PT-2026-32566

Due to a missing authorization check in SAP ERP and SAP S/4HANA Private Cloud and On-Premise, an authenticated attacker could execute a particular ABAP report to overwrite any existing eight?character executable ABAP report without authorization. If the overwritten report is subsequently executed...

Huawei HarmonyOS WEB module out-of-bounds write vulnerability (CNVD-2026-17169)

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. An out-of-bounds write vulnerability exists in the Huawei HarmonyOS WEB module, which can be exploited by an attacker to compromise confidentiality and...

Huawei HarmonyOS Notification Service Competitive Conditions Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A competitive condition vulnerability exists in the Huawei HarmonyOS notification service, which can be exploited by attackers to cause availability to be...

OPENSUSE-SU-2026:10544-1 log4j-2.20.0-2.1 on GA media

These are all security issues fixed in the log4j-2.20.0-2.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10549-1 tomcat11-11.0.21-1.1 on GA media

These are all security issues fixed in the tomcat11-11.0.21-1.1 package on the GA media of openSUSE Tumbleweed...

Huawei HarmonyOS Screen Management Module Memory Misreference Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A memory misreference vulnerability exists in the Huawei HarmonyOS screen management module, which can be exploited by an attacker to cause availability to b...

Huawei HarmonyOS WEB Module Out-of-Bounds Write Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. An out-of-bounds write vulnerability exists in the Huawei HarmonyOS WEB module, which can be exploited by an attacker to compromise confidentiality and...

Huawei HarmonyOS and EMUI kernel module out-of-bounds write vulnerability

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scenario distributed operating system based on a microkernel.Huawei EMUI is a user interface developed by Huawei based on the Android operating system. An out-of-bounds write vulnerability exists in the...

ROS-20260414-73-0054

A vulnerability in the iwlpcieirqrqrxmsixhandler function of the drivers/net/wireless/intel/iwlwifi/pcie/rx.c module of the Intel Wireless Adapter Driver in the Linux kernel is related to NULL pointer dereferencing. Exploitation of the vulnerability may allow an intruder to affect confidentiality...

EUVD-2026-22012

A vulnerability was detected in SourceCodester Pharmacy Sales and Inventory System 1.0. This issue affects some unknown processing of the file /ajax.php?action=chkprodavailability. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit i...

EUVD-2026-21997

An issue was discovered in HAProxy before 3.3.6. The HTTP/3 parser does not check that the received body length matches a previously announced content-length when the stream is closed via a frame with an empty payload. This can cause desynchronization issues with the backend server and could be...

CVE-2026-6187

A vulnerability was detected in SourceCodester Pharmacy Sales and Inventory System 1.0. This issue affects some unknown processing of the file /ajax.php?action=chkprodavailability. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit i...

CVE-2026-6187

SourceCodester Pharmacy Sales and Inventory System 1.0 contains a SQL injection in /ajax.php?action=chk_prod_availability caused by manipulating the ID parameter. This vulnerability can be exploited remotely, with exploit publicly available. CVE-2026-6187 is documented with multiple CVSS scores (...

EUVD-2026-21879

Out-of-bounds write vulnerability in the WEB module.Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...

EUVD-2026-21877

Out-of-bounds write vulnerability in the WEB module.Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...

CVE-2026-34866

Out-of-bounds write vulnerability in the WEB module.Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...

CVE-2026-34865

Out-of-bounds write vulnerability in the WEB module.Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...

EUVD-2026-21840

Race condition vulnerability in the thermal management module. Impact: Successful exploitation of this vulnerability may affect availability...

EUVD-2026-21834

UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability...

EUVD-2026-21829

UAF vulnerability in the screen management module. Impact: Successful exploitation of this vulnerability may affect availability...