200
CVEs
36
Threats
0
News
71
Critical
71
CISA KEV
🛡 Security Vulnerabilities (CVE)
HP OpenView Network Node Manager Remote Code Execution Vulnerability — HP OpenView Network Node Manager could allow a remote attacker to execute arbitrary commands on the system.
Apache Struts 1 ActionForm Denial-of-Service Vulnerability — ActionForm in Apache Struts versions before 1.2.9 with BeanUtils 1.7 contains a vulnerability that allows for denial-of-service (DoS).
Microsoft Word Malformed Object Pointer Vulnerability — Microsoft Word and Microsoft Works Suites contain a malformed object pointer which allows attackers to execute code.
Microsoft Office Excel Remote Code Execution Vulnerability — Microsoft Office Excel contains a remote code execution vulnerability that can be exploited when a specially crafted Excel file is opened. This malicious file could be delivered as an email attachment or hosted on a mal…
Alcatel OmniPCX Enterprise Remote Code Execution Vulnerability — masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server allows remote attackers to execute arbitrary commands.
Adobe Acrobat and Reader Buffer Overflow Vulnerability — Adobe Acrobat and Reader contain a buffer overflow vulnerability that allows remote attackers to execute code via a PDF file with long arguments to unspecified JavaScript methods.
Microsoft Windows Video ActiveX Control Remote Code Execution Vulnerability — Microsoft Windows Video ActiveX Control contains a remote code execution vulnerability. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the W…
Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability — The Java Runtime Environment (JRE) component in Oracle Java SE allow for remote code execution.
Microsoft Internet Explorer Use-After-Free Vulnerability — Microsoft Internet Explorer contains a use-after-free vulnerability that allows a remote attacker to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properly allocated or (…
Adobe Flash Player Integer Overflow Vulnerability — Adobe Flash Player contains an integer overflow vulnerability that allows remote attackers to execute code via malformed arguments.
Oracle Java SE Sandbox Bypass Vulnerability — The default Java security properties configuration did not restrict access to the com.sun.org.glassfish.external and com.sun.org.glassfish.gmbal packages. An untrusted Java application or applet could use these flaws to bypass Java sa…
CVE-2013-0074
Microsoft Silverlight Double Dereference Remote Code Execution Vulnerability
11:01 KSA
Microsoft Silverlight Double Dereference Vulnerability — Microsoft Silverlight does not properly validate pointers during HTML object rendering, which allows remote attackers to execute code via a crafted Silverlight application.
Oracle JRE Remote Code Execution Vulnerability — A vulnerability in the way Java restricts the permissions of Java applets could allow an attacker to execute commands on a vulnerable system.
Oracle JRE Sandbox Bypass Vulnerability — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle allows remote attackers to bypass the Java security sandbox.
Adobe ColdFusion Authentication Bypass Vulnerability — Adobe Coldfusion contains an authentication bypass vulnerability, which could result in an unauthorized user gaining administrative access.
Adobe ColdFusion Directory Traversal Vulnerability — Adobe Coldfusion contains a directory traversal vulnerability, which could permit an unauthorized user access to restricted directories.
Adobe ColdFusion Information Disclosure Vulnerability — Adobe Coldfusion contains an unspecified vulnerability, which could result in information disclosure from a compromised server.
Adobe ColdFusion Authentication Bypass Vulnerability — An authentication bypass vulnerability exists in Adobe ColdFusion which could result in an unauthorized user gaining administrative access.
Adobe Reader and Acrobat Memory Corruption Vulnerability — An memory corruption vulnerability exists in the acroform.dll in Adobe Reader that allows an attacker to perform remote code execution.
Adobe Reader Buffer Overflow Vulnerability — A buffer overflow vulnerability exists in Adobe Reader which allows an attacker to perform remote code execution.
Adobe Flash Player Incorrect Default Permissions Vulnerability — Adobe Flash Player contains an incorrect default permissions vulnerability in the Firefox sandbox that allows a remote attacker to execute arbitrary code via crafted SWF content.
Adobe Flash Player Code Execution Vulnerability — Adobe Flash Player contains an unspecified vulnerability in the ExternalInterface ActionScript functionality that allows a remote attacker to execute arbitrary code via crafted SWF content.
Microsoft Office Buffer Overflow Vulnerability — Microsoft Office contains a buffer overflow vulnerability that allows remote attackers to execute code via crafted PNG data in an Office document.
Microsoft Internet Explorer Remote Code Execution Vulnerability — This vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer.
Mozilla Firefox Information Disclosure Vulnerability — Mozilla Firefox does not properly initialize data structures for the nsDOMSVGZoomEvent::mPreviousScale and nsDOMSVGZoomEvent::mNewScale functions, which allows remote attackers to obtain sensitive information from process mem…
Mozilla Firefox and Thunderbird Denial-of-Service Vulnerability — Mozilla Firefox and Thunderbird do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote attackers to cause a denial-of-service (DoS) or possibly execute malicious co…
Linux Kernel Privilege Escalation Vulnerability — Linux kernel fails to check all 64 bits of attr.config passed by user space, resulting to out-of-bounds access of the perf_swevent_enabled array in sw_perf_event_destroy(). Explotation allows for privilege escalation.
Apache Struts Improper Input Validation Vulnerability — Apache Struts allows remote attackers to execute arbitrary Object-Graph Navigation Language (OGNL) expressions.
Oracle JRE Unspecified Vulnerability — Unspecified vulnerability in hotspot for Java Runtime Environment (JRE) allows remote attackers to affect integrity.
Oracle Java SE Unspecified Vulnerability — Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE allows remote attackers to affect confidentiality, integrity, and availability via Unknown vectors related to 2D
Microsoft Internet Explorer Use-After-Free Vulnerability — Use-after-free vulnerability in Microsoft Internet Explorer allows remote attackers to execute remote code via a crafted web site that triggers access to a deleted object.
Linux Kernel Integer Overflow Vulnerability — Linux kernel fb_mmap function in drivers/video/fbmem.c contains an integer overflow vulnerability that allows for privilege escalation.
CVE-2013-2597
Code Aurora ACDB Audio Driver Stack-based Buffer Overflow Privilege Escalation
11:01 KSA
Code Aurora ACDB Audio Driver Stack-based Buffer Overflow Vulnerability — The Code Aurora audio calibration database (acdb) audio driver contains a stack-based buffer overflow vulnerability that allows for privilege escalation. Code Aurora is used in third-party products such as …
Adobe Reader and Acrobat Arbitrary Integer Overflow Vulnerability — Integer overflow vulnerability in Adobe Reader and Acrobat allows attackers to execute remote code.
Microsoft Internet Explorer Memory Corruption Vulnerability — Microsoft Internet Explorer contains a memory corruption vulnerability that allows remote attackers to execute code or cause a denial of service via a crafted website.
