Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

303 New today
62,146 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

84
May 31
417
Jun 1
295
Jun 2
151
Jun 3
354
Jun 4
517
Jun 5
109
Jun 6
32
Jun 7
255
Jun 8
658
Jun 9
351
Jun 10
245
Jun 11
336
Jun 12
5
Jun 13
Critical
High
Medium
Low

Recent Advisories

Severity ID Title Vendor Product Date Type
MEDIUM 5.5 CVE-2025-24165

CVE-2025-24165_CVE-2025-24165

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7....

Apple macOS CVE
HIGH 8.8 CVE-2026-54361

MISP mass assignment vulnerabilities allow unauthorized modification of ownership and delegation records_CVE-2026-54361

MISP contained multiple mass assignment vulnerabilities in the handling of collections, tag collections, event delegations, and shadow attributes. ...

misp misp CVE
HIGH 8.4 CVE-2026-54360

MISP sharing group creation mass assignment allows unauthorized takeover of existing sharing groups_CVE-2026-54360

A mass assignment vulnerability exists in MISP’s sharing group creation endpoint. When creating a new sharing group, the controller did not remove ...

misp misp CVE
HIGH 7.1 CVE-2026-54359

MISP automation endpoints may be exposed to CSRF when Sec-Fetch-Site protection is disabled by default_CVE-2026-54359

MISP contains an insecure default configuration in which the Security.check_sec_fetch_site_header control is disabled. When this setting is disable...

misp misp CVE
HIGH 7.5 CVE-2026-54358

MISP organization administrators can target site administrator accounts for password reset_CVE-2026-54358

An incorrect authorization vulnerability in MISP allows an organization administrator to target site administrator accounts belonging to the same o...

misp misp CVE
MEDIUM 5 CVE-2026-54055

Kitty has an Arbitrary File Write via Symlink Race Condition in File Transmission Protocol_CVE-2026-54055

Kitty is a cross-platform GPU based terminal. In versions prior to 0.47.2, a local privilege escalation vulnerability exists in kitty's file transm...

kovidgoyal kitty < 0.47.2 CVE
HIGH 7.8 CVE-2026-42851

@kitty-edit DCS + –color=geninclude vulnerable to Unauthenticated in-process RCE_CVE-2026-42851

Kitty is a cross-platform GPU based terminal. In versions prior to 0.47.0, a program able to write bytes to a kitty terminal — a remote SSH peer, a...

kovidgoyal kitty < 0.47.0 CVE
HIGH 7.4 CVE-2026-42850

Kitty has a shell command injection_CVE-2026-42850

Kitty is a cross-platform GPU based terminal. In versions prior to 0.47.0, it is possible to inject commands within the subshell through kitty erro...

kovidgoyal kitty < 0.47.0 CVE
MEDIUM 6.1 CVE-2026-54397

MISP event editing allows unauthorized assignment to undisclosed sharing groups_CVE-2026-54397

A vulnerability in MISP’s non-REST event editing path allowed an authenticated user with event edit permissions to manipulate the submitted form da...

misp misp CVE