CVE-2026-24933 An improper certificate validation vulnerability was found in ADM while sending HTTPS requests to the server.

The API communication component fails to validate the SSL/TLS certificate when sending HTTPS requests to the server. An improper certificates validation vulnerability allows an unauthenticated remote attacker can perform a Man-in-the-Middle MitM attack to intercept the cleartext communication,...

CVE-2026-1778

Amazon SageMaker Python SDK before v3.1.1 or v2.256.0 disables TLS certificate verification for HTTPS connections made by the service when a Triton Python model is imported, incorrectly allowing for requests with invalid and self-signed certificates to succeed...

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS via the DNS cache. An attacker can cause the controller to panic and become unavailable by inserting a specially crafted DNS response into the cache, either by intercepting and modifying DNS traffic or by controlli...

CVE-2026-1778

SageMaker Python SDK (before v3.1.1 or v2.256.0) disables TLS certificate verification in the Triton Python backend during model import, allowing HTTPS requests to succeed with invalid/self-signed certificates. Affected versions: SDK <3.1.1 and

PT-2026-6430

Impact The cert-manager-controller performs DNS lookups during ACME DNS-01 processing for zone discovery and propagation self-checks. By default, these lookups use standard unencrypted DNS. An attacker who can intercept and modify DNS traffic from the cert-manager-controller pod can insert a...

CLEANSTART-2026-XI02879 When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11

Multiple security vulnerabilities affect the tomcat9 package. When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11. See references for individual vulnerability details...

CLEANSTART-2026-SJ80413 When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11

Multiple security vulnerabilities affect the tomcat9 package. When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11. See references for individual vulnerability details...

CLEANSTART-2026-CD66042 When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11

Multiple security vulnerabilities affect the tomcat9 package. When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11. See references for individual vulnerability details...

CLEANSTART-2026-XP03839 When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11

Multiple security vulnerabilities affect the tomcat9 package. When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11. See references for individual vulnerability details...

CVE-2026-1505

creationtimestamp| type| source ---|---|--- 2026-01-28 05:54:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdhlkdkx3y2c...

CVE-2026-1425

A security flaw has been discovered in pymumu SmartDNS up to 47.1. This vulnerability affects the function dnsdecoderrhead/dnsdecodeSVCBHTTPS of the file src/dns.c of the component SVBC Record Parser. The manipulation results in stack-based buffer overflow. It is possible to launch the attack...

PT-2026-4730

A security flaw has been discovered in pymumu SmartDNS up to 47.1. This vulnerability affects the function dns decode rr head/ dns decode SVCB HTTPS of the file src/dns.c of the component SVBC Record Parser. The manipulation results in stack-based buffer overflow. It is possible to launch the...

[SECURITY] Fedora 43 Update: cpp-httplib-0.30.1-5.fc43

A C++11 single-file header-only cross platform HTTP/HTTPS library. It's extremely easy to setup. Just include the httplib.h file in your code!...

Azure Linux 3.0 Security Update: bind (CVE-2024-12705)

The version of bind installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-12705 advisory. - Clients using DNS-over-HTTPS DoH can exhaust a DNS resolver's CPU and/or memory by flooding it with crafted...

CVE-2025-13465

creationtimestamp| type| source ---|---|--- 2026-01-21 19:23:45+00:00| seen| https://bsky.app/profile/ulisesgascon.com/post/3mcxfiet6f22v 2026-01-21 21:16:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcxls7pyhk2j 2026-01-22 00:30:02+00:00| seen|...

MiracleLinux 9 : squid-5.5-6.el9_3.2 (AXSA:2023-7053:06)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-7053:06 advisory. squid: DoS against HTTP and HTTPS CVE-2023-5824 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note...

Quantum Encryption Resilience Score (QERS) for MQTT, HTTP, and HTTPS under Post-Quantum Cryptography in Computer, IoT, and IIoT Systems

Post-quantum cryptography PQC introduces significant computational and communication overhead, which poses challenges for resource-constrained computer systems, Internet of Things IoT, and Industrial IoT IIoT devices. This paper presents an experimental evaluation of the Quantum Encryption...

CVE-2026-1002

creationtimestamp| type| source ---|---|--- 2026-01-16 07:38:33+00:00| seen| https://bsky.app/profile/ytroncal.bsky.social/post/3mcjlqovqfs2x 2026-01-24 21:24:27+00:00| seen| https://gist.github.com/alon710/eefdba86d78cf9d537d1f9c4b9b5bbb8 2026-01-24 22:30:55+00:00| seen|...

CVE-2025-64729

creationtimestamp| type| source ---|---|--- 2026-01-16 05:33:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcjeqn4goh2x 2026-01-16 18:03:27+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mckoo7uzc72t...

MiracleLinux 7 : python-2.7.5-58.0.1.el7.AXS7 (AXSA:2017-2065:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-2065:01 advisory. tv4 - Tiny Validator for v4 JSON Schema JavaScript library packaged for setuptools easyinstall / pip. Use json-schema draft v4 to validate simple values and...