Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

208 New today

59,492 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

May 23

111

May 24

204

May 25

336

May 26

455

May 27

326

May 28

451

May 29

206

May 30

May 31

417

Jun 1

295

Jun 2

151

Jun 3

208

Jun 4

Jun 5

Critical

High

Medium

Low

Latest

CVE CVSS 6.5

IRIS has an Excessive Data Exposure issue_CVE-2026-42539

IRIS is a web collaborative platform that helps incident responders share technical details during investigations. Versions prior to 2.4.28 return sensitive data to the user which are not required for the client’s operation. Version 2.4.28 contains a patch.

CVE-2026-42539 dfir-iris iris-web < 2.4.28

Jun 4, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.4	CVE-2026-44393	CVE-2026-44393_CVE-2026-44393 An issue was discovered in OpenStack oslo.messaging 1.0.0 through 17.3.0. The oslo.messaging RabbitMQ driver does not perform TLS hostname verifica...	n/a	n/a n/a	Jun 4, 2026	CVE
HIGH 8.8	CVE-2026-43985	Taultulli has CSRF in /configUpdate via missing anti-CSRF and method restriction that allows admin credential takeover_CVE-2026-43985 Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose `configUpdate` as a state-changing a...	Tautulli	Tautulli < 2.17.1	Jun 4, 2026	CVE
HIGH 8.9	CVE-2026-43984	Tautulli has stored XSS in logFile via guest-controlled log_js_errors input_CVE-2026-43984 Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose `log_js_errors` to any authenticated...	Tautulli	Tautulli < 2.17.1	Jun 4, 2026	CVE
CRITICAL 9.1	CVE-2026-50076	Apache Fory: Java ReplaceResolverSerializer deserialization checks bypass_CVE-2026-50076 Deserialization of Untrusted Data in the Java replace-resolve path in Apache Fory fory-core Java SDK before 1.1.0 on Java/JVM platforms allows a re...	Apache Software Foundation	Apache Fory	Jun 4, 2026	CVE
HIGH 7.3	CVE-2026-49942	Net::CIDR::Set versions through 0.20 for Perl did not validate network masks_CVE-2026-49942 Net::CIDR::Set versions through 0.20 for Perl did not validate network masks. The mask portion of a network mask could contain Unicode digits such...	RRWO	Net::CIDR::Set	Jun 4, 2026	CVE
HIGH 7.5	CVE-2026-49941	Net::CIDR::Set versions through 0.20 for Perl did not validate IP addresses_CVE-2026-49941 Net::CIDR::Set versions through 0.20 for Perl did not validate IP addresses. The add method called the _encode method to parse addresses. If the a...	RRWO	Net::CIDR::Set	Jun 4, 2026	CVE
MEDIUM 6.5	CVE-2026-49940	Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks_CVE-2026-49940 Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One (U+0661) wer...	RRWO	Net::CIDR::Set	Jun 4, 2026	CVE
HIGH 7.5	CVE-2026-46741	Etsy::StatsD versions through 1.002002 for Perl allow metric injections_CVE-2026-46741 Etsy::StatsD versions through 1.002002 for Perl allow metric injections. The metric names and values are not checked for newlines, colons or pipes...	SANBEG	Etsy::StatsD	Jun 4, 2026	CVE
MEDIUM 5.3	CVE-2026-46739	Net::Statsd versions before 0.13 for Perl allow metric injections_CVE-2026-46739 Net::Statsd versions before 0.13 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generat...	COSIMO	Net::Statsd	Jun 4, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

IRIS has an Excessive Data Exposure issue_CVE-2026-42539

Recent Advisories

CVE-2026-44393_CVE-2026-44393

Taultulli has CSRF in /configUpdate via missing anti-CSRF and method restriction that allows admin credential takeover_CVE-2026-43985

Tautulli has stored XSS in logFile via guest-controlled log_js_errors input_CVE-2026-43984

Apache Fory: Java ReplaceResolverSerializer deserialization checks bypass_CVE-2026-50076

Net::CIDR::Set versions through 0.20 for Perl did not validate network masks_CVE-2026-49942

Net::CIDR::Set versions through 0.20 for Perl did not validate IP addresses_CVE-2026-49941

Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks_CVE-2026-49940

Etsy::StatsD versions through 1.002002 for Perl allow metric injections_CVE-2026-46741

Net::Statsd versions before 0.13 for Perl allow metric injections_CVE-2026-46739

Protect Your Attack Surface with RedGem

Security Intelligence
Feed