade to version 3.9.4 is vulnerable to a path traversal attack due to an inc and remove the vulnerable command-injection pattern.
CVE-2026-57585 - MessagePack is the serializer implementation for Python msgpack.org
High remediation recipe for MessagePack is the serializer implementation for Python msgpack.org. Upgrade to fixed in version 1.2.1. and remove the vulnerable dos pattern.
CVE-2026-58116 - LLaMA-Factory through 0.9.5 contains a remote code execution vulnerability that allows attackers with WebUI ac
Critical remediation recipe for LLaMA-Factory through 0.9.5 contains a remote code execution vulnerability that allows attackers with WebUI ac. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58172 - Ocelot through 24.1.0, fixed in commit f156fd4, contains a security control bypass vulnerability that allows d
Critical remediation recipe for Ocelot through 24.1.0, fixed in commit f156fd4, contains a security control bypass vulnerability that allows d. Upgrade to fixed in commit f156fd4 and remove the vulnerable command-injection pattern.
CVE-2026-58370 - Woodpecker before 3.15.0 matches the ApprovalAllowedUsers bypass list against pipeline.Author
High remediation recipe for Woodpecker before 3.15.0 matches the ApprovalAllowedUsers bypass list against pipeline.Author. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-58377 - JeecgBoot through 3.9.2 contains a broken access control vulnerability that allows authenticated low-privilege
High remediation recipe for JeecgBoot through 3.9.2 contains a broken access control vulnerability that allows authenticated low-privilege. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-13749 - Improper neutralization in the Snowpark annotation processor callback template in Snowflake CLI versions prior
High remediation recipe for Improper neutralization in the Snowpark annotation processor callback template in Snowflake CLI versions prior. Upgrade to version 3.19 and remove the vulnerable authz pattern.
CVE-2026-57346 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Epiphyt Embed
High remediation recipe for Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Epiphyt Embed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-57919 - PBackupVSS.exe in Matrix42 Empirum before 25.5 and 26.x before 26.2 creates a named pipe (\\.\pipe\PBackupVSS)
High remediation recipe for PBackupVSS.exe in Matrix42 Empirum before 25.5 and 26.x before 26.2 creates a named pipe (\\.\pipe\PBackupVSS). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-33646 - mise manages dev tools like node, python, cmake, and terraform
Critical remediation recipe for mise manages dev tools like node, python, cmake, and terraform. Upgrade to fixed in 2026.3.10. and remove the vulnerable authz pattern.
CVE-2026-48797 - Backpropagate: backprop ui --auth and backprop ui --share do not enforce authentication
Critical remediation recipe for Backpropagate: backprop ui --auth and backprop ui --share do not enforce authentication. Upgrade to 1.2.0 and remove the vulnerable command-injection pattern.
CVE-2026-48802 - python-engineio has unbound thread allocation that can cause denial of service
High remediation recipe for python-engineio has unbound thread allocation that can cause denial of service. Upgrade to 4.13.2 and remove the vulnerable dos pattern.
CVE-2026-48804 - python-socketio: Binary attachment accumulation can cause denial of service
High remediation recipe for python-socketio: Binary attachment accumulation can cause denial of service. Upgrade to 5.16.2 and remove the vulnerable dos pattern.
CVE-2026-48809 - python-engineio has possible denial of service due to maximum payload size sometimes not being enforced
High remediation recipe for python-engineio has possible denial of service due to maximum payload size sometimes not being enforced. Upgrade to 4.13.2 and remove the vulnerable command-injection pattern.
CVE-2026-49257 - mcp-pinot: Unauthenticated tool invocation via default oauth_enabled=False + host 0.0.0.0 bind
Critical remediation recipe for mcp-pinot: Unauthenticated tool invocation via default oauth_enabled=False + host 0.0.0.0 bind. Upgrade to 3.1.0 and remove the vulnerable command-injection pattern.
CVE-2026-49291 - mcp-memory-service: OAuth read-only clients can write and delete memories through MCP tools/call
High remediation recipe for mcp-memory-service: OAuth read-only clients can write and delete memories through MCP tools/call. Upgrade to 10.65.3 and remove the vulnerable command-injection pattern.
CVE-2026-49869 - Kestra is an open-source, event-driven orchestration platform
Critical remediation recipe for Kestra is an open-source, event-driven orchestration platform. Upgrade to fixed in 1.0.45 and 1.3.21. and remove the vulnerable command-injection pattern.
CVE-2026-53284 - In the Linux kernel, the following vulnerability has been resolved: btrfs: only release the dirty pages io tre
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: btrfs: only release the dirty pages io tre. Upgrade to patch in the series and remove the vulnerable command-injection pattern.
CVE-2026-53194 - In the Linux kernel, the following vulnerability has been resolved: USB: serial: kl5kusb105: fix bulk-out buff
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: USB: serial: kl5kusb105: fix bulk-out buff. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-53228 - In the Linux kernel, the following vulnerability has been resolved: ipv6: sit: reload inner IPv6 header after
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: ipv6: sit: reload inner IPv6 header after. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-55166 - Lemur ACME SSRF and creator-equality IDOR
Critical Lemur flaw where an authenticated user can combine ACME URL SSRF with creator-based authorization gaps to reach AWS IAM and PKI material. Upgrade to 1.9.2+ and harden ACME endpoint validation plus certificate ownership checks.
CVE-2026-57456 - Vim is an open source, command line text editor
High remediation recipe for Vim is an open source, command line text editor. Upgrade to fixed in 9.2.0699. and remove the vulnerable command-injection pattern.
CVE-2026-8592 - OS Command Injection vulnerability in the process_string action of Rapid7 InsightConnect AWK Plugin on Linux a
High remediation recipe for OS Command Injection vulnerability in the process_string action of Rapid7 InsightConnect AWK Plugin on Linux a. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-44017 - Docling simplifies document processing by parsing diverse formats and providing integrations with the generati
High remediation recipe for Docling simplifies document processing by parsing diverse formats and providing integrations with the generati. Upgrade to fixed in 2.91.0. and remove the vulnerable command-injection pattern.
CVE-2026-49851 - Mistune is a Python Markdown parser with renderers and plugins
High remediation recipe for Mistune is a Python Markdown parser with renderers and plugins. Upgrade to fixed in 3.3.0. and remove the vulnerable authz pattern.
CVE-2026-56121 - Feast before 0.63.0 contains an unsafe deserialization vulnerability that allows unauthenticated or unauthoriz
Critical remediation recipe for Feast before 0.63.0 contains an unsafe deserialization vulnerability that allows unauthenticated or unauthoriz. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable deserialization pattern.
CVE-2026-49444 - n8n is an open source workflow automation platform
High remediation recipe for n8n is an open source workflow automation platform. Upgrade to fixed in 1.123.48 and remove the vulnerable command-injection pattern.
CVE-2026-53753 - Crawl4AI is an open-source LLM friendly web crawler & scraper
Critical remediation recipe for Crawl4AI is an open-source LLM friendly web crawler & scraper. Upgrade to fixed in 0.8.7. and remove the vulnerable command-injection pattern.
CVE-2026-41523 - vLLM is an inference and serving engine for large language models (LLMs)
High remediation recipe for vLLM is an inference and serving engine for large language models (LLMs). Upgrade to fixed in 0.22.0. and remove the vulnerable authz pattern.
CVE-2026-50269 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python
High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.0. and remove the vulnerable authz pattern.
CVE-2026-54273 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python
High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable authz pattern.
CVE-2026-54274 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python
High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable authz pattern.
CVE-2026-54275 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python
High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable cert-validation pattern.
CVE-2026-54277 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python
High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable authz pattern.
