Unofficial account to notify You about new CVE id's
CVE is a program that identifies, defines, and catalogs publicly disclosed cybersecurity vulnerabilities.
check out
@infosec.skyfleet.blue
🆘
@skyfleet.blueCVE-2026-1684 - Free5GC SMF PFCP UDP Endpoint pfcp_reports.go HandleReports denial of service
CVE ID : CVE-2026-1684
Published : Jan. 30, 2026, 3:16 p.m. | 54 minutes ago
Description : A vulnerability was found in Free5GC SMF up to 4.1.0. Affected by this issue is the fu...
CVE-2026-1684 - Free5GC SMF PFCP UDP Endpoint pfcp_reports.go HandleReports denial of service
A vulnerability was found in Free5GC SMF up to 4.1.0. Affected by this issue is the function HandleReports of the file /internal/context/pfcp_reports.go of the component PFCP UDP Endpoint. The manipulation results in denial of service. The attack can be executed remotely. It is advisable to implement a patch to correct …
CVE-2026-1685 - D-Link DIR-823X Login sub_40AC74 excessive authentication
CVE ID : CVE-2026-1685
Published : Jan. 30, 2026, 3:16 p.m. | 54 minutes ago
Description : A vulnerability was identified in D-Link DIR-823X 250416. This vulnerability affects the function sub_40AC...
CVE-2026-1685 - D-Link DIR-823X Login sub_40AC74 excessive authentication
A vulnerability was identified in D-Link DIR-823X 250416. This vulnerability affects the function sub_40AC74 of the component Login. Such manipulation leads to improper restriction of excessive authentication attempts. The attack may be performed from remote. This attack is characterized by high complexity. It is stated that the exploitability is difficult. …
CVE-2026-24855 - ChurchCRM has Stored Cross-Site Scripting (XSS) in Create Events in Church Calendar, Leading to Account Takeover
CVE ID : CVE-2026-24855
Published : Jan. 30, 2026, 3:08 p.m. | 1 hour, 1 minute ago
Description : ChurchCRM is an open-source church manageme...
CVE-2026-24855 - ChurchCRM has Stored Cross-Site Scripting (XSS) in Create Events in Church Calendar, Leading to Account Takeover
ChurchCRM is an open-source church management system. Versions prior to 6.7.2 have a Stored Cross-Site Scripting (XSS) vulnerability occurs in Create Events in Church Calendar. Users with low privileges can create XSS payloads in the Description field. This payload is stored in the database, and when other users view that …
CVE-2026-25050 - Vendure vulnerable to timing attack that enables user enumeration in NativeAuthenticationStrategy
CVE ID : CVE-2026-25050
Published : Jan. 30, 2026, 3:11 p.m. | 58 minutes ago
Description : Vendure is an open-source headless commerce platform. Prior to v...
CVE-2026-25050 - Vendure vulnerable to timing attack that enables user enumeration in NativeAuthenticationStrategy
Vendure is an open-source headless commerce platform. Prior to version 3.5.3, the `NativeAuthenticationStrategy.authenticate()` method is vulnerable to a timing attack that allows attackers to enumerate valid usernames (email addresses). In `packages/core/src/config/auth/native-authentication-strategy.ts`, the authenticate method returns immediately if a user is not found. The significant timing difference (~200-400ms for bcrypt vs …
CVE-2026-25128 - fast-xml-parser has RangeError DoS Numeric Entities Bug
CVE ID : CVE-2026-25128
Published : Jan. 30, 2026, 3:14 p.m. | 55 minutes ago
Description : fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without ...
CVE-2026-25128 - fast-xml-parser has RangeError DoS Numeric Entities Bug
fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C++ based libraries and no callback. In versions 4.3.6 through 5.3.3, a RangeError vulnerability exists in the numeric entity processing of fast-xml-parser when parsing XML with out-of-range entity code points (e.g., `�` …
CVE-2026-24854 - Church CRM has SQL injection in PaddleNumEditor.php
CVE ID : CVE-2026-24854
Published : Jan. 30, 2026, 3:05 p.m. | 1 hour, 4 minutes ago
Description : ChurchCRM is an open-source church management system. A SQL Injection vulnerability exists in endpoint ...
