| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-49877 | 0.00 | — | 0.01 | Jul 2, 2026 | Improper Authorization vulnerability in Apache ActiveMQ. An authenticated low-privilege Web Console user by default can access /admin/* paths in the Web Console. The default Jetty settings incorrectly did not limit those paths to only admins. This issue affects Apache ActiveMQ:… | |||
| CVE-2026-9563 | imp | 0.42 | 7.5 | 0.00 | Jul 2, 2026 | org.eclipse.parsson/parsson: Eclipse Parsson: Denial of Service via uncontrolled resource consumption in JSON parsing | ||
| CVE-2026-8147 | imp | 0.46 | 8.1 | 0.00 | Jul 2, 2026 | mlflow: MLflow: Unauthorized access to trace data due to missing authorization validation | ||
| CVE-2026-13743 | med | 0.40 | 6.1 | 0.00 | Jul 2, 2026 | CubeSpace CW0057 Reaction Wheel firmware versions prior to 5.0.20 are vulnerable to an Improper Verification of Cryptographic Signature vulnerability. This could allow an attacker with physical access to the product to upload arbitrary malicious firmware to the device without… | ||
| CVE-2026-38057 | hig | 0.53 | 8.1 | 0.00 | Jul 2, 2026 | The iDirect iQ200 does not validate CSRF tokens on state-changing API endpoints after authentication. The /api/reboot endpoint accepts POST requests authenticated solely by a session cookie that lacks the SameSite attribute. A remote attacker can host a malicious web page that,… | ||
| CVE-2026-38059 | hig | 0.49 | 7.5 | 0.01 | Jul 2, 2026 | The iDirect iQ200 exposes the /api/identity and /api/ REST API endpoints without authentication. An unauthenticated attacker with network access can retrieve sensitive device information including the serial number, Device ID (DID), Terminal Private Key identifier (TPK), MAC… | ||
| CVE-2026-13768 | cri | 0.65 | 10.0 | 0.01 | Jul 2, 2026 | Gardyn devices expose a privileged iothubowner key. Access to this key will allow a malicious user to invoke an IoTHub Registry Manager function which returns connection information for all Gardyn Home Kit and Studio devices. Access to this key also allows a malicious user to… | ||
| CVE-2026-54477 | med | 0.35 | 5.4 | 0.00 | Jul 2, 2026 | The admin panel lacks standard security headers, enabling clickjacking and cross-site scripting attacks. | ||
| CVE-2026-55726 | med | 0.34 | 5.3 | 0.00 | Jul 2, 2026 | The Azure Blob Storage container used for Gardyn device logs is publicly listable without authentication. A malicious user would be able to access any device log file available in the blob storage container. | ||
| CVE-2026-38969 | mod | 0.35 | 6.5 | 0.00 | Jul 2, 2026 | webrick: rubygem-webrick: WEBrick: Request smuggling via re-parsing of Content-Length header | ||
| CVE-2026-53357 | mod | 0.39 | 7.0 | 0.00 | Jul 2, 2026 | kernel: Bluetooth: fix UAF in l2cap_sock_cleanup_listen() vs l2cap_conn_del() | ||
| CVE-2026-53358 | mod | 0.29 | 5.5 | 0.00 | Jul 2, 2026 | kernel: Bluetooth: L2CAP: use chan timer to close channels in cleanup_listen() | ||
| CVE-2026-58587 | 0.00 | — | 0.00 | Jul 1, 2026 | Mentioned in Drupal. See https://www.drupal.org/security for vendor details. | |||
| CVE-2026-58588 | 0.00 | — | 0.00 | Jul 1, 2026 | Mentioned in Drupal. See https://www.drupal.org/security for vendor details. | |||
| CVE-2026-58589 | 0.00 | — | 0.00 | Jul 1, 2026 | Mentioned in Drupal. See https://www.drupal.org/security for vendor details. | |||
| CVE-2026-58590 | 0.00 | — | 0.00 | Jul 1, 2026 | Mentioned in Drupal. See https://www.drupal.org/security for vendor details. | |||
| CVE-2026-58591 | 0.00 | — | 0.00 | Jul 1, 2026 | Mentioned in Drupal. See https://www.drupal.org/security for vendor details. | |||
| CVE-2026-50162 | mod | 0.34 | 5.3 | — | Jul 1, 2026 | oras-go: oras-go: File store write outside working directory via symlink traversal | ||
| CVE-2026-55153 | imp | 0.42 | 7.5 | 0.00 | Jul 1, 2026 | com.mchange/mchange-commons-java: mchange-commons-java: Remote code execution via JNDI injection | ||
| CVE-2026-14363 | imp | 0.40 | 7.3 | 0.00 | Jul 1, 2026 | Cargo: Mediawiki Cargo Extension: SQL Injection vulnerability | ||
| CVE-2026-53467 | mod | 0.27 | 5.3 | 0.00 | Jul 1, 2026 | ImageMagick: ImageMagick: Information disclosure vulnerability in MNG decoder | ||
| CVE-2026-13769 | mod | 0.29 | 5.5 | 0.00 | Jul 1, 2026 | aws-cli: AWS CLI: Information disclosure via overly permissive file permissions | ||
