Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

225 New today

64,537 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

658

Jun 9

351

Jun 10

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

216

Jun 22

Critical

High

Medium

Low

Latest

THN

Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected Devices_THN:737989C010C5C788BED2FE967F254621

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhKdFZ8X3qY44sjGFbQxJtogYdOcHTqy6L8zM5WrFEIcBfNui5A5cDTdrf932hfXB-Ugw_Uluy31ujP1EGMDy5d5_G-C0tpfQ02iFhQ4H0kNnK8MNujfZPVZpPjVFXzi6IeRfHb2TXJl5dKnC14l8addqgYJ2_KyMiweZema7rUu2JIUZM_hqX1ro-czjHQ/s1600/canada.jpg) Cana...

THN:737989C010C5C788BED2FE967F254621

Jun 22, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.3	CVE-2026-54665	Apache NiFi: Missing Validation for Proxy Host Headers_CVE-2026-54665 Apache NiFi 0.0.1 through 2.9.0 support building qualified URLs from one of several HTTP request headers that provide an alternative to the standar...	Apache Software Foundation	Apache NiFi 0.0.1	Jun 22, 2026	CVE
HIGH 7.5	CVE-2026-44914	Apache NiFi: Missing Authorization of Restricted Permissions when Replacing Flow Contents_CVE-2026-44914 Apache NiFi 1.12.0 through 2.9.0 are missing authorization when replacing Process Groups that include extension components with specific Required P...	Apache Software Foundation	Apache NiFi 1.12.0	Jun 22, 2026	CVE
MEDIUM 5.2	CVE-2026-44913	Apache NiFi: Improper Escaping of Table Names in CaptureChangeMySQL_CVE-2026-44913 Improper escaping of database table names in the CaptureChangeMySQL Processor included with Apache NiFi 1.2.0 through 2.9.0 allows for injecting SQ...	Apache Software Foundation	Apache NiFi 1.2.0	Jun 22, 2026	CVE
LOW 2.3	CVE-2026-44911	Apache NiFi: Incorrect Authorization for Configuration Verification Requests_CVE-2026-44911 Authorization handling for component configuration verification requests in Apache NiFi 1.15.0 through 2.9.0 allows clients with read access to sub...	Apache Software Foundation	Apache NiFi 1.15.0	Jun 22, 2026	CVE
NONE	410A7F1F-5142-	python-SQLiscanner_410A7F1F-5142-5466-94C6-96D489CE0302 No description provided...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
CRITICAL 9.8	BC1EFC7B-C6E0-	Exploit for Authentication Bypass by Spoofing in Zabbix_BC1EFC7B-C6E0-528C-BD5D-A2D2ECE15187 CVE-2022-23131 - Zabbix SAML SSO Authentication Bypass + RCE Overview When SAML SSO is enabled, Zabbix stores session data in a client-side cookie ...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
HIGH 8.1	976F9104-D05C-	Exploit for Use After Free in Google Android_976F9104-D05C-54A5-8EAF-248D039A5569 CVE-2023-20938 — Android binder UAF privilege escalation A local privilege escalation proof-of-concept for CVE-2023-20938, a use-after-free in the ...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
CRITICAL 10	2B539108-1D8B-	Exploit for Deserialization of Untrusted Data in Facebook React_2B539108-1D8B-56B5-A8AC-B8E1E8E96640 CVE-2025-55182-POC React2Shell POC Usage: bash sudo python3 hehe.py -t -c Example: bash ❯ sudo python3 hehe-t 12.05.12.05 -c "id" . .. . \| \ \| \| / ...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
NONE	MALWAREBYTES:83...	A week in security (June 15 – June 21)_MALWAREBYTES:83CDAA45A9C2B45553FD8E42C9D9A1EC Last week on Malwarebytes Labs: * Nearly 15,000 infected websites cleaned in SocGholish crackdown * Apple patches Beats Studio Buds flaw that ...	N/A	N/A	Jun 22, 2026	MALWAREBYTES

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected Devices_THN:737989C010C5C788BED2FE967F254621

Recent Advisories

Apache NiFi: Missing Validation for Proxy Host Headers_CVE-2026-54665

Apache NiFi: Missing Authorization of Restricted Permissions when Replacing Flow Contents_CVE-2026-44914

Apache NiFi: Improper Escaping of Table Names in CaptureChangeMySQL_CVE-2026-44913

Apache NiFi: Incorrect Authorization for Configuration Verification Requests_CVE-2026-44911

python-SQLiscanner_410A7F1F-5142-5466-94C6-96D489CE0302

Exploit for Authentication Bypass by Spoofing in Zabbix_BC1EFC7B-C6E0-528C-BD5D-A2D2ECE15187

Exploit for Use After Free in Google Android_976F9104-D05C-54A5-8EAF-248D039A5569

Exploit for Deserialization of Untrusted Data in Facebook React_2B539108-1D8B-56B5-A8AC-B8E1E8E96640

A week in security (June 15 – June 21)_MALWAREBYTES:83CDAA45A9C2B45553FD8E42C9D9A1EC

Protect Your Attack Surface with RedGem

Security Intelligence
Feed