| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-13601 | 0.00 | — | 0.00 | Jun 30, 2026 | A flaw was found in Yelp due to an overly permissive Content Security Policy (CSP) implementation provided by yelp-xsl. A malicious Flatpak application can open crafted help content through the OpenURI portal. By embedding an untrusted CSS stylesheet within a structured SVG… | |||
| CVE-2026-57966 | 0.00 | — | 0.00 | Jun 30, 2026 | A path traversal vulnerability was found in spice-vdagent. This flaw allows a malicious or compromised SPICE host to write arbitrary files to any location on the guest operating system. This occurs because the filename provided by the SPICE host during file transfers is not… | |||
| CVE-2026-57965 | 0.00 | — | 0.00 | Jun 30, 2026 | A flaw was found in spice-vdagent. A malicious or compromised SPICE host can trigger an integer overflow by sending a specially crafted message. This vulnerability can lead to a heap buffer overflow, causing the spice-vdagent daemon to crash and resulting in a Denial of Service… | |||
| CVE-2026-12912 | 0.00 | — | 0.00 | Jun 30, 2026 | A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially crafted PixarLog-compressed TIFF image. This issue occurs when decoding Pixarlog codec images with the PIXARLOGDATAFMT_8BITABGR output format and a specific stride value,… | |||
| CVE-2026-56018 | 0.00 | — | 0.01 | Jun 30, 2026 | JavaScript::Minifier::XS versions before 0.16 for Perl leak memory on every call to minify(), allowing unbounded memory growth. In JsMinify (XS.xs) the cleanup frees only the NodeSet structures and never the per-token contents buffers allocated in JsSetNodeContents;… | |||
| CVE-2026-56017 | 0.00 | — | 0.00 | Jun 30, 2026 | JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first meaningful token of the input is a slash. The regexp versus division disambiguator in JsTokenizeString (XS.xs) inspects the previous token's last byte to choose between a… | |||
| CVE-2026-25707 | 0.00 | — | 0.01 | Jun 30, 2026 | A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be used by remote attackers supplying repositories to overwrite files on the system, leading to denial of service or privilege escalation. | |||
| CVE-2026-55957 | 0.00 | — | 0.00 | Jun 30, 2026 | Missing Critical Step in Authentication vulnerability in Apache Tomcat when the JNDIRealm was configured to authenticate binds using GSSAPI allowed attackers to authenticate without provided the correct password. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.4,… | |||
| CVE-2026-55956 | 0.00 | — | 0.00 | Jun 30, 2026 | Improper Authorization vulnerability in Apache Tomcat leads to security constraints specified for the default servlet ignoring any method or method omission configured as part of the constraint. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.22, from 10.1.0-M1… | |||
| CVE-2026-13758 | 0.00 | — | 0.00 | Jun 30, 2026 | CryptX versions before 0.088_001 for Perl compare AEAD authentication tags in non-constant time in the streaming decrypt_done path. The decrypt_done($tag) form compares it against the computed tag with memNE (memcmp() != 0), which short-circuits on the first differing byte, so… | |||
| CVE-2026-13595 | 0.00 | — | 0.00 | Jun 30, 2026 | A flaw was found in the libblkid library of util-linux. During nested partition probing, the BSD, Minix, Solaris x86, and UnixWare partition probers cache a raw pointer to a parent partition entry in a dynamically allocated array. When subsequent partition additions cause the… | |||
| CVE-2026-41992 | 0.00 | — | 0.00 | Jun 30, 2026 | GNU gzip contains a global buffer overflow vulnerability in the LZH decompression logic caused by improper reuse of shared global state between different decompression formats within a single execution. GNU gzip maintains a global array that is shared across the LZ77, LZW, and… | |||
| CVE-2026-13593 | 0.00 | — | 0.00 | Jun 30, 2026 | CSS::Minifier::XS versions before 0.14 for Perl have a memory leak when the entire document is minified away. The minify function has a memory leak when processing a document containing only characters to be removed, such as comments and whitespace. | |||