CVE-2026-24854 - Church CRM has SQL injection in PaddleNumEditor.php
ChurchCRM is an open-source church management system. A SQL Injection vulnerability exists in endpoint `/PaddleNumEditor.php` in ChurchCRM prior to version 6.7.2. Any authenticated user, including one with zero assigned permissions, can exploit SQL injection through the `PerID` parameter. Version 6.7.2 contains a patch for the issue.
CVE-2025-7964 - Zigbee Router Denial of Service
CVE ID : CVE-2025-7964
Published : Jan. 30, 2026, 3:02 p.m. | 47 minutes ago
Description : After receiving a
malformed 802.15.4 MAC Data Request
the Zigbee Coordinator sends a ‘network leave’ request to Zigbee router re...
CVE-2025-7964 - Zigbee Router Denial of Service
After receiving a malformed 802.15.4 MAC Data Request the Zigbee Coordinator sends a ‘network leave’ request to Zigbee router resulting in the Zigbee Router getting stuck in a non-rejoinable state. If a suitable parent is not available, the end devices will be unable to rejoin. A manual recommissioning is required …
CVE-2026-22623 - HIKSEMI NAS Command Injection
CVE ID : CVE-2026-22623
Published : 30. Januar 2026 11:15 | 1 Stunde, 55 Minuten ago
Description : Due to insufficient input parameter validation on the interface, authenticated users of certain HIKSEMI NAS products can exec...
CVE-2026-22623 - HIKSEMI NAS Command Injection
Due to insufficient input parameter validation on the interface, authenticated users of certain HIKSEMI NAS products can execute arbitrary commands on the device by crafting specific messages.
CVE-2026-0709 - Hikvision Wireless Access Points Command Injection Vulnerability
CVE ID : CVE-2026-0709
Published : 30. Januar 2026 11:15 | 1 Stunde, 55 Minuten ago
Description : Some Hikvision Wireless Access Points are vulnerable to authenticated command execution due ...
CVE-2026-0709 - Hikvision Wireless Access Points Command Injection Vulnerability
Some Hikvision Wireless Access Points are vulnerable to authenticated command execution due to insufficient input validation. Attackers with valid credentials can exploit this flaw by sending crafted packets containing malicious commands to affected devices, leading to arbitrary command execution.
CVE-2026-22624 - HIKSEMI NAS Authentication Bypass
CVE ID : CVE-2026-22624
Published : 30. Januar 2026 11:15 | 1 Stunde, 55 Minuten ago
Description : Due to inadequate access control, authenticated users of certain HIKSEMI NAS products can manipulate other users' file re...
CVE-2026-22624 - HIKSEMI NAS Authentication Bypass
Due to inadequate access control, authenticated users of certain HIKSEMI NAS products can manipulate other users' file resources without proper authorization.
CVE-2026-22626 - HIKSEMI NAS Unvalidated Request Manipulation
CVE ID : CVE-2026-22626
Published : 30. Januar 2026 11:15 | 1 Stunde, 55 Minuten ago
Description : Due to insufficient input parameter validation on the interface, authenticated users of certain HIKSEMI NAS pr...
CVE-2026-22626 - HIKSEMI NAS Unvalidated Request Manipulation
Due to insufficient input parameter validation on the interface, authenticated users of certain HIKSEMI NAS products can cause abnormal device behavior by crafting specific messages.
CVE-2025-13176 - Local privilege escalation in ESET Inspect Connector for Windows
CVE ID : CVE-2025-13176
Published : 30. Januar 2026 12:18 | 52 Minuten ago
Description : Planting a custom configuration file
in
ESET Inspect Connector allow load a malicious DLL.
Sev...
CVE-2025-13176 - Local privilege escalation in ESET Inspect Connector for Windows
Planting a custom configuration file in ESET Inspect Connector allow load a malicious DLL.
