Recent Advisories

Severity ID Title Vendor Product Date Type
LOW 3.3 CVE-2025-9615

Networkmanager: networkmanager file access_CVE-2025-9615

A flaw was found in NetworkManager. The NetworkManager package allows access to files that may belong to other users. NetworkManager allows non-roo...

Red Hat Red Hat Enterprise Linux 10 CVE
LOW 3.7 CVE-2026-24656

Apache Karaf: Decanter log-socket collector has deserialization vulnerability_CVE-2026-24656

Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authen...

Apache Software Foundation Apache Karaf CVE
LOW 2.1 CVE-2026-24439

Tenda W30E V2 Lacks X-Content-Type-Options Header_CVE-2026-24439

Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) fail to include the X-Content-Type-Options: nosniff response header ...

Shenzhen Tenda Technology Co., Ltd. W30E V2 CVE
LOW 2.7 CVE-2026-0925

Tanium addressed an improper input validation vulnerability in Discover._CVE-2026-0925

Tanium addressed an improper input validation vulnerability in Discover.

Tanium Discover 4.10.134 CVE
LOW 1 CVE-2026-1408

Beetel 777VR1 UART weak password_CVE-2026-1408

A weakness has been identified in Beetel 777VR1 up to 01.00.09/01.00.09_55. This vulnerability affects unknown code of the component UART Interface...

Beetel 777VR1 01.00.09 CVE
LOW 1 CVE-2026-1409

Beetel 777VR1 UART excessive authentication_CVE-2026-1409

A security vulnerability has been detected in Beetel 777VR1 up to 01.00.09/01.00.09_55. This issue affects some unknown processing of the component...

Beetel 777VR1 01.00.09 CVE
LOW 1 CVE-2026-1407

Beetel 777VR1 UART information disclosure_CVE-2026-1407

A security flaw has been discovered in Beetel 777VR1 up to 01.00.09/01.00.09_55. This affects an unknown part of the component UART Interface. Perf...

Beetel 777VR1 01.00.09 CVE
LOW 2.7 CVE-2026-24130

Moonraker with LDAP Enabled Allows Malicious Search Filter Injection_CVE-2026-24130

Moonraker is a Python web server providing API access to Klipper 3D printing firmware. In versions 0.9.3 and below, instances configured with the "...

Arksine moonraker < 0.10.0 CVE
LOW 2.9 CVE-2026-24515

CVE-2026-24515_CVE-2026-24515

In libexpat before 2.7.4, XML_ExternalEntityParserCreate does not copy unknown encoding handler user data.

libexpat project libexpat CVE
LOW 2.7 CVE-2026-24140

MyTube has Mass Assignment via Settings Management_CVE-2026-24140

MyTube is a self-hosted downloader and player for several video websites. Versions 1.7.78 and below have a Mass Assignment vulnerability in the set...

franklioxygen MyTube < 1.7.79 CVE