CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10989 articles  ·  updated every 4 hours · grows forever

10989Total
4273Full Text
Jul 07, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-52860 | vim up to 9.2.596 Command Line exec code injection (GHSA-52mc-rq6p-rc7c)

A vulnerability, which was classified as critical , was found in vim up to 9.2.596 . This impacts the function exec of the component Command Line Handler . Executing a manipulation can lead to code in…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-47250 | Flux159 mcp-server-kubernetes up to 3.6.x argument injection (GHSA-6mx4-4h42-r8vh)

A vulnerability has been found in Flux159 mcp-server-kubernetes up to 3.6.x and classified as critical . Affected is an unknown function. The manipulation leads to argument injection. This vulnerabili…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-47189 | duck-organization quest-bot up to 1.0.4 Autocomplete authorization (GHSA-6rv9-6p24-w955)

A vulnerability was found in duck-organization quest-bot up to 1.0.4 and classified as critical . Affected by this vulnerability is an unknown functionality of the component Autocomplete Handler . The…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-53701 | GStreamer gsth266parser.c gst_h266_parser_parse_picture_partition out-of-bounds write (EUVD-2026-36294)

A vulnerability was found in GStreamer . It has been classified as critical . Affected by this issue is the function gst_h266_parser_parse_picture_partition of the file gsth266parser.c . This manipula…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-48547 | lingdojo kana-dojo up to 0.1.17 patchNotesData.json child_process.execSync os command injection

A vulnerability was found in lingdojo kana-dojo up to 0.1.17 . It has been declared as critical . This affects the function child_process.execSync of the file patchNotesData.json . Such manipulation l…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-53702 | GStreamer 265 H.265 Codec Parser Library out-of-bounds write (EUVD-2026-36295)

A vulnerability was found in GStreamer 265 . It has been rated as critical . This vulnerability affects unknown code of the component H.265 Codec Parser Library . Performing a manipulation results in …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-52859 | vim up to 9.2.564 Command Line src/terminal.c update_snapshot out-of-bounds (GHSA-47gw-8gc3-mgcm)

A vulnerability categorized as problematic has been discovered in vim up to 9.2.564 . This issue affects the function update_snapshot of the file src/terminal.c of the component Command Line Handler .…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-49875 | Apache CXF up to 4.1.6/4.2.1 W3CMultiSchemaFactory/EndpointReferenceUtils xml external entity reference

A vulnerability identified as problematic has been detected in Apache CXF up to 4.1.6/4.2.1 . Impacted is the function W3CMultiSchemaFactory/EndpointReferenceUtils . The manipulation leads to xml exte…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-50623 | Apache CXF up to 4.1.6/4.2.1 OAuth2 TokentrospectionService improper authentication

A vulnerability labeled as critical has been found in Apache CXF up to 4.1.6/4.2.1 . The affected element is the function TokentrospectionService of the component OAuth2 . The manipulation results in …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-50627 | Apache CXF up to 4.1.6/4.2.1 OAuth2 access control

A vulnerability marked as critical has been reported in Apache CXF up to 4.1.6/4.2.1 . The impacted element is an unknown function of the component OAuth2 . This manipulation causes improper access co…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-50628 | Apache CXF up to 4.1.6/4.2.1 OAuth2 access control

A vulnerability described as critical has been identified in Apache CXF up to 4.1.6/4.2.1 . This affects an unknown function of the component OAuth2 . Such manipulation leads to improper access contro…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-50629 | Apache CXF up to 4.1.6/4.2.1 OAuth2 neutralization for logs

A vulnerability classified as problematic has been found in Apache CXF up to 4.1.6/4.2.1 . This impacts an unknown function of the component OAuth2 . Performing a manipulation results in improper outp…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-50630 | Apache CXF up to 4.1.6/4.2.1 OAuth2 response splitting

A vulnerability classified as critical was found in Apache CXF up to 4.1.6/4.2.1 . Affected is an unknown function of the component OAuth2 . Executing a manipulation can lead to http response splittin…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-50631 | Apache CXF up to 4.1.6/4.2.1 OAuth2 toctou

A vulnerability, which was classified as problematic , has been found in Apache CXF up to 4.1.6/4.2.1 . Affected by this vulnerability is an unknown functionality of the component OAuth2 . The manipul…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-50632 | Apache CXF up to 4.1.6/4.2.1 JNDI injection

A vulnerability, which was classified as critical , was found in Apache CXF up to 4.1.6/4.2.1 . Affected by this issue is some unknown functionality of the component JNDI . The manipulation results in…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-50633 | Apache CXF up to 4.1.6/4.2.1 JNDI DispatchMDBMessageListenerImpl injection

A vulnerability has been found in Apache CXF up to 4.1.6/4.2.1 and classified as critical . This affects the function DispatchMDBMessageListenerImpl of the component JNDI Handler . This manipulation c…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-50634 | Apache CXF up to 4.1.6/4.2.1 WS JSON Request Filter privilege escalation

A vulnerability was found in Apache CXF up to 4.1.6/4.2.1 and classified as critical . This vulnerability affects unknown code of the component WS JSON Request Filter . Such manipulation leads to priv…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
CVE-2026-50645 | Apache CXF up to 4.1.6/4.2.1 Attachment Header access control

A vulnerability was found in Apache CXF up to 4.1.6/4.2.1 . It has been classified as critical . This issue affects some unknown processing of the component Attachment Header Handler . Performing a ma…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 12, 2026
ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities - The Hacker News

ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities The Hacker News

The Hacker News Read →
⬡ Vulnerabilities & CVEs Jun 11, 2026
CVE-2024-45636 | IBM Security QRadar EDR up to 3.12.24 credentials storage

A vulnerability described as problematic has been identified in IBM Security QRadar EDR up to 3.12.24 . This issue affects some unknown processing. Executing a manipulation can lead to unprotected sto…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 11, 2026
CVE-2026-53777 | PerryTS perry up to 0.5.1158 artifact_name/download_path path traversal

A vulnerability classified as critical has been found in PerryTS perry up to 0.5.1158 . Impacted is an unknown function. The manipulation of the argument artifact_name/download_path leads to path trav…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 11, 2026
CVE-2026-11945 | Dalibo PostgreSQL Anonymizer up to 3.1.0 import_database_rules/import_roles_rules sql injection

A vulnerability classified as critical was found in Dalibo PostgreSQL Anonymizer up to 3.1.0 . The affected element is the function import_database_rules/import_roles_rules . The manipulation results …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 11, 2026
CVE-2026-44488 | Axios up to 1.15.x allocation of resources

A vulnerability, which was classified as problematic , has been found in Axios up to 1.15.x . The impacted element is an unknown function. This manipulation causes allocation of resources. The identif…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 11, 2026
CVE-2026-44494 | Axios up to 1.15.x lib/adapters/http.js setProxy confused deputy

A vulnerability, which was classified as problematic , was found in Axios up to 1.15.x . This affects the function setProxy in the library lib/adapters/http.js . Such manipulation leads to unintended …

VulDB Read →
← Prev 107 / 458 Next →