CVE-2026-50261

The CVE-2026-50261 entry describes a use-after-free in the X.Org X server and Xwayland related to SyncChangeCounter(). A client that creates multiple SyncCounters can trigger a use-after-free when those counters are destroyed via a second client connection during a change, potentially crashing th...

CVE-2026-50260

The CVE-2026-50260 entry concerns the X.Org X server and Xwayland, where a use-after-free in FreeCounter() can be triggered by a client that sets up multiple SyncCounters and destroys them via a second client connection. The consequence is potential server crash and, if the X server runs as root,...

CVE-2026-50259

The CVE-2026-50259 entry describes a stack-based buffer overflow in X.Org X server and Xwayland. The vulnerability centers on XkbSetMapChecks(), which declares a fixed-size buffer mapWidths[256] on the stack and is indexed by key type. CheckKeyTypes() writes to this buffer at a client-controlled ...

CVE-2026-50258

The CVE affects the X.Org X server and Xwayland. A stack-based buffer overflow arises from unchecked key-type shift levels in XkbKeyTypes: multiple stack buffers sized XkbMaxShiftLevel * XkbNumKbdGroups are not clamped by CheckKeyTypes(), allowing a client to set excessive shift levels and trigge...

CVE-2026-50256

The CVE affects the X.Org X server and Xwayland. A mismatch between the server and libXfont2 regarding maximum font name length (server-allocated 256-byte stack buffer vs libXfont2 name length up to 1024 bytes) allows a font alias name of 257–1023 bytes to overflow the stack during alias resoluti...

CVE-2026-50257

CVE-2026-50257 affects the X.Org X server and Xwayland, with a use-after-free in miSyncDestroyFence(). A client that sets multiple fence triggers can trigger a use-after-free function pointer call when a second X connection destroys the fence. This could crash the X server or allow privilege esca...

CVE-2026-11347

The CVE-2026-11347 entry describes vulnerabilities in the linqi application: hardcoded cryptographic keys and a weak IV-generation mechanism for AES/CBC using a limited ASCII charset. This combination enables known-plaintext attacks and allows an attacker with local access to decrypt obfuscated s...

CVE-2026-21038

CVE-2026-21038: Affects Samsung Android USB Driver for Windows, prior to 1.9.5.0. The vulnerability is due to improper input validation, allowing a local attacker to access out-of-bounds memory. Impact includes potential confidentiality/integrity issues with low attack surface; availability may b...

CVE-2026-21037

Technical details for CVE-2026-21037 are not publicly available in the provided documents. Monitor for updates.

CVE-2026-21036

Samsung Internet before version 30.0.0.39 is affected by an improper authorization vulnerability that could allow local attackers to access sensitive information. The issue affects Samsung Internet (

CVE-2026-21035

This CVE concerns Samsung Plus TV with an affected version prior to 1.0.28.6. The root cause is improper input validation in the affected component, enabling remote access to sensitive information. The impact is confidentiality leakage (LOW in initial impact, escalating to HIGH for subsequent con...

CVE-2026-21034

The CVE-2026-21034 issue affects Samsung Auto: improper export of Android components in Samsung Auto prior to version 3.1.2.61 on Android 15 and 3.2.0.38 on Android 16 allows a local attacker to change audio configurations. The connected sources confirm the affected product (Samsung Auto) and the...

CVE-2026-21033

The CVE-2026-21033 entry concerns Samsung Assistant, specifically the ExpressHomeWidgetReceiver component. The flaw is described as an improper export of Android application components that, in versions prior to 9.3.14, can allow a local attacker to execute arbitrary scripts. The available docume...

CVE-2026-21032

Samsung Assistant’s SmartHomeWidgetReceiver component is vulnerable due to improper export of Android components prior to version 9.3.14. The issue allows a local attacker to execute arbitrary scripts. Affected software: Samsung Assistant, SmartHomeWidgetReceiver. Underlying cause: improper compo...

CVE-2026-21031

Technical details about CVE-2026-21031 are not publicly available in the provided documents. Monitor for updates from vendor advisories and NVD.

CVE-2026-21030

CVE-2026-21030 describes an improper access control issue in MediaTek Audio HAL prior to the SMR Jun-2026 Release 1, enabling local attackers to trigger privileged functions. The affected component is MediaTek Audio HAL; root cause is improper access control, with impact described as privileged a...

CVE-2026-21029

Technical details about CVE-2026-21029 are not publicly available in the provided documents. Monitor for updates from vendors and security advisories to obtain affected products, impact, and remediation information.

