A buffer overflow vulnerability in Perl’s DBI (Database Interface) module, tracked as CVE-2026-9698 (CVSS 9.8), allows attackers who can influence error text to trigger remote … Read More
Adobe has released critical security updates for ColdFusion and Campaign Classic. CVE-2026-47928 (ColdFusion, CVSS 9.6) allows arbitrary code execution with no user interaction required. CVE-2026-48303 … Read More
A remote code execution vulnerability in Azure Stack Edge, tracked as CVE-2026-47643 (CVSS 9.8), allows an unauthorised attacker to execute code over a network through … Read More
Microsoft’s June 2026 Patch Tuesday addresses five critical vulnerabilities in core Windows networking and kernel components. CVE-2026-45657 (CVSS 9.8) is a use-after-free in the Windows … Read More
A zero-day privilege escalation vulnerability in Microsoft Defender / Visual Studio Code, tracked as CVE-2026-47281 (CVSS 9.6) and dubbed “RoguePlanet,” grants attackers SYSTEM-level access on … Read More
Vulnerability Intelligence Report — June 10, 2026 Coverage: June 9–10, 2026 | Microsoft Patch Tuesday: 198 vulns, 3 zero-days | New CISA KEV: 3 | … Read More
A command injection vulnerability in BerriAI LiteLLM, tracked as CVE-2026-42271, allows any authenticated user — including holders of low-privilege internal-user API keys — to execute … Read More
An improper authentication vulnerability in Check Point Security Gateway’s IKEv1 key exchange, tracked as CVE-2026-50751, allows an unauthenticated remote attacker to bypass user authentication and … Read More
Vulnerability Intelligence Report — June 9, 2026 Coverage: June 8–9, 2026 | New CISA KEV additions: 2 | New items: 2 | KEV deadlines today: … Read More
An integer underflow vulnerability in Comodo Internet Security’s firewall driver Inspect.sys, tracked as CVE-2026-49494 (CVSS 7.5), allows crafted IPv6 packets to trigger unexpected behaviour in … Read More
