CVE-2026-11452

creationtimestamp| type| source ---|---|--- 2026-06-07 05:09:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnofn37ej62d 2026-06-07 06:00:32+00:00| seen| https://infosec.exchange/users/offseq/statuses/116707297322046281 2026-06-07 06:00:34+00:00| seen|...

CVE-2026-11451

creationtimestamp| type| source ---|---|--- 2026-06-07 04:49:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnoejbd7pt22 2026-06-07 07:30:25+00:00| seen| https://infosec.exchange/users/offseq/statuses/116707650683946203 2026-06-07 07:30:26+00:00| seen|...

MINI-W2X4-3XRP-94CR

Bulletin has no description...

[SECURITY] Fedora 43 Update: libssh2-1.11.1-6.fc43

libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS22, SECSH-USERAUTH25, SECSH-CONNECTION23, SECSH-ARCH20, SECSH-FILEXFER06, SECSH-DHGEX04, and SECSH-NUMBERS10...

CVE-2026-45779

OpenXDMoD is an open framework for collecting and analyzing HPC metrics. An SQL injection vulnerability exists in Open XDMoD versions prior to 10.0.3 that allows an unauthenticated remote attacker to execute arbitrary SQL statements. Exploitation requires no authentication or user interaction and...

CVE-2026-45776

OpenXDMoD is an open framework for collecting and analyzing HPC metrics. Prior to version 11.0.3, a flaw in Open XDMoD's access control logic allows an attacker to submit a crafted HTTPS POST request that sets a session variable used for authorization decisions. If an installation of Open XDMoD...

EUVD-2026-34977

clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege escalation...

assimp-devel-6.0.5-3.1 on GA media (moderate)

assimp-devel-6.0.5-3.1 on GA media Announcement ID: openSUSE-SU-2026:10946-1 Rating: moderate Cross-References: CVE-2025-11277 CVE-2026-10197 CVE-2026-10199 CVSS scores: CVE-2025-11277 SUSE : 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CVE-2025-11277 SUSE : 1.9...

Fedora 43 : libssh2 (2026-1b9134cdc9)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-1b9134cdc9 advisory. This update addresses CVE-2026-7598, a potential heap buffer overflow, which could be triggered remotely by supplying very long username and/or password...

CVE-2026-6274

Improper Authentication, Missing authentication for critical function, Weak Authentication vulnerability in DTS Electronics Industry and Trade Ltd. Co. Redline WR3200 allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Redline WR3200: from 7.1.3 before 7.1.8...

[SECURITY] Fedora 43 Update: thunderbird-149.0.1-3.fc43

Mozilla Thunderbird is a standalone mail and newsgroup client...

PT-2026-47155

Name of the Vulnerable Software and Affected Versions Cursor affected versions not specified Description A sandbox escape exists in the agent component due to a symlink canonicalization failure combined with a writable working directory. This allows the agent to bypass sandbox restrictions and...

RHEL 9 : php:8.3 (RHSA-2026:22142)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:22142 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: PHP: PHP: Denial of Service via...

CVE-2026-7654

creationtimestamp| type| source ---|---|--- 2026-06-05 23:59:56+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnlduknsmz2g 2026-06-06 00:00:18+00:00| seen| https://bsky.app/profile/pulse-wp.com/post/3mnldvanx2n2s 2026-06-06 00:55:49+00:00| seen|...

UBUNTU-CVE-2026-45409

Internationalized Domain Names in Applications IDNA for Python provides support for Internationalized Domain Names in Applications IDNA and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as "\u0660" N or "\u30fb" N + "\u6f22" utilize the validcontexto function pri...

EUVD-2026-32922

TinyMCE Cross-Site Scripting XSS vulnerability using media plugin data-mce-object injection...

UBUNTU-CVE-2026-45300

The AsyncHttpClient AHC library allows Java applications to easily execute HTTP requests and asynchronously process HTTP responses. Versions on the 2.x branch prior to 2.15.0 and the 3.x branch prior to 3.0.10 leak Cookie headers to cross-origin redirect targets. When following a redirect to a...

CVE-2025-46311

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2. An app may be able to access sensitive user data...

CVE-2026-34312

Vulnerability in the RDBMS component of Oracle Database Server. Supported versions that are affected are 19.3-19.30. Easily exploitable vulnerability allows high privileged attacker having Row Access Method privilege with network access via multiple protocols to compromise RDBMS. Successful attac...

CVE-2026-36228

Buffer Overflow vulnerability in Easy Chat Server 3.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via the chat message functionality...