Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

297 New today

65,288 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

Jun 25

Critical

High

Medium

Low

Latest

CVE CVSS 8.8

Jellyfin: Potential FFmpeg argument injection via unescaped subtitle file path_CVE-2026-48793

Jellyfin is an open source self hosted media server. Prior to 10.11.10, a potential FFmpeg argument injection vulnerability exists in the subtitle conversion code path. SubtitleEncoder.ConvertTextSubtitleToSrtInternal (SubtitleEncoder.cs, line 382) interpolates the subtitle fi...

CVE-2026-48793 jellyfin jellyfin < 10.11.10

Jun 24, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.1	CVE-2026-12760	Denial-of-Service Vulnerability via Malformed IPv4 Fragmentation Handling in TP-Link Tapo C200_CVE-2026-12760 A denial-of-service (DoS) vulnerability has been identified in Tapo C200 v3 in the network packet handling logic due to improper handling of IPv4 f...	TP-Link Systems Inc.	Tapo C200 v3	Jun 24, 2026	CVE
HIGH 8.8	CVE-2026-13038	CVE-2026-13038_CVE-2026-13038 Use after free in Autofill in Google Chrome on Windows prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code via a crafted HT...	Google	Chrome 149.0.7827.197	Jun 24, 2026	CVE
HIGH 7.8	CVE-2026-13037	CVE-2026-13037_CVE-2026-13037 Use after free in WebView in Google Chrome on Android prior to 149.0.7827.197 allowed a local attacker to execute arbitrary code inside a sandbox v...	Google	Chrome 149.0.7827.197	Jun 24, 2026	CVE
HIGH 8.8	CVE-2026-13036	CVE-2026-13036_CVE-2026-13036 Use after free in Blink in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted...	Google	Chrome 149.0.7827.197	Jun 24, 2026	CVE
HIGH 8.8	CVE-2026-13035	CVE-2026-13035_CVE-2026-13035 Use after free in Bluetooth in Google Chrome on Mac prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code via a malicious per...	Google	Chrome 149.0.7827.197	Jun 24, 2026	CVE
MEDIUM 4.7	CVE-2026-13034	CVE-2026-13034_CVE-2026-13034 Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer proce...	Google	Chrome 149.0.7827.197	Jun 24, 2026	CVE
HIGH 8.8	CVE-2026-13033	CVE-2026-13033_CVE-2026-13033 Out of bounds read and write in Blink>InterestGroups in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code v...	Google	Chrome 149.0.7827.197	Jun 24, 2026	CVE
CRITICAL 9.6	CVE-2026-13032	CVE-2026-13032_CVE-2026-13032 Use after free in WebGL in Google Chrome on Android prior to 149.0.7827.197 allowed a remote attacker to potentially perform a sandbox escape via a...	Google	Chrome 149.0.7827.197	Jun 24, 2026	CVE
HIGH 8.8	CVE-2026-13031	CVE-2026-13031_CVE-2026-13031 Use after free in Blink in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted...	Google	Chrome 149.0.7827.197	Jun 24, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Jellyfin: Potential FFmpeg argument injection via unescaped subtitle file path_CVE-2026-48793

Recent Advisories

Denial-of-Service Vulnerability via Malformed IPv4 Fragmentation Handling in TP-Link Tapo C200_CVE-2026-12760

CVE-2026-13038_CVE-2026-13038

CVE-2026-13037_CVE-2026-13037

CVE-2026-13036_CVE-2026-13036

CVE-2026-13035_CVE-2026-13035

CVE-2026-13034_CVE-2026-13034

CVE-2026-13033_CVE-2026-13033

CVE-2026-13032_CVE-2026-13032

CVE-2026-13031_CVE-2026-13031

Protect Your Attack Surface with RedGem

Security Intelligence
Feed