CVE-2026-23285

A flaw was found in the Linux kernel's Distributed Replicated Block Device DRBD module. A local read error within the drbdrequestendio function can lead to a null-pointer dereference. This occurs when a NULL peer device is incorrectly passed to the drbdsetoutofsync function, causing the system to...

Linux Distros Unpatched Vulnerability : CVE-2026-23356

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drbd: fix LOGIC BUG in drbdalbeginiononblock Even though we check that we should be able to do lcgetcumulative while holding the device-allock spinlock, it may...

389-ds:1.4 security update

1.4.3.39-23 - Resolves: RHEL-137074 - CVE-2025-14905 389-ds:1.4/389-ds-base: 389-ds-base: Remote Code Execution and Denial of Service via heap buffer overflow rhel-8.10.z - Resolves: RHEL-152098 - Scalability issue of replication online initialization with large database rhel-8.10.z 1.4.3.39-22 -...

PT-2026-26287

We're not migrating to Veeam B&R 13.0.1 until the end of the year, as Veeam B&R is supported until 01 Feb 2027, and we're not find of adopting applications before a couple of version releases have been made. We noticed Action1 appears to be incorrectly assigning CVE's affecting Veeam B&R 13.0.1.x...

Path Traversal

github.com/weaviate/weaviate is vulnerable to Path Traversal. The vulnerability is due to insufficient validation of the fileName field in the transfer logic, which allows an attacker who can invoke the GetFile method while a shard is in the “Pause file activity” state and the...

Path Traversal

github.com/weaviate/weaviate is vulnerable to path traversal. The vulnerability is due to insufficient validation of the fileName field in the transfer logic, which allows an attacker who can call the GetFile method while a shard is in the “Pause file activity” state and the FileReplicationServic...

ClawWorm: Self-Propagating Attacks across LLM Agent Ecosystems

Autonomous LLM-based agents increasingly operate as long-running processes forming densely interconnected multi-agent ecosystems, whose security properties remain largely unexplored. In particular, OpenClaw, an open-source platform with over 40,000 active instances, has stood out recently with it...

EUVD-2026-11595

A vulnerability allowing local privilege escalation on Windows-based Veeam Backup & Replication servers...

CVE-2026-21672

A vulnerability allowing local privilege escalation on Windows-based Veeam Backup & Replication servers...

CVE-2026-21672

A vulnerability allowing local privilege escalation on Windows-based Veeam Backup & Replication servers...

CVE-2026-21672

CVE-2026-21672 is a local privilege escalation vulnerability affecting Windows-based Veeam Backup & Replication servers. Public docs confirm the flaw exists in 12.x builds prior to 12.3.2.4465 and in 13.x prior to 13.0.1.2067, with fixes shipped in those versions. Connected sources also link this...

CVE-2026-21672

A vulnerability allowing local privilege escalation on Windows-based Veeam Backup & Replication servers...

EUVD-2026-11583

A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution RCE in high availability HA deployments of Veeam Backup & Replication...

CVE-2026-21671

A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution RCE in high availability HA deployments of Veeam Backup & Replication...

CVE-2026-21671

A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution RCE in high availability HA deployments of Veeam Backup & Replication...

CVE-2026-21671

A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution RCE in high availability HA deployments of Veeam Backup & Replication...

CVE-2026-21671

A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote code execution RCE in high availability HA deployments of Veeam Backup & Replication...

Vulnerabilities fixed in Veeam Backup & Replication

Veeam has fixed vulnerabilities in Veeam Backup & Replication. The vulnerabilities allow an authenticated domain user to remotely execute code on the backup server, which can lead to unauthorized control of backup operations. This issue is present in the backup server environment and can be...

PT-2026-25005

CVE: CVE-2026-21672 Vendor: Veeam Product: Backup and Recovery CVSS: 8.8 Credits: n/a Description: A vulnerability allowing local privilege escalation on Windows-based Veeam Backup & Replication servers. References: • https://t.co/Dz6rYhA5jr • https://t.co/jA4BK17Xlf • https://t.co/IOPABZq4vT dbu...

Veeam Backup And Replication 安全漏洞

Veeam Backup and Replication is a backup and replication software developed by the American company Veeam. There is a security vulnerability in Veeam Backup and Replication, which stems from allowing backup administrators to execute remote code as the postgres user...