Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

122 New today

66,075 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

386

Jun 26

Jun 27

Critical

High

Medium

Low

Latest

CVE CVSS 5.9

Envoy: ext_authz Use-After-Free during Stream Teardown with Per-Route Overrides_CVE-2026-47205

Envoy is an open source edge and service proxy designed for cloud-native applications. From 1.36.0 until 1.36.9, 1.37.5, and 1.38.3, a Use-After-Free (UAF) vulnerability leading to a sudden segmentation fault exists in Envoy's ext_authz HTTP filter when processing per-route au...

CVE-2026-47205 envoyproxy envoy >= 1.38.0, < 1.38.3

Jun 26, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	5A30AF6D-A3F1-	MamaBaohe-ERP-SQLi_5A30AF6D-A3F1-5C05-9042-C5ED3EF4AAB8 MamaBaohe ERP Management Cloud Platform SQL Injection Overview \| Field \| Value \| \|-------\|-------\| \| Product \| Maternal and Child Health ERP Manage...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
CRITICAL 9.8	C1779145-9574-	Exploit for OS Command Injection in Cacti_C1779145-9574-5457-B610-1891430BF6B2 CVE-2026-39938: Cacti " 3.2 Execute the Code by Including Log File bash curl -k -s "http://target-cacti/graphimage.php?action=view&localgraphid=1&g...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
CRITICAL 9.8	2A8C8CE0-592F-	Exploit for Missing Authentication for Critical Function in Splunk_2A8C8CE0-592F-566A-AD1D-9DB21DEE0C60 CVE-2026-20253 - Splunk Enterprise Pre-Auth RCE PoC ⚠️ ADVERTENCIA: Este script es solo para fines educativos y de prueba en entornos autorizados. ...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
NONE	WIRED:A213F3A81...	The Pentagon Is Looking Into the Dialog Data Exposure for Unmasking National Security Officials_WIRED:A213F3A81A603E96CA725AEEADB603F7 Exposed records from the private group included the personal information of a senior White House intelligence official and an active-duty special o...	N/A	N/A	Jun 26, 2026	WIRED
NONE	SCHNEIER:DF7402...	Meta Is Testing Facial Recognition for Police and Military_SCHNEIER:DF74028FA7E40C4996C0D41330A90633 We know that ICE wants to deploy eyeglasses with facial recognition that can identify people in real time. Turns out Meta is prototyping the featu...	N/A	N/A	Jun 26, 2026	SCHNEIER
CRITICAL 10	THN:7EF04AAF427...	New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks_THN:7EF04AAF4274557391FF629872DDC867 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjsnAZNjHSEX7UtabbKNVn68uohH8pK5LKuU2CgckZTJowWHxYmEjx9ROquO9tFsThy-3_759_ko2TQEX4Wm3...	N/A	N/A	Jun 26, 2026	THN
MEDIUM 5.4	PACKETSTORM:224389	📄 Docmost Cross Site Scripting_PACKETSTORM:224389 Docmost versions prior to 0.71.0 suffer from a persistent cross site scripting vulnerability...	N/A	N/A	Jun 26, 2026	PACKETSTORM
MEDIUM 5.4	PACKETSTORM:224388	📄 Docmost 0.70.x Authorization Bypass_PACKETSTORM:224388 A low-privileged Docmost user could supply a victim attachmentId to the generic upload endpoint and overwrite another page's stored attachment insi...	N/A	N/A	Jun 26, 2026	PACKETSTORM
HIGH 7.6	PACKETSTORM:224380	📄 TypeBot Server-Side Request Forgery_PACKETSTORM:224380 TypeBot versions prior to 3.16.0 suffer from a server-side request forgery vulnerability...	N/A	N/A	Jun 26, 2026	PACKETSTORM

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Envoy: ext_authz Use-After-Free during Stream Teardown with Per-Route Overrides_CVE-2026-47205

Recent Advisories

MamaBaohe-ERP-SQLi_5A30AF6D-A3F1-5C05-9042-C5ED3EF4AAB8

Exploit for OS Command Injection in Cacti_C1779145-9574-5457-B610-1891430BF6B2

Exploit for Missing Authentication for Critical Function in Splunk_2A8C8CE0-592F-566A-AD1D-9DB21DEE0C60

The Pentagon Is Looking Into the Dialog Data Exposure for Unmasking National Security Officials_WIRED:A213F3A81A603E96CA725AEEADB603F7

Meta Is Testing Facial Recognition for Police and Military_SCHNEIER:DF74028FA7E40C4996C0D41330A90633

New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks_THN:7EF04AAF4274557391FF629872DDC867

📄 Docmost Cross Site Scripting_PACKETSTORM:224389

📄 Docmost 0.70.x Authorization Bypass_PACKETSTORM:224388

📄 TypeBot Server-Side Request Forgery_PACKETSTORM:224380

Protect Your Attack Surface with RedGem

Security Intelligence
Feed