| CVE-2026-58517 | cri | 0.52 | 9.1 | 0.00 | Jul 1, 2026 | wikilambda: WikiLambda Extension: Authentication bypass due to improper input neutralization | ||
| CVE-2026-53466 | mod | 0.35 | 6.5 | 0.00 | Jul 1, 2026 | ImageMagick: ImageMagick: Denial of Service via integer overflow in XCF decoder | ||
| CVE-2026-55628 | mod | 0.33 | 6.1 | 0.00 | Jul 1, 2026 | ImageMagick: ImageMagick: Unauthorized file access due to missing policy checks in concatenate operation | ||
| CVE-2026-5051 | mod | 0.22 | 4.4 | 0.00 | Jul 1, 2026 | Vault: Vault Enterprise: HashiCorp Vault: Audit device validation bypass via legacy file audit path option | ||
| CVE-2026-58038 | low | 0.17 | 3.7 | 0.00 | Jul 1, 2026 | timeline: EasyTimeline: Wikimedia Foundation Timeline: Cross-site Scripting vulnerability | ||
| CVE-2026-24260 | imp | 0.55 | 8.5 | 0.00 | Jul 1, 2026 | NVIDIA Container Toolkit: NVIDIA Container Toolkit: Privilege escalation and code execution via race condition | ||
| CVE-2026-58031 | mod | 0.23 | 4.6 | 0.00 | Jul 1, 2026 | MediaWiki: MediaWiki: Cross-site scripting vulnerability due to improper input neutralization | ||
| CVE-2026-5138 | mod | 0.21 | 4.3 | 0.00 | Jul 1, 2026 | foreman: Foreman: Information disclosure via improper validation of nested request parameters | ||
| CVE-2026-5136 | imp | 0.50 | 8.8 | 0.00 | Jul 1, 2026 | foreman: Foreman: Privilege escalation to administrator-level access via usergroup role assignment manipulation | ||
| CVE-2026-13323 | mod | 0.28 | 5.4 | 0.00 | Jul 1, 2026 | openvsx: Open VSX Registry: Supply chain attack via cross-site scripting | ||
| CVE-2026-58011 | 0.00 | — | 0.00 | Jul 1, 2026 | A flaw was found in GLib. An out-of-bounds read of only 2 bytes can occur in the g_date_time_get_ymd function in the glib/gdatetime.c file when an invalid GDateTime object produced by the g_date_time_add_full function is processed. This flaw can corrupt the date output and… | |||
| CVE-2026-58015 | 0.00 | — | 0.00 | Jul 1, 2026 | A flaw was found in GLib. The D-Bus client-side implementation of the DBUS_COOKIE_SHA1 SASL authentication mechanism does not validate the cookie_context parameter received from the server. A malicious D-Bus server can supply a cookie_context containing path traversal sequences,… | |||
| CVE-2026-58014 | 0.00 | — | 0.00 | Jul 1, 2026 | A flaw was found in GLib. An off-by-one error can occur in the g_key_file_get_locale_string_list function in the gkeyfile.c file when loading a key file with an empty value. This flaw can cause an out-of-bounds access of 1 byte or a denial of service when the out-of-bounds… | |||
| CVE-2026-58016 | 0.00 | — | 0.00 | Jul 1, 2026 | A flaw was found in GLib. A state confusion issue exists in g_dbus_node_info_new_for_xml() in the gio/gdbusintrospection.c file when processing malformed D-Bus introspection XML, specifically with a element nested within other elements like , , … | |||
| CVE-2026-58012 | 0.00 | — | 0.00 | Jul 1, 2026 | A flaw was found in GLib. A buffer over-read can occur in the g_regex_replace function when used with the `G_REGEX_RAW` compile flag and case-change replacement escapes because the string_append function processes matched substrings using UTF-8 functions that assume valid UTF-8… | |||
| CVE-2026-58013 | 0.00 | — | 0.00 | Jul 1, 2026 | A flaw was found in GLib. A buffer over-read can occur in g_io_channel_read_line_backend() in the giochannel.c file when a custom line terminator with a length greater than one is set, causing memcmp to read past the GString buffer. This vulnerability can cause a minor… | |||
| CVE-2026-58010 | 0.00 | — | 0.00 | Jul 1, 2026 | A flaw was found in GLib. An off-by-one error can occur in the gvs_tuple_is_normal function in the glib/gvariant-serialiser.c file when doing an alignment padding check because the bounds check uses > instead of >=, causing an out-of-bounds read of only 1 byte. This issue can… | |||
| CVE-2026-14241 | 0.00 | — | 0.00 | Jul 1, 2026 | Memory safety bugs present in Firefox 152.0.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 152.0.4. | |||
| CVE-2026-56361 | 0.00 | — | 0.00 | Jul 1, 2026 | ImageMagick before 7.1.2-19 contains an off-by-one error in morphology validation allowing out-of-bounds heap buffer reads. Attackers can trigger heap buffer overflow by providing incorrect morphology parameters causing single pixel memory access violations. | |||
