CVE-2026-0031

In multiple functions of memprotect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2026-0030

In hostcheckpagestaterange of memprotect.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2026-0030

In hostcheckpagestaterange of memprotect.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

EUVD-2026-9244

In hostcheckpagestaterange of memprotect.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2026-0030

In hostcheckpagestaterange of memprotect.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2026-0030

CVE-2026-0030 affects Android kernel code, specifically the function __host_check_page_state_range in mem_protect.c. The issue is an out-of-bounds write caused by an incorrect bounds check, enabling local privilege escalation without user interaction. Public descriptions across NVD, Red Hat, NCSC...

CVE-2026-0028

In pkvmhostshareguest of memprotect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-58405

The CGM CLININET application does not implement any mechanisms that prevent clickjacking attacks, neither HTTP security headers nor HTML-based frame‑busting protections were detected. As a result, an attacker can embed the application inside a maliciously crafted IFRAME and trick users into...

How to Protect Your SaaS from Bot Attacks with SafeLine WAF

Most SaaS teams remember the day their user traffic started growing fast. Few notice the day bots started targeting them. On paper, everything looks great: more sign-ups, more sessions, more API calls. But in reality, something feels off: Sign-ups increase, but users aren’t activating. Server cos...

CVE-2025-58405 Lack of protection mechanisms against Clickjacking attacks

The CGM CLININET application does not implement any mechanisms that prevent clickjacking attacks, neither HTTP security headers nor HTML-based frame‑busting protections were detected. As a result, an attacker can embed the application inside a maliciously crafted IFRAME and trick users into...

kernel: smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match()

A flaw was found in the Linux kernel’s SMC Shared Memory Communication module: in smcclcprfxmatch, the function is called from smclistenwork without proper RCU or RTNL protection. The code previously used skdstgetsk-dev, which can lead to a use-after-free UAF condition if the sk’s destination is...

PT-2026-22678

Name of the Vulnerable Software and Affected Versions Google Android affected versions not specified Description An issue exists in the host check page state range function within mem protect.c that may allow for a local escalation of privilege. The problem is caused by an incorrect bounds check,...

PT-2026-22682

Name of the Vulnerable Software and Affected Versions mem protect affected versions not specified Description A logic error exists in multiple functions within the mem protect.c file, potentially allowing for arbitrary code execution. Successful exploitation could lead to local privilege escalati...

PT-2026-22676

Name of the Vulnerable Software and Affected Versions versions prior to 2026-0028 Description An out-of-bounds write issue exists in the pkvm host share guest function within mem protect.c due to an integer overflow. This could allow for local escalation of privilege without requiring additional...

PT-2026-22680

Name of the Vulnerable Software and Affected Versions versions prior to 2026-0032 Description A flaw exists in multiple functions within the mem protect.c file that may allow for a local escalation of privilege. The issue stems from a logic error that results in a potential out-of-bounds write...

WordPress Plugin Simple Ajax Chat Information Disclosure Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An information disclosure vulnerability exists in the WordPress plugin Simple Ajax Chat. The...

Microsoft Outlook Information Disclosure Vulnerability (CNVD-2026-12557)

Microsoft Outlook is a suite of e-mail applications from the American company Microsoft. An information disclosure vulnerability exists in Microsoft Outlook. The vulnerability stems from the application's inadequate protection of sensitive information and can be exploited by an attacker to conduc...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005492)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005492 advisory. In the Linux kernel, the following vulnerability has been resolved: ipc: fix to protect IPCS lookups using RCU syzbot reported that it discovered a use-after-free...

PT-2026-22679

Name of the Vulnerable Software and Affected Versions mem protect affected versions not specified Description The software contains a possible out-of-bounds write issue stemming from an integer overflow in multiple functions within the mem protect.c file. Successful exploitation of this issue cou...

Exploit for Reliance on Untrusted Inputs in a Security Decision in Microsoft

CVE-2026-21509 Office Kill-Bit Manager PowerShell script to...