Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
4.4 MEDIUM
CVE-2026-12892 — Gstreamer1-plugins-bad: gstreamer1-plugins-bad: 1-byte heap out-of-bounds read in h.264 n…

A flaw was found in GStreamer's gst-plugins-bad package. When processing a specially crafted H.264 video file containing malformed MVC or SVC extension slice NAL units, a 1-byte heap out-of-bounds re…

enterprise_linux enterprise_linux | Memory Corruption
Jun 23, 2026 Jun 25, 2026
Jun 23, 2026
Jun 25, 2026
4.3 MEDIUM
CVE-2026-12891 — Gstreamer1-plugins-bad: gstreamer1-plugins-bad: global buffer overflow (oob read) in h.26…

A flaw was found in the GStreamer gst-plugins-bad package. When processing a malformed H.266/VVC video stream with a crafted aspect ratio indicator value, the H.266 parser performs an out-of-bounds r…

enterprise_linux enterprise_linux gstreamer | Remote | Memory Corruption
Jun 23, 2026 Jul 01, 2026
Jun 23, 2026
Jul 01, 2026
7.8 HIGH
CVE-2026-12112 — Foreman-mcp-server: mcp server: active session hijacking via insecure session state reuse

A flaw was found in the foreman-mcp-server. A session management vulnerability in the MCP Server allows unauthenticated attackers to hijack active administrative sessions due to an improper cache of …

satellite foreman satellite | Authentication
Jun 23, 2026 Jul 01, 2026
Jun 23, 2026
Jul 01, 2026
6.5 MEDIUM
CVE-2026-11820 — Community.general: community.general nexmo — api credentials exposed in get url query str…

A flaw was found in the community.general Ansible collection's nexmo module. The module constructs HTTP requests to the Vonage/Nexmo SMS API by encoding API credentials (api_key and api_secret) into …

enterprise_linux enterprise_linux | Remote | Information Disclosure
Jun 23, 2026 Jul 01, 2026
Jun 23, 2026
Jul 01, 2026
5.5 MEDIUM
CVE-2026-11819 — Community.general: community.general keyring_info — os keyring passphrase returned in pla…

Module: plugins/modules/keyring_info.py CVSS 3.1: 5.5 MEDIUM — AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Issue: The module retrieves a passphrase from the OS native keyring (GNOME Keyring, macOS Keycha…

enterprise_linux enterprise_linux | Information Disclosure
Jun 23, 2026 Jul 01, 2026
Jun 23, 2026
Jul 01, 2026
9.6 CRITICAL
CVE-2026-11807 — Eda-server: websocket missing authorization allows credential theft via activation_id spo…

A missing authorization vulnerability was found in the Event-Driven Ansible (EDA) websocket API. The /api/eda/ws/ansible-rulebook endpoint does not verify user permissions when processing Worker mess…

ansible_automation_platform | Remote | Authorization
Jun 23, 2026 Jun 27, 2026
Jun 23, 2026
Jun 27, 2026
5.1 MEDIUM
CVE-2025-64105 — FOSSBilling: IDOR Vulnerability in Support Ticket Creation

FOSSBilling is a billing and client management system that automates invoicing, payments, and communication for online service businesses. Versions 0.6.21 through 0.7.2 are vulnerable to IDOR through…

fossbilling | Remote | Authorization
Jun 23, 2026 Jun 25, 2026
Jun 23, 2026
Jun 25, 2026
8.6 HIGH
CVE-2026-54762 — Traefik Kubernetes Ingress NGINX provider fails open when auth-secret resolution fails

Traefik is an HTTP reverse proxy and load balancer. From 3.7.0-ea.1 until 3.7.5, there is a medium severity vulnerability in Traefik's Kubernetes Ingress NGINX provider that causes affected routes to…

traefik | Remote | Authentication
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
7.1 HIGH
CVE-2026-54761 — Traefik: Kubernetes Gateway crossProviderNamespaces bypass allows HTTPRoute outside the a…

Traefik is an HTTP reverse proxy and load balancer. Prior to 3.6.21 and 3.7.5, there is a high severity vulnerability in Traefik's Kubernetes Gateway provider affecting the crossProviderNamespaces al…

traefik | Remote | Authorization
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
7.8 HIGH
CVE-2026-54555 — rtk: Permission-gate bypass in rtk rewrite auto-allow via unsplit shell separators

rtk filters and compresses command outputs before they reach your LLM context. Prior to 0.42.2, the permission splitter did not conservatively split or reject several shell constructs that Bash treat…

rtk-rewrite | Authorization
Jun 23, 2026 Jun 25, 2026
Jun 23, 2026
Jun 25, 2026
7.3 HIGH
CVE-2026-54328 — Pi: Predictable temporary extension install paths allow local privilege escalation on sha…

