Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

224 New today

65,462 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

175

Jun 25

Critical

High

Medium

Low

Latest

CVE CVSS 7.4

CVE-2026-57589_CVE-2026-57589

sys/kern/sysv_sem.c in OpenBSD through 7.9 has a use-after-free allowing local privilege escalation to root. This is a context switch use-after-free after tsleep in sys_semget().

CVE-2026-57589 OpenBSD OpenBSD

Jun 25, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.7	CVE-2026-8666	OS Command Injection in Rapid7 InsightConnect Traceroute Plugin_CVE-2026-8666 OS Command Injection vulnerability in the traceroute action of Rapid7 InsightConnect Traceroute Plugin on Linux allows remote attackers to execute ...	Rapid7	InsightConnect Traceroute Plugin	Jun 25, 2026	CVE
HIGH 7.7	CVE-2026-8665	OS Command Injection in Rapid7 InsightConnect Translate Plugin_CVE-2026-8665 OS Command Injection vulnerability in the TR action of Rapid7 InsightConnect Translate Plugin on Linux allows remote attackers to execute arbitrary...	Rapid7	InsightConnect TR Plugin	Jun 25, 2026	CVE
MEDIUM 6	CVE-2026-8664	OS Command Injection in Rapid7 InsightConnect Finger Plugin_CVE-2026-8664 OS Command Injection vulnerability in Rapid7 InsightConnect Finger Plugin on Linux allows authenticated attackers to execute arbitrary OS commands ...	Rapid7	InsightConnect Finger Plugin	Jun 25, 2026	CVE
HIGH 7.7	CVE-2026-8660	OS Command Injection in Rapid7 InsightConnect Ping Plugin_CVE-2026-8660 OS Command Injection vulnerability in the ping action of Rapid7 InsightConnect Ping Plugin on Linux allows remote attackers to execute arbitrary OS...	Rapid7	InsightConnect Ping Plugin	Jun 25, 2026	CVE
HIGH 7.7	CVE-2026-8592	OS Command Injection in Rapid7 InsightConnect AWK Plugin_CVE-2026-8592 OS Command Injection vulnerability in the process_string action of Rapid7 InsightConnect AWK Plugin on Linux allows remote attackers to execute arb...	Rapid7	InsightConnect AWK Plugin	Jun 25, 2026	CVE
CRITICAL 9.8	783676F7-7FF1-	Exploit for Authentication Bypass by Spoofing in Alibaba Nacos_783676F7-7FF1-5239-9717-0FFAAC5D8271 CVE-2021-29441...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
HIGH 7.2	FDFAA405-236F-	Exploit for Race Condition in Canonical Ubuntu_Linux_FDFAA405-236F-52FC-99CA-7AE43569BBCF Kernel Exploit — Dirty Cow CVE-2016-5195 Laboratorio de escalamiento de privilegios mediante la vulnerabilidad Dirty Cow, realizado como parte de l...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
CRITICAL 10	0452174E-CA14-	Exploit for CVE-2026-48908_0452174E-CA14-5E07-832F-D7B7BBD5B889 🚨 CVE-2026-48908 — Full Server Compromise via Arbitrary File Upload Critical Unauthenticated File Upload → Remote Code Execution RCE A critical vu...	N/A	N/A	Jun 24, 2026	GITHUBEXPLOIT
MEDIUM 5.1	CVE-2026-49979	Appsmith: SSRF via `POST /api/v1/admin/send-test-email` — JavaMail Bypasses WebClient IP Filter_CVE-2026-49979 Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.99, the POST /api/v1/admin/send-test-email endpoint accept...	appsmithorg	appsmith < 1.99	Jun 24, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

CVE-2026-57589_CVE-2026-57589

Recent Advisories

OS Command Injection in Rapid7 InsightConnect Traceroute Plugin_CVE-2026-8666

OS Command Injection in Rapid7 InsightConnect Translate Plugin_CVE-2026-8665

OS Command Injection in Rapid7 InsightConnect Finger Plugin_CVE-2026-8664

OS Command Injection in Rapid7 InsightConnect Ping Plugin_CVE-2026-8660

OS Command Injection in Rapid7 InsightConnect AWK Plugin_CVE-2026-8592

Exploit for Authentication Bypass by Spoofing in Alibaba Nacos_783676F7-7FF1-5239-9717-0FFAAC5D8271

Exploit for Race Condition in Canonical Ubuntu_Linux_FDFAA405-236F-52FC-99CA-7AE43569BBCF

Exploit for CVE-2026-48908_0452174E-CA14-5E07-832F-D7B7BBD5B889

Appsmith: SSRF via `POST /api/v1/admin/send-test-email` — JavaMail Bypasses WebClient IP Filter_CVE-2026-49979

Protect Your Attack Surface with RedGem

Security Intelligence
Feed