CVE-2026-22625 - HIKSEMI NAS File Exposure Vulnerability
CVE ID : CVE-2026-22625
Published : 30. Januar 2026 11:15 | 1 Stunde, 55 Minuten ago
Description : Improper handling of filenames in certain HIKSEMI NAS products may lead to the exposure of sensitive system files.
...
CVE-2026-22625 - HIKSEMI NAS File Exposure Vulnerability
Improper handling of filenames in certain HIKSEMI NAS products may lead to the exposure of sensitive system files.
CVE-2025-26385 - Metasys product command injection vulnerability could allow remote SQL execution
CVE ID : CVE-2025-26385
Published : 30. Januar 2026 11:15 | 34 Minuten ago
Description : Johnson Controls Metasys component listed below have Improper Neutralization of Spec...
CVE-2025-26385 - Metasys product command injection vulnerability could allow remote SQL execution
Johnson Controls Metasys component listed below have Improper Neutralization of Special Elements used in a Command (Command Injection) Vulnerability . Successful exploitation of this vulnerability could allow remote SQL execution This issue affects * Metasys: Application and Data Server (ADS) installed with SQL Express deployed as part of the Metasys …
CVE-2026-1699 - Eclipse Theia GitHub Actions Code Execution Vulnerability
CVE ID : CVE-2026-1699
Published : 30. Januar 2026 10:15 | 1 Stunde, 34 Minuten ago
Description : In the Eclipse Theia Website repository, the GitHub Actions workflow .github/workflows/preview.yml ...
CVE-2026-1699 - Eclipse Theia GitHub Actions Code Execution Vulnerability
In the Eclipse Theia Website repository, the GitHub Actions workflow .github/workflows/preview.yml used pull_request_target trigger while checking out and executing untrusted pull request code. This allowed any GitHub user to execute arbitrary code in the repository's CI environment with access to repository secrets and a GITHUB_TOKEN with extensive write permissions (contents:write, …
CVE-2026-25210 - Apache Expat Buffer Overflow Vulnerability
CVE ID : CVE-2026-25210
Published : Jan. 30, 2026, 7:16 a.m. | 1 hour, 54 minutes ago
Description : In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because th...
CVE-2026-25210 - Apache Expat Buffer Overflow Vulnerability
In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation.
CVE-2026-25211 - Llama Stack Password Disclosure
CVE ID : CVE-2026-25211
Published : Jan. 30, 2026, 8:16 a.m. | 54 minutes ago
Description : Llama Stack (aka llama-stack) before 0.4.0rc3 does not censor the pgvector password in the initialization log.
Severity: 3.2 | ...
CVE-2026-25211 - Llama Stack Password Disclosure
Llama Stack (aka llama-stack) before 0.4.0rc3 does not censor the pgvector password in the initialization log.
CVE-2025-1395 - Sensitive Data Exposure in CoDeriApp's HeyGarson
CVE ID : CVE-2025-1395
Published : Jan. 30, 2026, 8:31 a.m. | 38 minutes ago
Description : Generation of Error Message Containing Sensitive Information vulnerability in Codriapp Innovation and Software Tech...
CVE-2025-1395 - Sensitive Data Exposure in CoDeriApp's HeyGarson
Generation of Error Message Containing Sensitive Information vulnerability in Codriapp Innovation and Software Technologies Inc. HeyGarson allows Fuzzing for application mapping.This issue affects HeyGarson: through 30012026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2026-22277 - Dell UnityVSA OS Command Injection
CVE ID : CVE-2026-22277
Published : Jan. 30, 2026, 8:27 a.m. | 43 minutes ago
Description : Dell UnityVSA, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS C...
CVE-2026-22277 - Dell UnityVSA OS Command Injection
Dell UnityVSA, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary command execution with root privileges.
CVE-2026-21418 - Dell Unity OS Command Injection
CVE ID : CVE-2026-21418
Published : Jan. 30, 2026, 8:38 a.m. | 31 minutes ago
Description : Dell Unity, version(s) 5.5.2 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Comma...
