CVE-2026-29101

SuiteCRM contains a Denial-of-Service (DoS) vulnerability in modules for versions prior to 7.15.1 and 8.9.3. The issue is mitigated by upgrading to 7.15.1 or 8.9.3, which patch the vulnerability. The publicly documented details confirm the affected products and patched versions; no exploit detail...

CVE-2026-29101 SuiteCRM Vulnerable to Directory Traversal to DoS in Modules

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, a Denial-of-Service DoS vulnerability exists in SuiteCRM modules. Versions 7.15.1 and 8.9.3 patch the issue...

EUVD-2025-208869

Improper Authentication vulnerability in Secomea GateManager webserver modules allows Authentication Bypass.This issue affects GateManager: 11.4;0...

CVE-2025-14716

Improper Authentication vulnerability in Secomea GateManager webserver modules allows Authentication Bypass.This issue affects GateManager: 11.4;0...

CVE-2025-14716

Improper Authentication vulnerability in Secomea GateManager webserver modules allows Authentication Bypass.This issue affects GateManager: 11.4;0...

CVE-2025-14716 Unauthorized access to information

Improper Authentication vulnerability in Secomea GateManager webserver modules allows Authentication Bypass.This issue affects GateManager: 11.4;0...

CVE-2025-14716 Unauthorized access to information

Improper Authentication vulnerability in Secomea GateManager webserver modules allows Authentication Bypass.This issue affects GateManager: 11.4;0...

CVE-2025-14716

The CVE-2025-14716 entry concerns Secomea GateManager (webserver modules) with an improper authentication vulnerability that enables an authentication bypass. Affected product/version: GateManager 11.4;0. Root cause: weak/authentication bypass in the webserver modules. Impact is described as unau...

PT-2026-26282

CVE-2025-14716 Improper Authentication vulnerability in Secomea GateManager webserver modules allows Authentication Bypass.This issue affects GateManager: 11.4;0. https://t.co/qXQpmgC8XW...

Oracle Linux 7 : python-pyasn1 (ELSA-2026-4148)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-4148 advisory. 0.1.9-7.0.1 - Fixes CVE-2026-23490 fixes potential memory exhaustion Orabug: 39060516 Tenable has extracted the preceding description block directly from the...

ca.uhn.hapi.fhir:hapi-fhir-base-test-jaxrsserver-kotlin (>=5.6.5 <=6.8.0), ca.uhn.hapi.fhir:hapi-fhir-cli-api (>=4.0.0 <=8.8.1) +259 more potentially affected by CVE-2026-33180 via ca.uhn.hapi.fhir:org.hl7.fhir.dstu2 (>=0.0.1 <=6.8.2)

ca.uhn.hapi.fhir:org.hl7.fhir.dstu2 MAVEN version =0.0.1, =5.6.5, =4.0.0, =5.6.5, =4.1.0, =4.0.3, =4.1.0, =4.0.0, =4.0.0, =5.0.0, =4.0.0, =5.3.0, =6.2.0, =5.1.0, =6.8.0, =6.4.0, =8.8.1 and more Source cves: CVE-2026-33180 Source advisory: OSV:GHSA-P7M9-V2CM-2H7M...

OPENSUSE-SU-2026:20393-1 Security update for python-simpleeval

This update for python-simpleeval fixes the following issues: Changes in python-simpleeval: - CVE-2026-32640: Objects including modules can leak dangerous modules through to direct access inside the sandbox bsc1259685...

python27:2.7 security update

An update is available for python-mock, module.python-sqlalchemy, python-backports-sslmatchhostname, python-attrs, python-chardet, python2-rpm-macros, module.numpy, module.python-mock, python-pymongo, python-markupsafe, python2-six, module.python-funcsigs, module.python-pygments,...

com.c0x12c:module-ai-image (>=0.12.0 <=0.13.4), com.c0x12c:module-ai-module-impl (>=0.5.0 <=0.13.4) +361 more potentially affected by CVE-2026-33013 via io.micronaut:micronaut-json-core (>=4.0.0-M1 <=4.10.15)

io.micronaut:micronaut-json-core MAVEN version =4.0.0-M1, =0.12.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.10.0, =0.8.0, =0.5.0, =0.2.15, =1.15.0.516, =0.0.41, =3.2.0, =3.5.0 and more Source cves: CVE-2026-33013 Source advisory: OSV:GHSA-43W5-MMXV-CPVH...

EUVD-2025-208781

NULL Pointer Dereference vulnerability in Softing Industrial Automation GmbH smartLink SW-HT Webserver modules allows HTTP DoS.This issue affects smartLink SW-HT: 1.43...

CVE-2025-13406

NULL Pointer Dereference vulnerability in Softing Industrial Automation GmbH smartLink SW-HT Webserver modules allows HTTP DoS.This issue affects smartLink SW-HT: 1.43...

CVE-2025-13406

Softing Industrial Automation GmbH smartLink SW-HT (Webserver modules) is affected by a NULL Pointer Dereference in the webserver handling HTTP requests, causing HTTP DoS for smartLink SW-HT 1.43. Root cause: null pointer dereference in the webserver module. Impact: denial of service affecting av...

Huawei EMUI and Huawei HarmonyOS IMS Module Out-of-Bounds Write Vulnerability

Huawei EMUI is a mobile operating system developed based on Android.Huawei HarmonyOS is an operating system. Provides a full-scene distributed operating system based on a microkernel. An out-of-bounds write vulnerability exists in the Huawei EMUI and Huawei HarmonyOS IMS modules, which can be...

Security Bulletin: Multiple vulnerabilities in IBM Planning Analytics

Summary Multiple vulnerabilities were addressed in IBM Planning Analytics Local. Vulnerability Details CVEID:CVE-2025-15284 DESCRIPTION: Improper Input Validation vulnerability in qs parse modules allows HTTP DoS.This issue affects qs: 6.14.1. Summary The arrayLimit option in qs did not enforce...

SUSE CVE-2026-32640

SimpleEval is a library for adding evaluatable expressions into python projects. Prior to 1.0.5, objects including modules can leak dangerous modules through to direct access inside the sandbox. If the objects you've passed in as names to SimpleEval have modules or other disallowed / dangerous...