CVE-2026-54278 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python
High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable authz pattern.
CVE-2026-54279 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python
High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable authz pattern.
CVE-2026-54280 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python
High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in 3.14.1. and remove the vulnerable command-injection pattern.
CVE-2026-54293 - NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting
High remediation recipe for NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting. Upgrade to fixed in 3.10.0-rc1. and remove the vulnerable command-injection pattern.
CVE-2025-71348 - picklescan before 0.0.28 fails to detect malicious pickle files that invoke torch.utils._config_module.load_co
High remediation recipe for picklescan before 0.0.28 fails to detect malicious pickle files that invoke torch.utils._config_module.load_co. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-71357 - picklescan before 0.0.30 fails to detect malicious pickle files using idlelib.pyshell.ModifiedInterpreter.runc
High remediation recipe for picklescan before 0.0.30 fails to detect malicious pickle files using idlelib.pyshell.ModifiedInterpreter.runc. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2025-71378 - picklescan before 0.0.30 fails to detect cProfile.runctx function calls in pickle file reduce methods, allowin
High remediation recipe for picklescan before 0.0.30 fails to detect cProfile.runctx function calls in pickle file reduce methods, allowin. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-50203 - Apache Airflow SFTP provider: Path traversal in SFTPHook.retrieve_directory
Critical remediation recipe for Apache Airflow SFTP provider: Path traversal in SFTPHook.retrieve_directory. Upgrade to 5.8.1 and remove the vulnerable path-traversal pattern.
CVE-2026-45830 - A lack of authorization validation in version 0.4.17 or later of the ChromaDB Python project allows any authen
High remediation recipe for A lack of authorization validation in version 0.4.17 or later of the ChromaDB Python project allows any authen. Upgrade to version 0.4.17 or later of the ChromaDB Python project allows any au and remove the vulnerable authz pattern.
CVE-2026-45832 - All V1 collection-level endpoints in ChromaDB's Python project pass None for the tenant and database to the au
High remediation recipe for All V1 collection-level endpoints in ChromaDB's Python project pass None for the tenant and database to the au. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-45833 - A code injection vulnerability in version 0.4.17 or later of the ChromaDB Python project allows an authenticat
High remediation recipe for A code injection vulnerability in version 0.4.17 or later of the ChromaDB Python project allows an authenticat. Upgrade to version 0.4.17 or later of the ChromaDB Python project allows an aut and remove the vulnerable authz pattern.
CVE-2026-48006 - Netty is a network application framework for development of protocol servers and clients
High remediation recipe for Netty is a network application framework for development of protocol servers and clients. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-11816 - Keras versions prior to 3.14.0 are vulnerable to a path traversal issue in the archive extraction utilities lo
High remediation recipe for Keras versions prior to 3.14.0 are vulnerable to a path traversal issue in the archive extraction utilities lo. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-52860 - Vim is an open source, command line text editor
High remediation recipe for Vim is an open source, command line text editor. Upgrade to version 9.2.0597 and remove the vulnerable command-injection pattern.
CVE-2026-41567 - Moby is an open source container framework
High remediation recipe for Moby is an open source container framework. Upgrade to fixed in Docker Engine 29.5.1 and moby and remove the vulnerable command-injection pattern.
CVE-2026-10840 - A flaw was found in the OpenShift Pipelines operator
High remediation recipe for A flaw was found in the OpenShift Pipelines operator. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-5241 - A vulnerability in the LightGlue model loading path of huggingface/transformers version 5.2.0 allows an attack
Critical remediation recipe for A vulnerability in the LightGlue model loading path of huggingface/transformers version 5.2.0 allows an attack. Upgrade to version 5.2.0 allows an attacker-controlled model repository to exec and remove the vulnerable command-injection pattern.
CVE-2026-3514 - Prefect has an Authentication Middleware Bypass when URL paths are appended with 'health' or 'ready'
High remediation recipe for Prefect has an Authentication Middleware Bypass when URL paths are appended with 'health' or 'ready'. Upgrade to 3.6.22.dev7 and remove the vulnerable auth-bypass pattern.
CVE-2026-44023 - Docling Core remote filename SSRF
High-severity docling-core remote filename and destination validation issue. Upgrade to 2.74.1+, block untrusted remote fetch inputs, and verify cache-path containment.
CVE-2026-47117 - OpenMed vulnerable to remote code injection through privacy-filter model loading path
Critical remediation recipe for OpenMed vulnerable to remote code injection through privacy-filter model loading path. Upgrade to 1.5.2 and remove the vulnerable authz pattern.
CVE-2026-47214 - Docling HTML backend URI and path handling
High-severity Docling HTML backend resource-fetch issue. Upgrade Docling to 2.94.0+, keep local and remote fetch disabled for untrusted HTML, and add document-ingestion SSRF/path-containment tests.
CVE-2026-40961 - Apache Airflow: Authenticated users can bypass the is_safe_url check
High remediation recipe for Apache Airflow: Authenticated users can bypass the is_safe_url check. Upgrade to 3.2.2 and remove the vulnerable authz pattern.
CVE-2026-41084 - Apache Airflow Vulnerable to Authorization Bypass Through User-Controlled Key
High remediation recipe for Apache Airflow Vulnerable to Authorization Bypass Through User-Controlled Key. Upgrade to 3.2.2 and remove the vulnerable command-injection pattern.
CVE-2026-42252 - Apache Airflow vulnerable to Improper Neutralization of Special Elements Used in a Template Engine
Critical remediation recipe for Apache Airflow vulnerable to Improper Neutralization of Special Elements Used in a Template Engine. Upgrade to 3.2.2 and remove the vulnerable authz pattern.
CVE-2026-42359 - Apache Airflow has a Deserialization of Untrusted Data vulnerability
High remediation recipe for Apache Airflow has a Deserialization of Untrusted Data vulnerability. Upgrade to 3.2.2 and remove the vulnerable deserialization pattern.
CVE-2026-45360 - Apache Airflow Vulnerable to Deserialization of Untrusted Data
High remediation recipe for Apache Airflow Vulnerable to Deserialization of Untrusted Data. Upgrade to 3.2.2 and remove the vulnerable deserialization pattern.
CVE-2026-49121 - AI Tensor Engine for ROCm (AITER) through 0.1.14 contains an unauthenticated remote code execution vulnerabili
High remediation recipe for AI Tensor Engine for ROCm (AITER) through 0.1.14 contains an unauthenticated remote code execution vulnerabili. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-49298 - Apache Airflow: Execution API JWT leaked via KubernetesExecutor worker command-line args
High remediation recipe for Apache Airflow: Execution API JWT leaked via KubernetesExecutor worker command-line args. Upgrade to 3.2.2 and remove the vulnerable authz pattern.
CVE-2026-48526 - PyJWT is a JSON Web Token implementation in Python
High remediation recipe for PyJWT is a JSON Web Token implementation in Python. Upgrade to fixed in 2.13.0. and remove the vulnerable authz pattern.
CVE-2026-49014 - GDAL: scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow
High remediation recipe for GDAL: scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow. Upgrade to 3.13.1 and remove the vulnerable authz pattern.
CVE-2026-49017 - OpenStack Swift: s3api middleware enters an infinite loop when processing a truncated aws-chunked PUT request body
High remediation recipe for OpenStack Swift: s3api middleware enters an infinite loop when processing a truncated aws-chunked PUT request body. Upgrade to Vendor-fixed release and remove the vulnerable dos pattern.
