EUVD-2026-10757

Server-Side Request Forgery SSRF vulnerability in pdfmake versions 0.3.0-beta.2 through 0.3.5 allows a remote attacker to obtain sensitive information via the src/URLResolver.js component. The fix was released in version 0.3.6 which introduces the setUrlAccessPolicy method allowing server operato...

CVE-2026-26801

Server-Side Request Forgery SSRF vulnerability in pdfmake versions 0.3.0-beta.2 through 0.3.5 allows a remote attacker to obtain sensitive information via the src/URLResolver.js component. The fix was released in version 0.3.6 which introduces the setUrlAccessPolicy method allowing server operato...

CVE-2026-26801

Server-Side Request Forgery SSRF vulnerability in pdfmake versions 0.3.0-beta.2 through 0.3.5 allows a remote attacker to obtain sensitive information via the src/URLResolver.js component. The fix was released in version 0.3.6 which introduces the setUrlAccessPolicy method allowing server operato...

CBL Mariner 2.0 Security Update: pytorch (CVE-2025-3730)

The version of pytorch installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-3730 advisory. - A vulnerability, which was classified as problematic, was found in PyTorch 2.6.0. Affected is the function...

PYSEC-2025-191

A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0+cu124. Affected by this issue is the function torch.mkldnnmaxpool2d. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed to the public and may be...

“The Access Policy has externally been modified and cannot be changed by Studio” warning message

After setting access policy rule, “Access Policy” option in “Edit Delivery Group” dialog cannot display. ------------------------ Add-PSSnapin -Name Citrix. Set-BrokerAccessPolicyRule 'AG' -IncludedClientIPFilterEnabled $True Set-BrokerAccessPolicyRule 'AG' -IncludedClientIPs xxx.xxx.xxx.xxx...