Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

204 New today
66,829 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

464
Jun 17
3
Jun 18
352
Jun 19
56
Jun 20
104
Jun 21
317
Jun 22
294
Jun 23
355
Jun 24
376
Jun 25
386
Jun 26
53
Jun 27
318
Jun 28
284
Jun 29
125
Jun 30
Critical
High
Medium
Low
Latest
CVE CVSS 6.5

Keycloak-broker: keycloak: privilege escalation to realm administrator via improper authorization in identity provider mapper_CVE-2026-12388

A flaw was found in the Identity Provider (IdP) mapper component of Keycloak, which is used to manage how user information from external services is mapped to Keycloak users. An administrator with limited permissions to manage identity providers can exploit this flaw by creati...

CVE-2026-12388 Red Hat Red Hat Build of Keycloak
Read analysis

Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 7.8 1A5AFF91-769E-

Exploit for CVE-2026-46331_1A5AFF91-769E-5D60-9467-A406F3FD6FD5

CVE-2026-46331 - "pedit COW" Vulnerability Assessment & Mitigation Guide Este repositorio contiene herramientas administrativas básicas para verifi...

N/A N/A GITHUBEXPLOIT
HIGH 7.5 5CCC4D1D-CB00-

Exploit for CVE-2026-4020_5CCC4D1D-CB00-54EE-88B5-E103837659E0

No description provided...

N/A N/A GITHUBEXPLOIT
HIGH 7.8 B1A34079-E8F9-

Exploit for CVE-2026-31694_B1A34079-E8F9-5174-9297-C9EF365CAE42

FUSE readdir cache out-of-bounds write PoC Local proof of concept for a missing bounds check in fs/fuse/readdir.c:fuseadddirenttocache. A FUSE serv...

N/A N/A GITHUBEXPLOIT
NONE H1:3831432

curl: setopt(VERIFYPEER) from callback bypasses TLS verify on connection reuse_H1:3831432

## Summary: `Curl_ssl_conn_config_update` overwrites `conn->ssl_config.verifypeer` when `curl_easy_setopt(CURLOPT_SSL_VERIFYPEER, ...)` is called,...

N/A N/A HACKERONE
NONE IMPERVABLOG:02B...

AI Agents Are Visiting Your Website. Which Ones Should You Trust?_IMPERVABLOG:02B3638CB0833BED533ED6C0178D7199

The internet is changing fast. For years, the main goal of search was simple: to help users find links. A user searched, reviewed results, clicked...

N/A N/A IMPERVABLOG
NONE SECURELIST:318E...

ToddyCat: your hidden email assistant. Part 2_SECURELIST:318E425764C1762E8EB0EB5B9B2F6150

![](https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2026/06/19083452/toddycat-part-2-featured-image-990x400.jpg) ## Introduction...

N/A N/A SECURELIST
NONE HACKREAD:F9C96F...

WhatsApp Usernames Will Let You Chat Without Sharing Your Phone Number_HACKREAD:F9C96F0F0C00545F020EAD13425F60F7

WhatsApp is letting users reserve usernames before its 2026 launch, giving people a way to chat without sharing phone numbers. Here is how it works...

N/A N/A HACKREAD
NONE THN:B2122E08A29...

What the Numbers Say About FIFA 2026 Cyber Risk_THN:B2122E08A297EDF9158A122D018B4FAD

![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhEZt1Yxw3eiMzyzPpblDGru8JlEmw-Rr1Lgn8hG9YCvxeCNDpKOCyn5_Evvmc_lB9tKDpcmBLfH3a6mHGkZB...

N/A N/A THN
NONE H1:3831345

curl: CURLSHOPT_UNSHARE race can cause UAF in shared SSL session cache during HTTPS transfer_H1:3831345

## Summary `CURLSHOPT_UNSHARE` can free a shared SSL session cache while another thread is starting a normal HTTPS transfer with the same share ha...

N/A N/A HACKERONE