Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

243 New today

65,336 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

Jun 25

Critical

High

Medium

Low

Latest

CVE CVSS 4.3

Insufficient input validation of internal web server_CVE-2026-42005

An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The internal web server is disabled by default.

CVE-2026-42005 PowerDNS Authoritative 4.9.0

Jun 25, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.8	42AB7263-83ED-	Exploit for Use After Free in Linux Linux_Kernel_42AB7263-83ED-599E-9DD2-2E97F2B90A99 CVE-2026-23111 PoC Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability Summary - CVE: CVE-2026-23111 - Type: Use-After-Fr...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
NONE	THN:18D345EFB30...	Surviving the Mythos Era: Richard Bejtlich on the Case for NDR_THN:18D345EFB30E0C4B48C8E47EDFAA777B ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjGC4Kd3HcSGw5TQ1GQNwgQST4imnVTlHZ4yW1dDr_kwUksDH1MHmlPUMzW8LhePZZTM1HszkIQwL8Ggm-cxl...	N/A	N/A	Jun 25, 2026	THN
HIGH 8.6	CCA10CC3-6319-	Exploit for CVE-2026-20230_CCA10CC3-6319-542C-ADD9-3605DA4D116A CVE-2026-20230 Cisco Unified Communications Manager SSRF: Arbitrary File Write to RCE—PoC Derivation Process and Analysis Scope: For use only in lo...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
NONE	IMPERVABLOG:0E4...	API Security Demystified: Which Tools Actually Protect Your APIs (And Where the Gaps Are)_IMPERVABLOG:0E46C9861D1FFFD49FEDC3014985F0E1 ## Introduction Quick answer: No single tool secures an API. API security is a layered discipline. Secure-coding analyzers and SCA scanners catch ...	N/A	N/A	Jun 25, 2026	IMPERVABLOG
NONE	MALWAREBYTES:8D...	Elite network says it was hacked after members’ personal data was left exposed_MALWAREBYTES:8DD20C3A275E37B4123FD763E33A138B Some organizations exist to be exclusive. They're invite-only, and discreet, the kind of place where the membership directory is the product. Dia...	N/A	N/A	Jun 25, 2026	MALWAREBYTES
NONE	THN:BD25B0B3685...	New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis_THN:BD25B0B3685DF00067DD7045F2EFCD97 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgbTrOy7FP80AfVcwyuiLtJx1T9YECQ6fxHaelQKUn3MNwSV9P3tiVq4_-pOB-gmU3lF9GpWnc5ebVSAbp0MZ...	N/A	N/A	Jun 25, 2026	THN
LOW 2	CVE-2026-56130	Apache Shiro: Remember-me cookie isn’t checked for expiry on the server_CVE-2026-56130 "Remember me" cookie age is not verified on the server. This potentially allows an attacker to intercept a valid cookie and reuse it indefinitely, ...	Apache Software Foundation	Apache Shiro 1.2.4	Jun 25, 2026	CVE
HIGH 8.2	CVE-2026-56091	Apache Shiro: Authentication bypass in Guice-Web integration_CVE-2026-56091 When using Apache Shiro with the shiro-guice module in a web servlet context, a specially crafted HTTP request may cause an authentication bypass. ...	Apache Software Foundation	Apache Shiro	Jun 25, 2026	CVE
MEDIUM 6.4	CVE-2026-54226	Apache Kvrocks: RESTORE IntSet Integer Overflow Leads to Remote DoS_CVE-2026-54226 A vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 2.6.0 through 2.15.0. Users are recommended to upgrade to version 2.16...	Apache Software Foundation	Apache Kvrocks 2.6.0	Jun 25, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Insufficient input validation of internal web server_CVE-2026-42005

Recent Advisories

Exploit for Use After Free in Linux Linux_Kernel_42AB7263-83ED-599E-9DD2-2E97F2B90A99

Surviving the Mythos Era: Richard Bejtlich on the Case for NDR_THN:18D345EFB30E0C4B48C8E47EDFAA777B

Exploit for CVE-2026-20230_CCA10CC3-6319-542C-ADD9-3605DA4D116A

API Security Demystified: Which Tools Actually Protect Your APIs (And Where the Gaps Are)_IMPERVABLOG:0E46C9861D1FFFD49FEDC3014985F0E1

Elite network says it was hacked after members’ personal data was left exposed_MALWAREBYTES:8DD20C3A275E37B4123FD763E33A138B

New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis_THN:BD25B0B3685DF00067DD7045F2EFCD97

Apache Shiro: Remember-me cookie isn’t checked for expiry on the server_CVE-2026-56130

Apache Shiro: Authentication bypass in Guice-Web integration_CVE-2026-56091

Apache Kvrocks: RESTORE IntSet Integer Overflow Leads to Remote DoS_CVE-2026-54226

Protect Your Attack Surface with RedGem

Security Intelligence
Feed