Wed, May 20 · 05:16 PM CDTCVE-2026-20223
10.0/10 · Must read/watchNVDvuln
Summary
A vulnerability in the access validation of internal REST APIs of Cisco Secure Workload could allow an unauthenticated, remote attacker to access site resources with the privileges of the Site Admin role. This vulnerability is due to insufficient validation and authentication when accessing REST API endpoints
CVECVE-2026-20223
SeverityCRITICAL
TypeUPDATED
PublishedWed, May 20 · 05:16 PM CDT
ModifiedTue, Jun 30 · 04:30 PM CDT
Wed, Jun 03 · 11:16 AM CDTCVE-2026-47065
9.8/10 · Must read/watchNVDvuln
Summary
ZDRES-232: resolveProxyClass Not Overridden - acceptMatchers Filter Bypass via java.lang.reflect.Proxy Assessment: Fully addressed. When the serialised stream contains a TC_PROXYCLASSDESC (the marker for a java.lang.reflect.Proxy ), JDK’s ObjectInputStream.readProxyDesc() is dispatched. JDK then calls the default Objec
CVECVE-2026-47065
SeverityCRITICAL
TypeUPDATED
PublishedWed, Jun 03 · 11:16 AM CDT
ModifiedTue, Jun 30 · 07:02 PM CDT
Thu, Jun 04 · 02:16 PM CDTCVE-2026-8037
9.6/10 · Must read/watchNVDvuln
Summary
OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in multiple command endpoints
CVECVE-2026-8037
SeverityCRITICAL
TypeUPDATED
PublishedThu, Jun 04 · 02:16 PM CDT
ModifiedWed, Jul 01 · 05:16 AM CDT
Tue, Jun 17 · 02:15 PM CDTCVE-2025-4404
9.1/10 · Must read/watchNVDvuln
Summary
A privilege escalation from host to domain vulnerability was found in the FreeIPA project. The FreeIPA package fails to validate the uniqueness of the `krbCanonicalName` for the admin account by default, allowing users to create services with the same canonical name as the REALM admin. When a successful attack happens,
CVECVE-2025-4404
SeverityCRITICAL
TypeUPDATED
PublishedTue, Jun 17 · 02:15 PM CDT
ModifiedTue, Jun 30 · 11:16 AM CDT
Thu, May 28 · 09:16 AM CDTCVE-2026-4408
9.0/10 · Must read/watchNVDvuln
Summary
A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic domain controllers that use the "check password script" feature. If this script is configured with the %u substitution character, the client-controlled username is passed without proper escaping of shell meta-c
CVECVE-2026-4408
SeverityCRITICAL
TypeUPDATED
PublishedThu, May 28 · 09:16 AM CDT
ModifiedTue, Jun 30 · 06:16 PM CDT
Wed, Jun 03 · 10:16 PM CDTCVE-2026-22054
8.8/10 · Worth your timeNVDvuln
Summary
Active IQ Config Advisor version 6.7.3 contains hard-coded credentials that could allow an authenticated attacker with low privileges to perform unauthorized AutoSupport operations.
CVECVE-2026-22054
SeverityHIGH
TypeUPDATED
PublishedWed, Jun 03 · 10:16 PM CDT
ModifiedTue, Jun 30 · 07:01 PM CDT
Wed, Jun 03 · 10:16 PM CDTCVE-2026-22055
8.8/10 · Worth your timeNVDvuln
Summary
Active IQ OneCollect version 2.7.3 contains hard-coded credentials that could allow an authenticated attacker with low privileges to perform unauthorized AutoSupport operations.
