VYPR
AI Brief2026-07-10· generated Jul 9, 2026

What you need to know today.

Wireshark and GitLab face multiple vulnerabilities, including DoS flaws and script execution risks, while a directory traversal affects Python's litellm.

A directory traversal vulnerability in the Python package litellm could allow an attacker to upload crafted skill archives, potentially leading to unauthorized access or modification of files on the server. This flaw, identified as CVE-2026-59820, impacts versions of the litellm library that are susceptible to improper handling of uploaded archives. Users are advised to update to a patched version as soon as possible to mitigate this risk.

GitLab has addressed multiple security vulnerabilities across its Community and Enterprise Editions. Notably, CVE-2026-13320 allows for arbitrary script execution due to improper input sanitization, while CVE-2026-11827 presents an information disclosure risk stemming from inadequate authorization controls. Additionally, CVE-2026-6352 permits auditor-level users to modify compliance records through improper GraphQL authorization. These issues were patched in GitLab versions 19.1.2, 19.0.4, and 18.11.7, as detailed in GitLab Security Releases.

The Wireshark network protocol analyzer is affected by a significant number of denial-of-service vulnerabilities. Multiple CVEs, including CVE-2026-15167, CVE-2026-15165, CVE-2026-15166, CVE-2026-15174, CVE-2026-15172, CVE-2026-15171, CVE-2026-15169, CVE-2026-15170, CVE-2026-15163, CVE-2026-15164, and CVE-2026-15173, describe flaws that can lead to crashes or infinite loops when parsing various network protocols or file formats. While these primarily result in DoS, the widespread use of Wireshark makes these vulnerabilities a concern for security analysts and incident responders. Users should update to the latest version to receive fixes for these issues.

An authentication bypass vulnerability exists in etcd, an open-source distributed key-value store. CVE-2026-59818 stems from improper enforcement of the Certificate Revocation List (CRL) on the gRPC listener, potentially allowing unauthorized access to the etcd cluster. This could have serious implications for systems relying on etcd for configuration management or service discovery. Administrators should ensure their etcd deployments are updated and properly configured to enforce authentication.

The wasmtime runtime environment has a vulnerability (CVE-2026-58494) that could permit the overwriting of host files due to insufficient permission checks within the wasmtime-wasi component. This flaw could enable a malicious WebAssembly module to compromise the host system by manipulating files outside its intended sandbox. Developers using wasmtime should review their configurations and update the runtime to the latest version to prevent potential file system corruption or unauthorized data modification.

The pypdf library, used for working with PDF documents in Python, has a denial-of-service vulnerability (CVE-2026-59936) related to the parsing of crafted PDF files containing specific inline image structures. This could allow an attacker to crash applications that process malicious PDFs using vulnerable versions of the library. Updating pypdf to a secure version is recommended for all users handling PDF files.

A regular-expression denial-of-service (ReDoS) vulnerability has been identified in the guardrails-detectors Python package. CVE-2026-15154 allows an unauthenticated attacker to trigger a DoS condition by providing a crafted detector_params.regex value, leading to excessive resource consumption. This vulnerability affects applications that utilize the guardrails-detectors library for input validation or detection.

Wireshark also has an information disclosure vulnerability in its BLF file parser, CVE-2026-15168. While less severe than the DoS flaws, it could still reveal sensitive information within captured network traffic logs. Users should update Wireshark to patch this issue.

Synthesized by Vypr AI
Wireshark, GitLab Vulnerabilities Highlighted · VYPR