| CVE-2026-56369 | 0.00 | — | 0.00 | Jul 1, 2026 | ImageMagick before 7.1.2-22 contains an information disclosure vulnerability in the PasskeyEncipherImage method due to AES-CTR nonce reuse. Attackers can exploit nonce reuse in the cipher implementation to recover plaintext information from encrypted images. | |||
| CVE-2026-56365 | 0.00 | — | 0.00 | Jul 1, 2026 | ImageMagick before 7.1.2-19 contains a memory leak vulnerability in the PNG encoder when writing MNG images. Attackers can trigger the encoder failure condition to exhaust memory resources and cause denial of service. | |||
| CVE-2026-56377 | 0.00 | — | 0.00 | Jul 1, 2026 | ImageMagick before 7.1.2-24 contains an incorrect policy check that allows attackers to create or truncate files disallowed by security policies. Remote attackers can bypass path policy restrictions in sandboxed conversion services to write arbitrary files outside intended… | |||
| CVE-2026-56364 | 0.00 | — | 0.00 | Jul 1, 2026 | ImageMagick before 7.1.2-13 contains a memory leak vulnerability in LoadOpenCLDeviceBenchmark() function when parsing malformed OpenCL device profile XML files with unclosed device elements. Attackers with write access to the OpenCL cache directory can place malicious XML files… | |||
| CVE-2026-56363 | 0.00 | — | 0.00 | Jul 1, 2026 | ImageMagick before 7.1.2-22 contains a division by zero vulnerability in binomial kernel processing that allows attackers to cause denial of service. An attacker can supply a large binomial kernel value causing integer overflow, resulting in division by zero and application… | |||
| CVE-2026-14062 | 0.00 | — | 0.00 | Jul 1, 2026 | Inappropriate implementation in Views in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension. (Chromium security… | |||
| CVE-2026-14151 | 0.00 | — | 0.00 | Jul 1, 2026 | Inappropriate implementation in AI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low) | |||
| CVE-2026-13959 | 0.00 | — | 0.00 | Jul 1, 2026 | Insufficient validation of untrusted input in Blink in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium) | |||
| CVE-2026-14119 | 0.00 | — | 0.00 | Jul 1, 2026 | Type Confusion in Bluetooth in Google Chrome on Windows prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via a malicious peripheral. (Chromium security severity: Low) |
- CVE-2026-49877Jul 2, 2026risk 0.00cvss —epss 0.01
Improper Authorization vulnerability in Apache ActiveMQ. An authenticated low-privilege Web Console user by default can access /admin/* paths in the Web Console. The default Jetty settings incorrectly did not limit those paths to only admins. This issue affects Apache ActiveMQ:…
- risk 0.42cvss 7.5epss 0.00
org.eclipse.parsson/parsson: Eclipse Parsson: Denial of Service via uncontrolled resource consumption in JSON parsing
- risk 0.46cvss 8.1epss 0.00
mlflow: MLflow: Unauthorized access to trace data due to missing authorization validation
- risk 0.40cvss 6.1epss 0.00
CubeSpace CW0057 Reaction Wheel firmware versions prior to 5.0.20 are vulnerable to an Improper Verification of Cryptographic Signature vulnerability. This could allow an attacker with physical access to the product to upload arbitrary malicious firmware to the device without…
- risk 0.53cvss 8.1epss 0.00
The iDirect iQ200 does not validate CSRF tokens on state-changing API endpoints after authentication. The /api/reboot endpoint accepts POST requests authenticated solely by a session cookie that lacks the SameSite attribute. A remote attacker can host a malicious web page that,…
- risk 0.49cvss 7.5epss 0.01
The iDirect iQ200 exposes the /api/identity and /api/ REST API endpoints without authentication. An unauthenticated attacker with network access can retrieve sensitive device information including the serial number, Device ID (DID), Terminal Private Key identifier (TPK), MAC…
- risk 0.65cvss 10.0epss 0.01
Gardyn devices expose a privileged iothubowner key. Access to this key will allow a malicious user to invoke an IoTHub Registry Manager function which returns connection information for all Gardyn Home Kit and Studio devices. Access to this key also allows a malicious user to…
- risk 0.35cvss 5.4epss 0.00
The admin panel lacks standard security headers, enabling clickjacking and cross-site scripting attacks.
