CVE-2026-56770

libais through 0.15 VdmStream::AddLine uses an unchecked sentinel value as a vector index when processing AIS sentences with empty or out-of-range sequential message IDs. Remote attackers can crash services or vessel systems by sending crafted AIVDM sentences over VHF marine radio or IP feeds,...

CVE-2026-56770

Libais 0.15 is affected by an out-of-bounds vector access in VdmStream::AddLine caused by an unchecked sentinel value used as a vector index when handling AIS sentences with empty or out-of-range sequential IDs. Remote attackers can crash services or vessel systems by sending crafted AIVDM senten...

CVE-2026-10043

creationtimestamp| type| source ---|---|--- 2026-06-25 02:41:03+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mp3fq6z37d22...

MINI-VJX4-JGVV-J299

Bulletin has no description...

CVE-2026-56412

creationtimestamp| type| source ---|---|--- 2026-06-21 18:20:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mosyexyoxh2k 2026-06-26 00:01:47+00:00| seen| https://bsky.app/profile/slackers.it/post/3mp5ncbgb2u2x...

PT-2026-51175

Name of the Vulnerable Software and Affected Versions AVideo versions prior to 29.0 Description An authorization bypass exists in the Meet plugin's 'uploadRecordedVideo.json.php' endpoint. The system derives the target users id from the uploaded filename without proper verification. An attacker w...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Wifi: ath12k: Handle lock during peerid find The ath12kpeerfindbyid function requires that the caller holds the ab-baselock. Currently, the WBM error path does not hold the lock, and calling that function leads to the following...

MINI-9735-7P7R-C3GM

Bulletin has no description...

CVE-2026-46891

...

CVE-2026-46871

...

CVE-2026-46868

Technical details about CVE-2026-46868 are not publicly available in the provided documents. Monitor for updates from Oracle and CVE records.

CVE-2026-46862

Technical details for CVE-2026-46862 are not publicly available in the provided documents. Monitor for updates from Oracle and CVE records regarding affected products, impact, and fixes.

CVE-2026-46847

Technical details are not publicly available in the provided documents. Monitor for updates.

PAN-OS Management Interface - Path Confusion to Authentication Bypass

A vulnerability in PAN-OS management interface allows authentication bypass through path confusion between Nginx and Apache handlers.The issue occurs due to differences in path processing between Nginx and Apache, where double URL encoding combined with directory traversal can bypass authenticati...

SUSE CVE-2026-50010

Netty is a network application framework for development of protocol servers and clients. Prior to versions 4.1.135.Final and 4.2.15.Final, SimpleTrustManagerFactory.engineGetTrustManagers and related paths wrap any user-supplied plain X509TrustManager in X509TrustManagerWrapper, which extends...

Netty: Wrapping plain trust manager silently disables hostname verification

SimpleTrustManagerFactory.engineGetTrustManagers and related paths wrap any user-supplied plain X509TrustManager in X509TrustManagerWrapper, which extends X509ExtendedTrustManager but implements the 3-arg checkServerTrustedchain, authType, SSLEngine by discarding the SSLEngine and calling the 2-a...

EUVD-2026-36465

Netty: Wrapping plain trust manager silently disables hostname verification...

GHSA-C653-97M9-RCG9 Netty: Wrapping plain trust manager silently disables hostname verification

SimpleTrustManagerFactory.engineGetTrustManagers and related paths wrap any user-supplied plain X509TrustManager in X509TrustManagerWrapper, which extends X509ExtendedTrustManager but implements the 3-arg checkServerTrustedchain, authType, SSLEngine by discarding the SSLEngine and calling the 2-a...

MINI-M7XM-JW9W-GXVM

Bulletin has no description...

MINI-CFCJ-HP7P-QJP8

Bulletin has no description...