4 matches found
CVE-2026-33157 Craft CMS: Potential authenticated Remote Code Execution via malicious attached Behavior
Craft CMS is a content management system CMS. From version 5.6.0 to before version 5.9.13, a Remote Code Execution RCE vulnerability exists in Craft CMS, it can be exploited by any authenticated user with control panel access. This is a bypass of a previous fix. The existing patches add...
CVE-2026-33157
Craft CMS is a content management system CMS. From version 5.6.0 to before version 5.9.13, a Remote Code Execution RCE vulnerability exists in Craft CMS, it can be exploited by any authenticated user with control panel access. This is a bypass of a previous fix. The existing patches add...
PT-2026-27462
Name of the Vulnerable Software and Affected Versions Craft CMS versions 4.x through 5.9.12 Description Craft CMS contains a Remote Code Execution RCE issue that bypasses previous security fixes. This allows any authenticated user with control panel access to potentially execute arbitrary code. T...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004737)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004737 advisory. A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/ttyjobctrl.c allows a use-after-free attack against TIOCSPGRP, ak...