Leaky JWTs in OpenMetadata exposing highly-privileged bot users

Summary Calls issued by the UI against /api/v1/ingestionPipelines leak JWTs used by ingestion-bot for certain services Glue / Redshift / Postgres Details Any read-only user can gain access to a highly privileged account, typically which has the Ingestion Bot Role. This enables destructive changes...

RPP: A Certified Poisoned-Sample Detection Framework for Backdoor Attacks under Dataset Imbalance

Deep neural networks are highly susceptible to backdoor attacks, yet most defense methods to date rely on balanced data, overlooking the pervasive class imbalance in real-world scenarios that can amplify backdoor threats. This paper presents the first in-depth investigation of how the dataset...

Oracle APEX Sample Applications (Brookstrut) (CVE-2026-21931)

The remote host is affected by a vulnerability in the Oracle APEX Sample Applications product of Oracle APEX component: Brookstrut Sample App as referenced in the January 2026 Oracle Critical Patch Update CPU advisory. - Vulnerability in the Oracle APEX Sample Applications product of Oracle APEX...

Azure Linux 3.0 Security Update: haproxy (CVE-2025-32464)

The version of haproxy installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32464 advisory. - HAProxy 2.2 through 3.1.6, in certain uncommon configurations, has a sampleconvregsub heap-based buffer...

CVE-2026-21931

Vulnerability in the Oracle APEX Sample Applications product of Oracle APEX component: Brookstrut Sample App. Supported versions that are affected are 23.2.0, 23.2.1, 24.1.0, 24.2.0 and 24.2.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

EUVD-2026-3578

Vulnerability in the Oracle APEX Sample Applications product of Oracle APEX component: Brookstrut Sample App. Supported versions that are affected are 23.2.0, 23.2.1, 24.1.0, 24.2.0 and 24.2.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

CVE-2026-21931

Vulnerability in the Oracle APEX Sample Applications product of Oracle APEX component: Brookstrut Sample App. Supported versions that are affected are 23.2.0, 23.2.1, 24.1.0, 24.2.0 and 24.2.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

CVE-2026-21931

Vulnerability in the Oracle APEX Sample Applications product of Oracle APEX component: Brookstrut Sample App. Supported versions that are affected are 23.2.0, 23.2.1, 24.1.0, 24.2.0 and 24.2.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

CVE-2026-21931

Vulnerability in the Oracle APEX Sample Applications product of Oracle APEX component: Brookstrut Sample App. Supported versions that are affected are 23.2.0, 23.2.1, 24.1.0, 24.2.0 and 24.2.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

Oracle APEX security vulnerabilities

Oracle APEX is a low-code development platform provided by Oracle, a company based in the United States. There are security vulnerabilities in the Oracle APEX Sample Applications versions 23.2.0, 23.2.1, 24.1.0, 24.2.0, and 24.2.1. These vulnerabilities allow attackers with low privileges to acce...

PT-2026-3681

Name of the Vulnerable Software and Affected Versions Oracle APEX Sample Applications versions 23.2.0 through 23.2.1 Oracle APEX Sample Applications versions 24.1.0 through 24.2.1 Description A flaw exists within the Oracle APEX Sample Applications product, specifically the Brookstrut Sample App...

GPAC dump_ttxt_sample function stack buffer overflow vulnerability

GPAC is an open source multimedia framework. GPAC has a stack buffer overflow vulnerability , the vulnerability stems from the dumpttxtsample function fails to correctly validate the length of the input data size , an attacker can use this vulnerability to cause a denial of service...

CVE-2025-70307

A stack overflow in the dumpttxtsample function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted packet...

CVE-2025-70307

A stack overflow in the dumpttxtsample function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted packet...

CVE-2025-56226

A flaw was found in the libsndfile library. This issue occurs when encoding MP3 files. During initialization, when an unsupported sample rate is detected, encoding resources are not released within the error-handling path due to an incomplete initialization, impacting system performance and...

CVE-2025-70307

GPAC (open source multimedia framework) has a stack overflow in the dump_ttxt_sample function affecting GPAC v2.4.0, leading to a Denial of Service via a crafted packet. The vulnerability is documented across multiple sources (CNVD, OSV, Debian tracker, NVD, etc.). The root cause is improper vali...

EUVD-2026-2724

A stack overflow in the dumpttxtsample function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted packet...

CVE-2022-27145

GPAC mp4box 1.1.0-DEV-rev1727-g8be34973d-master has a stack-overflow vulnerability in function gfisomgetsampleformovietime of mp4box...

CVE-1999-0449

The ExAir sample site in IIS 4 allows remote attackers to cause a denial of service CPU consumption via a direct request to the 1 advsearch.asp, 2 query.asp, or 3 search.asp scripts...

SUSE CVE-2023-54173

In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpfeventoutput We received report 1 of kernel crash, which is caused by using nesting protection without disabled preemption. The bpfeventoutput can be called by programs executed by bpfprogrunarraycg...