CVE-2026-21418 - Dell Unity OS Command Injection
Dell Unity, version(s) 5.5.2 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary command execution with root privileges.
CVE-2026-1680 - Local Privilege Escalation in Local Admin Service
CVE ID : CVE-2026-1680
Published : Jan. 30, 2026, 7:16 a.m. | 1 hour, 54 minutes ago
Description : Improper access control in the WCF endpoint in Edgemo (now owned by Danoffice IT) Local Admin Service 1.2....
CVE-2026-1680 - Local Privilege Escalation in Local Admin Service
Improper access control in the WCF endpoint in Edgemo (now owned by Danoffice IT) Local Admin Service 1.2.7.23180 on Windows allows a local user to escalate their privileges to local administrator via direct communication with the LocalAdminService.exe named pipe, bypassing client-side group membership restrictions.
CVE-2026-0963 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Crafty Controller
CVE ID : CVE-2026-0963
Published : Jan. 30, 2026, 7:16 a.m. | 33 minutes ago
Description : An input neutralization vulnerability in the File Operations API...
CVE-2026-0963 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Crafty Controller
An input neutralization vulnerability in the File Operations API Endpoint component of Crafty Controller allows a remote, authenticated attacker to perform file tampering and remote code execution via path traversal.
CVE-2026-0805 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Crafty Controller
CVE ID : CVE-2026-0805
Published : Jan. 30, 2026, 7:16 a.m. | 33 minutes ago
Description : An input neutralization vulnerability in the Backup Configuratio...
CVE-2026-0805 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Crafty Controller
An input neutralization vulnerability in the Backup Configuration component of Crafty Controller allows a remote, authenticated attacker to perform file tampering and remote code execution via path traversal.
CVE-2026-24728 - Interinfo DreamMaker - Missing Authentication for Critical Function
CVE ID : CVE-2026-24728
Published : Jan. 30, 2026, 3:48 a.m. | 1 hour, 22 minutes ago
Description : A missing authentication for critical function vulnerability in the /servlet/baServer3...
CVE-2026-24728 - Interinfo DreamMaker - Missing Authentication for Critical Function
A missing authentication for critical function vulnerability in the /servlet/baServer3 endpoint of Interinfo DreamMaker versions before 2025/10/22 allows remote attackers to access exposed administrative functionality without prior authentication.
CVE-2026-24714 - NETGEAR Telnet Enable Remote Command Execution
CVE ID : CVE-2026-24714
Published : Jan. 30, 2026, 3:53 a.m. | 1 hour, 17 minutes ago
Description : Some end of service NETGEAR products provide "TelnetEnable" functionality, which allows a magic packet to a...
CVE-2026-24714 - NETGEAR Telnet Enable Remote Command Execution
Some end of service NETGEAR products provide "TelnetEnable" functionality, which allows a magic packet to activate telnet service on the box.
CVE-2026-24729 - Interinfo DreamMaker - Unrestricted Upload of File with Dangerous Type
CVE ID : CVE-2026-24729
Published : Jan. 30, 2026, 3:50 a.m. | 1 hour, 20 minutes ago
Description : An unrestricted upload of file with dangerous type vulnerability in the file upload...
CVE-2026-24729 - Interinfo DreamMaker - Unrestricted Upload of File with Dangerous Type
An unrestricted upload of file with dangerous type vulnerability in the file upload function of Interinfo DreamMaker versions before 2025/10/22 allows remote attackers to execute arbitrary system commands via a malicious class file.
CVE-2026-1638 - Tenda AC21 mDMZSetCfg command injection
CVE ID : CVE-2026-1638
Published : Jan. 30, 2026, 12:15 a.m. | 54 minutes ago
Description : A security flaw has been discovered in Tenda AC21 1.1.1.1/1.dmzip/16.03.08.16. The impacted element is the function mDMZSet...