| CVE-2026-13574 | 0.00 | — | 0.00 | Jun 30, 2026 | A vulnerability was determined in llvm llvm-project up to 22.1.6. This impacts the function GCRelocateInst::getBasePtr in the library llvm/lib/IR/IntrinsicInst.cpp of the component Bitcode File Handler. This manipulation causes heap-based buffer overflow. It is possible to… | |||
| CVE-2026-13573 | 0.00 | — | 0.00 | Jun 30, 2026 | A vulnerability was found in llvm llvm-project up to 22.1.6. This affects the function llvm::StringMap::insert in the library /lib/IR/ValueSymbolTable.cpp of the component ValueSymbolTable Module. The manipulation results in stack-based buffer overflow. Attacking locally is a… | |||
| CVE-2026-13149 | — | imp | 0.42 | 7.5 | 0.00 | Jun 30, 2026 | brace-expansion: Brace-expansion: Denial of Service due to exponential-time complexity | |
| CVE-2026-45822 | imp | 0.42 | 7.5 | 0.00 | Jun 30, 2026 | decode-uri-component: decode-uri-component: Denial of Service via crafted input | ||
| CVE-2026-12818 | cri | 0.64 | 9.8 | 0.00 | Jun 30, 2026 | Delta Electronics DVP12SE PLCs are susceptible to a resource allocation vulnerability without limits or throttling (CWE-770) within their Modbus TCP service. A remote attacker could exploit this vulnerability by flooding the Modbus port (TCP/502) with a continuous stream of raw… | ||
| CVE-2026-12819 | cri | 0.64 | 9.8 | 0.00 | Jun 30, 2026 | The Delta Electronics DVP12SE PLC exposes a Modbus TCP service over a specified port without authentication or access control, permitting unauthenticated interaction with security-sensitive PLC functions. The device accepts Modbus commands from any reachable network source… | ||
| CVE-2026-13207 | hig | 0.49 | 7.5 | 0.00 | Jun 30, 2026 | FUXA versions 1.3.1 and prior contain an authentication bypass vulnerability via dot-segment path normalization in the REST API. The API router fails to normalize dot-segment sequences before applying authentication middleware, allowing unauthenticated requests to access… | ||
| CVE-2026-50040 | med | 0.40 | 6.1 | 0.00 | Jun 30, 2026 | Storage Concentrator (SC & SCVM) is vulnerable to reflected cross-site scripting (XSS) due to unsanitized content being echoed back in 404 error pages. An attacker can craft a malicious URL that, when visited by an authenticated user, causes arbitrary script content to execute… | ||
| CVE-2026-50110 | cri | 0.60 | 9.2 | 0.00 | Jun 30, 2026 | Storage Concentrator (SC & SCVM) contains hardcoded credentials for numerous internal services embedded within a configuration file. While the credentials are stored in an encoded format, the encoding can be reversed to plaintext. The exposed credentials span a broad range of… | ||
| CVE-2026-55721 | cri | 0.60 | 9.3 | 0.00 | Jun 30, 2026 | Storage Concentrator (SC & SCVM) is vulnerable to SQL injection through cookie values processed by the login.pl and debug.pl scripts. The cookie value is incorporated directly into database queries without adequate sanitization, allowing an unauthenticated remote attacker to… | ||
| CVE-2026-56413 | cri | 0.65 | 10.0 | 0.03 | Jun 30, 2026 | Storage Concentrator (SC & SCVM) contains a command injection vulnerability in the ms_service.pl service, which listens on TCP port 9000 by default and accepts custom network packets to perform device actions. An unauthenticated remote attacker can send a specially crafted… | ||
| CVE-2026-56415 | cri | 0.65 | 10.0 | 0.03 | Jun 30, 2026 | Storage Concentrator (SC & SCVM) contains a command injection vulnerability within the debug.pl script that is reachable without authentication. A remote attacker can submit a specially crafted HTTP request containing a malicious payload that is processed without adequate input… | ||
| CVE-2026-12243 | imp | 0.49 | 7.5 | 0.01 | Jun 30, 2026 | nltk: NLTK: Information disclosure via path traversal vulnerability | ||
| CVE-2026-10763 | — | hig | 0.46 | 7.1 | 0.00 | Jun 30, 2026 | PROMOD V is using insecure HTTP communication instead of HTTPS. The vulnerability is due to the lack of HTTPS support from 3rd party Digipede server. | |
| CVE-2026-37106 | low | 0.24 | 3.7 | 0.01 | Jun 30, 2026 | DokuWiki: DokuWiki: Unauthorized account creation via registration function | ||
