Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

307 New today

65,239 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

307

Jun 24

Critical

High

Medium

Low

Latest

CVE CVSS 5.5

motionEye: World-Readable Configuration File Exposes Admin Password Hash_CVE-2026-32315

motionEye (mEye) is an online interface for motion software, a video surveillance program with motion detection. Versions prior to 0.44.0 create the configuration file /etc/motioneye/motion.conf with 644 permissions (-rw-r--r--), making it readable by any local user on the sys...

CVE-2026-32315 motioneye-project motioneye < 0.44.0

Jun 24, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.5	CVE-2026-31978	motionEye: Arbitrary File Read via Path Traversal in Picture/Movie Preview Endpoint_CVE-2026-31978 motionEye (mEye) is an online interface for motion software, which is a video surveillance program with motion detection. Versions prior to 0.44.0 ...	motioneye-project	motioneye < 0.44.0	Jun 24, 2026	CVE
MEDIUM 6.5	CVE-2026-13208	Kubevirt: virt-handler-rhel9: kubevirt: virt-handler notify server trusts vmi identity from unauthenticated grpc request body_CVE-2026-13208 A flaw was found in KubeVirt's virt-handler domain notify server. The gRPC handlers for HandleDomainEvent and HandleK8SEvent derive the VMI identit...	Red Hat	Red Hat OpenShift Virtualization 4	Jun 24, 2026	CVE
MEDIUM 5.2	CVE-2026-13201	Kubevirt: virt-handler-rhel9: kubevirt: safepath openatnofollow symlink following via /proc/self/fd allows host file metadata modification_CVE-2026-13201 A flaw was found in KubeVirt's safepath package. The OpenAtNoFollow function uses O_PATH\|O_NOFOLLOW to obtain a file descriptor to a path leaf, but...	Red Hat	Red Hat OpenShift Virtualization 4	Jun 24, 2026	CVE
HIGH 7.6	CVE-2026-11998	AngularJS XSS via SCE resource URL sanitization bypass_CVE-2026-11998 A flaw in AngularJS' Strict Contextual Escaping (SCE) logic allows bypassing certain SCE policies for resource URLs and can lead to arbitrary JavaS...	Google	AngularJS >=1.2.0-rc.3	Jun 24, 2026	CVE
HIGH 7.2	CVE-2026-9779	ATEN Unizon doCryptoHugeFileToFile Improper Verification of Cryptographic Signature Remote Code Execution Vulnerability_CVE-2026-9779 ATEN Unizon doCryptoHugeFileToFile Improper Verification of Cryptographic Signature Remote Code Execution Vulnerability. This vulnerability allows ...	ATEN	Unizon 2.6.253.001	Jun 24, 2026	CVE
HIGH 7.2	CVE-2026-9778	ATEN Unizon ImportDeviceList Directory Traversal Remote Code Execution Vulnerability_CVE-2026-9778 ATEN Unizon ImportDeviceList Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitra...	ATEN	Unizon 2.7.262.002	Jun 24, 2026	CVE
HIGH 7.2	CVE-2026-9777	ATEN Unizon restoreDB Directory Traversal Remote Code Execution Vulnerability_CVE-2026-9777 ATEN Unizon restoreDB Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code...	ATEN	Unizon 2.7.262.002	Jun 24, 2026	CVE
HIGH 7.5	CVE-2026-9776	ATEN Unizon writeFileToHttpServletResponse Directory Traversal Information Disclosure Vulnerability_CVE-2026-9776 ATEN Unizon writeFileToHttpServletResponse Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to ...	ATEN	Unizon 2.7.262.002	Jun 24, 2026	CVE
MEDIUM 5.5	CVE-2026-9775	ATEN Unizon uploadSSL Directory Traversal Arbitrary File Deletion Vulnerability_CVE-2026-9775 ATEN Unizon uploadSSL Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary fil...	ATEN	Unizon 2.7.262.002	Jun 24, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

motionEye: World-Readable Configuration File Exposes Admin Password Hash_CVE-2026-32315

Recent Advisories

motionEye: Arbitrary File Read via Path Traversal in Picture/Movie Preview Endpoint_CVE-2026-31978

Kubevirt: virt-handler-rhel9: kubevirt: virt-handler notify server trusts vmi identity from unauthenticated grpc request body_CVE-2026-13208

Kubevirt: virt-handler-rhel9: kubevirt: safepath openatnofollow symlink following via /proc/self/fd allows host file metadata modification_CVE-2026-13201

AngularJS XSS via SCE resource URL sanitization bypass_CVE-2026-11998

ATEN Unizon doCryptoHugeFileToFile Improper Verification of Cryptographic Signature Remote Code Execution Vulnerability_CVE-2026-9779

ATEN Unizon ImportDeviceList Directory Traversal Remote Code Execution Vulnerability_CVE-2026-9778

ATEN Unizon restoreDB Directory Traversal Remote Code Execution Vulnerability_CVE-2026-9777

ATEN Unizon writeFileToHttpServletResponse Directory Traversal Information Disclosure Vulnerability_CVE-2026-9776

ATEN Unizon uploadSSL Directory Traversal Arbitrary File Deletion Vulnerability_CVE-2026-9775

Protect Your Attack Surface with RedGem

Security Intelligence
Feed