175511 matches found
PT-2026-41873
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The net: qrtr: ns component lacks bound checking on the number of servers added per node. A malicious client can exhaust memory by flooding the system with NEW SERVER messages. The issue...
PT-2026-41874
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An integer underflow exists in the mpi read raw from sgl function. This occurs when the number of leading zeros in a scatterlist exceeds the nbytes parameter, causing an underflow during...
PT-2026-41881
Name of the Vulnerable Software and Affected Versions Keycloak affected versions not specified Description A security control intended to disable the implicit flow in OpenID Connect OIDC clients can be bypassed. A low-privilege user with knowledge of user credentials and client ID can manipulate...
PT-2026-41878
Name of the Vulnerable Software and Affected Versions Keycloak affected versions not specified Description A flaw in the Security Assertion Markup Language SAML endpoint allows a remote, unauthenticated attacker to send specially crafted XML input. This improper input validation can cause high CP...
PT-2026-41906
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description A privilege escalation issue exists within the Application Update component. Recommendations Update Firefox to version 151. Update Thunderbird to version 151...
PT-2026-41925
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description A same-origin policy bypass exists in the Networking: JAR component. The same-origin policy is a critical security mechanism that restricts how a document or script...
PT-2026-41924
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description A privilege escalation issue exists within the Security component. Recommendations Update to...
PT-2026-41901
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 115.36 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description A use-after-free issue exists in the DOM: Bindings WebID...
PT-2026-41900
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 115.36 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description Incorrect boundary conditions exist in the Audio/Video:...
PT-2026-41903
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description An integer overflow exists in the Widget: Win32 component. An integer overflow occurs when an...
PT-2026-41908
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description Incorrect boundary conditions lead to an integer overflow in the Audio/Video component. An...
PT-2026-41932
Name of the Vulnerable Software and Affected Versions GlassFish affected versions not specified Description An authenticated Remote Code Execution RCE issue exists in the Administration Console. A user with access to the panel can send crafted requests to execute arbitrary operating system comman...
PT-2026-41930
Name of the Vulnerable Software and Affected Versions ModelScope version 1.25.0 Description An issue allows attackers to execute arbitrary code through a crafted module specified in the configuration file 'dey mini.yaml' under the key 'nnet''module'. Recommendations At the moment, there is no...
PT-2026-41938
Name of the Vulnerable Software and Affected Versions Funnel Builder for WooCommerce Checkout versions prior to 3.15.0.3 Description A missing authorization issue in the public checkout endpoint allows unauthenticated attackers to invoke internal methods and write arbitrary data to the plugin's...
PT-2026-41936
Name of the Vulnerable Software and Affected Versions Tyler Identity Local TID-L affected versions not specified Description The software uses documented, default administrative credentials, and users are not required to change these credentials before deployment. Recommendations At the moment,...
PT-2026-41911
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description Privilege escalation exists in the Enterprise Policies component. Recommendations Update...
PT-2026-41939
Name of the Vulnerable Software and Affected Versions NGINX JavaScript affected versions not specified Description An issue exists when the 'js fetch proxy' directive is configured with at least one client-controlled NGINX variable, such as $http , $arg , or $cookie , and a location invokes the...
PT-2026-41931
Name of the Vulnerable Software and Affected Versions gohttp version 34ea51 Description An issue allows attackers to execute a directory traversal, which is a technique used to access files and directories stored outside the intended folder, by supplying a crafted request. Recommendations At the...
PT-2026-41933
Name of the Vulnerable Software and Affected Versions Eclipse GlassFish version 8.0.0 Eclipse GlassFish versions prior to 7.1.0 Description A critical Expression Language EL injection issue exists in the server-side template rendering mechanism used by the GlassFish gadget handler. The applicatio...
PT-2026-41937
Technitium DNS Server aggressively tries to fetch missing RRSIG records or mismatched DNSKEY records. An attacker in control of a domain can cause a vulnerable system to generate excessive network traffic. Fixed in 15.0...
PT-2026-41934
Name of the Vulnerable Software and Affected Versions Portrait Dell Color Management versions prior to 3.7.0 Description A symbolic link issue exists in the Portrait Dell Color Management application on Windows. A local low-privileged user can escalate privileges to Administrator because the...
PT-2026-41935
Name of the Vulnerable Software and Affected Versions HestiaCP versions 1.2.0 through 1.9.4 Description An IP spoofing issue allows unauthenticated remote attackers to bypass authentication security controls. This occurs when the system accepts an arbitrary IP address provided in the...
PT-2026-41909
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description A privilege escalation issue exists within the DOM: Workers component...
PT-2026-41886
Name of the Vulnerable Software and Affected Versions Qt Qt Framework Unix affected versions not specified Description An Uncontrolled Search Path Element issue in the OpenSSL TLS backend of Qt Network qtbase allows a local attacker to load a rogue CA certificate as a trusted system authority. Th...
