Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

207 New today

59,483 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

202

May 22

May 23

111

May 24

204

May 25

336

May 26

455

May 27

326

May 28

451

May 29

206

May 30

May 31

417

Jun 1

295

Jun 2

151

Jun 3

199

Jun 4

Critical

High

Medium

Low

Latest

CVE CVSS 2.1

OpenTelemetry-Go’s Schema ParseFile leaks file descriptors on each parse_CVE-2026-45287

OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to version 0.0.17, `go.opentelemetry.io/otel/schema/v1.0` and `go.opentelemetry.io/otel/schema/v1.1` leaks one file descriptor on each successful `ParseFile` call. `ParseFile` opens the schema file and passes it...

CVE-2026-45287 open-telemetry go.opentelemetry.io/otel/schema/v1.1 < 0.0.17

Jun 4, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.9	CVE-2026-43986	Tautulli vulnerable to unauthenticated SSRF in /image/ via attacker-seeded image hash replay_CVE-2026-43986 Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public `/image/` route that resolv...	Tautulli	Tautulli < 2.17.1	Jun 4, 2026	CVE
MEDIUM 5.3	CVE-2026-41178	OpenTelemetry-Go’s baggage parsing no longer caps raw header length_CVE-2026-41178 OpenTelemetry-Go is the Go implementation of OpenTelemetry. Versions 1.41.0 and 1.43.0 removed raw-length rejection and it causes `Parse` to proces...	open-telemetry	go.opentelemetry.io/otel/baggage = 1.41.0	Jun 4, 2026	CVE
MEDIUM 5.4	CVE-2026-40930	LIBPNG: Chunk smuggling in push-mode APNG parser via unconsumed chunk body_CVE-2026-40930 LIBPNG is a reference library for use in applications that process PNG (Portable Network Graphics) raster image files. In version 1.8.0, three inte...	pnggroup	libpng = 1.8.0	Jun 4, 2026	CVE
CRITICAL 9	CVE-2026-10868	MISP user edit endpoint mass assignment vulnerability allows unauthorized user account modification_CVE-2026-10868 A mass assignment vulnerability exists in the MISP user edit functionality due to insufficient filtering of user-supplied fields in UsersController...	misp	misp	Jun 4, 2026	CVE
MEDIUM 5.3	CVE-2026-10815	LakshayD02 Hostel-Management-System-PHP Admin Dashboard index.php authorization_CVE-2026-10815 A vulnerability was found in LakshayD02 Hostel-Management-System-PHP up to f87e67c283bab6f718faf2fec6ae39a13bd7036b. This issue affects some unknow...	LakshayD02	Hostel-Management-System-PHP f87e67c283bab6f718faf2fec6ae39a13bd7036b	Jun 4, 2026	CVE
LOW 2	CVE-2026-10814	milvus-io milvus Grantee ID Hash kv_catalog.go weak hash_CVE-2026-10814 A vulnerability has been found in milvus-io milvus up to 2.6.13. This vulnerability affects unknown code of the file internal/metastore/kv/rootcoor...	milvus-io	milvus 2.6.0	Jun 4, 2026	CVE
LOW 2	CVE-2026-10813	LMCache KV Cache utils.py hex_hash_to_int16 weak hash_CVE-2026-10813 A flaw has been found in LMCache up to 0.4.6. This affects the function hex_hash_to_int16 of the file lmcache/integration/vllm/utils.py of the comp...	n/a	LMCache 0.4.0	Jun 4, 2026	CVE
LOW 2.2	CVE-2026-50266	CVE-2026-50266_CVE-2026-50266 In OpenStack Neutron before 28.0.1, a project manager can create or update a port on a shared network owned by another project and set device_owner...	OpenStack	Neutron 25.0.0	Jun 4, 2026	CVE
NONE	AKAMAIBLOG:409F...	Putting CLIMATE into Practice: Building an Inventory Management Plan_AKAMAIBLOG:409F78209633C642F87AEE2F01E6EEA5 {“lastseen”:”2026-06-04T16:05:07″,”description”:””,”published”:”2026-06-04T12:00:...	N/A	N/A	Jun 4, 2026	AKAMAIBLOG

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

OpenTelemetry-Go’s Schema ParseFile leaks file descriptors on each parse_CVE-2026-45287

Recent Advisories

Tautulli vulnerable to unauthenticated SSRF in /image/ via attacker-seeded image hash replay_CVE-2026-43986

OpenTelemetry-Go’s baggage parsing no longer caps raw header length_CVE-2026-41178

LIBPNG: Chunk smuggling in push-mode APNG parser via unconsumed chunk body_CVE-2026-40930

MISP user edit endpoint mass assignment vulnerability allows unauthorized user account modification_CVE-2026-10868

LakshayD02 Hostel-Management-System-PHP Admin Dashboard index.php authorization_CVE-2026-10815

milvus-io milvus Grantee ID Hash kv_catalog.go weak hash_CVE-2026-10814

LMCache KV Cache utils.py hex_hash_to_int16 weak hash_CVE-2026-10813

CVE-2026-50266_CVE-2026-50266

Putting CLIMATE into Practice: Building an Inventory Management Plan_AKAMAIBLOG:409F78209633C642F87AEE2F01E6EEA5

Protect Your Attack Surface with RedGem

Security Intelligence
Feed