CVE-2026-44862 Authenticated Remote Code Execution via SQL Injection in AOS-8 and AOS-10 Operating Systems

SQL injection vulnerabilities exist in several underlying service components accessible through the AOS-8 and AOS-10 command-line interface and management protocol. An authenticated attacker with administrative privileges could exploit these vulnerabilities by injecting crafted input into...

CVE-2026-44858 Authenticated Stack-Based Buffer Overflow in PAPI Services

Stack-based buffer overflow vulnerabilities exist in several underlying management service components accessed through the command-line interface of the AOS-8 and AOS-10 Operating Systems. An authenticated attacker with administrative privileges could exploit these vulnerabilities by sending...

CVE-2026-6959 Nomad vulnerable to arbitrary file read/write on client host through symlink attack

HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability CVE-2026-6959 is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11...

CVE-2026-6959 Nomad vulnerable to arbitrary file read/write on client host through symlink attack

HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability CVE-2026-6959 is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11...

CVE-2026-6959

HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability CVE-2026-6959 is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11...

CVE-2026-6959

CVE-2026-6959 affects HashiCorp Nomad and Nomad Enterprise older than 2.0.1, allowing arbitrary file read/write on the client host as the Nomad process user via a symlink attack. Impact: potential unauthorized access or manipulation on the client host; CVSS 3.1 base score 6.0 (Scope Changed, Priv...

CVE-2026-44852

An authenticated remote code execution vulnerability exists in the AOS-8 and AOS-10 web-based management interface. The certificate download functionality can overwrite arbitrary files on the underlying OS by exploiting improper input validation in the file path parameter. Successful exploitation...

EUVD-2026-29729

A improper access control vulnerability in Fortinet FortiAuthenticator 8.0.2, FortiAuthenticator 8.0.0, FortiAuthenticator 6.6.0 through 6.6.8, FortiAuthenticator 6.5.0 through 6.5.6 may allow attacker to execute unauthorized code or commands via...

EUVD-2026-29697

Improper access control in M365 Copilot for Desktop allows an unauthorized attacker to perform spoofing locally...

EUVD-2026-29688

Improper access control in Microsoft Office PowerPoint allows an authorized attacker to perform spoofing locally...

EUVD-2026-29684

Heap-based buffer overflow in Microsoft Windows DNS allows an unauthorized attacker to execute code over a network...

EUVD-2026-29681

Stack-based buffer overflow in Windows Netlogon allows an unauthorized attacker to execute code over a network...

EUVD-2026-29687

Improper access control in Microsoft Office Word allows an authorized attacker to perform spoofing locally...

EUVD-2026-29665

Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over a network...

EUVD-2026-29662

Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service locally...

EUVD-2026-29667

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...

EUVD-2026-29654

Heap-based buffer overflow in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally...

EUVD-2026-29672

Use after free in Windows TCP/IP allows an unauthorized attacker to execute code over a network...

EUVD-2026-29636

Missing authorization in Windows Admin Center allows an authorized attacker to elevate privileges over a network...

EUVD-2026-29624

Access of resource using incompatible type 'type confusion' in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally...