EUVD-2026-32928

SDMC NE6037 cable modem routers running firmware 7.1.6.0.25 and 7.1.6.1.9B9 contain a hardcoded password vulnerability in the web management interface recovery endpoints mgmt.php, npcmd.php that allows unauthenticated attackers to gain root access by submitting the hardcoded credential to the...

CVE-2026-33283

Ella Core is a 5G core designed for private networks. Versions prior to 1.6.0 panic when processing malformed UL NAS Transport NAS messages without a Request Type. An attacker able to send crafted NAS messages to Ella Core can crash the process, causing service disruption for all connected...

CVE-2026-33281 Ella Core panics on invalid PDU Session IDs in NGAP messages

Ella Core is a 5G core designed for private networks. Versions prior to 1.6.0 panic when processing NGAP messages with invalid PDU Session IDs outside of 1-15. An attacker able to send crafted NGAP messages to Ella Core can crash the process, causing service disruption for all connected...

CVE-2026-24802

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in briandilley jsonrpc4j src/main/java/com/googlecode/jsonrpc4j modules. This vulnerability is associated with program files NoCloseOutputStream.Java. This issue affects jsonrpc4j: through 1.6.0...

CVE-2023-7333

The CVE-2023-7333 issue affects bluelabsio/records-mover

CVE-2025-53457

Server-Side Request Forgery SSRF vulnerability in activewebsight SEO Backlink Monitor seo-backlink-monitor allows Server Side Request Forgery.This issue affects SEO Backlink Monitor: from n/a through = 1.8.0...

September 9, 2025—KB5065427 (OS Build 14393.8422)

September 9, 2025—KB5065427 OS Build 14393.8422 Windows Secure Boot certificate expiration Important: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. This might affect the ability of certain personal and business devices to boot securely if not updat...

redis:6 security update

6.2.18-1.0.1 - Build with 64k pages to support redis on both UEK6 and UEK7 on aarch64 6.2.18-1 - rebase to 6.2.18 for CVE-2025-21605...

WordPress plugin MC4WP: Mailchimp Top Bar 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in PHP. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. WordPress plugin MC4WP: A cross-site scripting vulnerability exists in Mailchim...

CVE-2023-23953

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to an Elevation of Privilege vulnerability...

H3C R160 安全漏洞

The H3C R160 is a wireless router from China's Xinhua San H3C. A security vulnerability exists in the H3C R160 V1004004 version that stems from a stack-based buffer overflow due to incorrect manipulation of the parameter go...

CVE-2022-41736

IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0 contains an unspecified vulnerability that could allow a local user to obtain root privileges. IBM X-Force ID: 237810...

UBUNTU-CVE-2022-43440

Uncontrolled Search Path Element in Checkmk Agent in Tribe29 Checkmk before 2.1.0p1, before 2.0.0p25 and before 1.6.0p29 on a Checkmk server allows the site user to escalate privileges via a manipulated unixcat executable...

CVE-2022-38297

UCMS v1.6.0 contains an authentication bypass vulnerability which is exploited via cookie poisoning...

NVIDIA NeMo 路径遍历漏洞

Nvidia NeMo is a toolkit for building new state-of-the-art conversational Ai models from Nvidia, USA. A security vulnerability exists in versions of NVIDIA NeMo prior to 1.6.0 that could result in the deletion of any directory when administrator privileges are available...

Z-BlogPHP 安全漏洞

Z-BlogPHP is an open source PHP-based blogging system for the Z-blog community. A security vulnerability exists in Z-BlogPHP version 1.6.0, which stems from the passwordvisitinputpassword function in zbuser/plugin/passwordvisit/include.php that uses loose comparisons for authentication, which...

Elasticsearch Directory Traversal Vulnerability

Elasticsearch is the Netherlands Elasticsearch company's set of open source distributed RESTful search engine built on Lucene , it is mainly used in cloud computing , and supports the use of JSON over HTTP for data indexing . A directory traversal vulnerability exists in Elasticsearch versions...

CVE-2009-1607

creationtimestamp| type| source ---|---|--- 2009-05-05 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8618...

2026-04 Servicing Stack Update for Windows 10 Version 1607 for x64-based Systems (KB5082089)

2026-04 Servicing Stack Update for Windows 10 Version 1607 for x64-based Systems KB5082089...