Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

330 New today

65,663 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

Jun 26

Critical

High

Medium

Low

Latest

CVE CVSS 7.1

FOSSBilling: IDOR in Servicecustom Client API allows cross-client data access_CVE-2026-27708

FOSSBilling is a free, open-source billing and client management system. In versions 0.7.2 and prior, the Servicecustom Client API's __call method accepts an order_id parameter and fetches the associated order without verifying the authenticated client owns it, potentially exp...

CVE-2026-27708 FOSSBilling FOSSBilling < 0.8.0

Jun 24, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8	CVE-2026-23879	py7zr: Arbitrary File Write Vulnerability_CVE-2026-23879 py7zr is a Python-based library and utility to support 7zip archive compression, decompression, encryption and decryption. Versions 1.1.2 and below...	miurahr	py7zr < 1.1.3	Jun 24, 2026	CVE
NONE	40F18FB2-8F72-	AttackGraph_40F18FB2-8F72-57E1-B69E-6FC9A3A864D9 AttackGraph AI AttackGraph AI is an AI-powered application security platform that aggregates findings from multiple security tools, correlates rela...	N/A	N/A	Jun 24, 2026	GITHUBEXPLOIT
NONE	FAF88B42-E4E8-	ritesh-security-check_FAF88B42-E4E8-5324-9F0C-4D51FA034454 Ritesh Security Check A portable security-audit ruleset for AI-generated / "vibe-coded" apps Next.js, React, Vite, Supabase, Firebase. It's a do/do...	N/A	N/A	Jun 24, 2026	GITHUBEXPLOIT
HIGH 8.8	CVE-2026-0126	CVE-2026-0126_CVE-2026-0126 In WC-Radio, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional exe...	Google	Android Android kernel	Jun 16, 2026	CVE
HIGH 8.6	CVE-2026-49269	CVE-2026-49269_CVE-2026-49269 Apple M1 GPUs retain register file data between compute shader dispatches from different processes. A sandboxed Metal attacker app can run a GPU re...	Apple	Apple M1 GPU Legacy	Jun 24, 2026	CVE
LOW 2.1	CVE-2026-54906	concurrent-ruby: ReadWriteLock allows wrong-thread write release and stray read-release counter corruption_CVE-2026-54906 concurrent-ruby is a modern concurrency tools for Ruby. Prior to 1.3.7, Concurrent::ReadWriteLock#release_write_lock does not verify that the calli...	ruby-concurrency	concurrent-ruby < 1.3.7	Jun 24, 2026	CVE
LOW 2	CVE-2026-54905	concurrent-ruby: `ReentrantReadWriteLock` read-count overflow grants a write lock without exclusivity_CVE-2026-54905 concurrent-ruby is a modern concurrency tools for Ruby. Prior to 1.3.7, Concurrent::ReentrantReadWriteLock can incorrectly grant a write lock after...	ruby-concurrency	concurrent-ruby < 1.3.7	Jun 24, 2026	CVE
HIGH 8.2	CVE-2026-54904	concurrent-ruby: `AtomicReference#update` livelocks when the stored value is `Float::NAN`_CVE-2026-54904 concurrent-ruby is a modern concurrency tools for Ruby. Prior to 1.3.7, Concurrent::AtomicReference#update can enter a permanent busy retry loop wh...	ruby-concurrency	concurrent-ruby < 1.3.7	Jun 24, 2026	CVE
HIGH 7.5	CVE-2026-54297	Faraday: Uncontrolled recursion in NestedParamsEncoder allows stack exhaustion DoS via deeply nested query parameters_CVE-2026-54297 Faraday is an HTTP client library abstraction layer that provides a common interface over many adapters. From 1.0.0 until 1.10.6 and 2.14.3, Farada...	lostisland	faraday >= 1.0.0, < 1.10.6	Jun 24, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

FOSSBilling: IDOR in Servicecustom Client API allows cross-client data access_CVE-2026-27708

Recent Advisories

py7zr: Arbitrary File Write Vulnerability_CVE-2026-23879

AttackGraph_40F18FB2-8F72-57E1-B69E-6FC9A3A864D9

ritesh-security-check_FAF88B42-E4E8-5324-9F0C-4D51FA034454

CVE-2026-0126_CVE-2026-0126

CVE-2026-49269_CVE-2026-49269

concurrent-ruby: ReadWriteLock allows wrong-thread write release and stray read-release counter corruption_CVE-2026-54906

concurrent-ruby: `ReentrantReadWriteLock` read-count overflow grants a write lock without exclusivity_CVE-2026-54905

concurrent-ruby: `AtomicReference#update` livelocks when the stored value is `Float::NAN`_CVE-2026-54904

Faraday: Uncontrolled recursion in NestedParamsEncoder allows stack exhaustion DoS via deeply nested query parameters_CVE-2026-54297

Protect Your Attack Surface with RedGem

Security Intelligence
Feed