Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

418 New today
67,195 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

3
Jun 18
352
Jun 19
56
Jun 20
104
Jun 21
317
Jun 22
294
Jun 23
355
Jun 24
376
Jun 25
386
Jun 26
53
Jun 27
318
Jun 28
284
Jun 29
427
Jun 30
64
Jul 1
Critical
High
Medium
Low

Recent Advisories

Severity ID Title Vendor Product Date Type
MEDIUM 5.5 CVE-2025-36372

IBM® Db2® could disclose sensitive information to an authenticated user from the monitoring and event tables_CVE-2025-36372

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows (includes Db2 Connect Server) could disclose sensitive informa...

IBM Db2 11.5.0 CVE
MEDIUM 6 CVE-2026-9132

Missing authorization vulnerability in GitHub Enterprise Server allowed disclosure of private repository contents via the Copilot pull request diff summary endpoint_CVE-2026-9132

A missing authorization vulnerability was identified in GitHub Enterprise Server that allowed an authenticated user to read source code from privat...

GitHub Enterprise Server 3.17.0 CVE
MEDIUM 4.8 CVE-2026-9106

UI misrepresentation vulnerability in GitHub Enterprise Server allowed unauthorized organization runner management via undisclosed OAuth scope on consent screen_CVE-2026-9106

A UI misrepresentation vulnerability was identified in GitHub Enterprise Server that allowed an OAuth application to gain unintended access to an o...

GitHub Enterprise Server 3.16.0 CVE
HIGH 8.7 CVE-2026-44628

OFFIS DCMTK Toolkit Type Confusion_CVE-2026-44628

An unauthenticated attacker can crash the worklist server with a single crafted query when the server has a valid Called AE Title / storage directo...

OFFIS DICOM DCMTK Toolkit CVE
HIGH 8.7 CVE-2026-13207

Frangoteam FUXA SCADA/HMI Authentication Bypass by Spoofing_CVE-2026-13207

FUXA versions 1.3.1 and prior contain an authentication bypass vulnerability via dot-segment path normalization in the REST API. The API router fai...

Frangoteam FUXA SCADA/HMI 1.3.1 CVE
HIGH 8.5 CVE-2026-11594

IBM WebSphere Application Server is affected by multiple cross-site scripting vulnerabilities_CVE-2026-11594

IBM WebSphere Application Server 9.0, and 8.5 is affected by a cross-site scripting vulnerability in the administrative console.

IBM WebSphere Application Server 9.0 CVE
MEDIUM 5.9 CVE-2026-10562

Unauthenticated Open Redirect Vulnerability on TP-Link Archer AX20 Web Interface_CVE-2026-10562

An unauthenticated URL redirection vulnerability has been identified in Archer AX20 V2 due to improper validation of user-supplied URL input within...

TP-Link Systems Inc. Archer AX20 V2.0 CVE
HIGH 8.1 CVE-2025-36359

IBM DevOps Loop is susceptible to an Insufficient Session Expiration vulnerability._CVE-2025-36359

IBM DevOps Automation 1.0.1 and IBM DevOps Loop 1.0.2 does not invalidate session IDs after expiration which could allow an authenticated user to i...

IBM DevOps Automation 1.0.1 CVE
MEDIUM 5.9 CVE-2025-36336

Transmission of Sensitive Information found in Watson Data Intelligence_CVE-2025-36336

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 transmits data in clear text that could allow an attacker to obtain sensitive information ...

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 CVE