UBUNTU-CVE-2026-23679

libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows attackers to crash applications by supplying a malformed USB configuration descriptor where an interface claims bNumEndpoints greater than zero but is followed by a class-specific descriptor whose bLength...

CVE-2026-23679 libusb < 1.0.30 NULL Pointer Dereference in parse_interface()

libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows attackers to crash applications by supplying a malformed USB configuration descriptor where an interface claims bNumEndpoints greater than zero but is followed by a class-specific descriptor whose bLength...

CVE-2026-42735

creationtimestamp| type| source ---|---|--- 2026-05-27 12:48:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmtk5bbom62i 2026-05-27 14:01:07+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmto7jgoyz2t...

CVE-2026-7080

creationtimestamp| type| source ---|---|--- 2026-05-27 12:37:07+00:00| seen| https://bsky.app/profile/potato.software/post/3mmtjjdsmln2l 2026-05-27 12:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mmtjjd47sb25...

CVE-2026-42760

creationtimestamp| type| source ---|---|--- 2026-05-27 12:01:46+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmthk3rx3d26 2026-05-27 13:17:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmtlrk5pnb2e...

CVE-2026-42748

creationtimestamp| type| source ---|---|--- 2026-05-27 11:34:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmtfzrnkfd2p 2026-05-27 14:00:51+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmto6zknz22w...

CVE-2026-40827

creationtimestamp| type| source ---|---|--- 2026-05-27 08:11:19+00:00| seen| https://infosec.exchange/users/certvde/statuses/116645525736344350 2026-05-27 08:12:09+00:00| seen| https://infosec.exchange/users/certvde/statuses/116645529147227087...

CVE-2025-15649

creationtimestamp| type| source ---|---|--- 2026-05-27 05:11:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmsqmc7vbf2t 2026-05-27 05:12:45+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mmsqoqx2dh2m...

CVE-2026-48959

creationtimestamp| type| source ---|---|--- 2026-05-27 05:04:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmsq7tel7g2i 2026-05-27 05:07:44+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mmsqfrv2ht2x...

CVE-2026-48961

creationtimestamp| type| source ---|---|--- 2026-05-27 04:57:44+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mmspttjznl2z 2026-05-27 05:20:28+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmsr4ju5ia2i...

CVE-2026-48962

creationtimestamp| type| source ---|---|--- 2026-05-27 04:30:28+00:00| seen| https://infosec.exchange/users/offseq/statuses/116644657711662061 2026-05-27 04:30:31+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mmsod6gi4p22 2026-05-27 05:02:43+00:00| seen|...

CVE-2026-49017

creationtimestamp| type| source ---|---|--- 2026-05-27 03:00:27+00:00| seen| https://infosec.exchange/users/offseq/statuses/116644303789823901 2026-05-27 03:00:29+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mmsjca6nvq2v 2026-05-27 05:00:31+00:00| seen|...

CVE-2026-46720

Net::Statsd::Tiny versions before 0.3.8 for Perl allowed metric injections. The metric names and set values were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject additional statsd metrics...

CVE-2026-46740

creationtimestamp| type| source ---|---|--- 2026-05-27 00:27:28+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mmsaqmimy72u 2026-05-27 00:58:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmscime3hs2q...

PT-2026-43696

libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows attackers to crash applications by supplying a malformed USB configuration descriptor where an interface claims bNumEndpoints greater than zero but is followed by a class-specific descriptor whose bLength...

PT-2026-44055

Name of the Vulnerable Software and Affected Versions Budibase versions prior to 3.38.3 Description The removeSecrets function in the server SDK fails to mask datasource configuration fields unless their schema type is DatasourceFieldType.PASSWORD. Because the Snowflake integration defines the...

FreeBSD : Grafana -- Public dashboards discloses all direct mode datasources (6b2bf8e9-5900-11f1-b525-3c7c3fba4204)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 6b2bf8e9-5900-11f1-b525-3c7c3fba4204 advisory. https://grafana.com/security/security-advisories/cve-2026-27877 reports: When using public dashboards a...

Nx Console Embedded Malicious Code Vulnerability

Nx Console contains an embedded malicious code vulnerability that allowed a malicious version of Nx Console to be published. The compromised extension fetched an obfuscated payload that could harvested credentials from multiple sources on disk and in memory...

Budibase 安全漏洞

Budibase is an open-source platform developed by Budibase in the UK. It allows for the creation of internal applications, workflows, and management panels within minutes. Versions of Budibase prior to 3.39.0 contained security vulnerabilities. These vulnerabilities stemmed from the fact that GET...

Budibase 代码问题漏洞

Budibase is an open-source platform developed by Budibase in the UK. It allows for the creation of internal applications, workflows, and management panels within minutes. Versions of Budibase prior to 3.38.1 contained code-related vulnerabilities. These vulnerabilities stemmed from the integratio...