Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

233 New today

64,548 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

658

Jun 9

351

Jun 10

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

227

Jun 22

Critical

High

Medium

Low

Latest

CVE CVSS 3.8

User Manager can demote bot accounts to guest without bot-management permission_CVE-2026-8823

Mattermost versions 11.7.x <= 11.7.0, 10.11.x <= 10.11.17 fail to validate bot targets when demoting users to guests which allows a lower-privileged administrator to degrade arbitrary bot accounts via the standard demote-user API.. Mattermost Advisory ID: MMSA-2026-00669

CVE-2026-8823 Mattermost Mattermost 11.7.0

Jun 22, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.4	CVE-2026-8646	IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by multiple vulnerabilities_CVE-2026-8646 IBM WebSphere Application Server 9.0 and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 are vulnerable to HTTP reques...	IBM	WebSphere Application Server 9.0.0	Jun 22, 2026	CVE
MEDIUM 5.5	CVE-2026-8636	Multiple Vulnerabilities in IBM Datacap_CVE-2026-8636 IBM Datacap 9.1.7, 9.1.8, and 9.1.9 and IBM Datacap Navigator 9.1.7, 9.1.8, and 9.1.9 allows an attacker to retrieve user passwords and cryptograph...	IBM	Datacap 9.1.7	Jun 22, 2026	CVE
MEDIUM 6.1	CVE-2026-8059	Multiple Vulnerabilities in IBM Datacap_CVE-2026-8059 IBM Datacap 9.1.7, 9.1.8, and 9.1.9 and IBM Datacap Navigator 9.1.7, 9.1.8, and 9.1.9 is vulnerable to cross-site scripting. This vulnerability all...	IBM	Datacap 9.1.7	Jun 22, 2026	CVE
CRITICAL 9.8	CVE-2026-7664	Unauthenticated Flow Execution via Webhook Endpoint in Langflow OSS_CVE-2026-7664 IBM Langflow OSS 1.0.0 through 1.8.4 could allow unauthenticated attackers to access protected MCP project resources and execute MCP operations due...	IBM	Langflow OSS 1.0.0	Jun 22, 2026	CVE
MEDIUM 5.3	CVE-2026-7253	IBM Watson Speech Services Cartridge is vulnerable to Server-Side Request Forgery (SSRF) in Sterling File Gateway_CVE-2026-7253 IBM Watson Speech Services Cartridge is vulnerable to Server-Side Request Forgery (SSRF) in Sterling File Gateway, due to a flaw which may allow an...	IBM	IBM Watson Speech Services Cartridge 4.0.0	Jun 22, 2026	CVE
CRITICAL 9.1	CVE-2026-56104	Chainlit < 2.10.1 Session Hijacking via WebSocket Session Restoration_CVE-2026-56104 Chainlit before 2.10.1 contains a session hijacking vulnerability that allows unauthenticated attackers to restore and inherit authenticated user s...	Chainlit	chainlit	Jun 22, 2026	CVE
HIGH 8.2	CVE-2026-54268	Angular: Denial of Service (DoS) via OOM in Date Formatting (formatDate)_CVE-2026-54268 Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1...	angular	angular >= 22.0.0-next.0 < 22.0.1	Jun 22, 2026	CVE
HIGH 8.6	CVE-2026-54267	Angular Client Hydration DOM Clobbering & Response-Cache Poisoning_CVE-2026-54267 Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1...	angular	angular >= 22.0.0-next.0 < 22.0.1	Jun 22, 2026	CVE
HIGH 8.8	CVE-2026-54266	Angular: Weak 32-Bit Cache Key Hashing in `HttpTransferCache` Leading to Cross-Request Data Leakage and State Poisoning_CVE-2026-54266 Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1...	angular	angular >= 22.0.0-next.0 < 22.0.1	Jun 22, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

User Manager can demote bot accounts to guest without bot-management permission_CVE-2026-8823

Recent Advisories

IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by multiple vulnerabilities_CVE-2026-8646

Multiple Vulnerabilities in IBM Datacap_CVE-2026-8636

Multiple Vulnerabilities in IBM Datacap_CVE-2026-8059

Unauthenticated Flow Execution via Webhook Endpoint in Langflow OSS_CVE-2026-7664

IBM Watson Speech Services Cartridge is vulnerable to Server-Side Request Forgery (SSRF) in Sterling File Gateway_CVE-2026-7253

Chainlit < 2.10.1 Session Hijacking via WebSocket Session Restoration_CVE-2026-56104

Angular: Denial of Service (DoS) via OOM in Date Formatting (formatDate)_CVE-2026-54268

Angular Client Hydration DOM Clobbering & Response-Cache Poisoning_CVE-2026-54267

Angular: Weak 32-Bit Cache Key Hashing in `HttpTransferCache` Leading to Cross-Request Data Leakage and State Poisoning_CVE-2026-54266

Protect Your Attack Surface with RedGem

Security Intelligence
Feed