Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

299 New today

64,631 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

351

Jun 10

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

310

Jun 22

Jun 23

Critical

High

Medium

Low

Latest

CVE CVSS 8.7

Angular: Multiple Remote Code Execution Vulnerabilities in Angular Language Service VS Code Extension_CVE-2026-49241

The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. Prior to 21.2.4, the client-side Angular Language Service VS Code extension reads the custom TypeScript SDK paths typescript.tsdk and js/ts.tsdk.path directly from workspac...

CVE-2026-49241 angular angular < 21.2.4

Jun 22, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.4	CVE-2026-41049	Caching of Authentication allows Authentication Bypass between users in qSnapper_CVE-2026-41049 Incorrect caching of authentication between different users of the qSnapper dbus service before version 1.3.3 allowed any local attacker to use db...	presire	qSnapper 1.2.1	Jun 22, 2026	CVE
HIGH 8.4	CVE-2026-41048	Caching of Authentication allows Authentication Bypass in qSnapper_CVE-2026-41048 Incorrect caching of authentication between different polkit methods in qSnapper before version 1.3.3 allowed a local attacker to use functions lik...	presire	qSnapper 1.2.1	Jun 22, 2026	CVE
MEDIUM 6.9	CVE-2026-41047	Information leak via “diff” methods in qSnapper_CVE-2026-41047 Lack of authentication when using the "snapshot diff" functions in qSnapper before version 1.3.3 allowed a local attacker to see otherwise read pro...	presire	qSnapper	Jun 22, 2026	CVE
HIGH 7.3	CVE-2026-41046	path traversal via `config` parameter in qSnapper_CVE-2026-41046 A path traversal attack when using a "configName" parameter in qSnapper before version 1.3.3 allowed a local attacker to use malicious config files...	presire	qSnapper	Jun 22, 2026	CVE
HIGH 8.1	CVE-2026-41045	Weak polkit authentication check in qSnapper_CVE-2026-41045 A time-to-check-time-of-use in polkit authentication of qSnapper before version 1.3.3 allowed a local attacker to bypass qSnappers authentication m...	presire	qSnapper	Jun 22, 2026	CVE
MEDIUM 5.9	CVE-2026-12725	Dnsmasq: dnsmasq: heap buffer overflow in log_query() when logging unsupported ds/dnskey replies_CVE-2026-12725 A heap-based buffer overflow was found in dnsmasq. When DNSSEC validation and query logging are both enabled, logging of DS or DNSKEY replies conta...	Red Hat	Red Hat Enterprise Linux 10	Jun 22, 2026	CVE
HIGH 8.1	CVE-2026-12628	Hardcoded credential in the IBM Storage Protect Snapshot For Windows leads to unauthorized access to system_CVE-2026-12628 IBM Storage Protect Client 8.1.0.0 through 8.2.1.0 and IBM Storage Protect Snapshot For Windows 8.1.0.0 through 8.2.1.0 could allow a remote attack...	IBM	Storage Protect Client 8.1.0.0	Jun 22, 2026	CVE
MEDIUM 4.8	CVE-2026-12549	Libsoup: incomplete fix for cve-2026-2443: range suffix overflow in libsoup soupserver_CVE-2026-12549 The fix for CVE-2026-2443 was regressed by a subsequent rework commit that replaced specific overflow checks with a general signed comparison. When...	Red Hat	Red Hat Enterprise Linux 10	Jun 22, 2026	CVE
MEDIUM 6.1	CVE-2026-12479	Path Traversal in keras-team/keras_CVE-2026-12479 A path traversal vulnerability exists in keras-team/keras version 3.14.0, specifically in the `DiskIOStore.make` method within the Keras 3 model sa...	keras-team	keras-team/keras unspecified	Jun 22, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Angular: Multiple Remote Code Execution Vulnerabilities in Angular Language Service VS Code Extension_CVE-2026-49241

Recent Advisories

Caching of Authentication allows Authentication Bypass between users in qSnapper_CVE-2026-41049

Caching of Authentication allows Authentication Bypass in qSnapper_CVE-2026-41048

Information leak via “diff” methods in qSnapper_CVE-2026-41047

path traversal via `config` parameter in qSnapper_CVE-2026-41046

Weak polkit authentication check in qSnapper_CVE-2026-41045

Dnsmasq: dnsmasq: heap buffer overflow in log_query() when logging unsupported ds/dnskey replies_CVE-2026-12725

Hardcoded credential in the IBM Storage Protect Snapshot For Windows leads to unauthorized access to system_CVE-2026-12628

Libsoup: incomplete fix for cve-2026-2443: range suffix overflow in libsoup soupserver_CVE-2026-12549

Path Traversal in keras-team/keras_CVE-2026-12479

Protect Your Attack Surface with RedGem

Security Intelligence
Feed