CVE-2026-23384

creationtimestamp| type| source ---|---|--- 2026-03-25 14:07:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhvb72aehi2t...

CVE-2026-33992

creationtimestamp| type| source ---|---|--- 2026-03-25 13:09:33+00:00| published-proof-of-concept| https://github.com/pyload/pyload/security/advisories/GHSA-m74m-f7cr-432x 2026-03-28 01:18:50+00:00| seen| Telegram/DQ8Phmkx05Q1rHpnB8sJ1vhC9dSxcFzzTf0RtJAOAn3w7JQ 2026-03-28 02:13:28+00:00| seen|...

CVE-2026-23316

A flaw was found in the Linux kernel's handling of multipath hash seeds on ARM64 architectures. This vulnerability can lead to a system crash kernel panic when the kernel is compiled with specific optimizations, such as Clang with Link-Time Optimization LTO, due to an alignment fault during memor...

CVE-2026-23348

A flaw was found in the Linux kernel, specifically within the CXL Compute Express Link and NVDIMM Non-Volatile Dual In-line Memory Module subsystems. A race condition can occur when NVDIMM objects attempt to reprobe after the cxlacpi module is removed, while the nvdimmbus object is missing. This...

CVE-2026-23395 Bluetooth: L2CAP: Fix accepting multiple L2CAP_ECRED_CONN_REQ

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix accepting multiple L2CAPECREDCONNREQ Currently the code attempts to accept requests regardless of the command identifier which may cause multiple requests to be marked as pending FLAGDEFERSETUP which can cau...

CVE-2026-23327

The CVE-2026-23327 issue is a Linux kernel vulnerability in the CXL mailbox driver (cxl/mbox). The root cause is that cxl_payload_from_user_allowed() casts and dereferences the user payload without validating its size, allowing an undersized mailbox command to trigger a read past the allocated bu...

CVE-2026-23279 wifi: mac80211: fix NULL pointer dereference in mesh_rx_csa_frame()

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL pointer dereference in meshrxcsaframe In meshrxcsaframe, elems-meshchanswparamsie is dereferenced at lines 1638 and 1642 without a prior NULL check: ifmsh-chswttl = elems-meshchanswparamsie-meshttl;...

Improper Handling Of Symbolic Links

github.com/argoproj/argo-workflows is vulnerable to Improper Handling Of Symbolic Links. The vulnerability is due to flawed validation in the untar process when resolving symbolic links, which allows an attacker to overwrite critical files such as /var/run/argo/argoexec with a malicious script th...

Installer of OM Workspace (Windows Edition) may insecurely load Dynamic Link Libraries

Overview OM Workspace provided by OM Digital Solutions Corporation is image editing software. Installer of OM Workspace Windows Edition contains the following vulnerability with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. Uncontrolled search path element...

BIT-PYTHON-MIN-2026-4519 webbrowser.open() allows leading dashes in URLs

The webbrowser.open API would accept leading dashes in the URL which could be handled as command line options for certain web browsers. New behavior rejects leading dashes. Users are recommended to sanitize URLs prior to passing to webbrowser.open...

EUVD-2026-15190

The installer for OM Workspace Windows Edition Ver 2.4 and earlier insecurely loads Dynamic Link Libraries DLLs, which could allow an attacker to execute arbitrary code with the privileges of the user invoking the installer...

CVE-2026-26306

The installer for OM Workspace Windows Edition Ver 2.4 and earlier insecurely loads Dynamic Link Libraries DLLs, which could allow an attacker to execute arbitrary code with the privileges of the user invoking the installer...

CVE-2026-26306

The installer for OM Workspace Windows Edition Ver 2.4 and earlier insecurely loads Dynamic Link Libraries DLLs, which could allow an attacker to execute arbitrary code with the privileges of the user invoking the installer...

CVE-2026-26306

The installer for OM Workspace Windows Edition Ver 2.4 and earlier insecurely loads Dynamic Link Libraries DLLs, which could allow an attacker to execute arbitrary code with the privileges of the user invoking the installer...

CVE-2026-4784

creationtimestamp| type| source ---|---|--- 2026-03-25 04:50:18+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mhuc2lu7hc26 2026-03-25 06:15:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhugsba5gl25 2026-04-04 06:40:08+00:00| seen|...

CVE-2026-4718

creationtimestamp| type| source ---|---|--- 2026-03-25 04:01:27+00:00| seen| https://bsky.app/profile/slackers.it/post/3mhu7d6hbhv2w...

CVE-2026-4709

creationtimestamp| type| source ---|---|--- 2026-03-25 04:01:24+00:00| seen| https://bsky.app/profile/slackers.it/post/3mhu7d4cn4y23...

CVE-2026-4692

creationtimestamp| type| source ---|---|--- 2026-03-25 04:01:19+00:00| seen| https://bsky.app/profile/slackers.it/post/3mhu7cz6h4i22 2026-03-29 17:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/actualite/CERTFR-2026-ACT-013/...

CVE-2026-4687

creationtimestamp| type| source ---|---|--- 2026-03-25 03:00:13+00:00| seen| https://www.mozilla.org/en-US/security/advisories/mfsa2026-20/ 2026-03-25 04:01:18+00:00| seen| https://bsky.app/profile/slackers.it/post/3mhu7cxyuvt2w 2026-03-29 05:26:23+00:00| seen|...

CVE-2026-28753

creationtimestamp| type| source ---|---|--- 2026-03-25 03:00:09+00:00| seen| https://my.f5.com/manage/s/article/K000160366 2026-03-25 14:35:13+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mhvcqjgua623 2026-03-29 17:00:00+00:00| seen|...