Wed, Feb 25 · 05:25 PM CSTCVE-2026-20127
10.0/10 · Must read/watchNVDvuln
Summary
A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, and Cisco Catalyst SD-WAN Validator, formerly SD-WAN vBond, could allow an unauthenticated, remote attacker to bypass authentication and obtain administrativ
CVECVE-2026-20127
SeverityCRITICAL
TypeUPDATED
PublishedWed, Feb 25 · 05:25 PM CST
ModifiedTue, Jun 16 · 07:16 PM CDT
Thu, May 14 · 05:16 PM CDTCVE-2026-20182
10.0/10 · Must read/watchNVDvuln
Summary
May 2026: This security advisory provides the details and fix information for a vulnerability that was discovered and fixed after the was disclosed in February 2026. This new advisory is for a new vulnerability in the control connection handshaking. The section of this advisory includes Show Control Connections guidanc
CVECVE-2026-20182
SeverityCRITICAL
TypeUPDATED
PublishedThu, May 14 · 05:16 PM CDT
ModifiedTue, Jun 16 · 07:16 PM CDT
Fri, Jun 05 · 08:17 PM CDTCVE-2026-11414
9.8/10 · Must read/watchNVDvuln
Summary
A hard-coded cryptographic key is used by Altium Enterprise Server to sign file download URLs in the Vault service. Because the key is identical across all installations, an unauthenticated network attacker who can reach the server can forge valid download signatures and retrieve files from the Vault storage area witho
CVECVE-2026-11414
SeverityCRITICAL
TypeUPDATED
PublishedFri, Jun 05 · 08:17 PM CDT
ModifiedTue, Jun 16 · 08:50 PM CDT
Fri, Jun 05 · 08:17 PM CDTCVE-2026-11420
9.8/10 · Must read/watchNVDvuln
Summary
Two path traversal vulnerabilities in the Network Installation Service (NIS) of Altium Enterprise Server allow an unauthenticated network attacker to write arbitrary files to any writable location on the server filesystem and to read package archive files from the server. No authentication, session, or credentials are
CVECVE-2026-11420
SeverityCRITICAL
TypeUPDATED
PublishedFri, Jun 05 · 08:17 PM CDT
ModifiedTue, Jun 16 · 08:49 PM CDT
Wed, Jun 10 · 06:16 PM CDTCVE-2026-20253
9.8/10 · Must read/watchNVDvuln
Summary
In Splunk Enterprise 10.2 versions below 10.2.4 and 10 versions below 10.0.7, an unauthenticated user could create or truncate arbitrary files through a PostgreSQL sidecar service endpoint. The vulnerability exists because the PostgreSQL sidecar service endpoint lacks authentication controls, allowing any network-reach
CVECVE-2026-20253
SeverityCRITICAL
TypeUPDATED
PublishedWed, Jun 10 · 06:16 PM CDT
ModifiedTue, Jun 16 · 03:16 PM CDT
Fri, Apr 24 · 12:16 AM CDTCVE-2026-25775
9.8/10 · Must read/watchNVDvuln
Summary
A vulnerability in SenseLive X3050’s remote management service allows firmware retrieval and update operations to be performed without authentication or authorization. The service accepts firmware-related requests from any reachable host and does not verify user privileges, integrity of uploaded images, or the authenti
CVECVE-2026-25775
SeverityCRITICAL
TypeUPDATED
PublishedFri, Apr 24 · 12:16 AM CDT
ModifiedTue, Jun 16 · 04:08 PM CDT
Wed, May 27 · 02:17 PM CDTCVE-2026-45988
9.8/10 · Must read/watchNVDvuln
Summary
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packets If a RESPONSE packet gets a temporary failure during processing, it may end up in a partially decrypted state - and then get requeued for a retry. Fix this by just discarding the packet; we will send another
CVECVE-2026-45988
SeverityCRITICAL
TypeUPDATED
PublishedWed, May 27 · 02:17 PM CDT
ModifiedTue, Jun 16 · 01:53 PM CDT
Wed, May 27 · 02:17 PM CDTCVE-2026-46039
9.8/10 · Must read/watchNVDvuln
Summary
In the Linux kernel, the following vulnerability has been resolved: rxgk: Fix potential integer overflow in length check Fix potential integer overflow in rxgk_extract_token() when checking the length of the ticket. Rather than rounding up the value to be tested (which might overflow), round down the size of the availa
CVECVE-2026-46039
SeverityCRITICAL
TypeUPDATED
PublishedWed, May 27 · 02:17 PM CDT
ModifiedTue, Jun 16 · 03:16 PM CDT
Fri, May 29 · 06:17 PM CDTCVE-2026-7786
9.8/10 · Must read/watchNVDvuln
Summary
Jinan USR IOT Technology Limited (PUSR) USR-W610 RS232/485 to Wi-Fi/Ethernet Converter device firmware contains plaintext administrative credentials embedded in the firmware image. These credentials can be extracted through firmware analysis and used to authenticate to device services.
