Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

324 New today
65,952 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

60
Jun 13
68
Jun 14
443
Jun 15
630
Jun 16
464
Jun 17
3
Jun 18
352
Jun 19
56
Jun 20
104
Jun 21
317
Jun 22
294
Jun 23
355
Jun 24
376
Jun 25
289
Jun 26
Critical
High
Medium
Low

Recent Advisories

Severity ID Title Vendor Product Date Type
LOW 1 CVE-2026-6681

PKCS#7 decode ignores caller output buffer size, writing past buffer bounds_CVE-2026-6681

The PKCS#7 decode path ignores the caller-supplied output buffer size (outputSz), allowing decoded content to be written past the bounds of the pro...

wolfSSL wolfSSL 3.10.0 CVE
HIGH 8.8 CVE-2026-6679

DTLS 1.3 ACK serialization heap buffer overflow via integer truncation_CVE-2026-6679

A heap buffer overflow could occur in the DTLS 1.3 ACK serialization path before the connecting peer is authenticated. The buffer overflow was due ...

wolfSSL wolfSSL 5.4.0 CVE
LOW 1 CVE-2026-6678

Integer underflow in wc_PKCS7_DecryptOri handling crafted Other Recipient Info_CVE-2026-6678

Integer underflow in wc_PKCS7_DecryptOri when handling crafted Other Recipient Info, leading to incorrect length handling during decryption.

wolfSSL wolfSSL 3.15.5 CVE
LOW 1 CVE-2026-6450

CRL critical extension bypass in ParseCRL_Extensions_CVE-2026-6450

A CRL critical extension bypass exists in ParseCRL_Extensions where critical extensions are not properly enforced, allowing a crafted CRL with an u...

wolfSSL wolfSSL 4.3.0 CVE
LOW 2.3 CVE-2026-6412

Continued acceptance of SHA-1/MD5 digests in certificate processing_CVE-2026-6412

Certificate policy and RFC 8446 compliance concerns regarding the continued acceptance of SHA-1/MD5 in certificate processing.

wolfSSL wolfSSL 3.9.10 CVE
HIGH 8.8 CVE-2026-56445

pydicom pynetdicom Library Path Traversal_CVE-2026-56445

The qrscp application's C-STORE handler uses a specific instance from attacker-supplied DICOM datasets directly in os.path.join() without sanitizat...

pydicom pynetdicom Library 1.0.0 CVE
HIGH 8.3 CVE-2026-12473

OHIF Viewers DICOM Server-Side request forgery_CVE-2026-12473

Two data sources (DICOMWebProxy and DICOMJSON) shipped in the default configuration fetch an arbitrary URL parameter without validation. A global a...

Open Health Imaging Foundation (OHIF) DICOM Web Viewer Framework CVE
MEDIUM 5.9 CVE-2026-8720

HMAC-BLAKE2 final discards message when key length exceeds block size_CVE-2026-8720

wc_Blake2bHmacFinal and wc_Blake2sHmacFinal discard the message when the key length exceeds the block size, producing a MAC that is independent of ...

wolfSSL wolfSSL 5.9.0 CVE
LOW 2.1 CVE-2026-6331

HMAC zero-length tag forgery in EVP_DigestVerifyFinal_CVE-2026-6331

HMAC zero-length tag forgery in EVP_DigestVerifyFinal, where a zero-length tag could be accepted as valid during HMAC verification. In the OpenSSL-...

wolfSSL wolfSSL 3.15.5 CVE