CVE-2026-55655 Openssh: local mitm of x11 forwarding via abstract unix socket pre-binding in red hat enterprise linux openssh client versions

A flaw was found in OpenSSH. A local unprivileged attacker on a Linux client host can hijack client-side X11 forwarding connections. This is possible by pre-binding the preferred abstract X socket name when X11 forwarding is enabled and a local UNIX-domain X socket is used. A successful attack ca...

CVE-2026-55655

OpenSSH on Linux clients is affected by CVE-2026-55655. The issue allows a local unprivileged attacker to hijack client-side X11 forwarding connections by pre-binding the preferred abstract X socket name when X11 forwarding is enabled and a local UNIX-domain X socket is used. The attack can compr...

CVE-2026-48166

Filament is a collection of full-stack components for accelerated Laravel development. From 4.0.0 until 4.11.5 and 5.6.5, the login page has an observable timing discrepancy that allows unauthenticated attackers to enumerate registered email addresses. The impact is limited to disclosing whether ...

CVE-2026-48505

Filament’s MFA recovery-code handling (versions 4.0.0–4.11.5 and 5.6.5) allows the same recovery code to be reused under concurrent submissions. When recovery codes are enabled, an attacker with the user’s password and codes can establish multiple authenticated sessions per code, extending access...

EUVD-2026-38276

Mattermost versions 11.7.x = 11.7.0, 10.11.x = 10.11.17 fail to validate bot targets when demoting users to guests which allows a lower-privileged administrator to degrade arbitrary bot accounts via the standard demote-user API.. Mattermost Advisory ID: MMSA-2026-00669...

ROOT-OS-DEBIAN-11-CVE-2025-40909 CVE-2025-40909 in rootio-perl - Patched by Root

Root has patched CVE-2025-40909 in the rootio-perl package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2026-48962 CVE-2026-48962 in rootio-perl - Patched by Root

Root has patched CVE-2026-48962 in the rootio-perl package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2026-9538 CVE-2026-9538 in rootio-perl - Patched by Root

Root has patched CVE-2026-9538 in the rootio-perl package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2026-42496 CVE-2026-42496 in rootio-perl - Patched by Root

Root has patched CVE-2026-42496 in the rootio-perl package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2023-34152 CVE-2023-34152 in rootio-imagemagick - Patched by Root

Root has patched CVE-2023-34152 in the rootio-imagemagick package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2026-28388 CVE-2026-28388 in rootio-openssl - Patched by Root

Root has patched CVE-2026-28388 in the rootio-openssl package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2026-28387 CVE-2026-28387 in rootio-openssl - Patched by Root

Root has patched CVE-2026-28387 in the rootio-openssl package for Root:Debian:11. Multiple fixed versions available...

DEBIAN-CVE-2026-43915

Coturn is a free open source implementation of TURN and STUN Server. Versions prior to 4.11.0 contain a stored cross-site scripting XSS vulnerability in the web-admin HTTPS interface. An attacker who can create a TURN allocation with a crafted USERNAME value can inject HTML/JavaScript that execut...

CVE-2026-43915

CVE-2026-43915 affects Coturn prior to 4.11.0, where the web-admin HTTPS interface vulnerable to a stored XSS via a crafted TURN USERNAME when an allocation is created. An authenticated web-admin user viewing the TURN session list can trigger script execution; in configurations with anonymous acc...

ROOT-OS-DEBIAN-11-CVE-2023-26242 CVE-2023-26242 in rootio-linux - Patched by Root

Root has patched CVE-2023-26242 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2026-43273 CVE-2026-43273 in rootio-linux - Patched by Root

Root has patched CVE-2026-43273 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2024-26938 CVE-2024-26938 in rootio-linux - Patched by Root

Root has patched CVE-2024-26938 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2025-40032 CVE-2025-40032 in rootio-linux - Patched by Root

Root has patched CVE-2025-40032 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2026-46333 CVE-2026-46333 in rootio-linux - Patched by Root

Root has patched CVE-2026-46333 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2025-37959 CVE-2025-37959 in rootio-linux - Patched by Root

Root has patched CVE-2025-37959 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...