CVE-2026-6664

A flaw was found in PgBouncer. An integer overflow in the network packet parsing code allows an unauthenticated remote attacker to bypass a boundary check by sending a malformed SCRAM authentication packet. This can lead to a crash, resulting in a Denial of Service DoS for the PgBouncer instance...

SUSE CVE-2026-33378

Using the $timeGroup macro, one can achieve an OOM by overloading the server. This requires a SQL datasource. If the server is set up to auto-restart, the impact is minimal or non-existent, as the attack can take upwards of half an hour to crash the server...

EUVD-2026-30490

Stack exhaustion vulnerability in the MongoDB PHP driver can cause application crashes when processing deeply nested BSON documents in unusual circumstances when the source of these BSON documents is not MongoDB Server...

CVE-2026-44666

creationtimestamp| type| source ---|---|--- 2026-05-15 00:00:39+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mltznm4m4d2f 2026-05-15 00:00:58+00:00| seen| https://infosec.exchange/users/offseq/statuses/116575648891629346 2026-05-15 01:47:07+00:00| seen|...

DEBIAN-CVE-2026-6811

Stack exhaustion vulnerability in the MongoDB PHP driver can cause application crashes when processing deeply nested BSON documents in unusual circumstances when the source of these BSON documents is not MongoDB Server...

CVE-2026-6811

Stack exhaustion vulnerability in the MongoDB PHP driver can cause application crashes when processing deeply nested BSON documents in unusual circumstances when the source of these BSON documents is not MongoDB Server...

UBUNTU-CVE-2026-6811

Stack exhaustion vulnerability in the MongoDB PHP driver can cause application crashes when processing deeply nested BSON documents in unusual circumstances when the source of these BSON documents is not MongoDB Server...

CVE-2026-6811

Stack exhaustion vulnerability in the MongoDB PHP driver can cause application crashes when processing deeply nested BSON documents in unusual circumstances when the source of these BSON documents is not MongoDB Server...

CVE-2026-6811

CVE-2026-6811 affects the MongoDB PHP driver, with a stack exhaustion condition that can cause application crashes when processing deeply nested BSON documents. The issue is triggered in unusual circumstances when the BSON source is not from a MongoDB Server, and it is characterized by high avail...

CVE-2026-6811

Stack exhaustion vulnerability in the MongoDB PHP driver can cause application crashes when processing deeply nested BSON documents in unusual circumstances when the source of these BSON documents is not MongoDB Server...

CVE-2026-41615

creationtimestamp| type| source ---|---|--- 2026-05-14 19:30:20+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mltkk7fpiq2m 2026-05-14 19:30:46+00:00| seen| https://infosec.exchange/users/offseq/statuses/116574585906550896 2026-05-15 09:54:10+00:00| seen|...

CVE-2026-8511

creationtimestamp| type| source ---|---|--- 2026-05-14 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260515 2026-05-15 03:00:31+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mludpaluca2o 2026-05-15 03:00:32+00:00| seen|...

CVE-2026-42897

creationtimestamp| type| source ---|---|--- 2026-05-14 17:01:37+00:00| seen| https://bsky.app/profile/msftexchange.bsky.social/post/3mltcacibdc2f 2026-05-14 17:18:32+00:00| seen| https://bsky.app/profile/msittechnews.bsky.social/post/3mltd6ltja426 2026-05-14 17:23:40+00:00| seen|...

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal in the ExtractTarGz process. An attacker can write arbitrary files to locations outside the intended extraction directory by submitting a crafted .tar.gz archive containing directory traversal sequences. This is only...

CVE-2026-42597

Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.32.0, the /forms/chromium/convert/url and /forms/chromium/screenshot/url routes accept url=file:///tmp/... from anonymous callers. The default Chromium deny-list intentionally exempts file:///tmp/ so HTML/Markdown routes can lo...

CVE-2026-6506

creationtimestamp| type| source ---|---|--- 2026-05-14 08:30:01+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mlsfmrqirb2t 2026-05-14 09:12:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlshytfeay2n...

CVE-2026-6510

creationtimestamp| type| source ---|---|--- 2026-05-14 07:30:28+00:00| seen| https://infosec.exchange/users/offseq/statuses/116571755456657860 2026-05-14 07:31:03+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mlscd2v3gu2p 2026-05-14 09:00:29+00:00| seen|...

CVE-2026-44442

creationtimestamp| type| source ---|---|--- 2026-05-14 00:00:41+00:00| seen| https://infosec.exchange/users/offseq/statuses/116569986785870789 2026-05-14 00:00:42+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mlrj6rfwru2j 2026-05-14 21:07:08+00:00| seen|...

PT-2026-41131

Name of the Vulnerable Software and Affected Versions MongoDB PHP driver affected versions not specified Description A stack exhaustion issue occurs when processing deeply nested BSON Binary JSON documents. This can lead to application crashes in unusual circumstances, specifically when the BSON...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: doxygen (UTSA-2026-021269)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021269 advisory. In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing elements from untrusted sources - even after sanitizing it - to one of...