Adobe Reader and Acrobat Memory Corruption Vulnerability — Adobe Reader and Acrobat contain a memory corruption vulnerability which can allow attackers to execute arbitrary code or cause a denial of service.
Microsoft Win32k Privilege Escalation Vulnerability — The EPATHOBJ::pprFlattenRec function in win32k.sys in the kernel-mode drivers in Microsoft does not properly initialize a pointer for the next object in a certain list, which allows local users to gain privileges.
Microsoft Internet Explorer Resource Management Errors Vulnerability — Microsoft Internet Explorer contains a memory corruption vulnerability that allows for remote code execution. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should disconti…
CVE-2013-3896
Microsoft Silverlight Pointer Validation Information Disclosure Vulnerability
11:01 KSA
Microsoft Silverlight Information Disclosure Vulnerability — Microsoft Silverlight does not properly validate pointers during access to Silverlight elements, which allows remote attackers to obtain sensitive information via a crafted Silverlight application.
Microsoft Internet Explorer Use-After-Free Vulnerability — A use-after-free vulnerability exists within CDisplayPointer in Microsoft Internet Explorer that allows an attacker to remotely execute arbitrary code.
Microsoft WinVerifyTrust function Remote Code Execution — A remote code execution vulnerability exists in the way that the WinVerifyTrust function handles Windows Authenticode signature verification for PE files.
Microsoft Graphics Component Memory Corruption Vulnerability — Microsoft Graphics Component contains a memory corruption vulnerability which can allow for remote code execution.
CVE-2013-3918
Microsoft Windows InformationCardSigninHelper ActiveX Out-of-Bounds Write RCE
11:01 KSA
Microsoft Windows Out-of-Bounds Write Vulnerability — Microsoft Windows contains an out-of-bounds write vulnerability in the InformationCardSigninHelper Class ActiveX control, icardie.dll. An attacker could exploit the vulnerability by constructing a specially crafted webpage. Wh…
IBM InfoSphere BigInsights Invalid Input Vulnerability — Certain APIs within BigInsights can take invalid input that might allow attackers unauthorized access to read, write, modify, or delete data.
HP Multiple Products Remote Code Execution Vulnerability — HP ProCurve Manager (PCM), PCM+, Identity Driven Manager (IDM), and Application Lifecycle Management allow remote attackers to execute arbitrary code via a marshalled object to (1) EJBInvokerServlet or (2) JMXInvokerServl…
Microsoft Internet Explorer Information Disclosure Vulnerability — An information disclosure vulnerability exists in Internet Explorer which allows resources loaded into memory to be queried. This vulnerability could allow an attacker to detect anti-malware applications.
Jenkins Matrix Project Plugin Remote Code Execution Vulnerability — Jenkins Matrix Project plugin contains a vulnerability which can allow users to escape the sandbox, opening opportunity to perform remote code execution.
CVE-2019-10068
Kentico Xperience Unauthenticated Remote Code Execution via Deserialization
11:01 KSA
Kentico Xperience Deserialization of Untrusted Data Vulnerability — Kentico contains a failure to validate security headers. This deserialization can led to unauthenticated remote code execution.
Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability — A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated co…
Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability — Microsoft Internet Explorer contains a memory corruption vulnerability in how the scripting engine handles objects in memory. Successful exploitation allows for remote code execution in the context of …
Google Chrome WebAudio Use-After-Free Vulnerability — Google Chrome WebAudio contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Microsoft Windows AppX Deployment Extensions Privilege Escalation Vulnerability — A privilege escalation vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files.
Microsoft Windows Certificate Dialog Privilege Escalation Vulnerability — Microsoft Windows Certificate Dialog contains a privilege escalation vulnerability, allowing attackers to run processes in an elevated context.
Microsoft Windows Universal Plug and Play (UPnP) Service Privilege Escalation Vulnerability — A privilege escalation vulnerability exists when the Windows UPnP service improperly allows COM object creation.
Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability — Microsoft Internet Explorer contains a memory corruption vulnerability which can allow for remote code execution in the context of the current user.
Microsoft Win32k Privilege Escalation Vulnerability — A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k EoP.
Webmin Command Injection Vulnerability — An issue was discovered in Webmin. The parameter old in password_change.cgi contains a command injection vulnerability.
Cisco RV Series Routers Deserialization of Untrusted Data Vulnerability — A deserialization of untrusted data vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an attacker to execute code with root privileges.
Nagios XI Remote Code Execution Vulnerability — Nagios XI contains a remote code execution vulnerability in which a user can modify the check_plugin executable and insert malicious commands to execute as root.
D-Link DNS-320 Remote Code Execution Vulnerability — The login_mgr.cgi script in D-Link DNS-320 is vulnerable to remote code execution.
SIMalliance Toolbox Browser Command Injection Vulnerability — SIMalliance Toolbox Browser contains an command injection vulnerability that could allow remote attackers to retrieve location and IMEI information or execute a range of other attacks by modifying the attack message.
Nostromo nhttpd Directory Traversal Vulnerability — Nostromo nhttpd contains a directory traversal vulnerability in the http_verify() function in a non-chrooted nhttpd server allowing for remote code execution.
CVE-2019-1652
Cisco Small Business RV320/RV325 Arbitrary Command Execution via Web Interface
11:01 KSA
Cisco Small Business Routers Improper Input Validation Vulnerability — A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an aff…
Cisco Small Business RV320 and RV325 Routers Information Disclosure Vulnerability — Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers contain improper access controls for URLs. Exploitation could allow an attacker to download the router configuration or detailed d…
vBulletin PHP Module Remote Code Execution Vulnerability — The PHP module within vBulletin contains an unspecified vulnerability that allows for remote code execution via the widgetConfig[code] parameter in an ajax/render/widget_php routestring request.
D-Link Multiple Routers Command Injection Vulnerability — Multiple D-Link routers contain a command injection vulnerability which can allow attackers to achieve full system compromise.
Exim Out-of-bounds Write Vulnerability — Exim contains an out-of-bounds write vulnerability which can allow for remote code execution.
Mozilla Firefox And Thunderbird Type Confusion Vulnerability — Mozilla Firefox and Thunderbird contain a type confusion vulnerability due to incorrect alias information in the IonMonkey JIT compiler when setting array elements.
Apache Solr VelocityResponseWriter Plug-In Remote Code Execution Vulnerability — The Apache Solr VelocityResponseWriter plug-in contains an unspecified vulnerability which can allow for remote code execution.