CVE-2026-8450 - HTTP::Daemon versions before 6.17 for Perl allow OS command injection via send_file()
Critical remediation recipe for HTTP::Daemon versions before 6.17 for Perl allow OS command injection via send_file(). Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-2651 - MLflow allows unauthorized access to multipart upload endpoints when the --serve-artifacts mode is enabled
Critical remediation recipe for MLflow allows unauthorized access to multipart upload endpoints when the --serve-artifacts mode is enabled. Upgrade to 3.11.0rc1 and remove the vulnerable command-injection pattern.
CVE-2026-3515 - Prefect has an Argument Injection issue
High remediation recipe for Prefect has an Argument Injection issue. Upgrade to Vendor-fixed release and remove the vulnerable command-injection pattern.
CVE-2026-4372 - HuggingFace transformers vulnerable to remote code execution
High remediation recipe for HuggingFace transformers vulnerable to remote code execution. Upgrade to 5.3.0 and remove the vulnerable deserialization pattern.
CVE-2026-45361 - Apache Airflow providers-google's ComputeEngineSSHHook disables SSH host-key verification by default
High remediation recipe for Apache Airflow providers-google's ComputeEngineSSHHook disables SSH host-key verification by default. Upgrade to 22.0.0 and remove the vulnerable command-injection pattern.
CVE-2026-48207 - Apache Fory PyFory Deserialization of Untrusted Data
Critical remediation recipe for Apache Fory PyFory Deserialization of Untrusted Data. Upgrade to 1.0.0 and remove the vulnerable command-injection pattern.
CVE-2026-48989 - Windows-MCP: HTTP transports expose unauthenticated PowerShell control with wildcard CORS
High remediation recipe for Windows-MCP: HTTP transports expose unauthenticated PowerShell control with wildcard CORS. Upgrade to 0.7.5 and remove the vulnerable command-injection pattern.
CVE-2026-31072 - The JSONSerializer and CBORSerializer in APScheduler (all versions including 3.10.x and 4.0.0a5) are vulnerabl
Critical remediation recipe for The JSONSerializer and CBORSerializer in APScheduler (all versions including 3.10.x and 4.0.0a5) are vulnerabl. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-46373 - SQLFluff: Recursive Stack Overflow in Parser
High remediation recipe for SQLFluff: Recursive Stack Overflow in Parser. Upgrade to 4.1.0 and remove the vulnerable command-injection pattern.
CVE-2026-46374 - SQLFluff: Uncontrolled Resource Consumption in SQLFluff Parser
High remediation recipe for SQLFluff: Uncontrolled Resource Consumption in SQLFluff Parser. Upgrade to 4.2.0 and remove the vulnerable command-injection pattern.
CVE-2026-42561 - Python-Multipart is a streaming multipart parser for Python
High remediation recipe for Python-Multipart is a streaming multipart parser for Python. Upgrade to fixed in 0.0.27. and remove the vulnerable dos pattern.
CVE-2026-42584 - Netty is an asynchronous, event-driven network application framework
High remediation recipe for Netty is an asynchronous, event-driven network application framework. Upgrade to fixed in 4.2.13.Final and 4.1.133.Final. and remove the vulnerable authz pattern.
CVE-2026-44432 - urllib3 is an HTTP client library for Python
High remediation recipe for urllib3 is an HTTP client library for Python. Upgrade to fixed in 2.7.0. and remove the vulnerable command-injection pattern.
CVE-2026-27851 - When safe filter is used with variable expansion, all following pipelines on the same string are incorrectly i
High remediation recipe for When safe filter is used with variable expansion, all following pipelines on the same string are incorrectly i. Upgrade to fixed version. No publicly available exploits are known. and remove the vulnerable authz pattern.
CVE-2026-31228 - The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a remote code execution vulnerability in its Kub
Critical remediation recipe for The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a remote code execution vulnerability in its Kub. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-31230 - The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a command-line argument injection vulnerability
Critical remediation recipe for The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a command-line argument injection vulnerability. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-31236 - The llm CLI tool thru 0.27.1 contains a critical code injection vulnerability via its --functions command-line
Critical remediation recipe for The llm CLI tool thru 0.27.1 contains a critical code injection vulnerability via its --functions command-line. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-31253 - flash-attention contains an insecure deserialization vulnerability in its checkpoint loading mechanism
High remediation recipe for flash-attention contains an insecure deserialization vulnerability in its checkpoint loading mechanism. Upgrade to Vendor-fixed release and remove the vulnerable command-injection pattern.
CVE-2026-43284 - In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on share
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on share. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-29080 - Rucio has SQL Injection in FilterEngine Oracle JSON Path via DID Search API
Critical remediation recipe for Rucio has SQL Injection in FilterEngine Oracle JSON Path via DID Search API. Upgrade to 35.8.5, 38.5.5, 39.4.2, 40.1.1 and remove the vulnerable command-injection pattern.
CVE-2026-29090 - Rucio has SQL Injection in FilterEngine PostgreSQL Query Builder via DID Search API
Critical remediation recipe for Rucio has SQL Injection in FilterEngine PostgreSQL Query Builder via DID Search API. Upgrade to 35.8.5, 38.5.5, 39.4.2, 40.1.1 and remove the vulnerable command-injection pattern.
CVE-2026-43114 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo_avx2: don't retu
Critical remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo_avx2: don't retu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-43232 - In the Linux kernel, the following vulnerability has been resolved: net: wan: farsync: Fix use-after-free bugs
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: net: wan: farsync: Fix use-after-free bugs. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-40110 - Jupyter Server is the backend for Jupyter web applications
High remediation recipe for Jupyter Server is the backend for Jupyter web applications. Upgrade to fixed in version 2.18.0. and remove the vulnerable authz pattern.
CVE-2026-42601 - ArchiveBox AddView config override RCE
Critical ArchiveBox AddView config override RCE. Upgrade or contain ArchiveBox, disable public unauthenticated add workflows where possible, block per-crawl command config overrides, and verify archive workers cannot receive attacker-controlled tool arguments.
CVE-2026-43003 - An issue was discovered in OpenStack ironic-python-agent 1.0.0 through 11.5.0
High remediation recipe for An issue was discovered in OpenStack ironic-python-agent 1.0.0 through 11.5.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40048 - The Camel-PQC FileBasedKeyLifecycleManager class deserializes the contents of <keyId>.key files in the confi
High remediation recipe for The Camel-PQC FileBasedKeyLifecycleManager class deserializes the contents of <keyId>.key files in the confi. Upgrade to upgrade to version 4.20.0 and remove the vulnerable command-injection pattern.
CVE-2026-41140 - Poetry is a dependency manager for Python
High remediation recipe for Poetry is a dependency manager for Python. Upgrade to fixed in 2.3.4. and remove the vulnerable path-traversal pattern.
CVE-2026-6859 - A flaw was found in InstructLab. The linux_train.py script hardcodes trust_remote_code=True when loading m
High remediation recipe for A flaw was found in InstructLab. The linux_train.py script hardcodes trust_remote_code=True when loading m. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-40938 - Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines
High remediation recipe for Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Upgrade to version 1.0.0 and prior to versions 1.0.2 and remove the vulnerable command-injection pattern.
CVE-2026-54333 - UEFI Firmware Parser has a stack out-of-bounds write in tiano decompressor MakeTable
Critical remediation recipe for UEFI Firmware Parser has a stack out-of-bounds write in tiano decompressor MakeTable. Upgrade to Vendor-fixed release and remove the vulnerable dos pattern.
CVE-2026-54334 - UEFI Firmware Parser has a heap out-of-bounds write in tiano decompressor ReadCLen
Critical remediation recipe for UEFI Firmware Parser has a heap out-of-bounds write in tiano decompressor ReadCLen. Upgrade to Vendor-fixed release and remove the vulnerable dos pattern.
