Lucene search
+L

2464 matches found

NVD
NVD
added 4 days ago7 views

CVE-2026-46629

Twig is a template language for PHP. Prior to 3.26.0, twig/intl-extra memoises IntlDateFormatter and NumberFormatter instances in arrays keyed by template-controlled filter arguments such as locale, pattern, and attrs, allowing a template to allocate many ICU formatter objects that remain pinned...

6.5CVSS0.00302EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 4 days ago12 views

CVE-2026-46644

Symfony Polyfill backports PHP features and provides compatibility layers for extensions and functions. From 1.17.1 until 1.38.1, symfony/polyfill-intl-idn accepts xn-- labels whose Punycode payload is empty or decodes to ASCII-only code points because Idn::process does not enforce the UTS 46...

6.9CVSS6.1AI score0.00394EPSS
Exploits0References3
CVE
CVE
added 4 days ago61 views

CVE-2026-46644

CVE-2026-46644 affects symfony/polyfill-intl-idn (1.17.1–1.38.1). The Idn::process() routine does not enforce UTS #46 rev 33 after Punycode decoding, allowing xn-- labels with empty or ASCII-only payloads to be treated as equal to their decoded form. This can enable blacklist bypass, inconsistent...

6.9CVSS6.1AI score0.00394EPSS
Exploits0References3
Circl
Circl
added 4 days ago6 views

CVE-2026-58613

creationtimestamp| type| source ---|---|--- 2026-07-14 19:01:51+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0231 2026-07-14 22:03:43+00:00| seen| https://www.thezdi.com/blog/2026/7/14/the-july-2026-security-update-review 2026-07-15 01:01:30+00:00| seen|...

7.8CVSS7.3AI score0.00327EPSS
Exploits1References5
Circl
Circl
added 2026/07/02 8:28 a.m.10 views

CVE-2026-11595

creationtimestamp| type| source ---|---|--- 2026-07-02 08:28:13+00:00| seen| https://www.hkcert.org/security-bulletin/ibm-websphere-products-multiple-vulnerabilities20260702 2026-07-03 10:03:28+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqc6nyl242q...

7.5CVSS5.9AI score0.00474EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.12 views

PT-2026-53961

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server version 9.0 IBM WebSphere Application Server version 8.5 Description A remote attacker could obtain sensitive information from the integrated help system of the administrative console. Recommendations At the...

7.5CVSS6AI score0.00474EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2026/06/27 5:27 p.m.28 views

Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials

The Security Service of Ukraine SSU said it, together with the U.S. Federal Bureau of Investigation FBI, uncovered a long-running campaign orchestrated by Russian intelligence services to break into the messaging accounts of government officials, military personnel, politicians, and activists in...

5.8AI score
Exploits0
EUVD
EUVD
added 2026/06/22 7:32 p.m.6 views

EUVD-2026-38346

IBM i 7.6, 7.5, 7.4, and 7.3, IBM WebSphere Application Server, and IBM WebSphere Application Server Liberty are vulnerable to denial of service in the WebSphere WebServer Plug-in component when an attacker can pass crafted requests to the web server...

5.9CVSS5.8AI score0.00271EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/22 7:32 p.m.40 views

CVE-2026-10852 Websphere Application Server is Affected By a Denial of Service

IBM WebSphere Application Server and IBM WebSphere Application Server Liberty are vulnerable to denial of service in the WebSphere WebServer Plug-in component when an attacker can pass crafted requests to the web server...

5.9CVSS0.00271EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/22 2:43 p.m.9 views

EUVD-2026-38288

IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to bypass authentication and gain unauthorized access to JAX-WS applications...

7.3CVSS5.9AI score0.00337EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 10:54 a.m.14 views

CVE-2026-46967

Vulnerability in the Oracle Public Sector Financials International product of Oracle E-Business Suite component: Authorization. Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracl...

8.8CVSS0.00402EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.20 views

PT-2026-50066

Vulnerability in the Oracle Public Sector Financials International product of Oracle E-Business Suite component: Authorization. Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracl...

8.8CVSS5.3AI score0.00402EPSS
Exploits0References2
Wired Threat Level
Wired Threat Level
added 2026/06/10 10:0 a.m.16 views

Amnesty International Warns That World Cup Fans Face Potential Human Rights Violations

The organization claims that the FIFA tournament could have impacts on the rights of local people and visiting soccer fans in all three host countries...

5.5AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/08 3:52 p.m.9 views

Security Bulletin: Multiple security vulnerabilities in IBM SDK, Java Technology Edition Quarterly CPU - Apr 2026 affects IBM OpenPages

Summary IBM® SDK, Java™ Technology Edition is shipped as a supporting program of IBM OpenPages. Information about a security vulnerability affecting IBM SDK, Java Technology Edition Quarterly CPU - Apr 2026 has been published in multiple security bulletins. These products have addressed the...

5.5AI score
Exploits0Affected Software1
Packet Storm News
Packet Storm News
added 2026/06/08 12:0 a.m.9 views

Hardware-Aware QAOA for Honeypot Traffic Partitioning on 100+ Qubit IBM Quantum Processors

Denial-of-service DoS and distributed denial-of-service DDoS mitigation requires separating malicious traffic from benign traffic while minimizing disruption to legitimate users. Prior work proposed mapping honeypot traffic partitioning to a weighted MaxCut problem and solving the resulting graph...

5.6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/05 7:48 p.m.14 views

CVE-2026-1248

IBM Business Automation Workflow containers and traditional may leak information about its database structure in error messages...

4.3CVSS5.4AI score0.00219EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/06/03 12:0 a.m.16 views

Prioritization of Risks from Artificial Intelligence: A Delphi Study of 272 International Experts

Artificial intelligence poses many risks, ranging from familiar present-day harms to unprecedented and potentially catastrophic ones. Effective risk management requires prioritization: we must understand which risks are most severe, who is most vulnerable, and who is most responsible for addressi...

5.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2026/06/01 4:49 p.m.19 views

Vulnerability Disclosure in the Age of AI

New article: "Responsible Disclosure in the Age of AI: A Call for Urgent Action," by Melissa Hathaway. Abstract: Artificial intelligence is fundamentally reshaping the balance between vulnerability discovery and remediation. Frontier AI models are now capable of autonomously identifying exploitab...

5.9AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/28 8:17 p.m.11 views

CVE-2026-46823

Vulnerability in the Oracle Public Sector Financials International product of Oracle E-Business Suite component: Authorization. Supported versions that are affected are 12.2.6-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Orac...

7.7CVSS5.8AI score0.00211EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/05/28 8:17 p.m.11 views

EUVD-2026-33046

Vulnerability in the Oracle Public Sector Financials International product of Oracle E-Business Suite component: Authorization. Supported versions that are affected are 12.2.6-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Orac...

7.7CVSS5.8AI score0.00211EPSS
Exploits0References1
Rows per page
Query Builder