On 29 June 2026, CISA added CVE-2026-48558 to its Known Exploited Vulnerabilities catalog. The flaw is a...
Vulnerability Report
TL;DR Developers patched six high-severity wolfSSL security vulnerabilities in the embedded SSL library. These flaws include an...
TL;DR Four critical security flaws currently impact all versions of the EVoke Systems Charging Station Management System....
TL;DR Cacti fixed four critical flaws in version 1.2.31. Three allow pre-authentication SQL injection, and one allows...
Security researcher Massimiliano Oldani has published IPV6_FRAG_ESCAPE, a working proof-of-concept for an IPv6 container escape on CentOS...
TL;DR Attackers are exploiting a Cisco Unified CM RCE flaw in live attacks. Tracked as CVE-2026-20230, it...
TL;DR Dell released urgent security updates for its thin client management platform. Two critical Dell Wyse vulnerabilities...
A critical Gemini CLI vulnerability (CVE-2026-12537) exposes developer workflows to maximum severity attacks. Google disclosed this CVSS...
A critical Hoppscotch mass assignment vulnerability threatens self-hosted API deployments. The flaw, tracked as CVE-2026-50160, allows unauthenticated...
TL;DR DirtyClone is a Linux kernel privilege escalation flaw tracked as CVE-2026-43503. It scores 8.8 on the...
TL;DR Researchers publicly disclosed a libssh2 vulnerability tracked as CVE-2026-58050. The flaw lets a malicious SSH server...
TL;DR Security experts disclosed a high-severity flaw (CVE-2026-11940) in Python. A critical CPython tarfile vulnerability allows directory...
TL;DR A critical FOSSBilling template injection flaw, CVE-2026-28496, carries a CVSS score of 9.4. Attackers can read...
TL;DR The Python Software Foundation fixed a python.org authentication bypass on February 24, 2026. The flaw sat...
The ubiquitous open-source utility curl, currently installed on over 30 billion devices worldwide, officially launched its v8.21.0...
TL;DR The CISA KEV Catalog gained two new entries on June 25, 2026. Both additions cite evidence...
TL;DR Gogs patched three critical remote code execution flaws in version 0.14.3. Each Gogs RCE vulnerability scores...
TL;DR Google shipped a Chrome security update on June 10, 2026. The release moves the Stable channel...
TL;DR JFrog researchers discovered a critical heap out-of-bounds write in the FFmpeg MagicYUV decoder. The flaw is...
TL;DR Three critical Langflow security vulnerabilities expose artificial intelligence applications to severe risks. Attackers could execute arbitrary...
TL;DR Red Hat disclosed a critical Event-Driven Ansible flaw tracked as CVE-2026-11807. It scores 9.6 on CVSS...
TL;DR Security researchers disclosed five Apache Kvrocks vulnerabilities. The most severe issue carries a critical CVSS 10...