D-Link DIR-859 Router Command Execution Vulnerability — D-Link DIR-859 router contains a command execution vulnerability in the UPnP endpoint URL, /gena.cgi. Exploitation allows an unauthenticated remote attacker to execute system commands as root by sending a specially crafted H…
Trend Micro OfficeScan Directory Traversal Vulnerability — Trend Micro OfficeScan contains a directory traversal vulnerability by extracting files from a zip file to a specific folder on the OfficeScan server, leading to remote code execution.
CVE-2018-25308
BuddyPress Xprofile Custom Fields Type 2.6.3 contains a remote code execution vulnerability that allows authenticated us
12:18 KSA
BuddyPress Xprofile Custom Fields Type 2.6.3 contains a remote code execution vulnerability that allows authenticated users to delete arbitrary files by manipulating unescaped POST parameters. Attackers can modify the field_hiddenfile and field_deleteimg parameters during profile…
CVE-2026-34965
Cockpit CMS contains an authenticated remote code execution vulnerability in the /cockpit/collections/save_collection en
18:32 KSA
Cockpit CMS contains an authenticated remote code execution vulnerability in the /cockpit/collections/save_collection endpoint that allows authenticated attackers with collection management privileges to inject arbitrary PHP code into collection rules parameters. Attackers can in…
CVE-2026-5140
Improper neutralization of CRLF sequences ('CRLF injection') vulnerability in TUBITAK BILGEM Software Technologies Resea
05:54 KSA
Improper neutralization of CRLF sequences ('CRLF injection') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus allows Authentication Bypass.
This issue affects Pardus: from
CVE-2026-5161
Improper link resolution before file access ('link following') vulnerability in TUBITAK BILGEM Software Technologies Res
05:54 KSA
Improper link resolution before file access ('link following') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus About allows Symlink Attack.
This issue affects Pardus About: before v1.2.1.
CVE-2026-6849
Improper neutralization of special elements used in an OS command ('OS command injection') vulnerability in TUBITAK BILG
07:54 KSA
Improper neutralization of special elements used in an OS command ('OS command injection') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus OS My Computer allows OS Command Injection.
This issue affects Pardus OS My Computer: from
CVE-2026-7035
A vulnerability was determined in Tenda FH1202 1.2.0.14. This affects the function fromWrlclientSet of the file /goform/
18:54 KSA
A vulnerability was determined in Tenda FH1202 1.2.0.14. This affects the function fromWrlclientSet of the file /goform/WrlclientSet of the component httpd. Executing a manipulation of the argument Go can lead to stack-based buffer overflow. The attack may be launched remotely. T…
CVE-2026-7053
A security flaw has been discovered in Tenda F456 1.0.0.5. This affects the function frmL7ProtForm of the file /goform/L
18:54 KSA
A security flaw has been discovered in Tenda F456 1.0.0.5. This affects the function frmL7ProtForm of the file /goform/L7Prot of the component httpd. Performing a manipulation of the argument page results in buffer overflow. Remote exploitation of the attack is possible. The expl…
CVE-2026-7054
A weakness has been identified in Tenda F456 1.0.0.5. This vulnerability affects the function fromPptpUserAdd of the fil
18:54 KSA
A weakness has been identified in Tenda F456 1.0.0.5. This vulnerability affects the function fromPptpUserAdd of the file /goform/PPTPDClient of the component httpd. Executing a manipulation of the argument opttype/usernamewith can lead to buffer overflow. The attack can be execu…
CVE-2026-7055
A security vulnerability has been detected in Tenda F456 1.0.0.5. This issue affects the function fromVirtualSer of the
18:54 KSA
A security vulnerability has been detected in Tenda F456 1.0.0.5. This issue affects the function fromVirtualSer of the file /goform/VirtualSer of the component httpd. The manipulation of the argument menufacturer/Go leads to buffer overflow. The attack is possible to be carried …
CVE-2026-7056
A vulnerability was detected in Tenda F456 1.0.0.5. Impacted is the function fromSafeUrlFilter of the file /goform/SafeU
18:54 KSA
A vulnerability was detected in Tenda F456 1.0.0.5. Impacted is the function fromSafeUrlFilter of the file /goform/SafeUrlFilter of the component httpd. The manipulation of the argument page results in buffer overflow. The attack may be performed from remote. The exploit is now p…
CVE-2026-7057
A flaw has been found in Tenda F456 1.0.0.5. The affected element is an unknown function of the file /goform/setcfm of t
18:54 KSA
A flaw has been found in Tenda F456 1.0.0.5. The affected element is an unknown function of the file /goform/setcfm of the component httpd. This manipulation of the argument funcname/funcpara1 causes buffer overflow. It is possible to initiate the attack remotely. The exploit has…
CVE-2026-7068
A vulnerability was identified in D-Link DIR-825 3.00b32. This affects the function NMBD_process of the file sserver.c o
23:00 KSA
A vulnerability was identified in D-Link DIR-825 3.00b32. This affects the function NMBD_process of the file sserver.c of the component nmbd. Such manipulation leads to buffer overflow. The attack can only be initiated within the local network. The exploit is publicly available a…
CVE-2026-7418
A vulnerability was determined in UTT HiPER 1250GW up to 3.2.7-210907-180535. This vulnerability affects the function st
18:32 KSA
A vulnerability was determined in UTT HiPER 1250GW up to 3.2.7-210907-180535. This vulnerability affects the function strcpy of the file route/goform/NTP. Executing a manipulation of the argument Profile can lead to buffer overflow. The attack may be launched remotely. The exploi…
CVE-2026-7419
A vulnerability was identified in UTT HiPER 1250GW up to 3.2.7-210907-180535. This issue affects the function strcpy of
18:32 KSA
A vulnerability was identified in UTT HiPER 1250GW up to 3.2.7-210907-180535. This issue affects the function strcpy of the file route/goform/formTaskEdit_ap. The manipulation of the argument Profile leads to buffer overflow. Remote exploitation of the attack is possible. The exp…
A security flaw has been discovered in UTT HiPER 1250GW up to 3.2.7-210907-180535. Impacted is the function strcpy of the file route/goform/ConfigAdvideo. The manipulation of the argument Profile results in buffer overflow. The attack can be executed remotely. The exploit has bee…
CVE-2026-7466
AgentFlow contains an arbitrary code execution vulnerability that allows attackers to execute local Python pipeline file
07:54 KSA
AgentFlow contains an arbitrary code execution vulnerability that allows attackers to execute local Python pipeline files by supplying a user-controlled pipeline_path parameter to the POST /api/runs and POST /api/runs/validate endpoints. Attackers can induce requests to the local…
CVE-2018-25263
Faleemi Desktop Software 1.8.2 contains a local buffer overflow vulnerability in the Device alias field that allows loca
18:54 KSA
Faleemi Desktop Software 1.8.2 contains a local buffer overflow vulnerability in the Device alias field that allows local attackers to trigger a structured exception handler (SEH) overwrite. Attackers can craft a malicious payload and paste it into the Device alias field within t…
CVE-2018-25283
iSmartViewPro 1.5 contains a structured exception handling (SEH) buffer overflow vulnerability in the 'Save Path for Sna
18:54 KSA
