Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

143 New today
59,294 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

202
May 22
67
May 23
111
May 24
204
May 25
336
May 26
455
May 27
326
May 28
451
May 29
206
May 30
84
May 31
417
Jun 1
295
Jun 2
151
Jun 3
10
Jun 4
Critical
High
Medium
Low

Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 7.5 CVE-2026-42504

Quadratic complexity in WordDecoder.DecodeHeader in mime_CVE-2026-42504

Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU.

Go standard library mime CVE
MEDIUM 6.1 CVE-2026-6657

CORS Origin Validation Bypass in jupyter-server_CVE-2026-6657

A vulnerability in jupyter-server versions 1.12.0 through 2.17.0 allows an attacker to bypass CORS origin validation when the `allow_origin_pat` co...

jupyter jupyter/jupyter unspecified CVE
HIGH 7 CVE-2026-44281

GLPI vulnerable to unauthorized reading of a specific asset object_CVE-2026-44281

GLPI is a free asset and IT management software package. Starting in version 0.78 and prior to versions 10.0.25 and 11.0.7, an authenticated user w...

glpi-project glpi >= 11.0.0, < 11.0.7 CVE
HIGH 8.4 CVE-2026-42321

GLPI has stored XSS in asset locks_CVE-2026-42321

GLPI is a free asset and IT management software package. Starting in version 10.0.4 and prior to version 10.0.25, a technician can store an XSS pay...

glpi-project glpi >= 10.0.4, < 10.0.25 CVE
MEDIUM 5.9 CVE-2026-42320

GLPI vulnerable to arbitrary file access_CVE-2026-42320

GLPI is a free asset and IT management software package. Starting in version 0.50 and prior to versions 10.0.25 and 11.0.7, a technician can read a...

glpi-project glpi >= 11.0.0, < 11.0.7 CVE
HIGH 7 CVE-2026-42318

GLPI Vulnerable to Arbitrary Item Deletion via Planning Endpoint_CVE-2026-42318

GLPI is a free asset and IT management software package. Starting in version 9.5.0 and prior to versions 10.0.25 and 11.0.7, low privilege users wi...

glpi-project glpi >= 11.0.0, < 11.0.7 CVE
HIGH 7 CVE-2026-42317

GLPI vulnerable to arbitrary files deletion by technician_CVE-2026-42317

GLPI is a free asset and IT management software package. Starting in version 0.78 and prior to versions 10.0.25 and 11.0.7, a technician can delete...

glpi-project glpi >= 11.0.0, < 11.0.7 CVE
MEDIUM 6.3 CVE-2026-3276

Potential DoS via quadratic complexity in unicodedata.normalize()_CVE-2026-3276

unicodedata.normalize() can take excessive CPU time when processing specially crafted Unicode input containing long runs of combining characters wi...

Python Software Foundation CPython CVE
NONE THN:EBEF4474475...

Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT_THN:EBEF4474475574D09B83167D16690C6D

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhpQ6QXxFH4zkfeHGdcm1WXVcNXMpyJm-1dlZLbFCdp6rKDRhuwICzYaKaR-rCpn61qod6A1F98PZejZbmYux...

N/A N/A THN