Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

143 New today

59,294 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

202

May 22

May 23

111

May 24

204

May 25

336

May 26

455

May 27

326

May 28

451

May 29

206

May 30

May 31

417

Jun 1

295

Jun 2

151

Jun 3

Jun 4

Critical

High

Medium

Low

Latest

CVE CVSS 4.7

OP-TEE vulnerable to ECDH private key recovery_CVE-2026-45614

OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Prior to version 4.11.0, on many of the ECDH shared secret paths, the public key isn't verified to be a point on th...

CVE-2026-45614 OP-TEE optee_os < 4.11.0

Jun 3, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.1	CVE-2026-42840	ERPNext 16.16.0 – Stored XSS in POS customer section via unescaped template literals_CVE-2026-42840 An authenticated user can persist arbitrary HTML/JavaScript in the email_id or mobile_no fields of a Customer record and trigger unescaped renderin...	Frappe	ERPNext 16.16.0	Jun 3, 2026	CVE
MEDIUM 4.8	CVE-2026-42839	ERPNext 16.16.0 – Stored XSS in POS cart item rendering_CVE-2026-42839 An authenticated ERPNext user with Item record edit permissions can persist arbitrary HTML/JavaScript in the item_name, description, or image field...	Frappe	ERPNext 16.16.0	Jun 3, 2026	CVE
CRITICAL 9.8	PACKETSTORM:222614	📄 MCPJam Inspector 1.4.2 Command Injection_PACKETSTORM:222614 This is an advanced Python proof of concept for CVE-2026-23744 demonstrating command injection through a vulnerable MCP API endpoint, leading to re...	N/A	N/A	Jun 3, 2026	PACKETSTORM
CRITICAL 9.8	7FE5A510-990A-	Exploit for Prototype Pollution in Cure53 Dompurify_7FE5A510-990A-5CCB-9427-6AA5D7B10937 No description provided...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
CRITICAL 9.8	393A755A-8E32-	Exploit for Stack-based Buffer Overflow in Microsoft_393A755A-8E32-59DA-B6AC-2DE1A68B3BB0 LongLogon · CVE-2026-41089 LongLogon is an unauthenticated, non-destructive precondition checker for CVE-2026-41089, a pre-auth stack buffer overfl...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
HIGH 8.8	472EEC26-F9C7-	coruna_472EEC26-F9C7-50CA-A4D6-2E1879CAC2F3 iOS Orchestrator — Coruna Web server, C2 listener, and interactive shell for the Coruna exploit chain CVE-2024-23222. Targets Safari on iOS 13–17.2...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
NONE	PACKETSTORM:222620	📄 Gogs Git Rebase Argument Injection / Remote Code Execution_PACKETSTORM:222620 This Metasploit module exploits an argument injection vulnerability in the pull request merge flow of Gogs versions less than or equal to 0.14.2 an...	N/A	N/A	Jun 3, 2026	PACKETSTORM
CRITICAL 9.8	93EFFA1D-01DF-	Exploit for Eval Injection in Geoserver_93EFFA1D-01DF-57C9-9826-139DBF9FD985 CVE-2024-36401 — Unauthenticated RCE in GeoServer A complete, reproducible study of CVE-2024-36401, an unauthenticated remote code execution flaw i...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
HIGH 8.8	CVE-2026-30650	CVE-2026-30650_CVE-2026-30650 A post-authentication remote buffer overflow vulnerability exists in the /cgi-bin/admin/eventtask.cgi endpoint of the admin interface of Vivotek FD...	Vivotek	Vivotek FD8136 FD8136-VVTK-0300a	Jun 2, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

OP-TEE vulnerable to ECDH private key recovery_CVE-2026-45614

Recent Advisories

ERPNext 16.16.0 – Stored XSS in POS customer section via unescaped template literals_CVE-2026-42840

ERPNext 16.16.0 – Stored XSS in POS cart item rendering_CVE-2026-42839

📄 MCPJam Inspector 1.4.2 Command Injection_PACKETSTORM:222614

Exploit for Prototype Pollution in Cure53 Dompurify_7FE5A510-990A-5CCB-9427-6AA5D7B10937

Exploit for Stack-based Buffer Overflow in Microsoft_393A755A-8E32-59DA-B6AC-2DE1A68B3BB0

coruna_472EEC26-F9C7-50CA-A4D6-2E1879CAC2F3

📄 Gogs Git Rebase Argument Injection / Remote Code Execution_PACKETSTORM:222620

Exploit for Eval Injection in Geoserver_93EFFA1D-01DF-57C9-9826-139DBF9FD985

CVE-2026-30650_CVE-2026-30650

Protect Your Attack Surface with RedGem

Security Intelligence
Feed