Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

224 New today

65,462 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

175

Jun 25

Critical

High

Medium

Low

Latest

CVE CVSS 8.8

Warp Markdown notebook links may open executable local files_CVE-2026-48704

Warp is an agentic development environment. From 0.2023.10.24.08.03.stable_00 until 0.2026.05.06.15.42.stable_01, Warp may open executable local files through the operating system default file handler. A malicious Markdown document or project can contain a local-file link that...

CVE-2026-48704 warpdotdev warp >= 0.2023.10.24.08.03.stable_00, < 0.2026.05.13.09.15.stable_01

Jun 24, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.8	CVE-2026-48703	Warp: Command Injection via Warp code search tool arguments_CVE-2026-48703 Warp is an agentic development environment. From 0.2025.04.09.08.11.stable_00 until 0.2026.05.06.15.42.stable_01, Warp contains a command execution...	warpdotdev	warp >= 0.2025.04.09.08.11.stable_00, < 0.2026.05.13.09.15.stable_01	Jun 24, 2026	CVE
MEDIUM 5.5	CVE-2026-44022	Docling: Potential Path Traversal via LaTeX \includegraphics and \input Commands_CVE-2026-44022 Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.73.0 until 2....	docling-project	docling >= 2.73.0, < 2.91.0	Jun 24, 2026	CVE
HIGH 7.5	CVE-2026-44020	Docling: Unsafe XML Entity Expansion in USPTO Patent Backend_CVE-2026-44020 Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.13.0 until 2....	docling-project	docling >= 2.13.0, < 2.74.0	Jun 24, 2026	CVE
HIGH 7.5	CVE-2026-44017	Docling: Unsafe Zip Extraction in EasyOCR Model Download_CVE-2026-44017 Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. Prior to 2.91.0, the...	docling-project	docling < 2.91.0	Jun 24, 2026	CVE
HIGH 8.2	CVE-2026-44016	Docling: Unsafe Playwright-based HTML Rendering_CVE-2026-44016 Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. FIn versions >= 2.82...	docling-project	docling >= 2.82.0, < 2.91.0	Jun 24, 2026	CVE
HIGH 7.5	PACKETSTORM:224227	📄 HTTP.sys HTTP/2 Denial of Service_PACKETSTORM:224227 This advisory provides simple proof of concept details to trigger the HTTP/2 denial of service condition related to malformed Accept-Encoding heade...	N/A	N/A	Jun 24, 2026	PACKETSTORM
HIGH 10	DC8CF54B-5E0D-	pentest-metasploit_DC8CF54B-5E0D-55F4-B5C1-920406A0FF9F Penetration Testing with Metasploit A structured penetration testing automation framework developed by Aadarsh Bonthula as part of a cybersecurity ...	N/A	N/A	Jun 24, 2026	GITHUBEXPLOIT
CRITICAL 10	THN:36AE22FA31D...	CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited_THN:36AE22FA31D6D2AC6781F7FB8DEED534 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgjZtIkR9YS2fMY5MvIzgyEShmJAP1bgHqhBdU115iSY7WZ2EcBAbFKb1OQP6Nq8hoF4HlnRifxW890ztCcne...	N/A	N/A	Jun 24, 2026	THN
NONE	MALWAREBYTES:B6...	Watch out for renewal scams pretending to be Malwarebytes_MALWAREBYTES:B676169C29D86A2482A9B5FF7B0079BF Fake subscription renewal notices are doing the rounds again. Some of these scams impersonate Malwarebytes, and we've also seen them reach our cust...	N/A	N/A	Jun 24, 2026	MALWAREBYTES

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Warp Markdown notebook links may open executable local files_CVE-2026-48704

Recent Advisories

Warp: Command Injection via Warp code search tool arguments_CVE-2026-48703

Docling: Potential Path Traversal via LaTeX \includegraphics and \input Commands_CVE-2026-44022

Docling: Unsafe XML Entity Expansion in USPTO Patent Backend_CVE-2026-44020

Docling: Unsafe Zip Extraction in EasyOCR Model Download_CVE-2026-44017

Docling: Unsafe Playwright-based HTML Rendering_CVE-2026-44016

📄 HTTP.sys HTTP/2 Denial of Service_PACKETSTORM:224227

pentest-metasploit_DC8CF54B-5E0D-55F4-B5C1-920406A0FF9F

CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited_THN:36AE22FA31D6D2AC6781F7FB8DEED534

Watch out for renewal scams pretending to be Malwarebytes_MALWAREBYTES:B676169C29D86A2482A9B5FF7B0079BF

Protect Your Attack Surface with RedGem

Security Intelligence
Feed