ABRT/libreport Security Advisory — Four TOCTOU and race condition vulnerabilities have been disclosed in ABRT (Automatic Bug Reporting Tool) and libreport, the crash reporting infrastructure … Read More
CVE-2026-11769 — Grafana Operator Critical | Path Traversal & Privilege Escalation | Kubernetes Operator Affects Grafana Operator versions prior to 5.24.0. Rated CRITICAL by the … Read More
CVE-2026-54420 \u2014 LiteSpeed cPanel Plugin Symlink Mishandling CVSS 8.5 (HIGH) | CWE-61: UNIX Symbolic Link Following | Affects LiteSpeed cPanel Plugin < 2.4.8 A user ... Read More
Vulnerability Intelligence Report — June 14, 2026 Coverage: June 1–14, 2026 | New CISA KEV additions (period): 12 | New KEV since yesterday: 0 | … Read More
Arch Linux AUR Supply Chain Compromise — A massive supply chain attack has compromised over 400 packages in the Arch User Repository (AUR), distributing a … Read More
VMware Tanzu has published a coordinated security advisory covering eight new vulnerabilities across multiple Spring ecosystem modules. The affected projects include Spring Integration (1 CVE), … Read More
GitLab Security Advisory — June 2026 (Second Release) 4 New CVEs | CVSS Range: 5.3 – 7.5 | All fixed in GitLab 18.10.8, 18.11.5, and … Read More
CVE: CVE-2026-8464 | CVSS 4.0: 8.3 (HIGH) | CWE: CWE-22 | Vendor: Golem | Product: Golem OEE MES | Affected versions: < 11.6.0 What Is … Read More
CVE: CVE-2026-10795 | CVSS 3.1: 8.1 (HIGH) | CWE: CWE-306 | Vendor: UpdraftPlus | Product: UpdraftPlus: WP Backup & Migration Plugin | Affected versions: ≤ … Read More
CVE-2026-11561 is a critical vulnerability in Soagen Apinizer, an API management platform, with a CVSS score of 9.8 (CRITICAL). Classified under CWE-917: Expression Language Injection, … Read More
