Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

115 New today

59,357 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

202

May 22

May 23

111

May 24

204

May 25

336

May 26

455

May 27

326

May 28

451

May 29

206

May 30

May 31

417

Jun 1

295

Jun 2

151

Jun 3

Jun 4

Critical

High

Medium

Low

Latest

CVE CVSS 6.5

Inefficient candidate hostname parsing in crypto/x509_CVE-2026-27145

(*x509.Certificate).VerifyHostname previously called matchHostnames in a loop over all DNS Subject Alternative Name (SAN) entries. This caused strings.Split(host, ".") to execute repeatedly on the same input hostname. With a large DNS SAN list, verification costs scaled quadra...

CVE-2026-27145 Go standard library crypto/x509

Jun 2, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.3	CVE-2026-49077	WordPress WP eMember plugin <= v10.2.2 - Sensitive Data Exposure vulnerability_CVE-2026-49077 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Tips and Tricks HQ WP eMember allows Retrieve Embedded ...	Tips and Tricks HQ	WP eMember n/a	Jun 4, 2026	CVE
LOW 2	CVE-2026-10801	modelscope ms-swift PIL Image Cache Key base.py Template._save_pil_image weak hash_CVE-2026-10801 A security vulnerability has been detected in modelscope ms-swift up to 4.2.0. This affects the function Template._save_pil_image of the file swift...	modelscope	ms-swift 4.0	Jun 4, 2026	CVE
CRITICAL 9.8	CVE-2026-4104	SQLi in Akmer Informatics’ TeknoPass_CVE-2026-4104 Authorization bypass through User-Controlled SQL primary key vulnerability in Akmer Informatics Automation Industry and Trade Ltd. Co. TeknoPass al...	Akmer Informatics Automation Industry and Trade Ltd. Co.	TeknoPass 20210501	Jun 4, 2026	CVE
HIGH 8.7	CVE-2026-45432	Cleartext Transmission of Credentials Vulnerability in GX Earth ONT Models_CVE-2026-45432 This vulnerability exists in GX Earth ONT models due to the transmission of user credentials in plaintext over HTTP in its web management interface...	GX INDIA	GX Earth 2022 version E2022 - 3.1.2A	Jun 4, 2026	CVE
HIGH 8.7	CVE-2026-45431	Command Injection Vulnerability in GX Earth ONT Models_CVE-2026-45431 This vulnerability exists in GX Earth ONT models due to improper handling of user-supplied input in multiple diagnostic functions in its web manage...	GX INDIA	GX Earth 2022 version E2022 - 3.1.2A	Jun 4, 2026	CVE
HIGH 7.2	CVE-2026-10843	Cloud-credential-operator: cco mint-mode credentialsrequest manifests grant account-wide iam access beyond cluster scope on aws_CVE-2026-10843 A flaw was found in the OpenShift Cloud Credential Operator Mint-mode IAM policies for AWS. Operator credentials are provisioned with account-wide ...	Red Hat	Red Hat OpenShift Container Platform 4	Jun 4, 2026	CVE
CRITICAL 9.6	CVE-2026-10840	Openshift-pipelines-operator-rh: openshift-pipelines-operator: tekton-scheduler-rolebinding grants system:authenticated write access to kueue and cert-manager resources_CVE-2026-10840 A flaw was found in the OpenShift Pipelines operator. The tekton-scheduler-rolebinding ClusterRoleBinding grants the system:authenticated group wri...	Red Hat	Builds for Red Hat OpenShift	Jun 4, 2026	CVE
LOW 2	CVE-2026-10804	Streamlit Palette hashing.py weak hash_CVE-2026-10804 A vulnerability has been found in Streamlit up to 1.53.0. Impacted is an unknown function in the library lib/streamlit/runtime/caching/hashing.py o...	n/a	Streamlit 1.0	Jun 4, 2026	CVE
LOW 2	CVE-2026-10803	MLflow Dataset Digest Computation digest_utils.py mlflow.data.digest_utils weak hash_CVE-2026-10803 A flaw has been found in MLflow up to 3.10.0. This issue affects the function mlflow.data.digest_utils of the file mlflow/data/digest_utils.py of t...	n/a	MLflow 3.0	Jun 4, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Inefficient candidate hostname parsing in crypto/x509_CVE-2026-27145

Recent Advisories

WordPress WP eMember plugin <= v10.2.2 - Sensitive Data Exposure vulnerability_CVE-2026-49077

modelscope ms-swift PIL Image Cache Key base.py Template._save_pil_image weak hash_CVE-2026-10801

SQLi in Akmer Informatics’ TeknoPass_CVE-2026-4104

Cleartext Transmission of Credentials Vulnerability in GX Earth ONT Models_CVE-2026-45432

Command Injection Vulnerability in GX Earth ONT Models_CVE-2026-45431

Cloud-credential-operator: cco mint-mode credentialsrequest manifests grant account-wide iam access beyond cluster scope on aws_CVE-2026-10843

Openshift-pipelines-operator-rh: openshift-pipelines-operator: tekton-scheduler-rolebinding grants system:authenticated write access to kueue and cert-manager resources_CVE-2026-10840

Streamlit Palette hashing.py weak hash_CVE-2026-10804

MLflow Dataset Digest Computation digest_utils.py mlflow.data.digest_utils weak hash_CVE-2026-10803

Protect Your Attack Surface with RedGem

Security Intelligence
Feed