| CVE-2026-48192 | med | 0.35 | 5.4 | 0.00 | Jun 30, 2026 | Affected versions of Mendix Studio Pro do not properly validate or sanitize project files processed during the build pipeline. This could allow an attacker who tricks a user into opening and running a specially crafted malicious project locally on their system to execute… | ||
| CVE-2026-55955 | mod | 0.20 | 4.2 | 0.00 | Jun 29, 2026 | tomcat: Apache Tomcat: Replay attack via improper authentication in EncryptionInterceptor | ||
| CVE-2026-55276 | low | 0.08 | 2.3 | 0.00 | Jun 29, 2026 | tomcat: Apache Tomcat: Misleading security logs due to incorrect control flow | ||
| CVE-2026-53434 | low | 0.17 | 3.7 | 0.00 | Jun 29, 2026 | tomcat: Apache Tomcat: Error condition not handled when configuring CRLs | ||
| CVE-2026-53404 | mod | 0.35 | 6.5 | 0.00 | Jun 29, 2026 | Apache Tomcat: Apache Tomcat: Incorrect control flow in rewrite valve allows unexpected rule processing | ||
| CVE-2026-50229 | mod | 0.28 | 5.4 | 0.00 | Jun 29, 2026 | tomcat: Apache Tomcat: Cross-Site Scripting vulnerability in number guess example | ||
| CVE-2026-55607 | imp | 0.39 | 7.1 | 0.01 | Jun 29, 2026 | Claude Code: @anthropic-ai/claude-code: Claude Code: Arbitrary code execution through git directory confusion | ||
| CVE-2026-46406 | mod | 0.37 | 6.8 | 0.00 | Jun 29, 2026 | @anthropic-ai/claude-code: Claude Code: Information disclosure and file overwrite via insecure temporary file in /copy command | ||
| CVE-2026-13676 | imp | 0.42 | 7.5 | 0.00 | Jun 29, 2026 | fast-uri: fast-uri: Security policy bypass due to improper Unicode hostname canonicalization | ||
| CVE-2026-11979 | mod | 0.24 | 4.8 | 0.00 | Jun 29, 2026 | libxml2: libxml2: Arbitrary code execution in xmlcatalog utility via buffer overflow | ||
| CVE-2026-54369 | imp | 0.46 | 7.1 | 0.00 | Jun 29, 2026 | acl: Symlink traversal privilege escalation via libacl functions | ||
| CVE-2026-54370 | mod | 0.41 | 6.3 | 0.00 | Jun 29, 2026 | acl: TOCTOU Symlink Traversal via getfacl/setfacl | ||
| CVE-2026-54371 | imp | 0.46 | 7.1 | 0.00 | Jun 29, 2026 | attr: Symlink Traversal Privilege Escalation via getfattr | ||
| CVE-2026-12856 | imp | 0.57 | 8.8 | 0.00 | Jun 29, 2026 | vscode-java: vscode: Command Injection vulnerability in the JavaDoc hover provider of the vscode-java extension | ||
| CVE-2026-41991 | mod | 0.39 | 6.0 | 0.00 | Jun 29, 2026 | gzip: gzip: Arbitrary file overwrite via insecure temporary file handling in gzexe utility | ||
| CVE-2026-22879 | 0.00 | — | 0.00 | Jun 29, 2026 | vtk vtk-dicom vtkDICOMItem::NewDataElement heap-based buffer overflow vulnerability | |||
| CVE-2026-58049 | 0.00 | — | 0.00 | Jun 29, 2026 | FFmpeg's RASC video decoder (decode_dlta in libavcodec/rasc.c) performs 32-bit reads and writes at the row cursor before the NEXT_LINE row-boundary check and validates the DLTA region in pixel rather than byte units, so a DLTA run on a PAL8 frame can access several bytes past… | |||
| CVE-2026-13606 | imp | 0.53 | 8.1 | — | Jun 28, 2026 | GraphicsMagick: GraphicsMagick: Memory corruption via crafted Photo CD (PCD) file | ||
| CVE-2026-56130 | 0.00 | — | 0.00 | Jun 28, 2026 | "Remember me" cookie age is not verified on the server. This potentially allows an attacker to intercept a valid cookie and reuse it indefinitely, even after the configured expiration time has passed. This issue affects all Apache Shiro versions from 1.2.4 through 2.x, and… | |||
| CVE-2026-56091 | 0.00 | — | 0.00 | Jun 28, 2026 | When using Apache Shiro with the shiro-guice module in a web servlet context, a specially crafted HTTP request may cause an authentication bypass. This vulnerability is similar to https://www.cve.org/CVERecord?id=CVE-2020-1957 https://www.cve.org/CVERecord , except that it… | |||
| CVE-2026-58055 | 0.00 | — | 0.00 | Jun 28, 2026 | nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade request that also carries a Content-Length header and body onto reusable keep-alive backend connections, re-adding the Upgrade and Connection headers while passing Content-Length verbatim. A backend that… | |||
