CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10345 articles  ·  updated every 4 hours · grows forever

10345Total
4237Full Text
Jul 01, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-6681 | wolfSSL up to 5.9.0 out-of-bounds write

A vulnerability was found in wolfSSL up to 5.9.0 and classified as critical . Affected by this issue is some unknown functionality. Executing a manipulation can lead to out-of-bounds write. This vulne…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-2299 | Mattermost Google Drive Plugin up to 1.0.0/1.0.x File Creation Endpoint authorization

A vulnerability was found in Mattermost Google Drive Plugin up to 1.0.0/1.0.x . It has been classified as problematic . This affects an unknown part of the component File Creation Endpoint . The manip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2021-47986 | parse-community parse-server up to 4.9.x code download (GHSA-593v-wcqx-hq2w)

A vulnerability was found in parse-community parse-server up to 4.9.x . It has been declared as problematic . This vulnerability affects unknown code. The manipulation results in download of code with…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2021-47987 | parse-community parse-server up to 4.9.x code download (GHSA-593v-wcqx-hq2w)

A vulnerability was found in parse-community parse-server up to 4.9.x . It has been rated as problematic . This issue affects some unknown processing. This manipulation causes download of code without…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2025-71335 | Flowise up to 3.0.9 Password Change session expiration (GHSA-x7rp-qj2h-ghgw)

A vulnerability categorized as critical has been discovered in Flowise up to 3.0.9 . Impacted is an unknown function of the component Password Change Handler . Such manipulation leads to session expir…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2025-71333 | Flowise up to 2.2.4 /api/v1/attachments chatflowId file inclusion (GHSA-h42x-xx2q-6v6g)

A vulnerability identified as critical has been detected in Flowise up to 2.2.4 . The affected element is an unknown function of the file /api/v1/attachments . Performing a manipulation of the argumen…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2025-71336 | Flowise up to 3.0.5 Custom MCP Feature customMCP os command injection (GHSA-6933-jpx5-q87q)

A vulnerability labeled as critical has been found in Flowise up to 3.0.5 . The impacted element is an unknown function of the file /api/v1/node-load-method/customMCP of the component Custom MCP Featu…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-37452 | NBFoundation MSI NBFoundation Service 2.0.2506.1201 MSIAPService.exe permission

A vulnerability marked as critical has been reported in NBFoundation MSI NBFoundation Service 2.0.2506.1201 . This affects an unknown function of the file MSIAPService.exe . The manipulation leads to …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-38637 | relibc pthread_rwlockattr_setpshared denial of service (Issue 264)

A vulnerability described as problematic has been identified in relibc . This impacts the function pthread_rwlockattr_setpshared . The manipulation results in denial of service. This vulnerability is …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57521 | bitwarden server 1.35.1/2026.4.0/2026.4.1 PreviewInvoiceController Endpoint authorization

A vulnerability classified as problematic has been found in bitwarden server 1.35.1/2026.4.0/2026.4.1 . Affected is an unknown function of the component PreviewInvoiceController Endpoint . This manipu…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-10098 | wolfSSL up to 5.9.1 certificate validation

A vulnerability classified as problematic was found in wolfSSL up to 5.9.1 . Affected by this vulnerability is an unknown functionality. Such manipulation leads to improper certificate validation. Thi…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-38640 | relibc /assert/mod.rs __assert_fail denial of service (Issue 262)

A vulnerability, which was classified as problematic , has been found in relibc . Affected by this issue is the function __assert_fail of the file /assert/mod.rs . Performing a manipulation results in…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-22879 | vtk vtk-DICOM 9.5.2 NewDataElement array index (TALOS-2026-2366)

A vulnerability, which was classified as problematic , was found in vtk vtk-DICOM 9.5.2 . This affects the function vtkDICOMItem::NewDataElement . Executing a manipulation can lead to improper validat…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-46602 | NLnet Labs x-image-tiff up to 0.42.x TIFF Decoder memory allocation

A vulnerability has been found in NLnet Labs x-image-tiff up to 0.42.x and classified as problematic . This vulnerability affects unknown code of the component TIFF Decoder . The manipulation leads to…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-7511 | wolfSSL up to 5.9.1 signature verification

A vulnerability was found in wolfSSL up to 5.9.1 and classified as problematic . This issue affects some unknown processing. The manipulation results in improper verification of cryptographic signatur…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-46601 | x-image-webp up to 0.42.x on Go out-of-bounds

A vulnerability was found in x-image-webp up to 0.42.x on Go. It has been classified as problematic . Impacted is an unknown function. This manipulation causes out-of-bounds read. This vulnerability i…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-6412 | wolfSSL up to 5.9.1 risky encryption

A vulnerability was found in wolfSSL up to 5.9.1 . It has been declared as problematic . The affected element is an unknown function. Such manipulation leads to risky cryptographic algorithm. This vul…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-6678 | wolfSSL up to 5.9.1 integer underflow

A vulnerability was found in wolfSSL up to 5.9.1 . It has been rated as problematic . The impacted element is an unknown function. Performing a manipulation results in integer underflow. This vulnerab…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2020-37256 | Grav up to 1.6.29 cross site scripting (GHSA-cvmr-6428-87w9)

A vulnerability categorized as problematic has been discovered in Grav up to 1.6.29 . This affects an unknown function. Executing a manipulation can lead to cross site scripting. The identification of…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 25, 2026
CVE-2026-54033 | danny-avila LibreChat up to 0.8.4 API Endpoint server-side request forgery (GHSA-gc9r-88c3-7qhq)

A vulnerability was found in danny-avila LibreChat . It has been classified as critical . This vulnerability affects unknown code of the component API Endpoint . Performing a manipulation results in s…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 25, 2026
CVE-2026-54040 | danny-avila LibreChat up to 0.8.4 Session Token regenerate missing authentication (GHSA-h59w-x9h4-m6gv)

A vulnerability was found in danny-avila LibreChat . It has been declared as critical . This issue affects some unknown processing of the file /api/auth/2fa/backup/regenerate of the component Session …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 25, 2026
CVE-2026-55092 | aquasecurity trivy up to 0.71.0 Annotation path traversal

A vulnerability was found in aquasecurity trivy up to 0.71.0 . It has been rated as critical . Impacted is an unknown function of the component Annotation Handler . The manipulation leads to path trav…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 25, 2026
CVE-2026-56123 | socat up to 1.8.1.1 DOMAINNAME Reply Parser heap-based overflow

A vulnerability categorized as critical has been discovered in socat up to 1.8.1.1 . The affected element is an unknown function of the component DOMAINNAME Reply Parser . The manipulation results in …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 25, 2026
CVE-2026-55412 | ToolJet up to 3.20.178-lt/169.254.169.254.nip.io RestAPI Data Source server-side request forgery (GHSA-h49f-mhmm-jx4w)

A vulnerability identified as critical has been detected in ToolJet up to 3.20.178-lt/169.254.169.254.nip.io . The impacted element is an unknown function of the component RestAPI Data Source . This m…

VulDB Read →
← Prev 23 / 432 Next →