iSmartViewPro 1.5 contains a structured exception handling (SEH) buffer overflow vulnerability in the 'Save Path for Snapshot and Record file' field that allows local attackers to execute arbitrary code. Attackers can input a crafted payload exceeding 260 bytes through the System…
Prime95 29.4b8 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by exploiting structured exception handling (SEH) mechanisms. Attackers can inject malicious payload through the optional proxy hostname field in the PrimeNet connection …
Easy MPEG to DVD Burner 1.7.11 contains a structured exception handling (SEH) local buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious username string. Attackers can craft a payload containing junk data, SEH chain pointers…
Allok Video to DVD Burner 2.6.1217 contains a stack-based buffer overflow vulnerability in the License Name field that allows local attackers to execute arbitrary code by triggering a structured exception handler (SEH) overwrite. Attackers can craft a malicious input string with …
Free Download Manager 2.0 Built 417 contains a local buffer overflow vulnerability in the URL import functionality that allows attackers to trigger a structured exception handler (SEH) chain exploitation. Attackers can craft a malicious URL file that, when imported through the Fi…
SysGauge Pro 4.6.12 contains a local buffer overflow vulnerability in the Register function that allows local attackers to overwrite the structured exception handler by supplying a crafted unlock key. Attackers can inject shellcode through the Unlock Key field during registration…
CVE-2018-25314
Allok soft WMV to AVI MPEG DVD WMV Converter 4.6.1217 contains a buffer overflow vulnerability that allows local attacke
12:18 KSA
Allok soft WMV to AVI MPEG DVD WMV Converter 4.6.1217 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized string in the License Name field. Attackers can craft a malicious input containing shellcode with structu…
CVE-2018-25315
Alloksoft Video joiner 4.6.1217 contains a buffer overflow vulnerability that allows local attackers to execute arbitrar
12:18 KSA
Alloksoft Video joiner 4.6.1217 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string in the License Name field. Attackers can craft a payload with structured exception handler (SEH) overwrite and shellcode …
XATABoost CMS 1.0.0 contains a union-based SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the id parameter. Attackers can send GET requests to news.php with malicious id values to extract sensitive da…
CVE-2026-5712
This vulnerability impacts all versions of IdentityIQ and allows an authenticated identity that is the requestor or assi
21:54 KSA
This vulnerability impacts all versions of IdentityIQ and allows an authenticated identity that is the requestor or assignee of a work item to edit the definition of a role without having an assigned capability that would allow role editing.
CVE-2026-7069
A security flaw has been discovered in D-Link DIR-825 up to 3.00b32. This impacts the function AddPortMapping of the fil
23:00 KSA
A security flaw has been discovered in D-Link DIR-825 up to 3.00b32. This impacts the function AddPortMapping of the file upnpsoap.c of the component miniupnpd. Performing a manipulation of the argument NewPortMappingDescription results in buffer overflow. The attack needs to be …
CVE-2026-31650
In the Linux kernel, the following vulnerability has been resolved:
mmc: vub300: fix use-after-free on disconnect
The
04:00 KSA
In the Linux kernel, the following vulnerability has been resolved:
mmc: vub300: fix use-after-free on disconnect
The vub300 driver maintains an explicit reference count for the
controller and its driver data and the last reference can in theory be
dropped after the driver has …
CVE-2026-31652
In the Linux kernel, the following vulnerability has been resolved:
mm/damon/stat: deallocate damon_call() failure leak
04:00 KSA
In the Linux kernel, the following vulnerability has been resolved:
mm/damon/stat: deallocate damon_call() failure leaking damon_ctx
damon_stat_start() always allocates the module's damon_ctx object
(damon_stat_context). Meanwhile, if damon_call() in the function fails,
the da…
CVE-2026-32168
Improper input validation in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.
06:19 KSA
Improper input validation in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.
CVE-2026-32184
Deserialization of untrusted data in Microsoft High Performance Compute Pack (HPC) allows an authorized attacker to elev
04:54 KSA
Deserialization of untrusted data in Microsoft High Performance Compute Pack (HPC) allows an authorized attacker to elevate privileges locally.
CVE-2026-32189
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
11:03 KSA
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-41206
PySpector is a static analysis security testing (SAST) Framework engineered for modern Python development workflows. The
23:00 KSA
PySpector is a static analysis security testing (SAST) Framework engineered for modern Python development workflows. The plugin security validator in PySpector uses AST-based static analysis to prevent dangerous code from being loaded as plugins. Prior to version 0.1.8, the block…
CVE-2026-5940
Calling a function that triggers a UI refresh after removing comments via a script may access an invalidated object, lea
23:32 KSA
Calling a function that triggers a UI refresh after removing comments via a script may access an invalidated object, leading to program crashes.
CVE-2026-7039
A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element is the function shell.
18:54 KSA
A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element is the function shell.write of the file src/index.ts. Such manipulation of the argument Description leads to command injection. The attack must be carried out locally. The exploit ha…
Allok AVI to DVD SVCD VCD Converter 4.0.1217 contains a structured exception handling (SEH) based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string in the License Name field. Attackers can craft a payload with junk…
CVE-2026-22923
A vulnerability has been identified in NX (All versions < V2512). The affected application contains a data validation vu
04:01 KSA
A vulnerability has been identified in NX (All versions < V2512). The affected application contains a data validation vulnerability that could allow an attacker with local access to interfere with internal data during the PDF export process that could potentially lead to arbitrar…
CVE-2026-22980
In the Linux kernel, the following vulnerability has been resolved:
nfsd: provide locking for v4_end_grace
Writing to
04:01 KSA
In the Linux kernel, the following vulnerability has been resolved:
nfsd: provide locking for v4_end_grace
Writing to v4_end_grace can race with server shutdown and result in
memory being accessed after it was freed - reclaim_str_hashtbl in
particularly.
We cannot hold nfsd_mu…
CVE-2026-22995
In the Linux kernel, the following vulnerability has been resolved:
ublk: fix use-after-free in ublk_partition_scan_wor
04:01 KSA
In the Linux kernel, the following vulnerability has been resolved:
ublk: fix use-after-free in ublk_partition_scan_work
A race condition exists between the async partition scan work and device
teardown that can lead to a use-after-free of ub->ub_disk:
1. ublk_ctrl_start_dev()…
CVE-2026-23657
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
21:54 KSA
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVE-2026-23660
Improper access control in Azure Portal Windows Admin Center allows an authorized attacker to elevate privileges locally
03:13 KSA
Improper access control in Azure Portal Windows Admin Center allows an authorized attacker to elevate privileges locally.
