CVE-2026-48207 Apache Fory: PyFory ReduceSerializer Incomplete Policy Enforcement

Deserialization of untrusted data in Apache Fory PyFory. PyFory's ReduceSerializer could bypass documented DeserializationPolicy validation hooks during reduce-state restoration and global-name resolution. An application is vulnerable if it deserializes attacker-controlled data using PyFory...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986397)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986397 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/radeon: fix a possible null pointer dereference In radeonfpnativemode, the return value of...

Vulnerability of the radeon_fp_native_mode() function in the drivers/gpu/drm/radeon/radeon_connectors.c file – This driver provides support for Direct Rendering Infrastructure (DRI) in Linux graphics cards from the Radion series. This vulnerability allows attackers to cause system failures.

Vulnerability of the radeonfpnativemode function in the drivers/gpu/drm/radeon/radeonconnectors.c file – The driver that supports Direct Rendering Infrastructure DRI for Linux graphics cards related to the Radion GPU is vulnerable due to a NULL pointer dereferencing issue. Exploiting this...

Joomla Component com_mls_teams Persistent XSS Vulnerability

Exploit for php platform in category web applications =========================================================== Joomla Component commlsteams Persistent XSS Vulnerability ===========================================================...

Cisco IOS on Catalyst 6500 and Cisco 7600 Access Control List Bypass Vulnerability

Cisco IOS running on Catalyst 6500 and Cisco 7600 contains a vulnerability that could allow an unauthenticated, remote attacker to bypass configured ACLs. The vulnerability exists because the affected devices accept traffic to IP addresses that are reserved for use by the Ethernet Out-of-Band...