CVECVE-2026-7786
SeverityCRITICAL
TypeUPDATED
PublishedFri, May 29 · 06:17 PM CDT
ModifiedTue, Jun 16 · 04:03 PM CDT
Wed, Jun 10 · 03:16 PM CDTCVE-2026-53474
9.6/10 · Must read/watchNVDvuln
Summary
A flaw was found in migration-planner. A remote authenticated attacker could exploit this vulnerability by uploading a specially crafted RVTools .xlsx file. Due to improper input sanitization, malicious SQL embedded within a spreadsheet cell is executed when cluster names are processed. This SQL Injection allows for ar
CVECVE-2026-53474
SeverityCRITICAL
TypeUPDATED
PublishedWed, Jun 10 · 03:16 PM CDT
ModifiedTue, Jun 16 · 02:37 PM CDT
Wed, Jun 10 · 03:16 PM CDTCVE-2026-53476
9.6/10 · Must read/watchNVDvuln
Summary
A flaw was found in assisted-migration-agent. An unauthenticated attacker, located on the same local area network (LAN), can exploit a path traversal vulnerability. By crafting a specially designed gzipped tarball, the attacker can bypass security checks and write arbitrary files to the system. This could ultimately le
CVECVE-2026-53476
SeverityCRITICAL
TypeUPDATED
PublishedWed, Jun 10 · 03:16 PM CDT
ModifiedTue, Jun 16 · 02:52 PM CDT
Tue, Apr 28 · 07:37 PM CDTCVE-2026-3893
9.4/10 · Must read/watchNVDvuln
Summary
The Carlson VASCO-B GNSS Receiver lacks an authentication mechanism, allowing an attacker with network access to directly access and modify its configuration and operational functions without needing credentials.
CVECVE-2026-3893
SeverityCRITICAL
TypeUPDATED
PublishedTue, Apr 28 · 07:37 PM CDT
ModifiedTue, Jun 16 · 04:07 PM CDT
Wed, Jun 10 · 03:16 PM CDTCVE-2026-53475
9.3/10 · Must read/watchNVDvuln
Summary
A flaw was found in assisted-migration-agent. The application hardcodes insecure Transport Layer Security (TLS) connections when communicating with vCenter. This vulnerability allows a Man-in-the-Middle (MITM) attacker to intercept and harvest vCenter administrator credentials. This can lead to unauthorized access to v
CVECVE-2026-53475
SeverityCRITICAL
TypeUPDATED
PublishedWed, Jun 10 · 03:16 PM CDT
ModifiedTue, Jun 16 · 02:41 PM CDT
Tue, Jun 09 · 05:17 PM CDTCVE-2026-45602
9.1/10 · Must read/watchNVDvuln
Summary
No cwe for this issue in Windows DHCP Server allows an unauthorized attacker to perform tampering over a network.
CVECVE-2026-45602
SeverityCRITICAL
TypeUPDATED
PublishedTue, Jun 09 · 05:17 PM CDT
ModifiedTue, Jun 16 · 07:16 PM CDT
Wed, May 27 · 02:17 PM CDTCVE-2026-46043
9.1/10 · Must read/watchNVDvuln
Summary
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv rxe_rcv() currently checks only that the incoming packet is at least header_size(pkt) bytes long before payload_size() is used. However, payload_size() subtracts both the attacker-control
CVECVE-2026-46043
SeverityCRITICAL
TypeUPDATED
PublishedWed, May 27 · 02:17 PM CDT
ModifiedTue, Jun 16 · 03:13 PM CDT
Fri, May 29 · 06:17 PM CDTCVE-2026-5386
9.1/10 · Must read/watchNVDvuln
Summary
The affected KMW CCTV Security Cameras are vulnerable to a critical unauthenticated password reset. This flaw allows an attacker to remotely reset the administrator password to a known value without authentication, granting full access to the camera feeds and settings.
CVECVE-2026-5386
SeverityCRITICAL
TypeUPDATED
PublishedFri, May 29 · 06:17 PM CDT
ModifiedTue, Jun 16 · 04:03 PM CDT
Wed, May 20 · 04:16 PM CDTCVE-2026-8598
9.1/10 · Must read/watchNVDvuln
Summary
An undocumented configuration export port is accessible on some models of ZKTeco CCTV cameras. This port does not require authentication and exposes critical information about the camera such as open services and camera account credentials.