CVE-2026-40192 - Pillow is a Python imaging library. Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed
High remediation recipe for Pillow is a Python imaging library. Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable dos pattern.
CVE-2026-40164 - jq is a command-line JSON processor. Before commit 0c7d133c3c7e37c00b6d46b658a02244fdd3c784, jq used MurmurHas
High remediation recipe for jq is a command-line JSON processor. Before commit 0c7d133c3c7e37c00b6d46b658a02244fdd3c784, jq used MurmurHas. Upgrade to patched in commit 0c7d133c3c7e37c00b6d46b658a02244fdd3c784. and remove the vulnerable authz pattern.
CVE-2026-39892 - cryptography is a package designed to expose cryptographic primitives and recipes to Python developers
Critical remediation recipe for cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Upgrade to fixed in 46.0.7. and remove the vulnerable authz pattern.
CVE-2026-1114 - LoLLMs is vulnerable to Improper Access Control through weak secret key
Critical remediation recipe for LoLLMs is vulnerable to Improper Access Control through weak secret key. Upgrade to 2.2.0 and remove the vulnerable command-injection pattern.
CVE-2026-34444 - Lupa integrates the runtimes of Lua or LuaJIT2 into CPython
Critical remediation recipe for Lupa integrates the runtimes of Lua or LuaJIT2 into CPython. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-35029 - LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format
High remediation recipe for LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Upgrade to Fixed in v1.83.0. and remove the vulnerable command-injection pattern.
CVE-2026-32871 - FastMCP is a Pythonic way to build MCP servers and clients
Critical remediation recipe for FastMCP is a Pythonic way to build MCP servers and clients. Upgrade to version 3.2.0 and remove the vulnerable path-traversal pattern.
CVE-2025-15379 - A command injection vulnerability exists in MLflow's model serving container initialization code, specifically
Critical remediation recipe for A command injection vulnerability exists in MLflow's model serving container initialization code, specifically. Upgrade to fixed in version 3.8.2. and remove the vulnerable command-injection pattern.
CVE-2026-23351 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: split gc into u
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: split gc into u. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable use-after-free pattern.
CVE-2026-33211 - Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines
Critical remediation recipe for Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Upgrade to version 1.0.0 and prior to versions 1.0.1 and remove the vulnerable command-injection pattern.
CVE-2026-32874 - UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+
High remediation recipe for UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Upgrade to fixed in version 5.12.0. and remove the vulnerable dos pattern.
CVE-2026-32875 - UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+
High remediation recipe for UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Upgrade to fixed negative indent. An underflow always occurs for any negative and remove the vulnerable dos pattern.
CVE-2026-33231 - NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting
High remediation recipe for NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-33236 - NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting
High remediation recipe for NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-27459 - pyOpenSSL is a Python wrapper around the OpenSSL library
Critical remediation recipe for pyOpenSSL is a Python wrapper around the OpenSSL library. Upgrade to version 22.0.0 and prior to version 26.0.0 and remove the vulnerable authz pattern.
CVE-2025-14287 - A command injection vulnerability exists in mlflow/mlflow versions before v3.7.0, specifically in the mlflow/
High remediation recipe for A command injection vulnerability exists in mlflow/mlflow versions before v3.7.0, specifically in the mlflow/. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-27962 - Authlib is a Python library which builds OAuth and OpenID Connect servers
Critical remediation recipe for Authlib is a Python library which builds OAuth and OpenID Connect servers. Upgrade to version 1.6.9 and remove the vulnerable deserialization pattern.
CVE-2026-28498 - Authlib is a Python library which builds OAuth and OpenID Connect servers
High remediation recipe for Authlib is a Python library which builds OAuth and OpenID Connect servers. Upgrade to version 1.6.9 and remove the vulnerable command-injection pattern.
CVE-2026-32640 - SimpleEval is a library for adding evaluatable expressions into python projects
Critical remediation recipe for SimpleEval is a library for adding evaluatable expressions into python projects. Upgrade to version 1.0.5 has this issue fixed. This vulnerability is fixed in 1 and remove the vulnerable command-injection pattern.
CVE-2026-32597 - PyJWT is a JSON Web Token implementation in Python
High remediation recipe for PyJWT is a JSON Web Token implementation in Python. Upgrade to fixed in 2.12.0. and remove the vulnerable authz pattern.
CVE-2026-28356 - multipart is a fast multipart/form-data parser for python
High remediation recipe for multipart is a fast multipart/form-data parser for python. Upgrade to fixed in 1.2.2 and remove the vulnerable dos pattern.
CVE-2026-32274 - Black is the uncompromising Python code formatter
High remediation recipe for Black is the uncompromising Python code formatter. Upgrade to Fixed in Black 26.3.1. and remove the vulnerable authz pattern.
CVE-2026-29186 - Backstage is an open framework for building developer portals
High remediation recipe for Backstage is an open framework for building developer portals. Upgrade to version 1.14.3 and remove the vulnerable authz pattern.
CVE-2026-28802 - Authlib is a Python library which builds OAuth and OpenID Connect servers
Critical remediation recipe for Authlib is a Python library which builds OAuth and OpenID Connect servers. Upgrade to version 1.6.5 to before version 1.6.7 and remove the vulnerable crypto pattern.
CVE-2025-69534 - Python-Markdown version 3.8 contain a vulnerability where malformed HTML-like sequences can cause html.parser
High remediation recipe for Python-Markdown version 3.8 contain a vulnerability where malformed HTML-like sequences can cause html.parser. Upgrade to version 3.8 contain a vulnerability where malformed HTML-like sequen and remove the vulnerable dos pattern.
CVE-2026-0847 - A vulnerability in NLTK versions up to and including 3.9.2 allows arbitrary file read via path traversal in mu
High remediation recipe for A vulnerability in NLTK versions up to and including 3.9.2 allows arbitrary file read via path traversal in mu. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable path-traversal pattern.
CVE-2026-25673 - An issue was discovered in 6.0 before 6.0.3, 5.2 before 5.2.12, and 4.2 before 4.2.29
High remediation recipe for An issue was discovered in 6.0 before 6.0.3, 5.2 before 5.2.12, and 4.2 before 4.2.29. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-26955 - FreeRDP is a free implementation of the Remote Desktop Protocol
High remediation recipe for FreeRDP is a free implementation of the Remote Desktop Protocol. Upgrade to version 3.23.0 and remove the vulnerable command-injection pattern.
CVE-2026-27483 - MindsDB: Path Traversal in /api/files Leading to Remote Code Execution
High remediation recipe for MindsDB: Path Traversal in /api/files Leading to Remote Code Execution. Upgrade to 25.9.1.1 and remove the vulnerable command-injection pattern.
CVE-2025-14009 - A critical vulnerability exists in the NLTK downloader component of nltk/nltk, affecting all versions
High remediation recipe for A critical vulnerability exists in the NLTK downloader component of nltk/nltk, affecting all versions. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2025-71220 - In the Linux kernel, the following vulnerability has been resolved: smb/server: call ksmbd_session_rpc_close()
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: smb/server: call ksmbd_session_rpc_close(). Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2025-69872 - DiskCache (python-diskcache) through 5.6.3 uses Python pickle for serialization by default
Critical remediation recipe for DiskCache (python-diskcache) through 5.6.3 uses Python pickle for serialization by default. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-25990 - Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, an out-of-bounds write may be triggered when
High remediation recipe for Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, an out-of-bounds write may be triggered when. Upgrade to fixed in 12.1.1. and remove the vulnerable authz pattern.
CVE-2026-25580 - Pydantic AI is a Python agent framework for building applications and workflows with Generative AI
High remediation recipe for Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. Upgrade to fixed in 1.56.0. and remove the vulnerable command-injection pattern.
