Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

324 New today
65,952 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

60
Jun 13
68
Jun 14
443
Jun 15
630
Jun 16
464
Jun 17
3
Jun 18
352
Jun 19
56
Jun 20
104
Jun 21
317
Jun 22
294
Jun 23
355
Jun 24
376
Jun 25
289
Jun 26
Critical
High
Medium
Low

Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9.1 CVE-2025-55017

Apache IoTDB: Path Traversal Vulnerability_CVE-2025-55017

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache IoTDB. This issue affects Apache IoTDB: fro...

Apache Software Foundation Apache IoTDB 2.0.0 CVE
HIGH 7.5 CVE-2026-5757

There exists an unauthenticated remote information disclosure vulnerability in Ollama’s model quantization engine_CVE-2026-5757

Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an attacker to read and exfiltrate the ser...

Ollama AI Ollama v0.13.5 CVE
HIGH 7.5 CVE-2026-0828

Kernel driver vulnerability in Safetica Endpoint Client_CVE-2026-0828

Kernel driver ProcessMonitorDriver.sys in Safetica's endpoint client x64 , versions 10.5.75.0 and 11.11.4.0, allows unprivileged user to abuse IOCT...

Safetica Endpoint Client 10.5.75.0 CVE
CRITICAL 9.8 CVE-2026-0685

Server side template inject (SSTI) in Edgewall Genshi Template Engine_CVE-2026-0685

Server side template inject (SSTI) in the expression evaluation component in Genshi Template Engine version 0.7.9 allows a remote attacker to achie...

Edgewall Genshi 0.7.9 CVE
CRITICAL 9.6 CVE-2025-11919

Unprotected temporary directories in Wolfram Cloud may result in privilege escalation_CVE-2025-11919

The default JVM can access files and directories under `/tmp/` including the `$TemporaryDirectory` of other users on the same cloud instance (`/tmp...

Wolfram Research Inc. Cloud 14.2 CVE
HIGH 8.1 CVE-2026-56876

extract-zip unvalidated symlink path traversal_CVE-2026-56876

extract-zip does not validate symlink targets when extracting zip archives. When processing a malicious zip file containing a symlink with a relati...

max-mapper extract-zip CVE
MEDIUM 6.3 CVE-2026-55448

mise: Local credential_command executes untrusted config_CVE-2026-55448

mise manages dev tools like node, python, cmake, and terraform. From 2026.3.15 until 2026.6.4, mise loads github.credential_command from local proj...

jdx mise < 2026.6.4 CVE
HIGH 8.6 CVE-2026-55441

mise: Arbitrary command execution via task-include files in an untrusted, config-less repository_CVE-2026-55441

mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.6.4, mise's trust feature gates config files (mise.toml, .tool-versio...

jdx mise < 2026.6.4 CVE
MEDIUM 5.5 CVE-2026-54557

mise HTTP backend uses raw version path for install symlink destination_CVE-2026-54557

mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.6.1, the mise HTTP backend builds its install symlink destination fro...

jdx mise < 2026.6.1 CVE