CVECVE-2026-22055
SeverityHIGH
TypeUPDATED
PublishedWed, Jun 03 · 10:16 PM CDT
ModifiedTue, Jun 30 · 07:00 PM CDT
Tue, May 05 · 05:17 PM CDTCVE-2026-25243
8.8/10 · Worth your timeNVDvuln
Summary
Redis is an in-memory data structure store. In versions of redis-server up to 8.6.3, the RESTORE command does not properly validate serialized values. An authenticated attacker with permission to execute RESTORE can supply a crafted serialized payload that triggers invalid memory access and may lead to remote code exec
CVECVE-2026-25243
SeverityHIGH
TypeUPDATED
PublishedTue, May 05 · 05:17 PM CDT
ModifiedTue, Jun 30 · 01:17 PM CDT
Tue, Apr 07 · 09:16 AM CDTCVE-2026-34197
8.8/10 · Worth your timeNVDvuln
Summary
Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ. Apache ActiveMQ Classic exposes the Jolokia JMX-HTTP bridge at /api/jolokia/ on the web console. The default Jolokia access policy permits exec operations on all ActiveMQ MBeans
CVECVE-2026-34197
SeverityHIGH
TypeUPDATED
PublishedTue, Apr 07 · 09:16 AM CDT
ModifiedTue, Jun 30 · 08:20 PM CDT
Fri, May 08 · 04:16 AM CDTCVE-2026-42271
8.8/10 · Worth your timeNVDvuln
Summary
LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. From version 1.74.2 to before version 1.83.7, two endpoints used to preview an MCP server before saving it — POST /mcp-rest/test/connection and POST /mcp-rest/test/tools/list — accepted a full server configuration in the request body,
CVECVE-2026-42271
SeverityHIGH
TypeUPDATED
PublishedFri, May 08 · 04:16 AM CDT
ModifiedTue, Jun 30 · 08:19 PM CDT
Thu, May 14 · 02:16 PM CDTCVE-2026-6473
8.8/10 · Worth your timeNVDvuln
Summary
Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. This may execute arbitrary code as the operating system user running the database. In applications that pass gigabyte-scale user inputs to the relevant d
CVECVE-2026-6473
SeverityHIGH
TypeUPDATED
PublishedThu, May 14 · 02:16 PM CDT
ModifiedTue, Jun 30 · 01:19 PM CDT
Thu, May 14 · 02:16 PM CDTCVE-2026-6477
8.8/10 · Worth your timeNVDvuln
Summary
Use of inherently dangerous function PQfn(..., result_is_int=0, ...) in PostgreSQL libpq lo_export(), lo_read(), lo_lseek64(), and lo_tell64() functions allows the server superuser to overwrite a client stack buffer with an arbitrarily-large response. Like gets(), PQfn(..., result_is_int=0, ...) stores arbitrary-length
CVECVE-2026-6477
SeverityHIGH
TypeUPDATED
PublishedThu, May 14 · 02:16 PM CDT
ModifiedTue, Jun 30 · 01:19 PM CDT
Wed, Jun 03 · 04:16 PM CDTCVE-2026-6657
8.8/10 · Worth your timeNVDvuln
Summary
A vulnerability in jupyter-server versions 1.12.0 through 2.17.0 allows an attacker to bypass CORS origin validation when the `allow_origin_pat` configuration is used. The issue arises from the use of `re.match()` for validating the `Origin` header, which only anchors at the start of the string. This allows attacker-co
CVECVE-2026-6657
SeverityHIGH
TypeUPDATED
PublishedWed, Jun 03 · 04:16 PM CDT
ModifiedTue, Jun 30 · 07:01 PM CDT
Tue, May 19 · 08:16 PM CDTCVE-2026-27173
8.7/10 · Worth your timeNVDvuln
Summary
JWT tokens that were used by workers in Kubernetes Executors have been exposed to users who had read only access to Kuberentes Pods. This could allow users with just read-only access to perform actions that were only available to running tasks via Task SDK and potentially allow to modify state of Airflow Database for t
CVECVE-2026-27173
SeverityHIGH
TypeUPDATED
PublishedTue, May 19 · 08:16 PM CDT
ModifiedTue, Jun 30 · 04:16 PM CDT
Mon, Jun 01 · 11:16 PM CDTCVE-2019-25718
8.4/10 · Worth your timeNVDvuln
Summary
Dräger Infinity Explorer C700 contains a privilege escalation vulnerability that allows attackers to break out of kiosk mode and access the underlying operating system through a specific dialog interaction. Attackers can exploit this kiosk escape to take control of the operating system and cause the device to display i
CVECVE-2019-25718
SeverityHIGH
TypeUPDATED
PublishedMon, Jun 01 · 11:16 PM CDT
ModifiedTue, Jun 30 · 07:02 PM CDT
Tue, Jun 24 · 02:15 PM CDTCVE-2025-6032
8.3/10 · Worth your timeNVDvuln
Summary
A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.