CVE-2026-24486 - Python-Multipart is a streaming multipart parser for Python
High remediation recipe for Python-Multipart is a streaming multipart parser for Python. Upgrade to version 0.0.22 and remove the vulnerable path-traversal pattern.
CVE-2026-24747 - PyTorch is a Python package that provides tensor computation
High remediation recipe for PyTorch is a Python package that provides tensor computation. Upgrade to version 2.10.0 and remove the vulnerable authz pattern.
CVE-2026-24779 - vLLM is an inference and serving engine for large language models (LLMs)
High remediation recipe for vLLM is an inference and serving engine for large language models (LLMs). Upgrade to version 0.14.1 and remove the vulnerable command-injection pattern.
CVE-2026-0994 - A denial-of-service (DoS) vulnerability exists in google.protobuf.json_format.ParseDict() in Python, where the
High remediation recipe for A denial-of-service (DoS) vulnerability exists in google.protobuf.json_format.ParseDict() in Python, where the. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable authz pattern.
CVE-2026-24049 - wheel is a command line tool for manipulating Python wheel files, as defined in PEP 427
High remediation recipe for wheel is a command line tool for manipulating Python wheel files, as defined in PEP 427. Upgrade to fixed in version 0.46.2. and remove the vulnerable authz pattern.
CVE-2025-56005 - An undocumented and unsafe feature in the PLY (Python Lex-Yacc) library 3.11 allows Remote Code Execution (RCE
Critical remediation recipe for An undocumented and unsafe feature in the PLY (Python Lex-Yacc) library 3.11 allows Remote Code Execution (RCE. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-23876 - ImageMagick is free and open-source software used for editing and manipulating digital images
High remediation recipe for ImageMagick is free and open-source software used for editing and manipulating digital images. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-23490 - pyasn1 is a generic ASN.1 library for Python
High remediation recipe for pyasn1 is a generic ASN.1 library for Python. Upgrade to fixed in 0.6.2. and remove the vulnerable authz pattern.
CVE-2026-0897 - Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0
High remediation recipe for Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0. Upgrade to Vendor-fixed release or mitigation named by the upstream advisory and remove the vulnerable command-injection pattern.
CVE-2026-21441 - urllib3 is an HTTP client library for Python
High remediation recipe for urllib3 is an HTTP client library for Python. Upgrade to version 1.22 and prior to version 2.6.3 and remove the vulnerable command-injection pattern.
CVE-2025-69223 - AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python
High remediation recipe for AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Upgrade to fixed in version 3.13.3. and remove the vulnerable authz pattern.
CVE-2025-11157 - A high-severity remote code execution vulnerability exists in feast-dev/feast version 0.53.0, specifically in
High remediation recipe for A high-severity remote code execution vulnerability exists in feast-dev/feast version 0.53.0, specifically in. Upgrade to version 0.53.0 and remove the vulnerable authz pattern.
CVE-2025-7346 - pyLoad is vulnerable to attacks that bypass localhost restrictions, enabling the creation of arbitrary packages
High remediation recipe for pyLoad is vulnerable to attacks that bypass localhost restrictions, enabling the creation of arbitrary packages. Upgrade to Vendor-fixed release and remove the vulnerable authz pattern.
CVE-2025-38201 - In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: clamp maximum m
High remediation recipe for In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: clamp maximum m. Upgrade to Apply the Ubuntu package versions named in the linked USN notice or the upstream fixed release and remove the vulnerable authz pattern.
CVE-2024-22416 - Cross-Site Request Forgery on any API call in pyLoad may lead to admin privilege escalation
Critical remediation recipe for Cross-Site Request Forgery on any API call in pyLoad may lead to admin privilege escalation. Upgrade to 0.5.0b3.dev78 and remove the vulnerable authz pattern.
CVE-2023-45815 - Viewing wget extractor output while logged in as an admin allows archived JS to execute in the admins context
High remediation recipe for Viewing wget extractor output while logged in as an admin allows archived JS to execute in the admins context. Upgrade to 0.9.0 and remove the vulnerable xss pattern.
python/pypi52 recipes
CVE-2026-44018 - Docling simplifies document processing security control bypass
High security control bypass in Docling simplifies document processing. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2025-66336 - Apache Doris MCP Server metadata SQL injection
High-severity Apache Doris MCP Server SQL injection in a metadata query path that can bypass intended authorization scope. Upgrade to 0.6.1+, parameterize database-name handling, and restrict exposure.
CVE-2026-48039 - Meta Ads MCP HTTP tool auth bypass
Critical Meta Ads MCP unauthenticated HTTP tool execution and token leakage. Upgrade to 1.0.109+, fail closed on missing auth, and stop operator tokens from reaching unauthenticated tool paths.
CVE-2026-10142 - kafka-python frame length parser DoS
High-severity kafka-python denial of service via unbounded 4-byte frame lengths. Upgrade to 2.3.2+, reject oversized broker frames, and verify malformed lengths cannot hang consumers or exhaust memory.
CVE-2026-10143 - kafka-python SCRAM iteration count DoS
High-severity kafka-python denial of service via unbounded SCRAM iteration counts. Upgrade to 2.3.2+, reject pathological broker-controlled iterations, and verify Kafka clients cannot freeze during SCRAM authentication.
CVE-2026-11455 - MetaGPT Mermaid path command injection
Medium-severity MetaGPT command injection through the Mermaid CLI path setting. Disable untrusted Mermaid rendering, pin trusted executable paths, and replace shell execution with argv-based subprocess calls.
CVE-2026-47708 - stata-mcp log_file_name command injection
Critical command injection in stata-mcp log_file_name handling. Upgrade stata-mcp to 1.17.3+, strictly validate log names and paths, and remove command-string construction from user-controlled wrapper parameters.
CVE-2026-44180 - Jupyter Enterprise Gateway prohibited UID/GID bypass
Critical Jupyter Enterprise Gateway UID/GID canonicalization bypass. Upgrade jupyter_enterprise_gateway to 3.3.0+, validate KERNEL_UID and KERNEL_GID after parsing, and harden Kubernetes kernel pod security.
CVE-2026-44181 - Jupyter Enterprise Gateway Jinja2 SSTI RCE
Critical Jupyter Enterprise Gateway Jinja2 SSTI in Kubernetes manifest rendering. Upgrade jupyter_enterprise_gateway to 3.3.0+, remove untrusted KERNEL_* template evaluation, and reduce Kubernetes service-account blast radius.
CVE-2026-44182 - Jupyter Enterprise Gateway YAML manifest injection
Critical Jupyter Enterprise Gateway YAML injection in Kubernetes manifest rendering. Upgrade jupyter_enterprise_gateway to 3.3.0+, render manifests with YAML-safe data handling, and prevent injected privileged Kubernetes resources.
CVE-2026-47410 - PraisonAI Platform default JWT secret
Critical PraisonAI Platform account-takeover risk from a hardcoded default JWT signing secret. Upgrade praisonai-platform to 0.1.4+, require a strong PLATFORM_JWT_SECRET, fail closed when it is missing, and rotate exposed tokens.
CVE-2026-42563 - Dulwich merge driver path command injection
High-severity Dulwich command injection through merge-driver %P path substitution. Upgrade dulwich to 1.2.5+, remove shell-based path interpolation from merge drivers, and gate merges from untrusted branches.
CVE-2026-49853 - Tornado cross-origin redirect credential leak
High-severity Tornado redirect handling bug where SimpleAsyncHTTPClient forwards Authorization and auth credentials across origins. Upgrade tornado and add redirect hygiene tests around outbound clients.