CVE-2026-1638 - Tenda AC21 mDMZSetCfg command injection
A security flaw has been discovered in Tenda AC21 1.1.1.1/1.dmzip/16.03.08.16. The impacted element is the function mDMZSetCfg of the file /goform/mDMZSetCfg. The manipulation of the argument dmzIp results in command injection. The attack can be executed remotely. The exploit has been released to the public and may be used for …
CVE-2025-15322 - Tanium addressed an improper access controls vulnerability in Tanium Server.
CVE ID : CVE-2025-15322
Published : Jan. 30, 2026, 12:20 a.m. | 49 minutes ago
Description : Tanium addressed an improper access controls vulnerability in Tanium Server.
Seve...
CVE-2025-15322 - Tanium addressed an improper access controls vulnerability in Tanium Server.
Tanium addressed an improper access controls vulnerability in Tanium Server.
CVE-2026-1665 - Command Injection in nvm via NVM_AUTH_HEADER in wget code path
CVE ID : CVE-2026-1665
Published : Jan. 29, 2026, 11:16 p.m. | 1 hour, 54 minutes ago
Description : A command injection vulnerability exists in nvm (Node Version Manager) versions 0.40.3 and b...
CVE-2026-1665 - Command Injection in nvm via NVM_AUTH_HEADER in wget code path
A command injection vulnerability exists in nvm (Node Version Manager) versions 0.40.3 and below. The nvm_download() function uses eval to execute wget commands, and the NVM_AUTH_HEADER environment variable was not sanitized in the wget code path (though it was sanitized in the curl code path). An attacker who can set …
CVE-2026-1637 - Tenda AC21 AdvSetMacMtuWan fromAdvSetMacMtuWan stack-based overflow
CVE ID : CVE-2026-1637
Published : Jan. 29, 2026, 11:16 p.m. | 2 hours, 21 minutes ago
Description : A vulnerability was identified in Tenda AC21 16.03.08.16. The affected element is the ...
CVE-2026-1637 - Tenda AC21 AdvSetMacMtuWan fromAdvSetMacMtuWan stack-based overflow
A vulnerability was identified in Tenda AC21 16.03.08.16. The affected element is the function fromAdvSetMacMtuWan of the file /goform/AdvSetMacMtuWan. The manipulation leads to stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
CVE-2025-69516 - Amidaware Tactical RMM SSTI Vulnerability
CVE ID : CVE-2025-69516
Published : Jan. 29, 2026, 8:16 p.m. | 5 hours, 21 minutes ago
Description : A Server-Side Template Injection (SSTI) vulnerability in the /reporting/templates/preview/ endpoint of Amidawar...
CVE-2025-69516 - Amidaware Tactical RMM SSTI Vulnerability
A Server-Side Template Injection (SSTI) vulnerability in the /reporting/templates/preview/ endpoint of Amidaware Tactical RMM, affecting versions equal to or earlier than v1.3.1, allows low-privileged users with Report Viewer or Report Manager permissions to achieve remote command execution on the server. This occurs due to improper sanitization of the template_md parameter, …
CVE-2026-25117 -
pwn.college DOJO vulnerable to sandbox escape leading to arbitrary javascript execution
CVE ID : CVE-2026-25117
Published : Jan. 29, 2026, 10:15 p.m. | 3 hours, 21 minutes ago
Description :
pwn.college DOJO is an education platform for learning cybersecu...
CVE-2026-25117 - pwn.college DOJO vulnerable to sandbox escape leading to arbitrary javascript execution
pwn.college DOJO is an education platform for learning cybersecurity. Prior to commit e33da14449a5abcff507e554f66e2141d6683b0a, missing sandboxing on `/workspace/*` routes allows challenge authors to inject arbitrary javascript which runs on the same origin as `http[:]//dojo[.]website`. This is a sandbox escape leading to arbitrary javascript execution as the dojo's origin. A challenge author …
CVE-2026-1623 - Totolink A7000R cstecgi.cgi setUpgradeFW command injection
CVE ID : CVE-2026-1623
Published : Jan. 29, 2026, 9:15 p.m. | 51 minutes ago
Description : A weakness has been identified in Totolink A7000R 4.1cu.4154. Impacted is the function setUpgradeFW of th...
