CVE-2026-46875

Vulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Deployment Library. Supported versions that are affected are 13.5 and 24.1. Easily exploitable vulnerability allows high privileged attacker with network access via HTTPS to compromise...

CVE-2026-46868

Vulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Extensibility Framework. Supported versions that are affected are 13.5 and 24.1. Easily exploitable vulnerability allows high privileged attacker with network access via HTTPS to compromis...

EUVD-2026-26232

Cockpit v2.13.5 and earlier is vulnerable to arbitrary code execution via the filter parameter within multiple endpoints. This vulnerability allows an attacker to run system commands on the underlying infrastructure via the MongoLite $func operator...

CVE-2026-34279

Vulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Event Management. Supported versions that are affected are 13.5 and 24.1. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle...

CVE-2026-31891

CVE-2026-31891 affects Cockpit CMS 2.13.4 and earlier with API access enabled. A SQL injection in the MongoLite Aggregation Optimizer allows an attacker with a valid read-only API key to inject arbitrary SQL via unsanitized field names in aggregation queries (toJsonExtractRaw()), bypassing the pu...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001855)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001855 advisory. arch/s390/kernel/head64.S in the Linux kernel before 3.13.5 on the s390 platform does not properly handle attempted use of the linkage stack, which allows local user...

PT-2026-1811

Name of the Vulnerable Software and Affected Versions Technitium DNS Server version 13.5 Description An issue exists in the rate-limiting component of the software that allows a remote attacker to cause a denial of service. This impacts DNS service availability. Recommendations At the moment, the...

Technitium DNS Server 安全漏洞

Technitium DNS Server is an open source authoritative and recursive DNS server from the Technitium team. It can be used to self-host DNS servers for privacy and security. A security vulnerability exists in Technitium DNS Server version 13.5 that stems from improper handling of the rate limiting...

CVE-2024-39693 Next.js Denial of Service (DoS) condition

Next.js is a React framework. A Denial of Service DoS condition was identified in Next.js. Exploitation of the bug can trigger a crash, affecting the availability of the server. his vulnerability was resolved in Next.js 13.5 and later...

CVE-2024-20917

Vulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Log Management. The supported version that is affected is 13.5.0.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

Apple macOS Ventura Security Vulnerability

Apple macOS Ventura is a desktop operating system from Apple Inc. in the United States. A security vulnerability exists in Apple macOS Ventura version 13.5, which originates from an application that may be able to obtain root privileges...

PT-2025-45147

Name of the Vulnerable Software and Affected Versions Apple macOS versions prior to 13.5 Apple iOS versions prior to 16.6 Apple iPadOS versions prior to 16.6 Apple Safari versions prior to 16.6 WebKitGTK webkit2gtk in Debian Linux wpewebkit in Debian Linux webkit2gtk3 in SberLinux Description A...

CVE-2023-32445

This issue was addressed with improved checks. This issue is fixed in Safari 16.6, watchOS 9.6, iOS 15.7.8 and iPadOS 15.7.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. Processing a document may lead to a cross site scripting attack...

CVE-2023-38608

The issue was addressed with additional permissions checks. This issue is fixed in macOS Ventura 13.5. An app may be able to access user-sensitive data...

Apple macOS Ventura 安全漏洞

Apple macOS Ventura is a desktop operating system from Apple Inc. in the United States. A security vulnerability exists in Apple macOS Ventura versions prior to 13.5. An attacker exploiting the vulnerability is able to elevate privileges...

Apple macOS Ventura 安全漏洞

Apple macOS Ventura is a desktop operating system from Apple Inc. in the United States. A security vulnerability exists in Apple macOS Ventura versions prior to 13.5. An attacker exploiting this vulnerability is able to gain root privileges...

PT-2023-26532 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.5 Description: A race condition was addressed with improved state handling, allowing an app to potentially execute arbitrary code with kernel privileges. Recommendations: For versions prior to 13.5, update to macOS...

PT-2023-26528 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.5 Description: The issue allows an app to potentially determine a user's current location due to insufficient redaction of sensitive information. This has been addressed with improved redaction of sensitive...

PT-2023-8342 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.5 Description: The issue is related to a lack of access control in the macOS operating system, specifically in the crontabs task scheduler. This could allow an attacker to gain root privileges. The estimated number ...

CVE-2023-22883

Zoom Client for IT Admin Windows installers before version 5.13.5 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability in an attack chain during the installation process to escalate their privileges to the SYSTEM user...