ROOT-OS-UBUNTU-2204-CVE-2026-23085 CVE-2026-23085 in rootio-linux - Patched by Root

Root has patched CVE-2026-23085 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

ROOT-OS-UBUNTU-2404-CVE-2025-71192 CVE-2025-71192 in rootio-linux - Patched by Root

Root has patched CVE-2025-71192 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

ROOT-OS-DEBIAN-13-CVE-2026-23069 CVE-2026-23069 in rootio-linux - Patched by Root

Root has patched CVE-2026-23069 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...

CVE-2026-11029

Insufficient validation of untrusted input in Drag and Drop in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

RockyLinux 9 : nginx:1.24 (RLSA-2026:19371)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:19371 advisory. nginx: NGINX: Arbitrary Code Execution Vulnerability CVE-2026-42945 Tenable has extracted the preceding description block directly from the RockyLinux security...

Advisory ROSA-SA-2026-3306

Component: PHP 7.4.33 OS: ROSA-CHROME Affected versions: = php-7.4.33-13 Affected versions: php-7.4.33-13 CVE-ID: CVE-2024-5458 BDU-ID: 2024-04846 CVE-Crit: Medium CVE-DESCRIPTION: The vulnerability in the filtervar function of the PHP interpreter involves insufficient validation of data...

EUVD-2026-33550

An incorrect handling of permissions in OTRS External Interface and the ConfigItem List module allows an authenticated customer to query the system for CI information. Please note that CMDB has to be anabled and CustomerGroupSupport has to be used to be affected. This issue affects OTRS: 7.0.X...

CVE-2026-8856

creationtimestamp| type| source ---|---|--- 2026-05-26 19:00:50+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmroikayjn2t...

CVE-2022-31231

creationtimestamp| type| source ---|---|--- 2026-05-22 17:04:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmhg4jwbkx2t...

CVE-2026-46378 vulnerabilities

Vulnerabilities for packages: vale...

CVE-2026-6638 affecting package postgresql for versions less than 16.14-1

CVE-2026-6638 affecting package postgresql for versions less than 16.14-1. An upgraded version of the package is available that resolves this issue...

CVE-2026-6271

creationtimestamp| type| source ---|---|--- 2026-05-14 06:32:06+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mls72nq6sn2q 2026-05-14 09:06:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlshon6mjj2k 2026-05-14 13:30:30+00:00| seen|...

EUVD-2026-29491

SQL injection in the web console of Ivanti Endpoint Manager before version 2024 SU6 allows a remote authenticated attacker to achieve remote code execution...

CVE-2026-8274

creationtimestamp| type| source ---|---|--- 2026-05-11 06:00:30+00:00| seen| https://infosec.exchange/users/offseq/statuses/116554414807477280 2026-05-11 06:00:32+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mlklvhdkzv23 2026-05-11 07:01:13+00:00| seen|...

CVE-2022-50955

creationtimestamp| type| source ---|---|--- 2026-05-10 15:11:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlj2ackmlb2r...

CVE-2022-50954

creationtimestamp| type| source ---|---|--- 2026-05-10 14:48:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mliywj5zzg2i...

Security Bulletin: Multiple security vulnerabilities has been identified in IBM WebSphere Application Server shipped with Tivoli Netcool/OMNIbus WebGUI - April 2026 Java CPU

Summary Websphere Application Server WAS is shipped as a component of Tivoli Netcool/OMNIbus WebGUI. Information about security vulnerabilities affecting WAS has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section...

CVE-2026-41904

creationtimestamp| type| source ---|---|--- 2026-05-07 19:21:18+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mlbwrjfhau2r...

UBUNTU-CVE-2026-43243

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add signal type check for dcn401 getphyd32clksrc Trying to access link enc on a dpia link will cause a crash otherwise...

CVE-2025-61311

creationtimestamp| type| source ---|---|--- 2026-05-05 15:00:32+00:00| seen| https://gist.github.com/ZeroBreach-GmbH/424005738e819e14c724feb9c7c5f40b...