CVE-2026-1623 - Totolink A7000R cstecgi.cgi setUpgradeFW command injection
A weakness has been identified in Totolink A7000R 4.1cu.4154. Impacted is the function setUpgradeFW of the file /cgi-bin/cstecgi.cgi. This manipulation of the argument FileName causes command injection. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks.
CVE-2026-25063 - gradle-completion has a Bash command injection issue
CVE ID : CVE-2026-25063
Published : Jan. 29, 2026, 9:47 p.m. | 20 minutes ago
Description : gradle-completion provides Bash and Zsh completion support for Gradle. A command injection vulnerability was ...
CVE-2026-25063 - gradle-completion has a Bash command injection issue
gradle-completion provides Bash and Zsh completion support for Gradle. A command injection vulnerability was found in gradle-completion up to and including 9.3.0 that allows arbitrary code execution when a user triggers Bash tab completion in a project containing a malicious Gradle build file. The `gradle-completion` script for Bash fails to …
CVE-2026-25116 - Runtipi vulnerable to unauthenticated docker-compose.yml Overwrite via Path Traversal
CVE ID : CVE-2026-25116
Published : Jan. 29, 2026, 9:49 p.m. | 17 minutes ago
Description : Runtipi is a personal homeserver orchestrator. Starting in version 4.5.0 and...
CVE-2026-25116 - Runtipi vulnerable to unauthenticated docker-compose.yml Overwrite via Path Traversal
Runtipi is a personal homeserver orchestrator. Starting in version 4.5.0 and prior to version 4.7.2, an unauthenticated Path Traversal vulnerability in the `UserConfigController` allows any remote user to overwrite the system's `docker-compose.yml` configuration file. By exploiting insecure URN parsing, an attacker can replace the primary stack configuration with a malicious …
CVE-2026-24845 - malcontent's OCI image scanning could expose registry credentials
CVE ID : CVE-2026-24845
Published : Jan. 29, 2026, 9:02 p.m. | 1 hour, 5 minutes ago
Description : malcontent discovers supply-chain compromises through. context, differential analysis, an...
CVE-2026-24845 - malcontent's OCI image scanning could expose registry credentials
malcontent discovers supply-chain compromises through. context, differential analysis, and YARA. Starting in version 0.10.0 and prior to version 1.20.3, malcontent could be made to expose Docker registry credentials if it scanned a specially crafted OCI image reference. malcontent uses google/go-containerregistry for OCI image pulls, which by default uses the Docker …
CVE-2026-25046 - [Kimi VS Code] Command Injection in publish scripts vsix-publish.js and ovsx-publish.js
CVE ID : CVE-2026-25046
Published : Jan. 29, 2026, 9:37 p.m. | 30 minutes ago
Description : Kimi Agent SDK is a set of libraries that expose the Kimi Code (Kimi CLI) ...
CVE-2026-25046 - [Kimi VS Code] Command Injection in publish scripts vsix-publish.js and ovsx-publish.js
Kimi Agent SDK is a set of libraries that expose the Kimi Code (Kimi CLI) agent runtime in applications. The vsix-publish.js and ovsx-publish.js scripts pass filenames to execSync() as shell command strings. Prior to version 0.1.6, filenames containing shell metacharacters like $(cmd) could execute arbitrary commands. Note: This vulnerability exists …
CVE-2026-24687 - Umbraco.Forms has path traversal and file enumeration vulnerability in Linux/Mac
CVE ID : CVE-2026-24687
Published : Jan. 29, 2026, 8:16 p.m. | 1 hour, 51 minutes ago
Description : Umbraco Forms is a form builder that integrates with the Umbraco content ...
