GHSA-4GX5-8RX4-VXMJ vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-aws, linux-qemu, linux-azure, linux-vmware...

CVE-2026-31600 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-aws, linux-qemu, linux-azure, linux-vmware...

UBUNTU-CVE-2026-33551

An issue was discovered in OpenStack Keystone 14 through 26 before 26.1.1, 27.0.0, 28.0.0, and 29.0.0. Restricted application credentials can create EC2 credentials. By using a restricted application credential to call the EC2 credential creation API, an authenticated user with only a reader role...

GHSA-WGXF-R68R-7W9H vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-aws, linux-qemu, linux-azure, linux-vmware...

CVE-2025-38205 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-aws, linux-qemu, linux-azure, linux-vmware...

GHSA-G4VW-3HQ5-Q7GR vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-aws, linux-qemu, linux-azure, linux-vmware...

CVE-2026-23226 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-aws, linux-qemu, linux-azure, linux-vmware...

CVE-2026-23210 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-aws, linux-qemu, linux-azure, linux-vmware...

EUVD-2026-18019

Payload has Insufficient Filename Validation in Client-Upload Signed-URL Endpoints...

CVE-2026-34750

Payload is a free and open source headless content management system. Prior to version 3.78.0 in @payloadcms/storage-azure, @payloadcms/storage-gcs, @payloadcms/storage-r2, and @payloadcms/storage-s3, the client-upload signed-URL endpoints for S3, GCS, Azure, and R2 did not properly sanitize...

Incorrect Authorization

Overview @studiocms/s3-storage is an Add S3 Storage Support into your StudioCMS project. Affected versions of this package are vulnerable to Incorrect Authorization via the S3ApiService POST/PUT handlers in the S3 storage manager. An attacker can gain full S3 file management upload, delete, renam...

CVE-2026-1776 Camaleon CMS AWS Uploader Authenticated Path Traversal Arbitrary File Read

Camaleon CMS versions 2.4.5.0 through 2.9.0, prior to commit f54a77e, contain a path traversal vulnerability in the AWS S3 uploader implementation that allows authenticated users to read arbitrary files from the web server’s filesystem. The issue occurs in the downloadprivatefile functionality wh...

EUVD-2026-9265

Observable timing discrepancy in AES-CCM decryption in AWS-LC allows an unauthenticated user to potentially determine authentication tag validity via timing analysis. The impacted implementations are through the EVP CIPHER API: EVPaes128ccm, EVPaes192ccm, and EVPaes256ccm. Customers of AWS servic...

GHSA-X4RF-JX7J-R49M vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-qemu-melange, linux-qemu...

CVE-2023-52904 vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-qemu-melange, linux-qemu...

CVE-2023-6238 vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-qemu-melange, linux-qemu...

CVE-2023-3640 vulnerabilities

Vulnerabilities for packages: linux-vmware, linux-qemu-melange, linux-qemu...

CVE-2025-40014 vulnerabilities

Vulnerabilities for packages: linux-aws, linux-gcp, linux-azure...

Cloud Security Leveraging AI: A Fusion-Based AISOC for Malware and Log Behaviour Detection

Cloud Security Operations Center SOC enable cloud governance, risk and compliance by providing insights visibility and control. Cloud SOC triages high-volume, heterogeneous telemetry from elastic, short-lived resources while staying within tight budgets. In this research, we implement an...

Amazon Explains How Its AWS Outage Took Down the Web

Plus: The Jaguar Land Rover hack sets an expensive new record, OpenAI’s new Atlas browser raises security fears, Starlink cuts off scam compounds, and more...