Threat Intelligence Feed

CVE-2026-48777 FileBrowser Quantum is a free, self-hosted, web-based file manager. Versions prior to 1.3.2-stable, 1.4.0-beta and 1.4.1 HIGH · CVE-2026-47750 stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Ima HIGH · CVE-2026-47747 stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Ima MED · CVE-2026-46448 In OpenStack Nova before 33.0.2, the server create API does not strip certain hint data. The resulting instance has no P CRIT · CVE-2026-22313 The device has a webserver that exposes a REST API authenticated with a token on the management network. By exploiting a HIGH · CVE-2026-22312 The device has a webserver that exposes a REST API authenticated with a constant token. The unauthenticated API can be u CVE-2026-12425 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in PowerSchool CVE-2026-12117 Improper access control in the social login connection endpoint in Devolutions Server 2026.2.5 allows an authenticated CVE-2026-12105 Improper access control in Devolutions Server 2026.2.5, 2026.1.21 allows an authenticated user to access attachments vi CVE-2026-11890 Improper access control in PAM account discovery results in Devolutions Server 2026.2.5, 2026.1.21 allows an authentica HIGH · CVE-2026-10303 In ServerCo getssl version 2.49 and prior, the ACME challenge token returned to the client was not strictly validated ag CVE-2026-0165 In several functions of the RTCP packet decoder, there is a possible out-of-bounds read due to a missing bounds check. T CVE-2026-0164 In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code executio CVE-2026-0162 In ParsePayloads of AudioSdpParser.cpp, there is a possible memory corruption due to type confusion. This could lead to CVE-2026-0161 In numberOfReportBlocks of RtpSession.cpp, there is a possible out of bounds write due to an integer overflow. This coul CVE-2026-0160 In TextRtpPayloadDecoderNode::DecodeT140 of TextRtpPayloadDecoderNode.cpp, there is a possible out of bounds write due t CVE-2026-0158 In Camera, there is a possible unauthorized way to access photos due to a missing permission check. This could lead to l CVE-2026-0157 In RtcpHeader::decodeRtcpHeader, there is a possible OOB read due to a missing bounds check. This could lead to remote i CVE-2026-0156 In checkSsrcCollisionOnRcv of RtpSession.cpp, there is a possible memory safety issue due to a missing null check. This CVE-2026-0155 In ImsMediaBitReader::ReadByteBuffer, there is a possible OOB read due to a missing bounds check. This could lead to rem CVE-2026-0154 In Modem, there is a possible way to trigger a modem crash during a SIP REFER request due to memory corruption. This cou CVE-2026-0153 In Write of msg_to_host_buffer.cc, there is a possible out of bounds write due to an incorrect bounds check. This could CVE-2026-0152 In OSMMapPMRGeneric of pmr_os.c, there is a possible way to leverage a system call to system call to maliciously expand CVE-2026-0151 In IntfGraphCreate of intfgraph.c, there is a possible out of bounds write due to an integer overflow. This could lead t CVE-2026-0150 In ExecuteGraph command handler of EdgeTPU firmware, there is a possible out of bounds write due to an integer overflow. CVE-2026-0149 In RtpSession::rtpSendRtcpPacket, there is a possible OOB write due to a heap buffer overflow. This could lead to remote CVE-2026-0148 In multiple functions of VideoRtpPayloadDecoderNode.cpp, there is a possible out of bounds write due to an integer overf CVE-2026-0147 In __mfc_core_nal_q_get_dec_metadata_sei_nal of mfc_core_nal_q.c, there is a possible out of bounds write due to a missi CVE-2026-0146 In mfc_core_get_dec_metadata_sei_nal of mfc_core_reg_api.c, there is a possible out of bounds write due to a missing bou CVE-2026-0145 In keymint, there is a possible Permission Bypass due to a logic error in the code. This could lead to local information CVE-2026-0144 In writeAocCommand of AocAudioCodec.cpp, there is a possible memory safety issue due to a missing bounds check. This cou CVE-2026-0143 In lwis_device_external_event_emit of lwis_event.c, there is a possible memory corruption due to a use after free. This CVE-2026-0142 In iavb_parse_key_data of avb_rsa.c, there is a possible out of bounds read due to improper input validation. This could CVE-2026-0141 In decodeAppPacket of RtcpAppPacket.cpp, there is a possible OOB read due to a missing bounds check. This could lead to CVE-2026-0140 In RtpPacket::decodePacket, there is a possible out-of-bounds read due to an integer overflow. This could lead to remote CVE-2026-0139 In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code executio CVE-2026-0138 In lwis_io_buffer_write of lwis_io_buffer.c, there is a possible out of bounds write due to memory corruption. This coul CVE-2026-0137 In edgetpu_sync_fence_group_shutdown() of edgetpu-dmabuf.c, there is a possible elevation of privilege due to a use afte CVE-2026-0136 In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of serv CVE-2026-0135 In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead to remote