CVE-2026-21028

Technical details about CVE-2026-21028 are not publicly available in the provided documents. Monitor for updates from Samsung and security advisories.

CVE-2026-21027

Technical details about CVE-2026-21027, including affected products, vulnerable components, root cause, and fixes, are not provided in the supplied documents. Monitor Samsung advisories and NVD for updates.

CVE-2026-21026

The CVE-2026-21026 entry relates to the Android app SpriteWallpaper, where an improper export of Android components enables local attackers to access sensitive information. AFFECTED: SpriteWallpaper (Android). ROOT CAUSE: components exported improperly, allowing local access to confidential data....

CVE-2026-21025

Technical details (affected Telephony component, vulnerable version range, root cause, exploit scenarios, and mitigations) are not publicly available in the provided documents. Monitor for updates from official advisories.

CVE-2026-21017

Technical details (affected product/component, root cause, impact, or fix) are not publicly available in the provided documents. Monitor for updates from official advisories.

CVE-2026-50265

CVE-2026-50265 describes a local privilege escalation in libinput. A local attacker with access to /dev/uinput can inject arbitrary udev properties via the libinput-device-group helper, which can lead to root code execution (e.g., through REMOVE_CMD properties executed when a device is removed). ...

CVE-2026-8914

CVE-2026-8914 affects Teltonika Networks RUTOS devices (versions 7.22–7.23.2) and TSWOS devices (1.09–1.09.1). The root cause is unsafe calls to an eval function in rpc-profile, allowing a lower-privileged user to perform command injection as root. CVSS details in the provided data indicate local...

CVE-2026-6274

CVE-2026-6274 concerns an authentication weakness in DTS Electronics Industry and Trade Ltd. Co. Redline WR3200, where improper/missing authentication for a critical function allows accessing functionality not properly constrained by ACLs. Affected firmware ranges are 7.1.3 through before 7.1.8. ...

CVE-2026-49777

CVE-2026-49777 (WordPress Product Slider Pro for WooCommerce

CVE-2026-11332

CVE-2026-11332 affects ansible-core via the ansible-galaxy role install command. The vulnerability arises when processing a role’s meta/requirements.yml, where improper neutralization of argument delimiters allows a malicious role author to inject arbitrary git configuration flags through the src...

CVE-2026-9088

In Keycloak, a flaw in org.keycloak.services allows an administrator with delegated access to read group memberships and users to bypass user profile permissions by querying the group members endpoint. This enables viewing user attributes that are explicitly denied, causing information disclosure...

CVE-2026-48907

CVE-2026-48907 — Joomla JCE extension unauthenticated RCE is a vulnerability in the Joomla Content Editor (JCE) that allows unauthenticated users to create editor profiles and upload PHP payloads, enabling remote code execution. Technical details across documents show an unrestricted file upload ...

CVE-2026-21825

HCL Digital Experience Compose is affected by a reflected cross-site scripting (XSS) vulnerability in the search center. An attacker could execute arbitrary JavaScript in the victim’s browser. The CVE-2026-21825 entry lists a CVSS v3.1 base score of 6.1 (MEDIUM) with network access, low privilege...

CVE-2026-21826

CVE-2026-21826 affects HCL Digital Experience and HCL Digital Experience Compose. The root cause is likely improper handling of the Host header, enabling an attacker to manipulate the Host header and cause the application to behave in unexpected ways. The CVSS 3.1 vector indicates: Network attack...

CVE-2026-21837

HCL Digital Experience is affected by an OS command injection vulnerability in the Digital Asset Management API. An attacker may execute arbitrary operating system commands, typically inheriting the privileges of the vulnerable application, which could lead to a complete system takeover and data ...

CVE-2026-10732

The CVE-2026-10732 entry affects the npm package decompress . It describes Arbitrary File Write via Archive Extraction (Zip Slip) when extracting a ZIP with two entries sharing a path, where the first is a symlink to an arbitrary target and the second is a regular file. The file content can be wr...

CVE-2026-50593

Graphite 1.3.15 changes and the commit.

CVE-2026-50592

The CVE CVE-2026-50592 affects Znuny LTS prior to 6.5.21 and Znuny prior to 7.3.3, with a reflected XSS in AdminCommunicationLog (the communication log administration view). The underlying issue is a reflected cross-site scripting vulnerability that could impact users when viewing the admin commu...