CVECVE-2025-6032
SeverityHIGH
TypeUPDATED
PublishedTue, Jun 24 · 02:15 PM CDT
ModifiedTue, Jun 30 · 11:16 AM CDT
Mon, Mar 18 · 03:15 PM CDTCVE-2024-22257
8.2/10 · Worth your timeNVDvuln
Summary
In Spring Security, versions 5.7.x prior to 5.7.12, 5.8.x prior to 5.8.11, versions 6.0.x prior to 6.0.9, versions 6.1.x prior to 6.1.8, versions 6.2.x prior to 6.2.3, an application is possible vulnerable to broken access control when it directly uses the AuthenticatedVoter#vote passing a null Authentication parameter
CVECVE-2024-22257
SeverityHIGH
TypeUPDATED
PublishedMon, Mar 18 · 03:15 PM CDT
ModifiedTue, Jun 30 · 01:16 PM CDT
Wed, Mar 18 · 06:16 PM CDTCVE-2026-26740
8.2/10 · Worth your timeNVDvuln
Summary
Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the EGifGCBToExtension overwriting an existing Graphic Control Extension block without validating its allocated size.
CVECVE-2026-26740
SeverityHIGH
TypeUPDATED
PublishedWed, Mar 18 · 06:16 PM CDT
ModifiedTue, Jun 30 · 01:17 PM CDT
Wed, Apr 08 · 02:16 AM CDTCVE-2026-33810
8.2/10 · Worth your timeNVDvuln
Summary
When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in th
CVECVE-2026-33810
SeverityHIGH
TypeUPDATED
PublishedWed, Apr 08 · 02:16 AM CDT
ModifiedTue, Jun 30 · 01:18 PM CDT
Mon, Apr 06 · 04:16 PM CDTCVE-2026-34982
8.2/10 · Worth your timeNVDvuln
Summary
Vim is an open source, command line text editor. Prior to version 9.2.0276, a modeline sandbox bypass in Vim allows arbitrary OS command execution when a user opens a crafted file. The `complete`, `guitabtooltip` and `printheader` options are missing the `P_MLE` flag, allowing a modeline to be executed. Additionally, t
CVECVE-2026-34982
SeverityHIGH
TypeUPDATED
PublishedMon, Apr 06 · 04:16 PM CDT
ModifiedTue, Jun 30 · 01:18 PM CDT
Wed, May 27 · 12:16 AM CDTCVE-2026-9312
8.2/10 · Worth your timeNVDvuln
Summary
A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that allowed an unauthenticated attacker to send crafted requests to internal services by exploiting insufficient input validation in an upload endpoint. By injecting path traversal content into request parameters, an attacker
CVECVE-2026-9312
SeverityHIGH
TypeUPDATED
PublishedWed, May 27 · 12:16 AM CDT
ModifiedTue, Jun 30 · 09:16 PM CDT
Tue, Jun 24 · 02:15 PM CDTCVE-2025-5318
8.1/10 · Worth your timeNVDvuln
Summary
A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle function due to an incorrect comparison check that permits the function to access memory beyond the valid handle list and to return an invalid pointer, which is used in further processing. This
CVECVE-2025-5318
SeverityHIGH
TypeUPDATED
PublishedTue, Jun 24 · 02:15 PM CDT
ModifiedTue, Jun 30 · 11:16 AM CDT
Mon, Jul 07 · 03:15 PM CDTCVE-2025-5987
8.1/10 · Worth your timeNVDvuln
Summary
A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library. If an attacker manages to exhaust the heap space, this error is not detected and may lead to libssh using a partially initialized cipher context. This occurs because the OpenSSL error code returned aliases with the SSH_OK code, resultin
CVECVE-2025-5987
SeverityHIGH
TypeUPDATED
PublishedMon, Jul 07 · 03:15 PM CDT
ModifiedTue, Jun 30 · 11:16 AM CDT
Tue, May 05 · 05:17 PM CDTCVE-2026-23631
8.1/10 · Worth your timeNVDvuln
Summary
Redis is an in-memory data structure store. In all versions of redis-server with Lua scripting, an authenticated attacker can exploit the master-replica synchronization mechanism to trigger a use-after-free on replicas where replica-read-only is disabled or can be disabled, which may lead to remote code execution. A wo
CVECVE-2026-23631
SeverityHIGH
TypeUPDATED
PublishedTue, May 05 · 05:17 PM CDT
ModifiedTue, Jun 30 · 01:17 PM CDT
Fri, Apr 24 · 03:16 AM CDTCVE-2026-41316
8.1/10 · Worth your timeNVDvuln
Summary
ERB is a templating system for Ruby. Ruby 2.7.0 (before ERB 2.2.0 was published on rubygems.org) introduced an `@_init` instance variable guard in `ERB#result` and `ERB#run` to prevent code execution when an ERB object is reconstructed via `Marshal.load` (deserialization). However, three other public methods that also
CVECVE-2026-41316
SeverityHIGH
TypeUPDATED
PublishedFri, Apr 24 · 03:16 AM CDT
ModifiedTue, Jun 30 · 01:18 PM CDT