CVE-2026-24687 - Umbraco.Forms has path traversal and file enumeration vulnerability in Linux/Mac
Umbraco Forms is a form builder that integrates with the Umbraco content management system. It's possible for an authenticated backoffice-user to enumerate and traverse paths/files on the systems filesystem and read their contents, on Mac/Linux Umbraco installations using Forms. As Umbraco Cloud runs in a Windows environment, Cloud users aren't …
CVE-2026-24905 - Inspektor Gadget has a Command Injection vulnerability in
Makefile.build
CVE ID : CVE-2026-24905
Published : Jan. 29, 2026, 9:29 p.m. | 38 minutes ago
Description : Inspektor Gadget is a set of tools and framework for data collection and system inspectio...
CVE-2026-24905 - Inspektor Gadget has a Command Injection vulnerability in Makefile.build
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF. The `ig` binary provides a subcommand for image building, used to generate custom gadget OCI images. A part of this functionality is implemented in the file `inspektor-gadget/cmd/common/image/build.go`. …
CVE-2026-24904 - TrustTunnel has `client_random_prefix` rule bypass via fragmented or partial TLS ClientHello
CVE ID : CVE-2026-24904
Published : Jan. 29, 2026, 9:19 p.m. | 47 minutes ago
Description : TrustTunnel is an open-source VPN protocol with a rule bypass issue i...
CVE-2026-24904 - TrustTunnel has `client_random_prefix` rule bypass via fragmented or partial TLS ClientHello
TrustTunnel is an open-source VPN protocol with a rule bypass issue in versions prior to 0.9.115. In `tls_listener.rs`, `TlsListener::listen()` peeks 1024 bytes and calls `extract_client_random(...)`. If `parse_tls_plaintext` fails (for example, a fragmented/partial ClientHello split across TCP writes), `extract_client_random` returns `None`. In `rules.rs`, `RulesEngine::evaluate` only evaluates `client_random_prefix` when `client_random` is `Some(...)`. …
CVE-2026-25047 - deepHas vulnerable to Prototype Pollution via constructor.prototype
CVE ID : CVE-2026-25047
Published : Jan. 29, 2026, 9:39 p.m. | 27 minutes ago
Description : deepHas provides a test for the existence of a nested object key and optionally returns that k...
CVE-2026-25047 - deepHas vulnerable to Prototype Pollution via constructor.prototype
deepHas provides a test for the existence of a nested object key and optionally returns that key. A prototype pollution vulnerability exists in version 1.0.7 of the deephas npm package that allows an attacker to modify global object behavior. This issue was fixed in version 1.0.8.
CVE-2026-24902 - TrustTunnel has SSRF and private network restriction bypass via numeric address destinations
CVE ID : CVE-2026-24902
Published : Jan. 29, 2026, 9:21 p.m. | 45 minutes ago
Description : TrustTunnel is an open-source VPN protocol with a server-side request...
CVE-2026-24902 - TrustTunnel has SSRF and private network restriction bypass via numeric address destinations
TrustTunnel is an open-source VPN protocol with a server-side request forgery and and private network restriction bypass in versions prior to 0.9.114. In `tcp_forwarder.rs`, SSRF protection for `allow_private_network_connections = false` was only applied in the `TcpDestination::HostName(peer)` path. The `TcpDestination::Address(peer) => peer` path proceeded to `TcpStream::connect()` without equivalent checks (for example …
CVE-2026-25061 - tcpflow has TIM Element OOB Write in wifipcap
CVE ID : CVE-2026-25061
Published : Jan. 29, 2026, 9:42 p.m. | 24 minutes ago
Description : tcpflow is a TCP/IP packet demultiplexer. In versions up to and including 1.61, wifipcap parses 802.11 management fr...
CVE-2026-25061 - tcpflow has TIM Element OOB Write in wifipcap
tcpflow is a TCP/IP packet demultiplexer. In versions up to and including 1.61, wifipcap parses 802.11 management frame elements and performs a length check on the wrong field when handling the TIM element. A crafted frame with a large TIM length can cause a 1-byte out-of-bounds write past `tim.bitmap[251]`. The …
CVE-2026-1340 - Ivanti Endpoint Manager Mobile Code Injection Remote Code Execution
CVE ID : CVE-2026-1340
Published : Jan. 29, 2026, 9:33 p.m. | 34 minutes ago
Description : A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated...
