Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

251 New today

62,960 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

151

Jun 3

354

Jun 4

517

Jun 5

109

Jun 6

Jun 7

255

Jun 8

658

Jun 9

351

Jun 10

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

248

Jun 16

Critical

High

Medium

Low

Latest

CVE CVSS 5.3

Memory safety bug fixed in Thunderbird 152_CVE-2026-12300

Memory safety bug fixed in Thunderbird 152. This vulnerability was fixed in Firefox 152 and Thunderbird 152.

CVE-2026-12300 Mozilla Firefox 152

Jun 16, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.6	CVE-2026-53866	OpenClaw < 2026.5.12 - Allowlist Bypass in Shell Inline-Command Parsing_CVE-2026-53866 OpenClaw before 2026.5.12 contains an allowlist bypass vulnerability in shell inline-command parsing that allows authenticated operators to execute...	OpenClaw	OpenClaw	Jun 16, 2026	CVE
HIGH 7.2	CVE-2026-53865	OpenClaw < 2026.5.2 - Arbitrary Command Execution via Workspace-Derived Service PATH_CVE-2026-53865 OpenClaw before 2026.5.2 contains a path traversal vulnerability in maintenance task execution that allows workspace-derived service paths to influ...	OpenClaw	OpenClaw	Jun 16, 2026	CVE
HIGH 7.6	CVE-2026-53864	OpenClaw < 2026.5.26 - Insufficient Environment Variable Sanitization in Node.js Control Variables_CVE-2026-53864 OpenClaw before 2026.5.26 contains an insufficient sanitization vulnerability in the host environment sanitizer that allows Node.js control variabl...	OpenClaw	OpenClaw	Jun 16, 2026	CVE
MEDIUM 6	CVE-2026-53863	OpenClaw < 2026.4.25 - Unvalidated Group ID Acceptance in Tool Group Policy_CVE-2026-53863 OpenClaw before 2026.4.25 contains an input validation vulnerability in tool group policy callers that accept unvalidated group IDs. Attackers who ...	OpenClaw	OpenClaw	Jun 16, 2026	CVE
LOW 2.3	CVE-2026-53862	OpenClaw < 2026.5.12 - Bootstrap Token Replay via Pending Pairing Scope Widening_CVE-2026-53862 OpenClaw before 2026.5.12 contains a bootstrap token replay vulnerability allowing callers with pending token access to reuse tokens with broader r...	OpenClaw	OpenClaw	Jun 16, 2026	CVE
MEDIUM 5.3	CVE-2026-53861	OpenClaw < 2026.5.6 - Allowlist Bypass via Combined POSIX Inline Flags on macOS_CVE-2026-53861 OpenClaw before 2026.5.6 contains an allowlist bypass vulnerability in the macOS Swift exec feature that misses combined POSIX inline-command flags...	OpenClaw	OpenClaw	Jun 16, 2026	CVE
LOW 2.3	CVE-2026-53860	OpenClaw < 2026.5.7 - Sender Policy Bypass via Mutable Conversation Identifiers in BlueBubbles_CVE-2026-53860 OpenClaw before 2026.5.7 contains a sender policy bypass vulnerability in BlueBubbles that allows participants to match allowlist entries through c...	OpenClaw	OpenClaw	Jun 16, 2026	CVE
MEDIUM 6	CVE-2026-53859	OpenClaw < 2026.5.26 - Hostname Validation Bypass via Trailing-Dot Inconsistency_CVE-2026-53859 OpenClaw before 2026.5.26 contains a hostname validation vulnerability allowing attackers to bypass blocklist comparisons using trailing-dot notati...	OpenClaw	OpenClaw	Jun 16, 2026	CVE
HIGH 7	CVE-2026-53858	OpenClaw < 2026.5.2 - Arbitrary Runtime Dependency Loading via STATE_DIRECTORY Environment Variable_CVE-2026-53858 OpenClaw before 2026.5.2 contains an environment variable injection vulnerability where workspace .env STATE_DIRECTORY could influence bundled runt...	OpenClaw	OpenClaw	Jun 16, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Memory safety bug fixed in Thunderbird 152_CVE-2026-12300

Recent Advisories

OpenClaw < 2026.5.12 - Allowlist Bypass in Shell Inline-Command Parsing_CVE-2026-53866

OpenClaw < 2026.5.2 - Arbitrary Command Execution via Workspace-Derived Service PATH_CVE-2026-53865

OpenClaw < 2026.5.26 - Insufficient Environment Variable Sanitization in Node.js Control Variables_CVE-2026-53864

OpenClaw < 2026.4.25 - Unvalidated Group ID Acceptance in Tool Group Policy_CVE-2026-53863

OpenClaw < 2026.5.12 - Bootstrap Token Replay via Pending Pairing Scope Widening_CVE-2026-53862

OpenClaw < 2026.5.6 - Allowlist Bypass via Combined POSIX Inline Flags on macOS_CVE-2026-53861

OpenClaw < 2026.5.7 - Sender Policy Bypass via Mutable Conversation Identifiers in BlueBubbles_CVE-2026-53860

OpenClaw < 2026.5.26 - Hostname Validation Bypass via Trailing-Dot Inconsistency_CVE-2026-53859

OpenClaw < 2026.5.2 - Arbitrary Runtime Dependency Loading via STATE_DIRECTORY Environment Variable_CVE-2026-53858

Protect Your Attack Surface with RedGem

Security Intelligence
Feed