Pi is a minimal terminal coding harness. From 0.74.0 until 0.78.1, Pi versions with temporary npm or git extension package installs used predictable paths under the operating system temporary directo…

| Misconfiguration
Jun 23, 2026 Jun 25, 2026
Jun 23, 2026
Jun 25, 2026
2.2 LOW
CVE-2026-54327 — Pi: Race condition in auth.json writes could expose stored credentials

Pi is a minimal terminal coding harness. From 0.74.0 until 0.78.1, Pi stored API keys and OAuth credentials in auth.json. A race condition in the file write path could briefly create or rewrite this …

| Race Condition
Jun 23, 2026 Jun 26, 2026
Jun 23, 2026
Jun 26, 2026
2.5 LOW
CVE-2026-54326 — Pi: Potential XSS in HTML session exports via Markdown URL sanitization bypass

Pi is a minimal terminal coding harness. From 0.74.0 until 0.78.1, Pi HTML exports render session Markdown into a static HTML file. It did not consistently reject unsafe Markdown link and image URL s…

| Cross-Site Scripting
Jun 23, 2026 Jun 25, 2026
Jun 23, 2026
Jun 25, 2026
4.4 MEDIUM
CVE-2026-54325 — Pi loads project-local extensions without approval

Pi is a minimal terminal coding harness. Pi before 0.79.0 loaded project-local configuration and resources from a repository's .pi directory without first asking the user to trust that repository. Th…

| Supply Chain
Jun 23, 2026 Jun 25, 2026
Jun 23, 2026
Jun 25, 2026
10.0 CRITICAL
CVE-2026-53622 — Traefik: HTTP/3 mTLS bypass via exact SNI TLSOptions lookup for wildcard and mixed-case h…

Traefik is an HTTP reverse proxy and load balancer. Prior to 3.7.3, there is a critical vulnerability in Traefik's HTTP/3 (QUIC) TLS configuration selection that allows unauthenticated clients to byp…

traefik | Remote | Authentication
Jun 23, 2026 Jun 30, 2026
Jun 23, 2026
Jun 30, 2026
10.0 CRITICAL
CVE-2026-48491 — Traefik: SNICheck ignores wildcard TLSOptions mappings, allowing domain-fronted mTLS bypa…

Traefik is an HTTP reverse proxy and load balancer. From 3.7.0 until 3.7.3, there is a high severity vulnerability in Traefik's domain-fronting protection (SNICheck) that allows an unauthenticated cl…

traefik | Remote | Misconfiguration
Jun 23, 2026 Jun 30, 2026
Jun 23, 2026
Jun 30, 2026
10.0 CRITICAL
CVE-2026-48020 — Traefik StripPrefix Route-Level Auth Bypass via Path Normalization

Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.48, 3.6.19, and 3.7.3, there is a high severity vulnerability in Traefik's StripPrefix middleware that allows an unauthenticated atta…

traefik | Remote | Authorization
Jun 23, 2026 Jun 30, 2026
Jun 23, 2026
Jun 30, 2026
6.9 MEDIUM
CVE-2026-45792 — RTK improperly trusts project-local filter configuration, allowing silent tampering of co…

rtk filters and compresses command outputs before they reach your LLM context. Prior to 0.32.0, RTK (Rust Token Killer) improperly trusts project-local configuration files. RTK automatically loads .r…

rtk-rewrite rtk | Misconfiguration
Jun 23, 2026 Jul 01, 2026
Jun 23, 2026
Jul 01, 2026
8.1 HIGH
CVE-2026-39253 — Pivotal CRM Remote Code Execution

An issue in Pivotal CRM v.6.6.04.08 allows a remote attacker to execute arbitrary code via the Pivotal.Core.Common.dll and Pivotal.Engine.Client.Services.Conversion.dll components.

Remote | Memory Corruption
Jun 23, 2026 Jun 25, 2026
Jun 23, 2026
Jun 25, 2026
5.9 MEDIUM
CVE-2026-55736 — Private action arguments can be set by user input in Ash

Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in ash-project ash allows a user to set the value of a private action argument that is intended to be cont…

ash | Authorization
Jun 23, 2026 Jun 25, 2026
Jun 23, 2026
Jun 25, 2026
Showing 20 of 7988 Results