CVE-2026-48818 - Starlette StaticFiles UNC SSRF and NTLM leak
High-severity Windows-only Starlette StaticFiles issue where UNC paths trigger SMB authentication before containment checks. Upgrade Starlette, move static serving off Windows app processes, and block outbound SMB.
CVE-2026-48710 - Starlette BadHost request.url path bypass
Starlette Host header validation flaw that can poison request.url.path and bypass path-based security checks. Upgrade to 1.0.1+ and move security decisions to raw ASGI scope or route identity.
CVE-2026-47391 - PraisonAI A2A eval tool RCE
Critical PraisonAI A2A example chain where unauthenticated JSON-RPC traffic can reach an LLM-driven eval tool. Upgrade to 4.6.40+, require A2A authentication, bind examples to loopback, and remove code-capable demo tools.
CVE-2026-47397 - PraisonAI arbitrary file write
High-severity PraisonAI write_file path-boundary flaw where web context can drive writes to attacker-chosen paths. Upgrade to 4.6.40+, enforce workspace-scoped paths, and require approval for file-mutating tools.
CVE-2026-47407 - PraisonAI Platform workspace takeover
Critical PraisonAI Platform authorization chain where URL-level workspace membership is not enough to stop cross-workspace resource access or member-role takeover. Upgrade to 0.1.4+, scope every nested lookup by workspace, and enforce role gates in services.
CVE-2026-47412 - PraisonAI Platform workspace delete RBAC bypass
High-severity PraisonAI Platform authorization flaw where any workspace member can delete the entire workspace. Upgrade to 0.1.4+, require owner-scoped destructive actions, add confirmation and local RBAC regression tests.
CVE-2026-47413 - PraisonAI Platform member-add owner injection
Critical PraisonAI Platform privilege escalation where any workspace member can add another user as owner. Upgrade to 0.1.4+, require owner-scoped member invitations, and add negative RBAC tests for member-add flows.
CVE-2026-47416 - PraisonAI Platform workspace owner promotion
Critical PraisonAI Platform privilege escalation where any workspace member can promote themselves or another member to owner. Upgrade to 0.1.4+, require owner-scoped member-role changes, and add RBAC regression tests.
CVE-2026-47418 - PraisonAI Platform project IDOR
High-severity PraisonAI Platform cross-workspace project IDOR where routes check membership in one workspace but service methods read, update, delete, or return stats for another workspace's project by global ID.
CVE-2026-47731 - AIT-Core BSC path traversal file append
Critical NASA AIT-Core Binary Stream Capture path traversal and arbitrary file append. Upgrade ait-core to 2.6.1+ or 3.1.1+, constrain BSC paths, and isolate unauthenticated BSC APIs.
CVE-2026-48169 - PraisonAI Platform cross-workspace IDOR
High-severity PraisonAI Platform authorization cluster where globally looked-up issue/project IDs and weak member-management gates break workspace isolation. Upgrade to 0.1.4+, scope service queries by workspace, and add negative tenant-boundary tests.
CVE-2026-44336 - PraisonAI MCP tools/call path traversal RCE
Critical PraisonAI MCP tools/call path traversal that can plant Python .pth files and lead to code execution. Upgrade to 4.6.34+, disable default file tools, enforce schemas, and contain MCP filesystem access.
CVE-2026-44339 - PraisonAI unsafe tool resolution
High-severity PraisonAI tool resolution flaw where undeclared globals and __main__ callables can execute. Upgrade to 4.6.37/1.6.37+, require declared-tool allowlists, and add negative tool-call tests.
CVE-2026-44340 - PraisonAI recipe symlink extraction escape
High-severity PraisonAI recipe archive extraction bypass. Upgrade to 4.6.37+, reject tar links, use data filters, and add archive extraction containment tests.
GHSA-6xcp-7mpr-m7wm - Open WebUI CORS and session RCE chain
High-severity Open WebUI CORS and session validation issue that can enable one-click admin-origin RCE. Upgrade to 0.3.33+, restrict origins, rotate sessions on logout, and test browser-origin boundaries.
CVE-2026-45395 - Open WebUI tool update authorization RCE
High-severity Open WebUI missing workspace.tools check on the tool update endpoint. Upgrade to 0.9.5+, require workspace.tools for tool updates, and test write grants cannot become code execution.
CVE-2026-42208 - LiteLLM security control bypass
Critical security control bypass in LiteLLM. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-44513 - Diffusers trust_remote_code bypass
High-severity Diffusers trust_remote_code bypass through custom_pipeline and local custom components. Upgrade to 0.38.0+, restrict model loading, and add safe pipeline-source tests.
CVE-2026-40171 - Jupyter CommandLinker token theft
High-severity Jupyter Notebook/JupyterLab stored XSS through command-linker markup. Upgrade Notebook to 7.5.6+ and JupyterLab to 4.5.7+, disable command linker where untrusted notebooks are opened, and verify tokens, kernels, files, and terminals remain protected.
CVE-2026-42271 - LiteLLM MCP stdio command execution
High-severity LiteLLM proxy command execution through MCP stdio test endpoints. Upgrade to 1.83.7+, restrict test endpoints to PROXY_ADMIN, and block stdio previews at the gateway until patched.
GHSA-rpm5/GHSA-x2qx - GitPython command injection
High-severity GitPython command and argument injection in repository clone/fetch helpers. Upgrade to 3.1.47+, reject user-controlled git kwargs and multi_options, and harden repo-ingest automation.
CVE-2026-42354 - Sentry SAML SSO identity linking
Critical account-takeover risk in self-hosted Sentry multi-organization SAML SSO. Upgrade to 26.4.1+ and validate tenant-scoped SAML identity linking.
CVE-2026-5760 — SGLang GGUF template RCE
Critical RCE in SGLang's rerank path via unsafe template rendering from model files. Apply the sandboxed-template mitigation, restrict rerank exposure, and upgrade when a verified fixed release is available.
CVE-2026-41490 - Dagster dynamic partition SQL injection
High-severity Dagster SQL injection in dynamic partition keys across database I/O manager integrations. Upgrade Dagster to 1.13.1+ and integration packages to 0.29.1+, then review Add Dynamic Partitions permissions.
CVE-2026-41497 - PraisonAI MCP command injection incomplete fix
Critical PraisonAI MCP command parsing issue where arbitrary executables and dangerous arguments can pass to subprocess execution. Upgrade to 4.5.149+, replace free-form MCP command strings with a governed registry, and add allow-list tests.
CVE-2026-40576 - excel-mcp-server path traversal
Critical path traversal in excel-mcp-server remote transports. Upgrade to 0.1.8+, bind MCP HTTP/SSE locally or require auth, and verify EXCEL_FILES_PATH sandbox enforcement.
CVE-2026-39922 - GeoNode service registration SSRF
GeoNode service registration SSRF through untrusted OGC service URLs. Validate WMS/WFS/WCS targets, block internal networks and metadata endpoints, restrict registration, and resolve the 4.4.5/5.0.2 source ambiguity before suppression.
CVE-2026-39987 — Marimo pre-auth RCE
Pre-auth RCE in Marimo's `/terminal/ws` endpoint. Upgrade to 0.23.0+ and lock notebook exposure behind authentication + network controls.
CVE-2026-24164 — NVIDIA BioNeMo deserialization RCE
NVD-rated critical deserialization issue in NVIDIA BioNeMo. Update to a branch that includes commit e5e58c8 and tighten untrusted data handling.
CVE-2026-27893 - vLLM trust_remote_code bypass
High-severity vLLM RCE through hardcoded trust_remote_code=True in NemotronVL and KimiK25 model paths. Upgrade to vLLM 0.18.0+, gate model sources, and add safe model-loading regression checks.