| CVE-2025-60464 | 0.00 | — | 0.00 | Jun 28, 2026 | A use-after-free in the gf_sei_load_from_state_internal function (/filters/sei_load.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MPEG-2 TS file. |
- CVE-2026-13601Jun 30, 2026risk 0.00cvss —epss 0.00
A flaw was found in Yelp due to an overly permissive Content Security Policy (CSP) implementation provided by yelp-xsl. A malicious Flatpak application can open crafted help content through the OpenURI portal. By embedding an untrusted CSS stylesheet within a structured SVG…
- CVE-2026-57966Jun 30, 2026risk 0.00cvss —epss 0.00
A path traversal vulnerability was found in spice-vdagent. This flaw allows a malicious or compromised SPICE host to write arbitrary files to any location on the guest operating system. This occurs because the filename provided by the SPICE host during file transfers is not…
- CVE-2026-57965Jun 30, 2026risk 0.00cvss —epss 0.00
A flaw was found in spice-vdagent. A malicious or compromised SPICE host can trigger an integer overflow by sending a specially crafted message. This vulnerability can lead to a heap buffer overflow, causing the spice-vdagent daemon to crash and resulting in a Denial of Service…
- CVE-2026-12912Jun 30, 2026risk 0.00cvss —epss 0.00
A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially crafted PixarLog-compressed TIFF image. This issue occurs when decoding Pixarlog codec images with the PIXARLOGDATAFMT_8BITABGR output format and a specific stride value,…
- CVE-2026-56018Jun 30, 2026risk 0.00cvss —epss 0.01
JavaScript::Minifier::XS versions before 0.16 for Perl leak memory on every call to minify(), allowing unbounded memory growth. In JsMinify (XS.xs) the cleanup frees only the NodeSet structures and never the per-token contents buffers allocated in JsSetNodeContents;…
- CVE-2026-56017Jun 30, 2026risk 0.00cvss —epss 0.00
JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first meaningful token of the input is a slash. The regexp versus division disambiguator in JsTokenizeString (XS.xs) inspects the previous token's last byte to choose between a…
- CVE-2026-25707Jun 30, 2026risk 0.00cvss —epss 0.01
A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be used by remote attackers supplying repositories to overwrite files on the system, leading to denial of service or privilege escalation.
- CVE-2026-55957Jun 30, 2026risk 0.00cvss —epss 0.00
Missing Critical Step in Authentication vulnerability in Apache Tomcat when the JNDIRealm was configured to authenticate binds using GSSAPI allowed attackers to authenticate without provided the correct password. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.4,…
- CVE-2026-55956Jun 30, 2026risk 0.00cvss —epss 0.00
Improper Authorization vulnerability in Apache Tomcat leads to security constraints specified for the default servlet ignoring any method or method omission configured as part of the constraint. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.22, from 10.1.0-M1…
- CVE-2026-13758Jun 30, 2026risk 0.00cvss —epss 0.00
CryptX versions before 0.088_001 for Perl compare AEAD authentication tags in non-constant time in the streaming decrypt_done path. The decrypt_done($tag) form compares it against the computed tag with memNE (memcmp() != 0), which short-circuits on the first differing byte, so…
- CVE-2026-13595Jun 30, 2026risk 0.00cvss —epss 0.00
A flaw was found in the libblkid library of util-linux. During nested partition probing, the BSD, Minix, Solaris x86, and UnixWare partition probers cache a raw pointer to a parent partition entry in a dynamically allocated array. When subsequent partition additions cause the…
- CVE-2026-41992Jun 30, 2026risk 0.00cvss —epss 0.00
GNU gzip contains a global buffer overflow vulnerability in the LZH decompression logic caused by improper reuse of shared global state between different decompression formats within a single execution. GNU gzip maintains a global array that is shared across the LZ77, LZW, and…
- CVE-2026-13593Jun 30, 2026risk 0.00cvss —epss 0.00
CSS::Minifier::XS versions before 0.14 for Perl have a memory leak when the entire document is minified away. The minify function has a memory leak when processing a document containing only characters to be removed, such as comments and whitespace.
