Threat Intelligence Feed

Aggregating 7418 articles from trusted cybersecurity sources

LATEST CVEs
HIGH · CVE-2026-59858 Vim is an open source, command line text editor. Prior to 9.2.0735, the C omni-completion script in runtime/autoload/cco MED · CVE-2026-59857 Vim is an open source, command line text editor. Prior to 9.2.0725, the single-byte branch of spell_soundfold_sal() in s HIGH · CVE-2026-59856 Vim is an open source, command line text editor. Prior to 9.2.0736, the PHP omni-completion script in runtime/autoload/p CVE-2026-59855 SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, Asset.render in app/src/asset/index.ts in MED · CVE-2026-59854 SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, POST /api/file/globalCopyFiles accepts at MED · CVE-2026-59853 SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, the /api/storage/getCriteria endpoint ret HIGH · CVE-2026-59834 SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, the block search endpoint POST /api/searc CVE-2026-59833 SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, SiYuan renders note and package content t HIGH · CVE-2026-59832 SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, the /snippets/*filepath route handler ser MED · CVE-2026-59831 GitHub CLI (gh) is GitHub’s official command line tool. From 2.10.0 through 2.95.0, connecting to a malicious Codespace CVE-2026-57501 Zen is a firefox-based browser. Prior to 1.21.5b, Zen's glance and split-view context-menu actions, Open link in glance MED · CVE-2026-44342 New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. Prior to 0.12.0 HIGH · CVE-2026-33655 New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. Prior to 0.12.0 MED · CVE-2026-59828 Discourse is an open-source discussion platform. Prior to 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5, post revisions tha MED · CVE-2026-58144 Cotonti Siena 0.9.26 and earlier contains a stored cross-site scripting vulnerability that allows authenticated users wi HIGH · CVE-2026-58143 Cotonti Siena 0.9.26 and earlier contains a cross-site request forgery vulnerability that allows unauthenticated attacke CRIT · CVE-2026-58123 Hermes WebUI before 0.51.788 contains an unauthenticated remote code execution vulnerability that allows remote attacker CRIT · CVE-2026-58122 Hermes WebUI before 0.51.307 contains an authentication bypass vulnerability that allows unauthenticated remote attacker MED · CVE-2026-57054 A Use of Incorrectly-Resolved Name or Reference vulnerability in the URL filtering plugin of Juniper Networks Junos OS o MED · CVE-2026-57032 An Improper Handling of Undefined Parameters vulnerability in the packet forwarding engine (pfe) of Juniper Networks Jun MED · CVE-2026-57031 An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (PFE) of Juniper N MED · CVE-2026-57030 A Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in the packe MED · CVE-2026-57029 A Missing Synchronization vulnerability in the flow collector handler of Juniper Networks Junos OS Evolved on QFX Series HIGH · CVE-2026-57028 An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolve MED · CVE-2026-57027 A Missing Release of Memory after Effective Lifetime vulnerability in the packet forwarding engine (pfe) of Juniper Netw HIGH · CVE-2026-57026 An Improper Validation of Syntactic Correctness of Input vulnerability in the SIP plugin of Juniper Networks Junos OS on MED · CVE-2026-57025 A Return of Pointer Value Outside of Expected Range vulnerability in the fileio library of Juniper Networks Junos OS and MED · CVE-2026-57024 A Use of Multiple Resources with Duplicate Identifier vulnerability in the IKE daemon (iked) of Juniper Networks Junos O HIGH · CVE-2026-57023 An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Networks Junos OS MED · CVE-2026-57022 An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper N MED · CVE-2026-57021 An Out-of-bounds Write vulnerability in the http-gatekeeper (http-gk) of Juniper Networks Junos OS on SRX Series allows MED · CVE-2026-57020 An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (pfe) of Juniper N MED · CVE-2026-57019 An Improper Validation of Specified Quantity in Input vulnerability in the Packet Forwarding Engine (pfe) of Juniper Net MED · CVE-2026-55689 OpenFGA is an authorization/permission engine built for developers. Prior to 1.18.0, OpenFGA's OIDC authenticator skippe MED · CVE-2026-55605 DeepSeek MCP Server is an MCP server for DeepSeek V4. Starting in version 1.4.2 and prior to version 1.8.0, the self-hos HIGH · CVE-2026-55604 DeepSeek MCP Server is an MCP server for DeepSeek V4. Starting in version 1.4.2 and prior to version 1.7.0, the process- CVE-2026-55424 Discourse is an open-source discussion platform. Prior to 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5, a topic "featured CVE-2026-55170 OpenFGA is an authorization/permission engine built for developers. Prior to 1.18.0, when MySQL is being used as the dat HIGH · CVE-2026-53963 Discourse is an open-source discussion platform. Prior to 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5, a malicious second MED · CVE-2026-53962 Discourse is an open-source discussion platform. Prior to 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5, insufficient SVG s
3245 General 876 Vulnerability Disclosure 813 CVE 607 Campaigns 399 Data Breach 382 Malware

Trending Vendors

Latest News

Data Breaches