CVE-2026-34070 - LangChain load_prompt path traversal
LangChain legacy prompt loaders can read attacker-selected local files. Upgrade langchain-core to 1.2.22+ and fence prompt config imports.
CVE-2026-24159 — NVIDIA NeMo deserialization RCE
NVD-rated critical deserialization issue in NVIDIA NeMo Framework. Upgrade to 2.6.2+ and block untrusted checkpoint/model ingestion paths.
CVE-2026-27905 - BentoML tar symlink arbitrary write
BentoML tar extraction can follow symlinks outside the extraction root. Upgrade bentoml to 1.4.36+ and harden archive handling.
CVE-2025-68143 - mcp-server-git arbitrary repository creation
mcp-server-git git_init accepted arbitrary filesystem paths before 2025.9.25. Upgrade, remove exposed git_init registrations, and prove Git operations stay within approved workspaces.
CVE-2025-68144 - mcp-server-git diff and checkout argument injection
mcp-server-git before 2025.12.18 let git_diff and git_checkout treat user-controlled refs as CLI options. Upgrade, validate refs, and block arbitrary file writes.
CVE-2025-68145 - mcp-server-git repository path validation bypass
mcp-server-git before 2025.12.18 did not keep repo_path inside the --repository boundary. Upgrade, resolve symlinks, and enforce repository allow-lists.
CVE-2025-60455 - Modular Max Serve unsafe deserialization
Critical unsafe deserialization in modular (<25.6.0) when experimental kvcache agent is enabled.
CVE-2025-3248 - Langflow validate/code unauthenticated RCE
Critical Langflow unauthenticated code injection in the /api/v1/validate/code endpoint before 1.3.0. Upgrade Langflow, require authentication before code validation, contain exposed endpoints, and add non-exploit regression tests.
CVE-2017-18342 — PyYAML default `load` resolves arbitrary tags
`yaml.load` resolved arbitrary Python tags by default. Replace with `safe_load` and pin PyYAML ≥ 6.0 where the unsafe default was finally removed.
rust4 recipes
CVE-2026-53530 - ratex-parser panics on \verb with a multibyte delimiter (UTF-8 byte-boundary slice)
High remediation recipe for ratex-parser panics on \verb with a multibyte delimiter (UTF-8 byte-boundary slice). Upgrade to 0.1.11 and remove the vulnerable dos pattern.
CVE-2026-58056 - RustDesk file-transfer session control-scope bypass
High-severity RustDesk file-transfer session control-scope bypass. A peer granted file-transfer-only access can inject input or capture screen content outside the granted support scope.
CVE-2026-46689 - scim_proto and kanidm_proto have an authenticated process abort via SCIM filter stack exhaustion
High remediation recipe for scim_proto and kanidm_proto have an authenticated process abort via SCIM filter stack exhaustion. Upgrade to 1.9.3 and remove the vulnerable command-injection pattern.
CVE-2026-40034 - gitoxide: CommandForbiddenInModulesConfiguration Bypass in gix_submodule::File::update() Enables Arbitrary Command Execu
High remediation recipe for gitoxide: CommandForbiddenInModulesConfiguration Bypass in gix_submodule::File::update() Enables Arbitrary Command Execu. Upgrade to 0.83.0 and remove the vulnerable command-injection pattern.
rust/application3 recipes
CVE-2026-13601 - A flaw was found CSP sandbox escape
High CSP sandbox escape in A flaw was found. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-58056 - RustDesk gates incoming control security control bypass
High security control bypass in RustDesk gates incoming control. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
CVE-2026-1709 - Keylime authentication bypass
Critical authentication bypass in Keylime. Upgrade or patch the affected code path, add regression coverage, and deploy with detection for exploitation attempts.
rust/cargo4 recipes
CVE-2026-26422 - clash-verge-service-ipc world-reachable IPC LPE
High-severity local privilege escalation in clash-verge-service-ipc caused by world-reachable IPC permissions. Upgrade to clash-verge-service-ipc 2.3.0+, restrict socket and directory permissions, and remove privilege-bearing IPC trust from untrusted local users.
CVE-2026-47261 - wasmtime-wasi FilePerms WRITE bypass
High-severity wasmtime-wasi preopen permission bypass. Upgrade Wasmtime release trains, audit WASI embeddings that grant DirPerms::MUTATE with FilePerms::READ, and add non-exploit regression tests for truncate denial.
GHSA-wx3m-whqv-xv47 - skillctl path and symlink traversal
High-severity skillctl path traversal and symlink-follow issue. Upgrade to 0.1.2+, reject unsafe skill paths, and quarantine untrusted skill libraries.
CVE-2026-41583/CVE-2026-41584 - Zebra consensus split and rk panic
Critical Zebra Zcash node vulnerabilities in transparent sighash handling and Orchard rk identity handling. Upgrade zebrad to 4.3.1+, ensure zebra-script 5.0.1+ and zebra-chain 6.0.2+, and verify nodes rejoin the expected consensus chain.
typescript/npm23 recipes
CVE-2025-71336 - Flowise Custom MCP auth bypass RCE
Critical Flowise RCE where the Custom MCP endpoint can be reached with a forged internal-request header and used to execute arbitrary OS commands. Upgrade to 3.0.6+ and hard-stop untrusted Custom MCP command execution.
CVE-2026-48146 - Budibase OAuth2 validation SSRF
High-severity Budibase SSRF in OAuth2 config validation. Upgrade to 3.39.0+, route token fetches through fetchWithBlacklist-style protections, and review internal egress exposure.
CVE-2026-48150 - Budibase workspace builder to global admin escalation
Critical Budibase privilege escalation where workspace-scoped builders can assign global roles. Upgrade to 3.39.0+, constrain role-assignment inputs, and add cross-scope authorization tests.
CVE-2026-48151 - Budibase webhook schema auth bypass
High-severity Budibase authorization bypass that lets unauthenticated callers mutate webhook and automation schema. Upgrade to 3.39.0+ and enforce path-specific auth on webhook schema builders.
CVE-2026-48152 - Budibase REST datasource auth exfiltration
High-severity Budibase datasource secret exfiltration where Basic users can rewrite REST datasource base URLs and reuse preserved auth. Upgrade to 3.39.0+ and enforce builder-only datasource mutation.
CVE-2026-48054 - OpenZeppelin Wizard generated test code injection
High-severity code injection in generated Hardhat and Foundry test files from OpenZeppelin Contracts Wizard. Upgrade to 0.10.9+ and sanitize untrusted contract metadata before writing generated tests.
GHSA-gv7w-rqvm-qjhr - esbuild Deno binary integrity RCE
High-severity esbuild Deno module RCE via unverified binary downloads from attacker-influenced npm registries. Upgrade to 0.28.1+, restore hash verification, and lock registry trust in CI.
GHSA-63gr-g7jc-v8rg - AgenticMail MCP HTTP auth bypass
High-severity @agenticmail/mcp HTTP transport authorization bypass. Upgrade to 0.9.27+, require auth on /mcp, bind locally by default, and disable master-key tools on unauthenticated transports.
GHSA-m99r-2hxc-cp3q - Flowise MCP security bypass RCE
High-severity Flowise Custom MCP security bypass that reopens command execution through docker build, npx --yes, and node local-file path bypasses. Upgrade flowise and flowise-components to 3.1.2+ and replace deny-list MCP command validation with an approved registry.
CVE-2026-44895 - GitLab MCP Server SSE auth bypass
High-severity @yoda.digital/gitlab-mcp-server SSE transport authentication bypass. Upgrade to 0.6.0+, require bearer auth on /sse and /messages, remove wildcard CORS, bind to loopback by default, and rotate GitLab PATs if exposed.