CVE-2026-23665
Heap-based buffer overflow in Azure Linux Virtual Machines allows an authorized attacker to elevate privileges locally.
03:13 KSA
Heap-based buffer overflow in Azure Linux Virtual Machines allows an authorized attacker to elevate privileges locally.
CVE-2026-23672
Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability
03:13 KSA
Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability
CVE-2026-23673
Out-of-bounds read in Windows Resilient File System (ReFS) allows an authorized attacker to elevate privileges locally.
03:13 KSA
Out-of-bounds read in Windows Resilient File System (ReFS) allows an authorized attacker to elevate privileges locally.
CVE-2026-23703
The installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default permissions vulnerability.
05:22 KSA
The installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default permissions vulnerability. A non-administrative user may execute arbitrary code with SYSTEM privilege.
CVE-2026-23715
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512).
04:01 KSA
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applications contains an out of bounds write vulnerability while parsing specially crafted XDB files. This could allow an attacker to execute code…
CVE-2026-23716
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512).
04:01 KSA
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applications contains an out of bounds read vulnerability while parsing specially crafted XDB files. This could allow an attacker to execute code …
CVE-2026-23717
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512).
04:01 KSA
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applications contains an out of bounds read vulnerability while parsing specially crafted XDB files. This could allow an attacker to execute code …
CVE-2026-23718
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512).
04:01 KSA
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applications contains an out of bounds read vulnerability while parsing specially crafted NDB files. This could allow an attacker to execute code …
CVE-2026-23719
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512).
04:01 KSA
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted NDB files. This could allow an attacker to execute code in…
CVE-2026-23720
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512).
04:01 KSA
A vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applications contains an out of bounds read vulnerability while parsing specially crafted NDB files. This could allow an attacker to execute code …
CVE-2026-24150
NVIDIA Megatron-LM contains a vulnerability in checkpoint loading where an Attacker may cause an RCE by convincing a use
23:54 KSA
NVIDIA Megatron-LM contains a vulnerability in checkpoint loading where an Attacker may cause an RCE by convincing a user to load a maliciously crafted file. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, information disclosure, a…
CVE-2026-24151
NVIDIA Megatron-LM contains a vulnerability in inferencing where an Attacker may cause an RCE by convincing a user to lo
23:54 KSA
NVIDIA Megatron-LM contains a vulnerability in inferencing where an Attacker may cause an RCE by convincing a user to load a maliciously crafted input. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, information disclosure, and dat…
CVE-2026-24152
NVIDIA Megatron-LM contains a vulnerability in checkpoint loading where an Attacker may cause an RCE by convincing a use
23:54 KSA
NVIDIA Megatron-LM contains a vulnerability in checkpoint loading where an Attacker may cause an RCE by convincing a user to load a maliciously crafted file. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, information disclosure, a…
CVE-2026-24165
NVIDIA BioNeMo contains a vulnerability where a user could cause a deserialization of untrusted data. A successful explo
17:48 KSA
NVIDIA BioNeMo contains a vulnerability where a user could cause a deserialization of untrusted data. A successful exploit of this vulnerability might lead to code execution, denial of service, information disclosure, and data tampering.
CVE-2026-24287
External control of file name or path in Windows Kernel allows an authorized attacker to elevate privileges locally.
03:13 KSA
External control of file name or path in Windows Kernel allows an authorized attacker to elevate privileges locally.
CVE-2026-24289
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
03:13 KSA
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
CVE-2026-24290
Improper access control in Windows Projected File System allows an authorized attacker to elevate privileges locally.
03:13 KSA
Improper access control in Windows Projected File System allows an authorized attacker to elevate privileges locally.
CVE-2026-24291
Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an a
03:13 KSA
Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an authorized attacker to elevate privileges locally.
CVE-2026-24292
Use after free in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locall
03:13 KSA
Use after free in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally.
CVE-2026-24293
Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privi
03:13 KSA
Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVE-2026-24294
Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.
03:13 KSA
Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.
CVE-2026-25143
melange allows users to build apk packages using declarative pipelines. From version 0.10.0 to before 0.40.3, an attacke
04:01 KSA
melange allows users to build apk packages using declarative pipelines. From version 0.10.0 to before 0.40.3, an attacker who can influence inputs to the patch pipeline could execute arbitrary shell commands on the build host. The patch pipeline in pkg/build/pipelines/patch.yaml …
CVE-2026-25165
Null pointer dereference in Windows Performance Counters allows an authorized attacker to elevate privileges locally.
03:13 KSA
Null pointer dereference in Windows Performance Counters allows an authorized attacker to elevate privileges locally.
CVE-2026-25166
Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally.
03:13 KSA
Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally.
CVE-2026-25174
Out-of-bounds read in Windows Extensible File Allocation allows an authorized attacker to elevate privileges locally.
03:13 KSA
Out-of-bounds read in Windows Extensible File Allocation allows an authorized attacker to elevate privileges locally.
CVE-2026-25175
Out-of-bounds read in Windows NTFS allows an authorized attacker to elevate privileges locally.
03:13 KSA
Out-of-bounds read in Windows NTFS allows an authorized attacker to elevate privileges locally.
CVE-2026-25176
Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privil
03:13 KSA
Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVE-2026-25187
Improper link resolution before file access ('link following') in Winlogon allows an authorized attacker to elevate priv
03:13 KSA
Improper link resolution before file access ('link following') in Winlogon allows an authorized attacker to elevate privileges locally.
CVE-2026-25189
Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
03:13 KSA
Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
CVE-2026-25190
Untrusted search path in Windows GDI allows an unauthorized attacker to execute code locally.
03:13 KSA
Untrusted search path in Windows GDI allows an unauthorized attacker to execute code locally.
CVE-2026-25191
The installer of FinalCode Client provided by Digital Arts Inc. contains an issue with the DLL search path. If a user is
05:22 KSA
The installer of FinalCode Client provided by Digital Arts Inc. contains an issue with the DLL search path. If a user is directed to place a malicious DLL file and the installer to the same directory and execute the installer, arbitrary code may be executed with the installer's e…
CVE-2026-25502
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color
04:01 KSA
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, stack-based buffer overflow in icFixXml() function when processing malformed ICC profiles, allows potential arbit…
CVE-2026-25655
A vulnerability has been identified in SINEC NMS (All versions < V4.0 SP2). The affected application permits improper mo
04:01 KSA
A vulnerability has been identified in SINEC NMS (All versions < V4.0 SP2). The affected application permits improper modification of a configuration file by a low-privileged user.