- risk 0.34cvss 5.3epss 0.00
The Azure Blob Storage container used for Gardyn device logs is publicly listable without authentication. A malicious user would be able to access any device log file available in the blob storage container.
- risk 0.35cvss 6.5epss 0.00
webrick: rubygem-webrick: WEBrick: Request smuggling via re-parsing of Content-Length header
- risk 0.39cvss 7.0epss 0.00
kernel: Bluetooth: fix UAF in l2cap_sock_cleanup_listen() vs l2cap_conn_del()
- risk 0.29cvss 5.5epss 0.00
kernel: Bluetooth: L2CAP: use chan timer to close channels in cleanup_listen()
- CVE-2026-58587Jul 1, 2026risk 0.00cvss —epss 0.00
Mentioned in Drupal. See https://www.drupal.org/security for vendor details.
- CVE-2026-58588Jul 1, 2026risk 0.00cvss —epss 0.00
Mentioned in Drupal. See https://www.drupal.org/security for vendor details.
- CVE-2026-58589Jul 1, 2026risk 0.00cvss —epss 0.00
Mentioned in Drupal. See https://www.drupal.org/security for vendor details.
- CVE-2026-58590Jul 1, 2026risk 0.00cvss —epss 0.00
Mentioned in Drupal. See https://www.drupal.org/security for vendor details.
- CVE-2026-58591Jul 1, 2026risk 0.00cvss —epss 0.00
Mentioned in Drupal. See https://www.drupal.org/security for vendor details.
- risk 0.34cvss 5.3epss —
oras-go: oras-go: File store write outside working directory via symlink traversal
- risk 0.42cvss 7.5epss 0.00
com.mchange/mchange-commons-java: mchange-commons-java: Remote code execution via JNDI injection
- risk 0.40cvss 7.3epss 0.00
Cargo: Mediawiki Cargo Extension: SQL Injection vulnerability
- risk 0.27cvss 5.3epss 0.00
ImageMagick: ImageMagick: Information disclosure vulnerability in MNG decoder
- risk 0.29cvss 5.5epss 0.00
aws-cli: AWS CLI: Information disclosure via overly permissive file permissions
- risk 0.52cvss 9.1epss 0.00
wikilambda: WikiLambda Extension: Authentication bypass due to improper input neutralization
- risk 0.35cvss 6.5epss 0.00
ImageMagick: ImageMagick: Denial of Service via integer overflow in XCF decoder
- risk 0.33cvss 6.1epss 0.00
ImageMagick: ImageMagick: Unauthorized file access due to missing policy checks in concatenate operation
- risk 0.22cvss 4.4epss 0.00
Vault: Vault Enterprise: HashiCorp Vault: Audit device validation bypass via legacy file audit path option
- risk 0.17cvss 3.7epss 0.00
timeline: EasyTimeline: Wikimedia Foundation Timeline: Cross-site Scripting vulnerability
- risk 0.55cvss 8.5epss 0.00
NVIDIA Container Toolkit: NVIDIA Container Toolkit: Privilege escalation and code execution via race condition
- risk 0.23cvss 4.6epss 0.00
MediaWiki: MediaWiki: Cross-site scripting vulnerability due to improper input neutralization
- risk 0.21cvss 4.3epss 0.00
foreman: Foreman: Information disclosure via improper validation of nested request parameters
- risk 0.50cvss 8.8epss 0.00
foreman: Foreman: Privilege escalation to administrator-level access via usergroup role assignment manipulation
- risk 0.28cvss 5.4epss 0.00
openvsx: Open VSX Registry: Supply chain attack via cross-site scripting
- CVE-2026-58011Jul 1, 2026risk 0.00cvss —epss 0.00
A flaw was found in GLib. An out-of-bounds read of only 2 bytes can occur in the g_date_time_get_ymd function in the glib/gdatetime.c file when an invalid GDateTime object produced by the g_date_time_add_full function is processed. This flaw can corrupt the date output and…
- CVE-2026-58015Jul 1, 2026risk 0.00cvss —epss 0.00
A flaw was found in GLib. The D-Bus client-side implementation of the DBUS_COOKIE_SHA1 SASL authentication mechanism does not validate the cookie_context parameter received from the server. A malicious D-Bus server can supply a cookie_context containing path traversal sequences,…
- CVE-2026-58014Jul 1, 2026risk 0.00cvss —epss 0.00
A flaw was found in GLib. An off-by-one error can occur in the g_key_file_get_locale_string_list function in the gkeyfile.c file when loading a key file with an empty value. This flaw can cause an out-of-bounds access of 1 byte or a denial of service when the out-of-bounds…
