Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

162 New today

64,699 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

351

Jun 10

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

Jun 23

Critical

High

Medium

Low

Latest

CVE CVSS 7.5

vLLM: Security Check Bypass via assert Statement in Activation Function Loading Allows Arbitrary Code Execution_CVE-2026-41523

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.22.0, an assert-based security check in vLLM's activation function loading allows any unauthenticated attacker to achieve arbitrary code execution on the server by publishing a malicious Huggi...

CVE-2026-41523 vllm-project vllm < 0.22.0

Jun 22, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	959BDE59-627E-	bypass-code-defender_959BDE59-627E-5EBC-B239-D7E23BC18A90 ansi ┌──root💀bypass- └─ cat /etc/bypass-code/about ─────────────────────────────────── yaml system: name: "BYPASSCODE" role: "server / vps guardia...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
HIGH 8.8	MS:CVE-2026-12439	Chromium: CVE-2026-12439 Use after free in Digital Credentials_MS:CVE-2026-12439 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 19, 2026	MSCVE
MEDIUM 4.2	MS:CVE-2026-12456	Chromium: CVE-2026-12456 Insufficient validation of untrusted input in Extensions_MS:CVE-2026-12456 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 19, 2026	MSCVE
MEDIUM 6.5	MS:CVE-2026-12461	Chromium: CVE-2026-12461 Out of bounds read in WebRTC_MS:CVE-2026-12461 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 19, 2026	MSCVE
HIGH 7.5	CVE-2026-55603	http-proxy-middleware: multipart/form-data field injection via unescaped CRLF in `fixRequestBody`_CVE-2026-55603 http-proxy-middleware is node.js http-proxy middleware. From 3.0.4 until 3.0.7 and 4.1.1, fixRequestBody() is the library's documented helper for r...	chimurai	http-proxy-middleware >= 3.0.4, < 3.0.7	Jun 22, 2026	CVE
MEDIUM 5.8	CVE-2026-55599	phpseclib: X.509 certificate validation sends attacker-controlled outbound requests (server-side request forgery) via Authority Information Access_CVE-2026-55599 phpseclib is a PHP secure communications library. From 0.1.1 until 1.0.30, 2.0.55, and 3.0.54, when an application validates an untrusted X.509 cer...	phpseclib	phpseclib >= 0.1.1, < 1.0.30	Jun 22, 2026	CVE
MEDIUM 6.9	CVE-2026-54651	pypdf: Possible infinite loop when processing threads/articles in writer_CVE-2026-54651 pypdf is a free and open-source pure-python PDF library. Prior to 6.13.1, an attacker who uses this vulnerability can craft a PDF which leads to an...	py-pdf	pypdf < 6.13.1	Jun 22, 2026	CVE
MEDIUM 6.9	CVE-2026-54531	pypdf: Possible infinite loop when processing outlines/bookmarks in writer_CVE-2026-54531 pypdf is a free and open-source pure-python PDF library. Prior to 6.13.0, an attacker who uses this vulnerability can craft a PDF which leads to an...	py-pdf	pypdf < 6.13.0	Jun 22, 2026	CVE
MEDIUM 6.9	CVE-2026-54530	pypdf: Possible infinite loop when retrieving fonts for layout-mode text extraction_CVE-2026-54530 pypdf is a free and open-source pure-python PDF library. Prior to 6.13.0, an attacker who uses this vulnerability can craft a PDF which leads to an...	py-pdf	pypdf < 6.13.0	Jun 22, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

vLLM: Security Check Bypass via assert Statement in Activation Function Loading Allows Arbitrary Code Execution_CVE-2026-41523

Recent Advisories

bypass-code-defender_959BDE59-627E-5EBC-B239-D7E23BC18A90

Chromium: CVE-2026-12439 Use after free in Digital Credentials_MS:CVE-2026-12439

Chromium: CVE-2026-12456 Insufficient validation of untrusted input in Extensions_MS:CVE-2026-12456

Chromium: CVE-2026-12461 Out of bounds read in WebRTC_MS:CVE-2026-12461

http-proxy-middleware: multipart/form-data field injection via unescaped CRLF in `fixRequestBody`_CVE-2026-55603

phpseclib: X.509 certificate validation sends attacker-controlled outbound requests (server-side request forgery) via Authority Information Access_CVE-2026-55599

pypdf: Possible infinite loop when processing threads/articles in writer_CVE-2026-54651

pypdf: Possible infinite loop when processing outlines/bookmarks in writer_CVE-2026-54531

pypdf: Possible infinite loop when retrieving fonts for layout-mode text extraction_CVE-2026-54530

Protect Your Attack Surface with RedGem

Security Intelligence
Feed