This could allow an attacker to load malicious DLLs, potentially leading to arbitrary code executi…
CVE-2026-25656
A vulnerability has been identified in SINEC NMS (All versions), User Management Component (UMC) (All versions < V2.15.2
04:01 KSA
A vulnerability has been identified in SINEC NMS (All versions), User Management Component (UMC) (All versions < V2.15.2.1). The affected application permits improper modification of a configuration file by a low-privileged user.
This could allow an attacker to load malicious DL…
CVE-2026-26107
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
03:13 KSA
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-26108
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
03:13 KSA
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-26112
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
03:13 KSA
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-26117
Authentication bypass using an alternate path or channel in Azure Windows Virtual Machine Agent allows an authorized att
03:13 KSA
Authentication bypass using an alternate path or channel in Azure Windows Virtual Machine Agent allows an authorized attacker to elevate privileges locally.
CVE-2026-26128
Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.
03:13 KSA
Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.
CVE-2026-26131
Incorrect default permissions in .NET allows an authorized attacker to elevate privileges locally.
03:13 KSA
Incorrect default permissions in .NET allows an authorized attacker to elevate privileges locally.
CVE-2026-26132
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
03:13 KSA
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
CVE-2026-26134
Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileges locally.
03:13 KSA
Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileges locally.
CVE-2026-26141
Improper authentication in Azure Arc allows an authorized attacker to elevate privileges locally.
03:13 KSA
Improper authentication in Azure Arc allows an authorized attacker to elevate privileges locally.
CVE-2026-26143
Improper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally.
21:54 KSA
Improper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally.
CVE-2026-26183
Improper access control in Windows RPC API allows an authorized attacker to elevate privileges locally.
21:54 KSA
Improper access control in Windows RPC API allows an authorized attacker to elevate privileges locally.
CVE-2026-26682
An issue in fastCMS before v.0.1.6 allows a local attacker to execute arbitrary code via the PluginController.java compo
05:22 KSA
An issue in fastCMS before v.0.1.6 allows a local attacker to execute arbitrary code via the PluginController.java component
CVE-2026-27238
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could
15:49 KSA
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malici…
CVE-2026-27269
Premiere Pro versions 25.5 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file,
03:13 KSA
Premiere Pro versions 25.5 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the …
CVE-2026-27273
Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result i
03:13 KSA
Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2026-27274
Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result i
03:13 KSA
Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2026-27275
Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result i
03:13 KSA
Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2026-27276
Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbi
03:13 KSA
Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2026-27277
Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbi
03:13 KSA
Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2026-27279
Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result i
03:13 KSA
Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2026-27280
DNG SDK versions 1.7.1 2471 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitr
03:13 KSA
DNG SDK versions 1.7.1 2471 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2026-27283
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Use After Free vulnerability that could result in a
15:49 KSA
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2026-27284
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a cr
21:54 KSA
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the con…
CVE-2026-27287
InCopy versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file
05:48 KSA
InCopy versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of th…
CVE-2026-27289
Photoshop Desktop versions 27.4 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted f
23:36 KSA
Photoshop Desktop versions 27.4 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of…
CVE-2026-27291
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds write vulnerability that could resul
21:54 KSA
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fi…
CVE-2026-27292
Adobe Framemaker versions 2022.8 and earlier are affected by a Use After Free vulnerability that could result in arbitra
07:48 KSA
Adobe Framemaker versions 2022.8 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2026-27293
Adobe Framemaker versions 2022.8 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could resul
07:48 KSA
Adobe Framemaker versions 2022.8 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fi…
CVE-2026-27294
Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted
07:48 KSA
Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context o…
CVE-2026-27295
Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds write vulnerability that could result in a
07:48 KSA
Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2026-27296
Adobe Framemaker versions 2022.8 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability tha
07:48 KSA
Adobe Framemaker versions 2022.8 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a…
CVE-2026-27297
Adobe Framemaker versions 2022.8 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability tha
07:48 KSA
Adobe Framemaker versions 2022.8 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a…
CVE-2026-27298
Adobe Framemaker versions 2022.8 and earlier are affected by an Access of Resource Using Incompatible Type ('Type Confus
07:48 KSA
Adobe Framemaker versions 2022.8 and earlier are affected by an Access of Resource Using Incompatible Type ('Type Confusion') vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in th…
CVE-2026-27309
Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbi
03:24 KSA
Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2026-27310
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result
23:36 KSA
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file…
CVE-2026-27311
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result
23:36 KSA
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file…
CVE-2026-27312
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result
23:36 KSA
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file…
CVE-2026-27313
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result
01:41 KSA
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file…
CVE-2026-27784
The 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module module, which might allow
18:01 KSA
The 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module module, which might allow an attacker to over-read or over-write NGINX worker memory resulting in its termination, using a specially crafted MP4 file. The issue only affects 32-bit NGINX…
CVE-2026-27924
Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.
21:54 KSA
Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.
CVE-2026-28211
The NVDA Dev & Test Toolbox is an NVDA add-on for gathering tools to help NVDA development and testing. A vulnerability
05:22 KSA
The NVDA Dev & Test Toolbox is an NVDA add-on for gathering tools to help NVDA development and testing. A vulnerability exists in versions 2.0 through 8.0 in the Log Reader feature of this add-on. A maliciously crafted log file can lead to arbitrary code execution when a user rea…
CVE-2026-31485
In the Linux kernel, the following vulnerability has been resolved:
spi: spi-fsl-lpspi: fix teardown order issue (UAF)
22:18 KSA
In the Linux kernel, the following vulnerability has been resolved:
spi: spi-fsl-lpspi: fix teardown order issue (UAF)
There is a teardown order issue in the driver. The SPI controller is
registered using devm_spi_register_controller(), which delays
unregistration of the SPI co…
CVE-2026-31489
In the Linux kernel, the following vulnerability has been resolved:
spi: meson-spicc: Fix double-put in remove path
me
22:18 KSA
In the Linux kernel, the following vulnerability has been resolved:
spi: meson-spicc: Fix double-put in remove path
meson_spicc_probe() registers the controller with
devm_spi_register_controller(), so teardown already drops the
controller reference via devm cleanup.
Calling sp…
CVE-2026-31493
In the Linux kernel, the following vulnerability has been resolved:
RDMA/efa: Fix use of completion ctx after free
On
22:18 KSA
In the Linux kernel, the following vulnerability has been resolved:
RDMA/efa: Fix use of completion ctx after free
On admin queue completion handling, if the admin command completed with
error we print data from the completion context. The issue is that we
already freed the com…
CVE-2026-31500
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: btintel: serialize btintel_hw_error() wi
22:18 KSA
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock
btintel_hw_error() issues two __hci_cmd_sync() calls (HCI_OP_RESET
and Intel exception-info retrieval) without holding
hci_req_sync_lock()…
CVE-2026-31506
In the Linux kernel, the following vulnerability has been resolved:
net: bcmasp: fix double free of WoL irq
We do not
22:18 KSA
In the Linux kernel, the following vulnerability has been resolved:
net: bcmasp: fix double free of WoL irq
We do not need to free wol_irq since it was instantiated with
devm_request_irq(). So devres will free for us.
