PT-2026-43374

Name of the Vulnerable Software and Affected Versions IBM Engineering Lifecycle Management versions 7.0.3 Interim Fix 001 through Interim Fix 021 IBM Engineering Lifecycle Management versions 7.1.0 Interim Fix 001 through Interim Fix 009 IBM Engineering Lifecycle Management versions 7.2.0 through...

PT-2026-42850

Name of the Vulnerable Software and Affected Versions Microsoft SharePoint Server Subscription Edition versions prior to 16.0.19725.20280 Microsoft SharePoint Server 2019 versions prior to 16.0.10417.20128 Microsoft SharePoint Enterprise Server 2016 versions prior to 16.0.5552.1002 Description...

PT-2026-37233

Name of the Vulnerable Software and Affected Versions FluentCMS version 1.2.3 Description Cross Site Scripting XSS exists in the TextHTML plugin. XSS is a flaw that allows an attacker to inject malicious scripts into web pages viewed by other users. Recommendations At the moment, there is no...

PT-2026-28290

Name of the Vulnerable Software and Affected Versions HCL Aftermarket DPC affected versions not specified Description HCL Aftermarket DPC is susceptible to a File Discovery issue. An attacker could exploit this to read sensitive files present on the system and potentially use them to plan further...

PT-2026-28293

Name of the Vulnerable Software and Affected Versions HCL Aftermarket DPC affected versions not specified Description The software is susceptible to a spamming issue that could allow an attacker to exhaust server resources, potentially leading to a Denial of Service. Excessive spamming can consum...

PT-2026-28288

Name of the Vulnerable Software and Affected Versions HCL Aftermarket DPC affected versions not specified Description The software contains hardcoded sensitive data, potentially allowing an attacker to gain access to the source code. If the source code is stored in insecure repositories, the...

PT-2026-28291

Name of the Vulnerable Software and Affected Versions HCL Aftermarket DPC affected versions not specified Description HCL Aftermarket DPC is susceptible to a session fixation issue. This allows an attacker to take control of a user’s session and perform unauthorized transactions on the user’s...

PT-2026-28302

Name of the Vulnerable Software and Affected Versions HCL Aftermarket DPC affected versions not specified Description The application is susceptible to exploitation due to the use of vulnerable or outdated versions of software components. An attacker may leverage publicly available exploits to...

PT-2026-28437

Name of the Vulnerable Software and Affected Versions versions prior to 2026-32286 Description The DataRow.Decode function does not correctly validate field lengths. A malicious or compromised PostgreSQL server can send a DataRow message with a negative field length, resulting in a slice bounds o...

PT-2026-20235

Name of the Vulnerable Software and Affected Versions IBM DB2 Recovery Expert for LUW version 5.5 Interim Fix 002 Description IBM DB2 Recovery Expert for Linux, UNIX, and Windows transmits data over a cleartext communication channel. This could allow an attacker to intercept sensitive information...

PT-2026-7399

Name of the Vulnerable Software and Affected Versions Microsoft Windows 10 1607 versions prior to 10.0.14393.8868 Microsoft Windows 10 1809 versions prior to 10.0.17763.8389 Microsoft Windows 10 21H2 versions prior to 10.0.19044.6937 Microsoft Windows 10 22H2 versions prior to 10.0.19045.6937...

PT-2026-7433

Name of the Vulnerable Software and Affected Versions MongoDB Server affected versions not specified Description The MongoDB Server may encounter an out-of-memory failure when processing expressions that result in deeply nested documents. This occurs due to a lack of periodic depth checks within...

PT-2026-6685

Name of the Vulnerable Software and Affected Versions abhiphile fermat-mcp versions prior to 47f11def1cd37e45dd060f30cdce346cbdbd6f0a Description A code injection issue exists in the eqn chart function within the fmcp/mpl mcp/core/eqn chart.py file. Manipulation of the equations argument can lead...

PT-2026-6714

Name of the Vulnerable Software and Affected Versions versions prior to 2026-24928 Description An out-of-bounds write issue exists in the file system module. Successful exploitation could impact service confidentiality. Recommendations At the moment, there is no information about a newer version...

PT-2026-6800

Name of the Vulnerable Software and Affected Versions UTT 进取 520W version 1.7.7-180627 Description A buffer overflow issue exists in the strcpy function within the /goform/formSyslogConf file. Manipulation of the ServerIp argument can trigger this issue, potentially allowing for remote attacks. T...

PT-2026-6817

Name of the Vulnerable Software and Affected Versions SpotFTP-FTP Password Recover version 2.4.8 Description The software contains a denial of service issue that allows attackers to crash the application. This is achieved by triggering a large buffer overflow. An attacker can create a text file...

PT-2026-6823

Name of the Vulnerable Software and Affected Versions Core FTP Lite version 1.3 Description Core FTP Lite version 1.3 contains a buffer overflow issue in the username input field. An attacker can cause the application to crash by providing an oversized input, such as a 7000-byte payload consistin...

PT-2026-6707

Name of the Vulnerable Software and Affected Versions Versions affected versions not specified Description A use-after-free issue exists in the security module. Successful exploitation could impact availability. Recommendations At the moment, there is no information about a newer version that...

PT-2026-6624

Name of the Vulnerable Software and Affected Versions Tanium Discover affected versions not specified Description Tanium Discover was found to have an incorrect default permissions setting. This could potentially allow unauthorized access or modification of data. Recommendations At the moment,...

PT-2026-6615

Name of the Vulnerable Software and Affected Versions Tanium Deploy affected versions not specified Description Tanium addressed an improper input validation issue in Deploy. The issue involves insufficient validation of input, potentially allowing for unintended consequences. No information is...