code execution CVE-2026-48777 FileBrowser Quantum is a free, self-hosted, web-based file manager. Versions prior to 1.3.2-stable, 1.4.0-beta and 1.4.1 HIGH · CVE-2026-47750 stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Ima HIGH · CVE-2026-47747 stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Ima MED · CVE-2026-46448 In OpenStack Nova before 33.0.2, the server create API does not strip certain hint data. The resulting instance has no P CRIT · CVE-2026-22313 The device has a webserver that exposes a REST API authenticated with a token on the management network. By exploiting a HIGH · CVE-2026-22312 The device has a webserver that exposes a REST API authenticated with a constant token. The unauthenticated API can be u CVE-2026-12425 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in PowerSchool CVE-2026-12117 Improper access control in the social login connection endpoint in Devolutions Server 2026.2.5 allows an authenticated CVE-2026-12105 Improper access control in Devolutions Server 2026.2.5, 2026.1.21 allows an authenticated user to access attachments vi CVE-2026-11890 Improper access control in PAM account discovery results in Devolutions Server 2026.2.5, 2026.1.21 allows an authentica HIGH · CVE-2026-10303 In ServerCo getssl version 2.49 and prior, the ACME challenge token returned to the client was not strictly validated ag CVE-2026-0165 In several functions of the RTCP packet decoder, there is a possible out-of-bounds read due to a missing bounds check. T CVE-2026-0164 In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code executio CVE-2026-0162 In ParsePayloads of AudioSdpParser.cpp, there is a possible memory corruption due to type confusion. This could lead to CVE-2026-0161 In numberOfReportBlocks of RtpSession.cpp, there is a possible out of bounds write due to an integer overflow. This coul CVE-2026-0160 In TextRtpPayloadDecoderNode::DecodeT140 of TextRtpPayloadDecoderNode.cpp, there is a possible out of bounds write due t CVE-2026-0158 In Camera, there is a possible unauthorized way to access photos due to a missing permission check. This could lead to l CVE-2026-0157 In RtcpHeader::decodeRtcpHeader, there is a possible OOB read due to a missing bounds check. This could lead to remote i CVE-2026-0156 In checkSsrcCollisionOnRcv of RtpSession.cpp, there is a possible memory safety issue due to a missing null check. This CVE-2026-0155 In ImsMediaBitReader::ReadByteBuffer, there is a possible OOB read due to a missing bounds check. This could lead to rem CVE-2026-0154 In Modem, there is a possible way to trigger a modem crash during a SIP REFER request due to memory corruption. This cou CVE-2026-0153 In Write of msg_to_host_buffer.cc, there is a possible out of bounds write due to an incorrect bounds check. This could CVE-2026-0152 In OSMMapPMRGeneric of pmr_os.c, there is a possible way to leverage a system call to system call to maliciously expand CVE-2026-0151 In IntfGraphCreate of intfgraph.c, there is a possible out of bounds write due to an integer overflow. This could lead t CVE-2026-0150 In ExecuteGraph command handler of EdgeTPU firmware, there is a possible out of bounds write due to an integer overflow. CVE-2026-0149 In RtpSession::rtpSendRtcpPacket, there is a possible OOB write due to a heap buffer overflow. This could lead to remote CVE-2026-0148 In multiple functions of VideoRtpPayloadDecoderNode.cpp, there is a possible out of bounds write due to an integer overf CVE-2026-0147 In __mfc_core_nal_q_get_dec_metadata_sei_nal of mfc_core_nal_q.c, there is a possible out of bounds write due to a missi CVE-2026-0146 In mfc_core_get_dec_metadata_sei_nal of mfc_core_reg_api.c, there is a possible out of bounds write due to a missing bou CVE-2026-0145 In keymint, there is a possible Permission Bypass due to a logic error in the code. This could lead to local information CVE-2026-0144 In writeAocCommand of AocAudioCodec.cpp, there is a possible memory safety issue due to a missing bounds check. This cou CVE-2026-0143 In lwis_device_external_event_emit of lwis_event.c, there is a possible memory corruption due to a use after free. This CVE-2026-0142 In iavb_parse_key_data of avb_rsa.c, there is a possible out of bounds read due to improper input validation. This could CVE-2026-0141 In decodeAppPacket of RtcpAppPacket.cpp, there is a possible OOB read due to a missing bounds check. This could lead to CVE-2026-0140 In RtpPacket::decodePacket, there is a possible out-of-bounds read due to an integer overflow. This could lead to remote CVE-2026-0139 In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code executio CVE-2026-0138 In lwis_io_buffer_write of lwis_io_buffer.c, there is a possible out of bounds write due to memory corruption. This coul CVE-2026-0137 In edgetpu_sync_fence_group_shutdown() of edgetpu-dmabuf.c, there is a possible elevation of privilege due to a use afte CVE-2026-0136 In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of serv CVE-2026-0135 In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead to remote code execution