CVECVE-2026-8598
SeverityCRITICAL
TypeUPDATED
PublishedWed, May 20 · 04:16 PM CDT
ModifiedTue, Jun 16 · 04:07 PM CDT
Fri, Jun 05 · 08:17 PM CDTCVE-2026-11419
8.8/10 · Worth your timeNVDvuln
Summary
A path traversal vulnerability exists in the Altium Enterprise Server Vault Service UploadController due to improper validation of a user-controlled path component in image upload requests. An authenticated user can supply a crafted absolute path so that the configured storage root is discarded, allowing arbitrary file
CVECVE-2026-11419
SeverityHIGH
TypeUPDATED
PublishedFri, Jun 05 · 08:17 PM CDT
ModifiedTue, Jun 16 · 08:50 PM CDT
Tue, Mar 31 · 03:15 AM CDTCVE-2026-34040
8.8/10 · Worth your timeNVDvuln
Summary
Moby is an open source container framework. Prior to version 29.3.1, a security vulnerability has been detected that allows attackers to bypass authorization plugins (AuthZ). This issue has been patched in version 29.3.1.
CVECVE-2026-34040
SeverityHIGH
TypeUPDATED
PublishedTue, Mar 31 · 03:15 AM CDT
ModifiedTue, Jun 16 · 02:47 PM CDT
Wed, May 27 · 02:17 PM CDTCVE-2026-46056
8.8/10 · Worth your timeNVDvuln
Summary
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: fix potential UAF in SSP passkey handlers hci_conn lookup and field access must be covered by hdev lock in hci_user_passkey_notify_evt() and hci_keypress_notify_evt(), otherwise the connection can be freed concurrently. Extend the
CVECVE-2026-46056
SeverityHIGH
TypeUPDATED
PublishedWed, May 27 · 02:17 PM CDT
ModifiedTue, Jun 16 · 03:01 PM CDT
Fri, May 29 · 06:17 PM CDTCVE-2026-5768
8.8/10 · Worth your timeNVDvuln
Summary
The Frontier X2 device allows unauthenticated BLE read/write access to critical GATT characteristics without enforcing pairing authentication or authorization. This allows attackers within BLE range to perform unauthorized control of device functions, including starting/stopping activities, triggering vibrations, causi
CVECVE-2026-5768
SeverityHIGH
TypeUPDATED
PublishedFri, May 29 · 06:17 PM CDT
ModifiedTue, Jun 16 · 04:03 PM CDT
Wed, May 27 · 02:17 PM CDTCVE-2026-46037
8.2/10 · Worth your timeNVDvuln
Summary
In the Linux kernel, the following vulnerability has been resolved: ipv4: icmp: validate reply type before using icmp_pointers Extended echo replies use ICMP_EXT_ECHOREPLY as the outbound reply type. That value is outside the range covered by icmp_pointers[], which only describes the traditional ICMP types up to NR_ICM
CVECVE-2026-46037
SeverityHIGH
TypeUPDATED
PublishedWed, May 27 · 02:17 PM CDT
ModifiedTue, Jun 16 · 03:17 PM CDT
Wed, May 27 · 02:17 PM CDTCVE-2026-46010
8.1/10 · Worth your timeNVDvuln
Summary
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix error handling in rxgk_extract_token() Fix a missing bit of error handling in rxgk_extract_token(): in the event that rxgk_decrypt_skb() returns -ENOMEM, it should just return that rather than continuing on (for anything else, it generates a
CVECVE-2026-46010
SeverityHIGH
TypeUPDATED
PublishedWed, May 27 · 02:17 PM CDT
ModifiedTue, Jun 16 · 03:25 PM CDT
Fri, May 22 · 03:16 PM CDTCVE-2026-9256
8.1/10 · Worth your timeNVDvuln
Summary
NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. This vulnerability exists when a rewrite directive uses a regex pattern with distinct, overlapping Perl-Compatible Regular Expression (PCRE) captures (for example, ^/((.*))$) and a replacement string that references multiple su
CVECVE-2026-9256
SeverityHIGH
TypeUPDATED
PublishedFri, May 22 · 03:16 PM CDT
ModifiedTue, Jun 16 · 07:59 PM CDT
Mon, Jun 08 · 09:16 AM CDTCVE-2026-41722
8.0/10 · Worth your timeNVDvuln
Summary
VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privileges to create policies, views or text-widgets may be able to inject scripts to perform administrative actions in VMware Cloud Foundation Operations.
CVECVE-2026-41722
SeverityHIGH
TypeUPDATED
PublishedMon, Jun 08 · 09:16 AM CDT
ModifiedTue, Jun 16 · 01:40 PM CDT