- CVE-2026-13574Jun 30, 2026risk 0.00cvss —epss 0.00
A vulnerability was determined in llvm llvm-project up to 22.1.6. This impacts the function GCRelocateInst::getBasePtr in the library llvm/lib/IR/IntrinsicInst.cpp of the component Bitcode File Handler. This manipulation causes heap-based buffer overflow. It is possible to…
- CVE-2026-13573Jun 30, 2026risk 0.00cvss —epss 0.00
A vulnerability was found in llvm llvm-project up to 22.1.6. This affects the function llvm::StringMap::insert in the library /lib/IR/ValueSymbolTable.cpp of the component ValueSymbolTable Module. The manipulation results in stack-based buffer overflow. Attacking locally is a…
- risk 0.42cvss 7.5epss 0.00
brace-expansion: Brace-expansion: Denial of Service due to exponential-time complexity
- risk 0.42cvss 7.5epss 0.00
decode-uri-component: decode-uri-component: Denial of Service via crafted input
- risk 0.64cvss 9.8epss 0.00
Delta Electronics DVP12SE PLCs are susceptible to a resource allocation vulnerability without limits or throttling (CWE-770) within their Modbus TCP service. A remote attacker could exploit this vulnerability by flooding the Modbus port (TCP/502) with a continuous stream of raw…
- risk 0.64cvss 9.8epss 0.00
The Delta Electronics DVP12SE PLC exposes a Modbus TCP service over a specified port without authentication or access control, permitting unauthenticated interaction with security-sensitive PLC functions. The device accepts Modbus commands from any reachable network source…
- risk 0.49cvss 7.5epss 0.00
FUXA versions 1.3.1 and prior contain an authentication bypass vulnerability via dot-segment path normalization in the REST API. The API router fails to normalize dot-segment sequences before applying authentication middleware, allowing unauthenticated requests to access…
- risk 0.40cvss 6.1epss 0.00
Storage Concentrator (SC & SCVM) is vulnerable to reflected cross-site scripting (XSS) due to unsanitized content being echoed back in 404 error pages. An attacker can craft a malicious URL that, when visited by an authenticated user, causes arbitrary script content to execute…
- risk 0.60cvss 9.2epss 0.00
Storage Concentrator (SC & SCVM) contains hardcoded credentials for numerous internal services embedded within a configuration file. While the credentials are stored in an encoded format, the encoding can be reversed to plaintext. The exposed credentials span a broad range of…
- risk 0.60cvss 9.3epss 0.00
Storage Concentrator (SC & SCVM) is vulnerable to SQL injection through cookie values processed by the login.pl and debug.pl scripts. The cookie value is incorporated directly into database queries without adequate sanitization, allowing an unauthenticated remote attacker to…
- risk 0.65cvss 10.0epss 0.03
Storage Concentrator (SC & SCVM) contains a command injection vulnerability in the ms_service.pl service, which listens on TCP port 9000 by default and accepts custom network packets to perform device actions. An unauthenticated remote attacker can send a specially crafted…
- risk 0.65cvss 10.0epss 0.03
Storage Concentrator (SC & SCVM) contains a command injection vulnerability within the debug.pl script that is reachable without authentication. A remote attacker can submit a specially crafted HTTP request containing a malicious payload that is processed without adequate input…
- risk 0.49cvss 7.5epss 0.01
nltk: NLTK: Information disclosure via path traversal vulnerability
- risk 0.46cvss 7.1epss 0.00
PROMOD V is using insecure HTTP communication instead of HTTPS. The vulnerability is due to the lack of HTTPS support from 3rd party Digipede server.