CVE-2026-50591

Znuny LTS is affected by CVE-2026-50591: stored XSS via user preferences in versions prior to 6.5.21 and prior to 7.3.3. The CVSS vector indicates a LOW privileges requirement with user interaction and network attack vector, leading to a Confidentiality/Integrity impact in practice, with Availabi...

CVE-2026-7763

The CVE-2026-7763 entry details a heap-based buffer overflow in the morse.ko HaLow Wi‑Fi kernel driver (Morse Micro HaLowLink 2) prior to 2.11.13. The flaw occurs in morse_page_slicing_process_tim_element() within page_slicing.c, which derives the TIM bitmap length from a received TIM Information...

CVE-2026-7762

CVE-2026-7762 affects Morse Micro HaLowLink 2 prior to 2.11.13, specifically the dot11ah.ko HaLow Wi‑Fi kernel driver. The issue is a heap‑based buffer overflow in the S1G Capabilities Information Element (IE) processing: morse_dot11ah_find_s1g_caps_for_bssid() uses the IE length field directly a...

CVE-2026-41567

CVE-2026-41567 affects Docker Engine and Moby earlier than 29.5.1 / moby/moby v2 before v2.0.0-beta.14. When uploading a compressed archive to a container via PUT /containers/{id}/archive or piping with docker cp -, the daemon resolves decompression binaries from the container filesystem rather t...

CVE-2026-11312

Bytedance InfiniStore vulnerable up to 0.2.33 via the purge_kv_map function in infinistore.h (KV Map Handler). Manipulation leads to inefficient algorithmic complexity. Attack requires local access; exploit publicly disclosed. No remediation details provided in the supplied documents.

CVE-2026-50590

Mimecast Incydr vulnerability CVE-2026-50590 affects versions before 2.6.0, enabling arbitrary file access. The provided documents do not specify the underlying root cause, affected components, or a remediation. No exploitation details are given. Action: monitor for updates and vendor advisories ...

CVE-2026-11326

OpenAI Atlas before 1.2025.288.15 exposed privileged browser APIs to web content on *.openai.com origins. A cross-site scripting vulnerability in forum.openai.com could be leveraged to access these API functions, enabling access to browser history information and the ability to open or close tabs...

CVE-2026-10878

Summary of vulnerability : CVE-2026-10878 affects D-Link DWR-M920 firmware versions 1.1.50 and 1.1.70. The issue resides in the function sub_41C8E8 of /boafrm/formSmsManage, where manipulation of the argument action_value leads to a command injection . The vulnerability enables remote exploitatio...

CVE-2020-25900

Affected software: HelloTalk (up to version 3.4.1). Vulnerability summary: The app stores full‑precision GPS coordinates even when a user intends to share only a country or city, and these coordinates are placed into a client‑side database that is stored on other users’ devices. The client databa...

CVE-2026-36785

CVE-2026-36785 affects Tenda FH451 V1.0.0.9. A stack overflow in the fromDhcpListClient function’s handling of the page parameter can cause a Denial of Service via a crafted HTTP request. Public sources in the provided documents confirm the vulnerable component/function and the DoS impact; no rem...

CVE-2026-37737

Sanic-Cors 2.2.0 and earlier versions contain an improper regular expression in the try_match() function of sanic_cors/core.py that uses re.match without end anchoring. This allows bypassing CORS origin allowlists by registering a domain that starts with a trusted origin string, leading to unauth...

CVE-2026-38579

CVE-2026-38579 affects damasac/thaipalliative_lte (up to version 3.0). The issue is multiple reflected XSS vulnerabilities in /substudy/ezform.php, where user input parameters idFormMain, id, and ptid_key are echoed into HTML attributes and JavaScript contexts without encoding. Public records sum...

CVE-2026-36500

The CVE-2026-36500 vulnerability affects the cluster-admin:backup-datastore component of Controller v12.0.5, where a crafted request can trigger a directory traversal. This is described across multiple sources (NVD/CVE listings, AttackersKB, CVE list, EUVD) as a vulnerability in that component, w...

CVE-2026-36501

CVE-2026-36501 affects Controller v12.0.5 in the Externalizable.readExternal() component. The issue allows an attacker to trigger a Denial of Service by supplying a crafted input, as described across multiple sources (Red Hat, NVD, CVE lists, and vendor/third-party references). No exploitation de...

CVE-2026-50589

In the provided documents, CVE-2026-50589 affects OpenStack Ironic 32 prior to 37.0.0. The underlying issue is that an unauthenticated malicious user can submit a crafted JSON string to certain API/JSON-RPC endpoints, leading to a service crash. The reports consistently reference the same conditi...