CVE-2026-1340 - Ivanti Endpoint Manager Mobile Code Injection Remote Code Execution
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.
CVE-2026-25040 - Budibase Vulnerable to Privilege Escalation via API Abuse – Creator Can Invite Users with Admin/Any Role
CVE ID : CVE-2026-25040
Published : Jan. 29, 2026, 9:33 p.m. | 33 minutes ago
Description : Budibase is a low code platform for creating internal too...
CVE-2026-25040 - Budibase Vulnerable to Privilege Escalation via API Abuse – Creator Can Invite Users with Admin/Any Role
Budibase is a low code platform for creating internal tools, workflows, and admin panels. In versions up to and including 3.26.3, a Creator-level user, who normally has no UI permission to invite users, can manipulate API requests to invite new users with any role, including Admin, Creator, or App Viewer, …
CVE-2026-1281 - Ivanti Endpoint Manager Mobile Code Injection Vulnerability
CVE ID : CVE-2026-1281
Published : Jan. 29, 2026, 9:31 p.m. | 36 minutes ago
Description : A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote ...
CVE-2026-1281 - Ivanti Endpoint Manager Mobile Code Injection Vulnerability
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.
CVE-2026-25068 - alsa-lib 1.2.15.2 Topology Decoder Heap-based Buffer Overflow
CVE ID : CVE-2026-25068
Published : Jan. 29, 2026, 8:16 p.m. | 1 hour, 51 minutes ago
Description : alsa-lib versions 1.2.2 up to and including 1.2.15.2, prior to commit 5f7fe33, contain a hea...
CVE-2026-25068 - alsa-lib 1.2.15.2 Topology Decoder Heap-based Buffer Overflow
alsa-lib versions 1.2.2 up to and including 1.2.15.2, prior to commit 5f7fe33, contain a heap-based buffer overflow in the topology mixer control decoder. The tplg_decode_control_mixer1() function reads the num_channels field from untrusted .tplg data and uses it as a loop bound without validating it against the fixed-size channel array (SND_TPLG_MAX_CHAN). …
CVE-2026-24846 - malcontent's archive extraction could write outside extraction directory
CVE ID : CVE-2026-24846
Published : Jan. 29, 2026, 9:12 p.m. | 55 minutes ago
Description : malcontent discovers supply-chain compromises through. context, differential analysis, an...
CVE-2026-24846 - malcontent's archive extraction could write outside extraction directory
malcontent discovers supply-chain compromises through. context, differential analysis, and YARA. Starting in version 1.8.0 and prior to version 1.20.3, malcontent could be made to create symlinks outside the intended extraction directory when scanning a specially crafted tar or deb archive. The `handleSymlink` function received arguments in the wrong order, causing …
CVE-2025-15288 - Tanium addressed an improper access controls vulnerability in Interact.
CVE ID : CVE-2025-15288
Published : Jan. 29, 2026, 9:15 p.m. | 51 minutes ago
Description : Tanium addressed an improper access controls vulnerability in Interact.
Severity: 3.1 |...
CVE-2025-15288 - Tanium addressed an improper access controls vulnerability in Interact.
Tanium addressed an improper access controls vulnerability in Interact.
CVE-2026-1453 - Missing Authentication for Critical Function in KiloView Encoder Series
CVE ID : CVE-2026-1453
Published : Jan. 29, 2026, 7:16 p.m. | 2 hours, 33 minutes ago
Description : A missing authentication for critical function vulnerability in KiloView Encoder Se...
CVE-2026-1453 - Missing Authentication for Critical Function in KiloView Encoder Series
A missing authentication for critical function vulnerability in KiloView Encoder Series could allow an unauthenticated attacker to create or delete administrator accounts. This vulnerability can grant the attacker full administrative control over the product.