PT-2026-41898
Name of the Vulnerable Software and Affected Versions Apache Camel affected versions not specified Description An unauthenticated attacker can perform message header injection due to missing inbound filtering in the CxfRsHeaderFilterStrategy and Knative HeaderFilterStrategy implementations. This...
PT-2026-41920
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description Information disclosure occurs within the IP Protection component. Recommendations Update Firefox to version 151. Update Thunderbird to version 151...
PT-2026-41893
Name of the Vulnerable Software and Affected Versions Sparx Pro Cloud Server versions 6.1 build 167 and earlier Description Authentication is required based on the requested URL. An attacker can bypass this check by omitting the model query parameter and providing the model name only within the...
PT-2026-41899
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox Focus for Android affected versions not specified Description A sandbox escape exists in Firefox and Firefox Focus for Android. A sandbox is a security mechanism used to isolate running applications from t...
PT-2026-41915
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description A spoofing issue exists within the Form Autofill component. Recommendations Update to version...
PT-2026-41919
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description An information disclosure issue exists within the DOM security component...
PT-2026-41912
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description An issue in the Security: Process Sandboxing component allows for information disclosure and...
PT-2026-41910
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description An integer overflow exists in the Networking: JAR component. An integer overflow occurs when ...
PT-2026-41916
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description A mitigation bypass exists within the DOM security component. Recommendations Update to versi...
PT-2026-41902
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description A same-origin policy bypass exists in the DOM: Networking component. The same-origin policy is a critical security mechanism that restricts how a document or script...
PT-2026-41894
Name of the Vulnerable Software and Affected Versions Sparx Enterprise Architect versions 17.1 and earlier Description A security feature intended to limit user actions based on assigned roles can be bypassed. An authenticated attacker can modify the client behavior, for example by using a...
PT-2026-41926
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description Privilege escalation exists in the WebRTC: Audio/Video component. Recommendations Update Firefox to version 151. Update Thunderbird to version 151...
PT-2026-41887
An Angular template injection vulnerability was discovered in the Reports functionality due to improper validation of an input parameter. An authenticated user with report privileges can define a malicious report containing an Angular template payload, or a victim can be socially engineered to...
PT-2026-41929
Name of the Vulnerable Software and Affected Versions Thunderbird versions 140.10 through 150 Firefox versions 150 and earlier Firefox ESR versions 115.35 through 140.10 Description Memory safety bugs involving memory corruption could allow an attacker to run arbitrary code. Recommendations Updat...
PT-2026-41896
Name of the Vulnerable Software and Affected Versions Sparx Pro Cloud Server versions prior to 6.1 build 167 Description Improper handling of syntactically invalid structures allows a Denial of Service DoS attack, which is a condition where a service becomes unavailable to its intended users. Thi...
PT-2026-41928
Name of the Vulnerable Software and Affected Versions Firefox versions 140.10 through 150 Thunderbird versions 140.10 through 150 Description Memory safety bugs involving memory corruption could allow an attacker to run arbitrary code. Recommendations Update Firefox to version 151 or ESR 140.11...
PT-2026-41918
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description A spoofing issue exists within the Popup Blocker component. Recommendations Update to version 151...
PT-2026-41904
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description A same-origin policy bypass exists in the Networking: HTTP component. The same-origin policy ...
PT-2026-41913
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Firefox ESR versions prior to 140.11 Thunderbird versions prior to 151 Thunderbird versions prior to 140.11 Description Incorrect boundary conditions in the Widget: Win32 component allow for a sandbox escape, whic...
PT-2026-41897
Name of the Vulnerable Software and Affected Versions HestiaCP versions 1.9.0 through 1.9.4 Description A deserialization issue exists in the web terminal component due to a session format mismatch between PHP and Node.js. This allows unauthenticated remote attackers to achieve root-level code...
PT-2026-41892
Name of the Vulnerable Software and Affected Versions Sparx Pro Cloud Server versions 6.1 build 167 and earlier Description Broken Access Control exists in the communication with the database. Due to a lack of permission checks, a low privileged user can execute arbitrary SQL queries within the...
PT-2026-41917
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description A spoofing issue exists within the Web Speech component...
PT-2026-41927
Name of the Vulnerable Software and Affected Versions Thunderbird version 150 Firefox version 150 Description Memory safety bugs involving memory corruption may allow an attacker to execute arbitrary code. Recommendations Update Thunderbird to version 151. Update Firefox to version 151...
PT-2026-41905
Name of the Vulnerable Software and Affected Versions Firefox for Android versions prior to 151 Description A spoofing issue exists within the Toolbar component of the application. Recommendations Update to version 151...
PT-2026-41914
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 151 Thunderbird versions prior to 151 Description A spoofing issue exists in WebExtensions. Recommendations Update to version 151 for Firefox. Update to version 151 for Thunderbird...
PT-2026-41890
A Stored HTML Injection vulnerability was discovered in the Schedule Restore Archive functionality due to improper validation of an input parameter. An authenticated user with administrative privileges can define a malicious restore schedule containing HTML tags. When a victim views the affected...