44458 matches found
CVE-2026-12734
creationtimestamp| type| source ---|---|--- 2026-07-03 06:37:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mppwolplpz2h 2026-07-03 07:16:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mppytfkyxp2z 2026-07-03 19:25:49+00:00| seen|...
CVE-2026-12729
creationtimestamp| type| source ---|---|--- 2026-07-03 06:16:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mppvi4utaj27 2026-07-03 06:22:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mppvtqe2el2h 2026-07-03 19:25:00+00:00| seen|...
EUVD-2026-41501
Successfully using libcurl to do a transfer to a specific HTTP origin hostA with Digest authentication and then changing the origin to a different one hostB for a second transfer, reusing the same handle, makes libcurl wrongly pass on the Authorization: header field meant for hostA, to hostB...
CVE-2026-10536
libcurl (HTTP/2) contains a use-after-free vulnerability. If an application builds an HTTP/2 stream-dependency tree using CURLOPT_STREAM_DEPENDS/…_E, then calls curl_easy_reset() and later curl_easy_cleanup(), libcurl may access/modify an internal structure that was freed during reset. This is a ...
EUVD-2026-41497
A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tree via CURLOPTSTREAMDEPENDS or CURLOPTSTREAMDEPENDSE, subsequently invokes curleasyreset, and finally terminates the handle with curleasycleanup. During this final cleanup phase, libcurl...
CVE-2026-53357
creationtimestamp| type| source ---|---|--- 2026-07-03 04:37:16+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116854189956800499 2026-07-03 07:14:24+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppyqck3e627 2026-07-04 03:44:19+00:00| seen|...
ROOT-OS-DEBIAN-13-CVE-2026-23069 CVE-2026-23069 in rootio-linux - Patched by Root
Root has patched CVE-2026-23069 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2022-1247 CVE-2022-1247 in rootio-linux - Patched by Root
Root has patched CVE-2022-1247 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-53106 CVE-2026-53106 in rootio-linux - Patched by Root
Root has patched CVE-2026-53106 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
CVE-2026-13368
creationtimestamp| type| source ---|---|--- 2026-07-03 01:30:27+00:00| seen| https://infosec.exchange/users/offseq/statuses/116853455394559161 2026-07-03 01:30:30+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mppfjee3ij2p 2026-07-03 02:07:01+00:00| seen|...
EUVD-2026-41440
Libreswan, via the function RSAauthenticatehashsignaturepkcs115rsa, did not correctly verify the DER encoding of the ASN.1 digest when the IKEv2 AUTH payload was encoded using RSASSA-PKCS1-v15 RFC 8017. A remote attacker can use a variation on the Bleichenbacher attack to forge the AUTH payload...
EUVD-2026-41439
An invalidly formatted IKEv2 fragment causes the Libreswan pluto daemon to crash and restart. Continued exploitation would cause a denial of service. The function reassemblev2incomingfragments would ignore unknown outer payloads but still store these in a fixed size array msgdigest.digestPAYLIMIT...
CVE-2026-13383
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS ikestubd process could allow an authenticated privileged user to execute arbitrary code via a specially crafted requests to the Management Web UI.This vulnerability affects Fireware OS 12.1 up to and including 12.12 and 2025.1 up to a...
CVE-2026-8441
creationtimestamp| type| source ---|---|--- 2026-07-02 22:23:03+00:00| seen| https://bsky.app/profile/qiancx.bsky.social/post/3mpp327ptzn2o 2026-07-02 22:23:04+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpp32aiaer2u 2026-07-03 03:35:32+00:00| seen|...
CVE-2026-54265
A flaw was found in Angular's @angular/compiler package. When a native DOM property requiring sanitization is bound using two-way binding syntax, the template compiler fails to apply the appropriate sanitizer. An attacker who controls the bound value can bypass Angular's built-in sanitization,...
CVE-2026-12413
An invalidly formatted IKEv2 fragment causes the Libreswan pluto daemon to crash and restart. Continued exploitation would cause a denial of service. The function reassemblev2incomingfragments would ignore unknown outer payloads but still store these in a fixed size array msgdigest.digestPAYLIMIT...
EUVD-2026-33278
Mautic has an Authorization Bypass in API v2 Endpoints...
CVE-2024-58352
creationtimestamp| type| source ---|---|--- 2026-07-02 19:18:35+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mpoqqdpjdh2i 2026-07-02 19:35:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mporpg2ujb2w 2026-07-03 08:23:10+00:00| seen|...
Google Disrupts NetNut Residential Proxy Network Spanning 2 Million Home Devices
Google has significantly degraded NetNut , one of the biggest networks that turns home devices into rented relays for other people's traffic. Working with the FBI, Lumen, and others, Google's Threat Intelligence Group GTIG said this week it had reduced the network's pool of usable devices by...
CVE-2026-56004
creationtimestamp| type| source ---|---|--- 2026-07-02 17:02:25+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpoj4u4vxb2v 2026-07-02 19:11:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpoqdaf76u2v 2026-07-03 07:19:31+00:00| seen|...