CVE-2026-31527
In the Linux kernel, the following vulnerability has been resolved:
driver core: platform: use generic driver_override
00:18 KSA
In the Linux kernel, the following vulnerability has been resolved:
driver core: platform: use generic driver_override infrastructure
When a driver is probed through __driver_attach(), the bus' match()
callback is called without the device lock held, thus accessing the
driver_o…
CVE-2026-31530
In the Linux kernel, the following vulnerability has been resolved:
cxl/port: Fix use after free of parent_port in cxl_
00:18 KSA
In the Linux kernel, the following vulnerability has been resolved:
cxl/port: Fix use after free of parent_port in cxl_detach_ep()
cxl_detach_ep() is called during bottom-up removal when all CXL memory
devices beneath a switch port have been removed. For each port in the
hierar…
CVE-2026-31532
In the Linux kernel, the following vulnerability has been resolved:
can: raw: fix ro->uniq use-after-free in raw_rcv()
23:00 KSA
In the Linux kernel, the following vulnerability has been resolved:
can: raw: fix ro->uniq use-after-free in raw_rcv()
raw_release() unregisters raw CAN receive filters via can_rx_unregister(),
but receiver deletion is deferred with call_rcu(). This leaves a window
where raw_rc…
CVE-2026-31541
In the Linux kernel, the following vulnerability has been resolved:
tracing: Fix trace_marker copy link list updates
W
04:32 KSA
In the Linux kernel, the following vulnerability has been resolved:
tracing: Fix trace_marker copy link list updates
When the "copy_trace_marker" option is enabled for an instance, anything
written into /sys/kernel/tracing/trace_marker is also copied into that
instances buffer.…
CVE-2026-31566
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix fence put before wait in amdgpu_amd
04:00 KSA
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix fence put before wait in amdgpu_amdkfd_submit_ib
amdgpu_amdkfd_submit_ib() submits a GPU job and gets a fence
from amdgpu_ib_schedule(). This fence is used to wait for job
completion.
Currently…
CVE-2026-31576
In the Linux kernel, the following vulnerability has been resolved:
media: hackrf: fix to not free memory after the dev
04:00 KSA
In the Linux kernel, the following vulnerability has been resolved:
media: hackrf: fix to not free memory after the device is registered in hackrf_probe()
In hackrf driver, the following race condition occurs:
```
CPU0 CPU1
hackrf_probe()
kzalloc(); // alloc hackrf_dev…
CVE-2026-31578
In the Linux kernel, the following vulnerability has been resolved:
media: as102: fix to not free memory after the devi
04:00 KSA
In the Linux kernel, the following vulnerability has been resolved:
media: as102: fix to not free memory after the device is registered in as102_usb_probe()
In as102_usb driver, the following race condition occurs:
```
CPU0 CPU1
as102_usb_probe()
kzalloc(); // alloc as…
⚠️ Threat Intelligence
36 threats
rss:Malwarebytes Lab
—
03:36 KSA
Researchers built a chatbot that only knows the world before 1931
Researchers developed a chatbot with knowledge limited to events before 1931, effectively removing modern internet data from its training. This experimental approach demonstrates how AI systems ca…
rss:Dark Reading
—
03:36 KSA
Reverse Engineering With AI Unearths High-Severity GitHub Bug
Wiz discovered a high-severity vulnerability in GitHub using AI-powered reverse engineering techniques that would have been prohibitively expensive and time-consuming to identify manually. The advance…
rss:BleepingComputer
—
03:36 KSA
Hackers exploit RCE flaws in Qinglong task scheduler for cryptomining
Attackers are exploiting two authentication bypass vulnerabilities in the Qinglong open-source task scheduler to deploy cryptominers on developer servers. This vulnerability allows remote code…
rss:Dark Reading
—
02:18 KSA
AI Finds 38 Security Flaws in Electronic Health Record Platform
Critical vulnerabilities discovered in OpenEMR platform used by over 100,000 healthcare providers worldwide, enabling database compromise, remote code execution, and sensitive patient data theft. Th…
rss:BleepingComputer
—
01:16 KSA
Hackers arrested for hijacking and selling 610,000 Roblox accounts
Ukrainian police arrested three individuals who compromised over 610,000 Roblox gaming accounts and sold them for approximately $225,000 in profits. This incident highlights the significant marke…
rss:CISA Advisories
—
23:54 KSA
Adapting Zero Trust Principles to Operational Technology
CISA and multiple U.S. federal agencies released joint guidance on implementing Zero Trust principles for Operational Technology (OT) environments. This guidance helps organizations strengthen security pos…
rss:Dark Reading
—
22:32 KSA
Vect 2.0 Ransomware Acts as Wiper, Thanks to Design Error
Vect 2.0 ransomware has been deployed against victims of TeamPCP supply chain attacks, functioning as a data wiper due to a critical design flaw. Organizations are warned against paying ransom as the decr…
rss:The Hacker News
—
22:32 KSA
SAP npm Packages Compromised by “Mini Shai-Hulud” Credential-Stealing Malware
A supply chain attack campaign targets SAP-related npm packages with credential-stealing malware dubbed 'Mini Shai-Hulud'. Multiple security firms including Aikido Security, SafeDep, S…
rss:The Hacker News
—
22:32 KSA
New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs
North Korean threat actors have launched a new attack campaign using AI-inserted malware in npm packages, including the malicious '@validate-sdk/v2' package that was injected as a depend…
rss:BleepingComputer
—
22:32 KSA
cPanel, WHM emergency update fixes critical auth bypass bug
A critical authentication bypass vulnerability in cPanel and WHM allows attackers to gain unauthorized access to control panels without credentials. This affects all versions except the latest, posing s…
rss:BleepingComputer
—
21:24 KSA
European police dismantles €50 million crypto investment fraud ring
Austrian and Albanian authorities dismantled a cryptocurrency investment fraud ring responsible for €50 million in losses to victims worldwide. The operation involved sophisticated scams targeti…
rss:Malwarebytes Lab
—
20:18 KSA
Microsoft won&#8217;t patch PhantomRPC: Feature or bug?