- risk 0.24cvss 3.7epss 0.01
DokuWiki: DokuWiki: Unauthorized account creation via registration function
- risk 0.35cvss 5.4epss 0.00
Affected versions of Mendix Studio Pro do not properly validate or sanitize project files processed during the build pipeline. This could allow an attacker who tricks a user into opening and running a specially crafted malicious project locally on their system to execute…
- risk 0.20cvss 4.2epss 0.00
tomcat: Apache Tomcat: Replay attack via improper authentication in EncryptionInterceptor
- risk 0.08cvss 2.3epss 0.00
tomcat: Apache Tomcat: Misleading security logs due to incorrect control flow
- risk 0.17cvss 3.7epss 0.00
tomcat: Apache Tomcat: Error condition not handled when configuring CRLs
- risk 0.35cvss 6.5epss 0.00
Apache Tomcat: Apache Tomcat: Incorrect control flow in rewrite valve allows unexpected rule processing
- risk 0.28cvss 5.4epss 0.00
tomcat: Apache Tomcat: Cross-Site Scripting vulnerability in number guess example
- risk 0.39cvss 7.1epss 0.01
Claude Code: @anthropic-ai/claude-code: Claude Code: Arbitrary code execution through git directory confusion
- risk 0.37cvss 6.8epss 0.00
@anthropic-ai/claude-code: Claude Code: Information disclosure and file overwrite via insecure temporary file in /copy command
- risk 0.42cvss 7.5epss 0.00
fast-uri: fast-uri: Security policy bypass due to improper Unicode hostname canonicalization
- risk 0.24cvss 4.8epss 0.00
libxml2: libxml2: Arbitrary code execution in xmlcatalog utility via buffer overflow
- risk 0.46cvss 7.1epss 0.00
acl: Symlink traversal privilege escalation via libacl functions
- risk 0.41cvss 6.3epss 0.00
acl: TOCTOU Symlink Traversal via getfacl/setfacl
- risk 0.46cvss 7.1epss 0.00
attr: Symlink Traversal Privilege Escalation via getfattr
- risk 0.57cvss 8.8epss 0.00
vscode-java: vscode: Command Injection vulnerability in the JavaDoc hover provider of the vscode-java extension
- risk 0.39cvss 6.0epss 0.00
gzip: gzip: Arbitrary file overwrite via insecure temporary file handling in gzexe utility
- CVE-2026-22879Jun 29, 2026risk 0.00cvss —epss 0.00
vtk vtk-dicom vtkDICOMItem::NewDataElement heap-based buffer overflow vulnerability
- CVE-2026-58049Jun 29, 2026risk 0.00cvss —epss 0.00
FFmpeg's RASC video decoder (decode_dlta in libavcodec/rasc.c) performs 32-bit reads and writes at the row cursor before the NEXT_LINE row-boundary check and validates the DLTA region in pixel rather than byte units, so a DLTA run on a PAL8 frame can access several bytes past…
- risk 0.53cvss 8.1epss —
GraphicsMagick: GraphicsMagick: Memory corruption via crafted Photo CD (PCD) file
- CVE-2026-56130Jun 28, 2026risk 0.00cvss —epss 0.00
"Remember me" cookie age is not verified on the server. This potentially allows an attacker to intercept a valid cookie and reuse it indefinitely, even after the configured expiration time has passed. This issue affects all Apache Shiro versions from 1.2.4 through 2.x, and…
- CVE-2026-56091Jun 28, 2026risk 0.00cvss —epss 0.00
When using Apache Shiro with the shiro-guice module in a web servlet context, a specially crafted HTTP request may cause an authentication bypass. This vulnerability is similar to https://www.cve.org/CVERecord?id=CVE-2020-1957 https://www.cve.org/CVERecord , except that it…
- CVE-2026-58055Jun 28, 2026risk 0.00cvss —epss 0.00
nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade request that also carries a Content-Length header and body onto reusable keep-alive backend connections, re-adding the Upgrade and Connection headers while passing Content-Length verbatim. A backend that…
- CVE-2025-60464Jun 28, 2026risk 0.00cvss —epss 0.00
A use-after-free in the gf_sei_load_from_state_internal function (/filters/sei_load.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MPEG-2 TS file.