Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

218 New today
59,509 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

67
May 23
111
May 24
204
May 25
336
May 26
455
May 27
326
May 28
451
May 29
206
May 30
84
May 31
417
Jun 1
295
Jun 2
151
Jun 3
225
Jun 4
Jun 5
Critical
High
Medium
Low

Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 7.1 CVE-2026-36176

CVE-2026-36176_CVE-2026-36176

GNCC GP5 v7.1.76 was discovered to store pre-signed Backblaze B2 upload URLs (PUT requests) in plaintext to the serial console. This allows physica...

n/a n/a n/a CVE
MEDIUM 6.8 CVE-2026-36175

CVE-2026-36175_CVE-2026-36175

An issue in the U-Boot component of GNCC GP5 v7.1.76 allows physically-proximate attackers to bypass authentication and gain root access via interr...

n/a n/a n/a CVE
CRITICAL 9.6 CVE-2026-35906

CVE-2026-35906_CVE-2026-35906

An undocumented debug CGI endpoint in T3 Technology CPE models T625Pro v1.0.07, T6825G v1.0.03 allows unauthenticated attackers to execute arbitrar...

T3 Technology T625Pro, T6825G v1.0.07, v1.0.03 CVE
MEDIUM 6.9 CVE-2026-7774

tarfile.data_filter path traversal bypass allows writing outside the extraction directory_CVE-2026-7774

tarfile.data_filter could be bypassed using crafted link entries, including symlinks with empty or directory-like names, to redirect later archive ...

Python Software Foundation CPython CVE
HIGH 8.8 CVE-2026-5228

Improper Access Control in Kurt Software Studio’s WriteUp Mobile App_CVE-2026-5228

Improper Access Control, Missing Authorization vulnerability in Kurt Software Studio WriteUp Mobile App allows Accessing Functionality Not Properly...

Kurt Software Studio WriteUp Mobile App 1.3.0 CVE
LOW 2.1 CVE-2026-45287

OpenTelemetry-Go’s Schema ParseFile leaks file descriptors on each parse_CVE-2026-45287

OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to version 0.0.17, `go.opentelemetry.io/otel/schema/v1.0` and `go.opentelemetry.i...

open-telemetry go.opentelemetry.io/otel/schema/v1.1 < 0.0.17 CVE
CRITICAL 9.9 CVE-2026-43986

Tautulli vulnerable to unauthenticated SSRF in /image/ via attacker-seeded image hash replay_CVE-2026-43986

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public `/image/` route that resolv...

Tautulli Tautulli < 2.17.1 CVE
MEDIUM 5.3 CVE-2026-41178

OpenTelemetry-Go’s baggage parsing no longer caps raw header length_CVE-2026-41178

OpenTelemetry-Go is the Go implementation of OpenTelemetry. Versions 1.41.0 and 1.43.0 removed raw-length rejection and it causes `Parse` to proces...

open-telemetry go.opentelemetry.io/otel/baggage = 1.41.0 CVE
MEDIUM 5.4 CVE-2026-40930

LIBPNG: Chunk smuggling in push-mode APNG parser via unconsumed chunk body_CVE-2026-40930

LIBPNG is a reference library for use in applications that process PNG (Portable Network Graphics) raster image files. In version 1.8.0, three inte...

pnggroup libpng = 1.8.0 CVE