CVE-2026-7039 - ssh-mcp description command injection
High-severity command injection in tufantunc ssh-mcp when description text reaches shell.write in su mode. Remove or contain affected versions, patch newline handling, and require least-privilege MCP execution.
CVE-2026-41265 - Flowise Airtable Agent code injection RCE
Critical Flowise Airtable Agent code injection through LLM-generated Python evaluated in Pyodide. Upgrade to 3.1.0+, disable exposed Airtable Agent chatflows until patched, and verify generated code cannot perform imports or system operations.
CVE-2026-41507 - math-codegen string literal RCE
Critical math-codegen code injection where string literals passed to cg.parse can enter a new Function body. Upgrade to 0.4.3+, block untrusted parser input until patched, and add literal-escaping regression tests.
GHSA-xh72/GHSA-xmxx - OpenClaw agent-surface fail-closed bypasses
Critical OpenClaw agent-surface vulnerabilities across Feishu webhook auth, gateway bearer-token rotation, Matrix room authorization, and webchat media file containment. Upgrade to 2026.4.15+, fail closed at every external agent input, and add trust-boundary regression tests.
GHSA-xmxx/GHSA-mr34/GHSA-2gvc - OpenClaw gateway boundary hardening
High-severity OpenClaw gateway and agent-boundary cluster covering stale bearer auth after SecretRef rotation, webchat local media containment, and Matrix room command authorization. Upgrade to 2026.4.15+ and add boundary regression tests.
CVE-2026-40933 - Flowise MCP adapter command execution
Critical Flowise authenticated command execution through Custom MCP stdio adapter configuration. Upgrade to at least 3.1.0, target 3.1.2+ when Custom MCP remains enabled, and verify MCP server definitions cannot spawn arbitrary commands.
CVE-2026-41428 - Budibase public endpoint auth bypass
Critical Budibase authentication bypass caused by matching public endpoint regexes against query-bearing URLs. Upgrade to a fixed Budibase release or patch the matcher to use anchored path-only checks, then add negative auth regression tests.
GHSA-3xx2/GHSA-47wq - Paperclip agent key tenant-boundary bypass
Critical Paperclip cross-tenant authorization bypass in agent API key routes. Upgrade to 2026.416.0+, require company access on key list/create/revoke, and rotate agent tokens if exposed.
GHSA-vr7g-88fq-vhq3 - Paperclip workspace cleanup command injection
Critical Paperclip OS command injection through execution workspace cleanupCommand. Upgrade to 2026.416.0+, remove shell-backed cleanup strings, and add lifecycle-action allow-list tests.
CVE-2025-11953 - React Native CLI Metro command injection
Critical, known-exploited React Native Community CLI / Metro Development Server command injection. Upgrade @react-native-community/cli-server-api to 20.0.0+, bind Metro to localhost, remove exposed dev-server defaults, and rotate secrets when vulnerable servers were reachable.
CVE-2025-53967 - Framelink Figma MCP curl command injection
High-severity command injection in Framelink Figma MCP Server before 0.6.3. Upgrade, bind the HTTP server to localhost, remove shell-built curl fallbacks, and rotate Figma tokens if exposed.
CVE-2025-6514 - mcp-remote OAuth command injection
Critical mcp-remote command injection when a local MCP proxy connects to an untrusted remote MCP server. Upgrade to 0.1.16+, pin launch paths, require trusted HTTPS MCP endpoints, and rotate credentials if a vulnerable client connected to suspicious servers.
CVE-2025-49596 - MCP Inspector proxy unauthenticated RCE
Critical MCP Inspector proxy RCE before 0.14.1. Upgrade @modelcontextprotocol/inspector, require proxy session-token auth, keep the proxy bound to localhost, and block unsafe devserver exposure.
wordpress/plugin5 recipes
CVE-2026-53738 - Copy & Delete Posts AJAX privilege escalation
High-severity authorization bypass in Copy & Delete Posts <=1.5.4. Remove or restrict the plugin, gate AJAX actions by capability, and verify non-admin roles cannot invoke destructive cdp_action_handling operations.
CVE-2026-5063 - NEX-Forms POST key stored XSS
High-severity unauthenticated stored XSS in NEX-Forms <=9.1.11 via POST parameter key names. Upgrade to 9.1.12+, cleanse malicious entries, and verify admin entry views escape submitted keys.
CVE-2026-4882 - WordPress User Registration Advanced Fields upload RCE
Critical arbitrary file upload in the WordPress User Registration Advanced Fields add-on. Disable affected profile-picture uploads or the add-on until a fixed release is deployed, then audit uploaded files and logs.
CVE-2026-7458 - WordPress User Verification OTP auth bypass
Critical authentication bypass in the WordPress User Verification by PickPlugins plugin. Upgrade to 2.0.47+, disable exposed OTP login until patched, expire sessions, and audit privileged account activity.
CVE-2026-7567 - WordPress Temporary Login auth bypass
Critical authentication bypass in the WordPress Temporary Login plugin. Upgrade to 1.1.0+ or remove the plugin, revoke temporary access, and verify array-token requests cannot authenticate.
This catalogue grows. New entries land via the same review process as any other prompt.
Required frontmatter for contributors:
cveorghsa— the canonical ID (e.g.,"CVE-2021-44228"or"GHSA-v4p8-mg3p-g94g"). Useghsaonly when GitHub has not assigned a CVE.severity—critical/high/medium/low.ecosystem— the rough family the recipe targets (e.g.,java/maven,python/pypi,linux/system,openssh/system). New ecosystems automatically become new groups.kev—true/false. CISA Known Exploited Vulnerability flag; renders as a badge.disclosed— date string the listing sorts by within each ecosystem.known_as— popular names (["Log4Shell"]); the first alias renders as a quick visual identifier.
Anatomy of a good CVE recipe submission
If you’re writing a new entry, the test is: a developer who has never read the CVE before should be able to apply the recipe end-to-end and produce a reviewable PR. That means:
- Don’t paraphrase the NVD entry. Link to it, and write a plain-language summary that explains what the attacker does and why the fix works.
- Distinguish “vulnerable installation” from “exposed application.” A package being installed is not the same as the vulnerable code being reachable from an untrusted input. The recipe should say which is which.
- Document the partial-fix history. If the first patch was incomplete (Log4Shell, Heartbleed-adjacent CVEs), the recipe must say so and direct the upgrade past the incomplete fix.
- Treat upgrade and mitigation as siblings. Some environments can’t upgrade immediately; a documented mitigation gets them out of the live-fire phase. Recipes that only have an upgrade path are a hard sell to a team with a frozen runtime.
- Make quick checks cross-platform when commands differ. If a recipe includes shell commands, provide macOS/Linux and Windows variants so reviewers and operators can verify exposure without rewriting the check on the fly.
- Verification is a step, not a wish. Add the exact
command(s) (a re-scan, a
stringscheck, a service probe) that confirm the fix.
What this section is not
- A vulnerability database. NVD, OSV, GHSA, vendor advisories, and the CVE feeds your scanner consumes already serve that purpose. This section is a fix cookbook, not a CVE index.
- A complete archive. Most CVEs don’t need their own recipe — the generic workflows are enough. Recipes here are reserved for the load-bearing, repeatedly-relevant ones.
- Auto-generated. Each recipe is reviewed before merge.
See also
- Vulnerable Dependency Remediation — the generic workflow most CVEs route through.
- Classic Vulnerable Defaults — durable patterns that aren’t single-CVE-shaped.
- Reputable Prompt Sources — external CVE-fix collections worth borrowing from.