Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

318 New today
67,218 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

3
Jun 18
352
Jun 19
56
Jun 20
104
Jun 21
317
Jun 22
294
Jun 23
355
Jun 24
376
Jun 25
386
Jun 26
53
Jun 27
318
Jun 28
284
Jun 29
427
Jun 30
87
Jul 1
Critical
High
Medium
Low

Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9.1 CVE-2026-7663

Unauthenticated Cross-User MCP Resource Access and Tool Execution via Streamable Transport Authorization Bypass_CVE-2026-7663

IBM Langflow OSS 1.0.0 through 1.9.6 could allow unauthenticated attackers to access protected MCP project resources and execute MCP operations due...

IBM Langflow OSS 1.0.0-1.9.6 CVE
MEDIUM 4.7 CVE-2026-3602

IBM App Connect Enterprise and IBM Integration Bus for z/OS toolkit is vulnerable to an sql injection_CVE-2026-3602

IBM App Connect Enterprise 13.0.1.0 through 13.0.7.2, and 12.0.1.0 through 12.0.12.26 and IBM Integration Bus for z/OS 10.1.0.0 through 10.1.0.7 is...

IBM App Connect Enterprise 13.0.1.0 CVE
MEDIUM 6 CVE-2026-13773

IBM WebSphere eXtreme Scale is affected by server side request forgery when ORB is used as Transport Protocol_CVE-2026-13773

IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 Approximately 50 generated CORBA stub classes in WebSphere eXtreme Scale's ogclient.jar call OR...

IBM WebSphere Extreme Scale 8.6.1.0 CVE
HIGH 7.5 CVE-2026-13772

IBM WebSphere eXtreme Scale’s OQL is affected by remote code execution_CVE-2026-13772

IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 's Object Query Language engine resolves attacker-supplied class names via Class.forName() and ...

IBM WebSphere Extreme Scale 8.6.1.0 CVE
HIGH 7.5 CVE-2026-13759

IBM WebSphere eXtreme Scale is affected by Insecure Deserilization_CVE-2026-13759

IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 ships three ObjectInputStream subclasses (WsObjectInputStream, ObjectStreamPool$ReusableInputSt...

IBM WebSphere Extreme Scale 8.6.1.0 CVE
HIGH 7.6 CVE-2026-13449

XXE attack in IBM Business Automation Manager Open Editions_CVE-2026-13449

IBM Business Automation Manager Open Editions 9.0.0 through 9.4.2 is vulnerable to an XML external entity injection (XXE) attack when processing XM...

IBM Business Automation Manager Open Editions 9.0.0 CVE
MEDIUM 6.2 CVE-2026-12086

IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) is susceptible to a Insertion of Sensitive Information into Log File Vulnerability_CVE-2026-12086

IBM UCD - IBM UrbanCode Deploy 7.2 through 7.2.3.23, and 7.3 through 7.3.2.18 and IBM UCD - IBM DevOps Deploy 8.0 through 8.0.1.13, 8.1 through 8.1...

IBM UCD - IBM UrbanCode Deploy 7.2.0 CVE
MEDIUM 6.5 CVE-2026-12085

IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) is susceptable to an Insertion of Sensitive Information Into Sent Data vulnerability_CVE-2026-12085

IBM UCD - IBM UrbanCode Deploy 7.3 through 7.3.2.18 and IBM UCD - IBM DevOps Deploy 8.0 through 8.0.1.13, 8.1 through 8.1.2.6, and 8.2 through 8.2....

IBM UCD - IBM UrbanCode Deploy 7.3.0 CVE
MEDIUM 5.4 CVE-2026-12084

IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) is susceptible to a Permissive Cross-domain Security Policy with Untrusted Domains_CVE-2026-12084

IBM UCD - IBM DevOps Deploy 8.1 through 8.1.2.6, and 8.2 through 8.2.1.0 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to...

IBM UCD - IBM DevOps Deploy 8.1.0 CVE