A researcher has identified five exploitation methods for PhantomRPC, a vulnerability that Microsoft has rated as moderate severity and declined to patch. This decision leaves Windows systems potentiall…
rss:The Hacker News
—
20:18 KSA
Webinar: How to Automate Exposure Validation to Match the Speed of AI Attacks
Threat actors are now deploying custom AI systems to automate attacks within the kill chain, moving beyond simple phishing email generation. Organizations must implement automated expo…
rss:SecurityWeek
—
19:16 KSA
Hundreds of Internet-Facing VNC Servers Expose ICS/OT
Forescout researchers discovered tens of thousands of internet-exposed RDP and VNC servers that can be directly mapped to specific industrial sectors and critical infrastructure. This exposure creates signifi…
rss:SecurityWeek
—
19:16 KSA
Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure
A recently disclosed LiteLLM proxy vulnerability is being actively exploited by attackers to read and potentially modify database contents. This vulnerability poses a significant risk to organization…
rss:Dark Reading
—
19:16 KSA
Lotus Wiper Attack Targeted Venezuelan Energy Firms, Utilities
A destructive malware campaign targeting Venezuelan energy and utility companies employed sophisticated living-off-the-land techniques to achieve widespread data deletion. The attack demonstrates adv…
rss:The Hacker News
—
19:16 KSA
What to Look for in an Exposure Management Platform (And What Most of Them Get Wrong)
The article discusses the limitations of exposure management platforms in providing meaningful security context beyond vulnerability metrics. It highlights how organizations cl…
rss:BleepingComputer
—
19:16 KSA
GitHub fixes RCE flaw that gave access to millions of private repos
GitHub patched a critical remote code execution vulnerability (CVE-2026-3854) in March that could have allowed attackers to access millions of private repositories. The RCE flaw posed a severe r…
rss:BleepingComputer
—
19:16 KSA
Learning from the Vercel breach: Shadow AI & OAuth sprawl
A compromised OAuth third-party integration at Vercel exposed a critical attack vector affecting downstream customers. The breach demonstrates how a single OAuth app compromise can provide direct acce…
rss:Malwarebytes Lab
—
18:00 KSA
Scam-checking just got a lot easier: Malwarebytes is now in Claude
Malwarebytes has integrated its threat intelligence capabilities into Claude AI, enabling users to verify suspicious links, phone numbers, and email addresses for potential scams. This integrati…
rss:SecurityWeek
—
18:00 KSA
Checkmarx Confirms Data Stolen in Supply Chain Attack
Checkmarx, a prominent software security company, confirmed that attackers exfiltrated data from its GitHub environment on March 30, following the injection of malicious code. This supply chain attack poses s…
rss:The Hacker News
—
18:00 KSA
Critical cPanel Authentication Vulnerability Identified — Update Your Server Immediately
cPanel has released critical security updates addressing an authentication vulnerability affecting all supported versions that could allow attackers to gain unauthorized acc…
rss:SecurityWeek
—
16:54 KSA
38 Vulnerabilities Found in OpenEMR Medical Software
Security researchers discovered 38 vulnerabilities in OpenEMR medical software that could allow attackers to access and modify sensitive patient health information. These vulnerabilities pose significant risks…
rss:SecurityWeek
—
16:54 KSA
Iranian Cyber Group Handala Targets US Troops in Bahrain
Iranian cyber group Handala conducted a phishing campaign targeting US military personnel in Bahrain through WhatsApp messages containing threats of drone and missile attacks. This represents a coordinated…
rss:BleepingComputer
—
16:54 KSA
CISA orders feds to patch Windows flaw exploited as zero-day
CISA has issued a mandatory directive for U.S. federal agencies to patch a Windows vulnerability being actively exploited in zero-day attacks. This critical vulnerability poses significant risk to gove…
rss:SecurityWeek
—
15:48 KSA
Chrome 147, Firefox 150 Security Updates Rolling Out
Chrome 147 and Firefox 150 security updates address critical and high-severity vulnerabilities that could enable arbitrary code execution on affected systems. These browser updates are essential for protecting…
rss:The Hacker News
—
15:48 KSA
CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV
CISA has added two actively exploited vulnerabilities affecting ConnectWise ScreenConnect and Microsoft Windows to its Known Exploited Vulnerabilities catalog. These flaws pose immediate threats t…
rss:BleepingComputer
—
15:48 KSA
Microsoft says backend change broke Teams Free chat and calls
Microsoft is addressing a service disruption affecting Microsoft Teams Free users, preventing them from accessing chat and calling features due to a backend infrastructure change. This incident impact…
rss:SecurityWeek
—
12:32 KSA
Critical GitHub Vulnerability Exposed Millions of Repositories
A critical remote code execution vulnerability (CVE-2026-3854) has been discovered affecting both GitHub.com and GitHub Enterprise Server, potentially exposing millions of code repositories. This vul…
rss:The Hacker News
—
12:32 KSA
LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure
A critical SQL injection vulnerability (CVE-2026-42208) in BerriAI's LiteLLM Python package was actively exploited in the wild within 36 hours of public disclosure. Threat actors rapidl…
rss:Recorded Future
—
09:00 KSA
The Money Mule Problem Solution: What Every Scam Has in Common
The article discusses how mule account intelligence is a critical approach to preventing Authorized Push Payment (APP) fraud by identifying and tracking money mule accounts before fraudulent funds ar…
rss:Dark Reading
—
05:00 KSA
NSA Chief During Snowden Affair Shares Regrets, Reflections 13 Years Later
Former NSA civilian leadership reflects on organizational failures during the Snowden disclosure incident and provides insights on insider threat detection, media management, and security…
rss:Dark Reading
—
05:00 KSA
BlueNoroff Uses Fake Zoom Calls to Turn Victims Into Attack Lures
North Korean APT group BlueNoroff is leveraging deepfake technology and stolen victim videos combined with fake Zoom calls to conduct sophisticated social engineering attacks targeting cryptocurre…
rss:BleepingComputer
—
05:00 KSA
Broken VECT 2.0 ransomware acts as a data wiper for large files
VECT 2.0 ransomware contains a critical flaw in its encryption nonce handling mechanism that permanently destroys large files instead of encrypting them. This vulnerability renders the malware ineff…
rss:Dark Reading
—
03:19 KSA
Feuding Ransomware Groups Leak Each Other's Data
Rival ransomware groups 0APT and KryBit exposed each other's infrastructure and operational data during their conflict, providing cybersecurity defenders with rare visibility into ransomware gang operations a…
rss:BleepingComputer
—
03:19 KSA
Hackers are exploiting a critical LiteLLM pre-auth SQLi flaw
Attackers are exploiting a critical pre-authentication SQL injection vulnerability (CVE-2026-42208) in the LiteLLM open-source LLM gateway to access sensitive information. This vulnerability allows una…
📰 Cybersecurity News
0 articles
No news aggregated today yet
This digest is updated automatically every day — Last updated: Wednesday, April 29, 2026
CVE Archive ·
Threats ·
News