Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

288 New today
64,608 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

658
Jun 9
351
Jun 10
245
Jun 11
336
Jun 12
60
Jun 13
68
Jun 14
443
Jun 15
630
Jun 16
464
Jun 17
3
Jun 18
352
Jun 19
56
Jun 20
104
Jun 21
287
Jun 22
Critical
High
Medium
Low

Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 7.3 CVE-2026-41046

path traversal via `config` parameter in qSnapper_CVE-2026-41046

A path traversal attack when using a "configName" parameter in qSnapper before version 1.3.3 allowed a local attacker to use malicious config files...

presire qSnapper CVE
HIGH 8.1 CVE-2026-41045

Weak polkit authentication check in qSnapper_CVE-2026-41045

A time-to-check-time-of-use in polkit authentication of qSnapper before version 1.3.3 allowed a local attacker to bypass qSnappers authentication m...

presire qSnapper CVE
MEDIUM 5.9 CVE-2026-12725

Dnsmasq: dnsmasq: heap buffer overflow in log_query() when logging unsupported ds/dnskey replies_CVE-2026-12725

A heap-based buffer overflow was found in dnsmasq. When DNSSEC validation and query logging are both enabled, logging of DS or DNSKEY replies conta...

Red Hat Red Hat Enterprise Linux 10 CVE
HIGH 8.1 CVE-2026-12628

Hardcoded credential in the IBM Storage Protect Snapshot For Windows leads to unauthorized access to system_CVE-2026-12628

IBM Storage Protect Client 8.1.0.0 through 8.2.1.0 and IBM Storage Protect Snapshot For Windows 8.1.0.0 through 8.2.1.0 could allow a remote attack...

IBM Storage Protect Client 8.1.0.0 CVE
MEDIUM 4.8 CVE-2026-12549

Libsoup: incomplete fix for cve-2026-2443: range suffix overflow in libsoup soupserver_CVE-2026-12549

The fix for CVE-2026-2443 was regressed by a subsequent rework commit that replaced specific overflow checks with a general signed comparison. When...

Red Hat Red Hat Enterprise Linux 10 CVE
MEDIUM 6.1 CVE-2026-12479

Path Traversal in keras-team/keras_CVE-2026-12479

A path traversal vulnerability exists in keras-team/keras version 3.14.0, specifically in the `DiskIOStore.make` method within the Keras 3 model sa...

keras-team keras-team/keras unspecified CVE
MEDIUM 4.8 CVE-2026-11943

Akaunting 3.1.21 – Authenticated stored XSS in document timeline_CVE-2026-11943

Akaunting 3.1.21 contains an authenticated stored cross-site scripting vulnerability in the document timeline shown on invoice and bill detail page...

Akaunting Akaunting 3.1.21 CVE
MEDIUM 4.8 CVE-2026-11942

Akaunting 3.1.21 – Stored XSS in delete confirmation modal_CVE-2026-11942

Akaunting 3.1.21 contains an authenticated stored cross-site scripting vulnerability in the reusable delete confirmation flow. A user with permissi...

Akaunting Akaunting 3.1.21 CVE
MEDIUM 5.4 CVE-2026-11372

IBM TRIRIGA Cross-Site Scripting Vulnerability_CVE-2026-11372

IBM TRIRIGA Application Platform 5.0.2 through 5.0.3 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embe...

IBM TRIRIGA Application Platform 5.0.2 CVE