351 matches found
CVE-2026-15490
creationtimestamp| type| source ---|---|--- 2026-07-12 10:51:50+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqgz3ga6yk2e...
CVE-2026-15130
creationtimestamp| type| source ---|---|--- 2026-07-09 01:14:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq6hh52sej2x 2026-07-09 04:30:27+00:00| seen| https://infosec.exchange/users/offseq/statuses/116888137010586881 2026-07-09 04:30:29+00:00| seen|...
CVE-2026-54773
creationtimestamp| type| source ---|---|--- 2026-07-09 01:13:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq6he5cskz2g...
CVE-2026-56297
creationtimestamp| type| source ---|---|--- 2026-07-08 16:00:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq5iieesd42z 2026-07-10 19:16:10+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqcudgdoch2f...
golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the...
kernel: Linux kernel: netfilter: ebtables SNAT target writes to shared memory pages during ARP hardware address rewrite
A flaw was found in the Linux kernel's netfilter bridge ebtables SNAT Source Network Address Translation module. This vulnerability allows a local attacker on a system configured with specific bridge netfilter rules to improperly modify underlying memory pages during an ARP Address Resolution...
CVE-2026-36162
creationtimestamp| type| source ---|---|--- 2026-07-08 00:25:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq3u7edrhe2g...
CVE-2026-48957
creationtimestamp| type| source ---|---|--- 2026-07-07 20:54:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq3ifrrdm42x 2026-07-08 14:15:08+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mq5claiknt2n...
CVE-2026-53913
creationtimestamp| type| source ---|---|--- 2026-07-05 20:59:16+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwhr67bwy2o 2026-07-06 12:00:29+00:00| seen| https://infosec.exchange/users/offseq/statuses/116872919680337020 2026-07-06 12:00:30+00:00| seen|...
CVE-2026-46464
creationtimestamp| type| source ---|---|--- 2026-07-03 17:51:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpr4dxghxb2z 2026-07-04 06:38:09+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpsh6gpyes2n...
UBUNTU-CVE-2026-54887
Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtlsserverconnection:initialhello/3 initializes previouscookiesecret to the empty...
CVE-2026-54887 DTLS server cookie bypass during startup window due to empty initial cookie secret
Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtlsserverconnection:initialhello/3 initializes previouscookiesecret to the empty...
CVE-2026-54887
Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtlsserverconnection:initialhello/3 initializes previouscookiesecret to the empty...
CVE-2026-54887 DTLS server cookie bypass during startup window due to empty initial cookie secret
Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtlsserverconnection:initialhello/3 initializes previouscookiesecret to the empty...
CVE-2026-54887
CVE-2026-54887 concerns Erlang/OTP's DTLS server in ssl, where during startup the cookie secret is initialized to an empty binary instead of a random value. This makes DTLS cookie computation deterministic for the first 0–15 seconds, allowing an observer of plaintext ClientHello to forge a valid ...
CVE-2026-54887 DTLS server cookie bypass during startup window due to empty initial cookie secret
Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtlsserverconnection:initialhello/3 initializes previouscookiesecret to the empty...
EEF-CVE-2026-54887 DTLS server cookie bypass during startup window due to empty initial cookie secret
Summary Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtls\server\connection:initial\hello/3 initializes previous\cookie\secret...
CVE-2026-12891
creationtimestamp| type| source ---|---|--- 2026-07-02 05:58:10+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpndz4av2p2d...
CVE-2026-57276
creationtimestamp| type| source ---|---|--- 2026-07-02 04:27:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpn6xrhrlv2z 2026-07-02 18:42:25+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpoopognri2b 2026-07-03 07:51:31+00:00| seen|...
CVE-2026-14048
creationtimestamp| type| source ---|---|--- 2026-07-01 21:25:25+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpmheaim4e22 2026-07-02 07:50:35+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260702 2026-07-06 07:23:31+00:00| seen|...