Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 8.2 CVE-2026-53489

containerd: Arbitrary host CRI log file read via symlink following in CRI checkpoint restore_CVE-2026-53489

containerd is an open-source container runtime. Versions prior to 2.3.2, 2.2.5 and 2.1.9 contain a bug where the CRI plugin restores container.log ...

containerd containerd >= 2.1.0, < 2.1.9 CVE
MEDIUM 6.5 CVE-2026-53466

ImageMagick: Heap Buffer Over-Read in XCF decoder due to integer conversion overflow_CVE-2026-53466

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-51 and 7.1.2-26, an integer...

ImageMagick ImageMagick < 6.9.13-51 CVE
MEDIUM 5.6 CVE-2026-50195

containerd: CRI checkpoint import allows local image tag poisoning_CVE-2026-50195

containerd is an open-source container runtime. Versions prior to 2.3.2, 2.2.5 and 2.1.9 contain a vulnerability in the CRI checkpoint import proce...

containerd containerd >= 2.1.0, < 2.1.9 CVE
CRITICAL 10 CVE-2026-50160

Mass Assignment via Onboarding Endpoint Allows Unauthenticated JWT_SECRET Overwrite_CVE-2026-50160

Hoppscotch is an API development ecosystem. In self-hosted deployments of hoppscotch-backend from version 2026.4.1 and earlier, the unauthenticated...

hoppscotch hoppscotch <= 2026.4.1 CVE
MEDIUM 5.3 CVE-2026-47262

containerd image-triggered runtime DoS via unbounded group parsing_CVE-2026-47262

containerd is an open-source container runtime. Versions prior to 1.7.33, 2.0.10, 2.1.9, 2.2.5 and 2.3.2, contain a vulnerability that allows a mal...

containerd containerd >= 1.7.0, < 1.7.33 CVE
HIGH 7.5 CVE-2026-52196

CVE-2026-52196_CVE-2026-52196

Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via the gohead/sub_4...

n/a n/a n/a CVE
CRITICAL 9.8 CVE-2026-37106

CVE-2026-37106_CVE-2026-37106

An issue in DokuWiki 2025-05-14b "Librarian" 56.2 allows a remote attacker to create an account via the register function in inc/auth.php. NOTE: th...

n/a n/a n/a CVE
HIGH 7.5 CVE-2026-52197

CVE-2026-52197_CVE-2026-52197

An issue in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via the gohead/sub_44af70 component

n/a n/a n/a CVE
HIGH 7.5 CVE-2026-52195

CVE-2026-52195_CVE-2026-52195

Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via the gohead/sub_4...

n/a n/a n/a CVE
MEDIUM 6.5 CVE-2026-14156

CVE-2026-14156_CVE-2026-14156

Insufficient policy enforcement in StorageAccessAPI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the rende...

Google Chrome 150.0.7871.47 CVE