- CVE-2026-58016Jul 1, 2026risk 0.00cvss —epss 0.00
A flaw was found in GLib. A state confusion issue exists in g_dbus_node_info_new_for_xml() in the gio/gdbusintrospection.c file when processing malformed D-Bus introspection XML, specifically with a element nested within other elements like , , …
- CVE-2026-58012Jul 1, 2026risk 0.00cvss —epss 0.00
A flaw was found in GLib. A buffer over-read can occur in the g_regex_replace function when used with the `G_REGEX_RAW` compile flag and case-change replacement escapes because the string_append function processes matched substrings using UTF-8 functions that assume valid UTF-8…
- CVE-2026-58013Jul 1, 2026risk 0.00cvss —epss 0.00
A flaw was found in GLib. A buffer over-read can occur in g_io_channel_read_line_backend() in the giochannel.c file when a custom line terminator with a length greater than one is set, causing memcmp to read past the GString buffer. This vulnerability can cause a minor…
- CVE-2026-58010Jul 1, 2026risk 0.00cvss —epss 0.00
A flaw was found in GLib. An off-by-one error can occur in the gvs_tuple_is_normal function in the glib/gvariant-serialiser.c file when doing an alignment padding check because the bounds check uses > instead of >=, causing an out-of-bounds read of only 1 byte. This issue can…
- CVE-2026-14241Jul 1, 2026risk 0.00cvss —epss 0.00
Memory safety bugs present in Firefox 152.0.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 152.0.4.
- CVE-2026-56361Jul 1, 2026risk 0.00cvss —epss 0.00
ImageMagick before 7.1.2-19 contains an off-by-one error in morphology validation allowing out-of-bounds heap buffer reads. Attackers can trigger heap buffer overflow by providing incorrect morphology parameters causing single pixel memory access violations.
- CVE-2026-56369Jul 1, 2026risk 0.00cvss —epss 0.00
ImageMagick before 7.1.2-22 contains an information disclosure vulnerability in the PasskeyEncipherImage method due to AES-CTR nonce reuse. Attackers can exploit nonce reuse in the cipher implementation to recover plaintext information from encrypted images.
- CVE-2026-56365Jul 1, 2026risk 0.00cvss —epss 0.00
ImageMagick before 7.1.2-19 contains a memory leak vulnerability in the PNG encoder when writing MNG images. Attackers can trigger the encoder failure condition to exhaust memory resources and cause denial of service.
- CVE-2026-56377Jul 1, 2026risk 0.00cvss —epss 0.00
ImageMagick before 7.1.2-24 contains an incorrect policy check that allows attackers to create or truncate files disallowed by security policies. Remote attackers can bypass path policy restrictions in sandboxed conversion services to write arbitrary files outside intended…
- CVE-2026-56364Jul 1, 2026risk 0.00cvss —epss 0.00
ImageMagick before 7.1.2-13 contains a memory leak vulnerability in LoadOpenCLDeviceBenchmark() function when parsing malformed OpenCL device profile XML files with unclosed device elements. Attackers with write access to the OpenCL cache directory can place malicious XML files…
- CVE-2026-56363Jul 1, 2026risk 0.00cvss —epss 0.00
ImageMagick before 7.1.2-22 contains a division by zero vulnerability in binomial kernel processing that allows attackers to cause denial of service. An attacker can supply a large binomial kernel value causing integer overflow, resulting in division by zero and application…
- CVE-2026-14062Jul 1, 2026risk 0.00cvss —epss 0.00
Inappropriate implementation in Views in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension. (Chromium security…
- CVE-2026-14151Jul 1, 2026risk 0.00cvss —epss 0.00
Inappropriate implementation in AI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)
- CVE-2026-13959Jul 1, 2026risk 0.00cvss —epss 0.00
Insufficient validation of untrusted input in Blink in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)
- CVE-2026-14119Jul 1, 2026risk 0.00cvss —epss 0.00
Type Confusion in Bluetooth in Google Chrome on Windows prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via a malicious peripheral. (Chromium security severity: Low)