Linux Distros Unpatched Vulnerability : CVE-2026-42496

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Archive::Tar versions before 3.08 for Perl extract symlinks with attacker controlled targets outside the extraction directory. makespecialfile passes the tar...

PT-2026-42469

Name of the Vulnerable Software and Affected Versions Apex One/SEP agent affected versions not specified Description An origin validation error in the process protection mechanism allows a local attacker to escalate privileges. To exploit this issue, the attacker must first have the ability to...

CVE-2018-6400

creationtimestamp| type| source ---|---|--- 2026-05-13 20:00:00+00:00| seen| https://jvn.jp/en/jp/JVN14434132...

CVE-2026-40067 BIG-IP APM Vulnerability

When a BIG-IP APM access policy is configured on a virtual server, undisclosed traffic can cause the apmd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

@solidjs-email/dev-server (=2.0.0), @tanstack/solid-start (>=1.20.3-alpha.1 <=1.167.62) potentially affected by CVE-2026-45321 via @tanstack/solid-start-client (>=1.121.0-alpha.28 <=1.166.5)

@tanstack/solid-start-client NPM version =1.121.0-alpha.28, =1.20.3-alpha.1, =1.167.62 Source cves: CVE-2026-45321 Source advisory: SNYK:JS-TANSTACKSOLIDSTARTCLIENT-16640233...

@akemona-org/strapi-connector-mongoose (>=3.13.0 <=3.17.2), @andybeat/clothingshop-nestjs (>=2.9.0 <=2.12.0) +94 more potentially affected by CVE-2026-42334 via mongoose (>=8.0.0 <=8.21.0)

mongoose NPM version =8.0.0, =3.13.0, =2.9.0, =0.10.18, =0.10.21, =1.3.5, =0.4.1, =3.8.0, =1.0.1, =8.10.0, =0.8.7, =1.0.1, =1.5.1, =1.12.42, =1.0.0, =7.0.0, =8.0.5-canary.0 and more Source cves: CVE-2026-42334 Source advisory: SNYK:JS-MONGOOSE-16425765...

BELL-CVE-2026-43057

Bulletin has no description...

BELL-CVE-2026-43049

Bulletin has no description...

GHSA-MP3R-6558-HVG8 vulnerabilities

Vulnerabilities for packages: linux-aws, linux-qemu, linux-azure, linux-gcp, linux-vmware...

GHSA-Q49F-XG75-M9XW vulnerabilities

Vulnerabilities for packages: zed, wasmcloud, yara-x, wizer...

Linux Distros Unpatched Vulnerability : CVE-2026-6753

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140.10, Thunderbird 150, and Thunderbird 140.10...

CVE-2026-32955

creationtimestamp| type| source ---|---|--- 2026-04-19 19:30:00+00:00| seen| https://jvn.jp/en/vu/JVNVU94271449 2026-04-20 05:17:09+00:00| seen| Telegram/oT3io0aR7EQyKUnAhTuUuKTmw-PFwRgwwLAn7oSA51QT1kY 2026-04-20 06:00:29+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mjvs3zrp3e2c...

CVE-2026-40118

creationtimestamp| type| source ---|---|--- 2026-04-15 20:00:00+00:00| seen| https://jvn.jp/en/jp/JVN88396700...

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.24 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Huawei EulerOS: Security Advisory for glib2 (EulerOS-SA-2026-1390)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2026-e67a6f9c45)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important: Red Hat Security Advisory: kpatch-patch-5_14_0-570_17_1, kpatch-patch-5_14_0-570_39_1, and kpatch-patch-5_14_0-570_66_1 security update

An update for multiple packages is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

CVE-2025-13673

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to SQL Injection via the 'couponcode' parameter in all versions up to, and including, 3.9.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

📄 NFR Agent SRS Record 1.0.4.3 PHP Code Injection

Proof of concept code injection exploit for NFR Agent SRS Record version 1.0.4.3. This is for an older finding from 2012. ============================================================================================================================================= | Title : NFR Agent SRS Record...

CVE-2026-21242

creationtimestamp| type| source ---|---|--- 2026-02-10 17:30:28+00:00| seen| https://www.thezdi.com/blog/2026/2/10/the-february-2026-security-update-review 2026-02-10 18:01:45+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0053...