Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
8.8 HIGH
CVE-2026-43623 — microtar 0.1.0 Stack-Based Buffer Overflow via raw_to_header()

microtar through 0.1.0 contains a stack-based buffer overflow vulnerability in the raw_to_header() function in src/microtar.c that allows attackers to corrupt adjacent stack memory by supplying a cra…

Remote | Memory Corruption
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-41013 — Tenant-controlled comma smuggles arbitrary CIFS mount options

Input validation bypass in SMB volume mount handling in CloudFoundry Foundation diego-release allows low-privileged CF space developer to inject arbitrary kernel CIFS mount options via bypassing the …

| Misconfiguration
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
5.7 MEDIUM
CVE-2026-40990 — Unbounded cache for function definitions

OOM error is possible while attempting to add infinite amount of functions to Function Registry. Affected Spring Products and Versions: Spring Cloud Function 3.2.x: versions prior to 3.2.16 Spring C…

| Denial of Service
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
5.7 MEDIUM
CVE-2026-40989 — Self Routing guard bypassed via function composition

Under infinite recursion in the routing layer, request-handling can cause OOM error. Affected Spring Products and Versions: Spring Cloud Function 3.2.x: versions prior to 3.2.16 Spring Cloud Functio…

| Denial of Service
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-37235 — FlexRIC Improper Input Validation Leading to xApp Impersonation and Denial of Service

FlexRIC v2.0.0 trusts the xapp_id field from E42 message payloads without binding it to the sender's SCTP association. The validation function valid_xapp_id() only checks that the value is within the…

| Authentication
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-37233 — FlexRIC iApp Authorization Bypass

FlexRIC v2.0.0 contains an authorization bypass in the iApp's xApp isolation mechanism. The equality function eq_xapp_ric_gen_id() in src/ric/iApp/xapp_ric_id.c compares m0->xapp_id against itself (m…

| Authorization
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-37232 — OpenAirInterface5G KPM: Division by Zero in PRB Utilization Calculation

An issue was discovered in OpenAirInterface5G 2.4.0 (nr-softmodem) in the E2SM-KPM RAN Function's PRB utilization metric calculation. The functions fill_RRU_PrbTotDl() and fill_RRU_PrbTotUl() in open…

| Denial of Service
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-37231 — FlexRIC: Integer Overflow in xApp ID Assignment Leading to Denial of Service

FlexRIC v2.0.0 uses a uint16_t counter for xapp_id assignment but stores the value in uint32_t message fields. After 65,530+ E42_SETUP_REQUESTs, the 16-bit counter wraps around and produces duplicate…

| Denial of Service
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-37230 — FlexRIC Denial of Service via Invalid RAN Function ID

FlexRIC v2.0.0 crashes when the near-RT RIC receives a RIC_INDICATION message with a ran_func_id that does not exist in its registry. The lookup returns NULL, triggering assert() in Debug builds (SIG…

| Denial of Service
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-37229 — FlexRIC Assertion Failure Denial of Service

FlexRIC v2.0.0 contains a reachable assertion in e2ap_create_pdu() triggered when ASN.1 PER decoding fails. A remote unauthenticated attacker can send any non-PER byte sequence (e.g., a single 0x00 b…

| Denial of Service
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-37228 — FlexRIC Assertion Failure and Integer Overflow

FlexRIC v2.0.0 contains a reachable assertion in e2ap_recv_sctp_msg() (src/lib/ep/e2ap_ep.c). The function allocates a fixed 32KB receive buffer and enforces assert(rc < len) on the sctp_recvmsg() re…

| Denial of Service
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
0.0 NA
CVE-2026-37226 — FlexRIC Denial-of-Service via Invalid E2 Node Subscription

FlexRIC v2.0.0 crashes when the iApp receives an E42_RIC_SUBSCRIPTION_REQUEST referencing a non-existent E2 Node. The lookup function returns NULL, which is enforced by assert() in Debug builds (SIGA…

| Denial of Service
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
3.9 LOW
CVE-2026-30963 — Capsule Namespace Hijacking via subresource

Capsule is a multi-tenancy and policy-based framework for Kubernetes. To defend against namespace hijacking achieved through update/patch operations on namespaces, Capsule uses a webhook to validate …

capsule | Remote | Authorization
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
6.5 MEDIUM
CVE-2026-23638 — Kiteworks Secure Data Forms is vulnerable to Authorization Bypass Through User-Controlled…

Kiteworks is a private data network (PDN). Prior to version 9.3.0, an Insecure Direct Object Reference (IDOR) vulnerability in Kiteworks Secure Data Forms allows an authenticated attacker to tamper w…

Remote | Authorization
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
6.9 MEDIUM
CVE-2026-22872 — Capsule TenantResource RawItems Cluster-Scoped Resource Creation Vulnerability

Capsule is a multi-tenancy and policy-based framework for Kubernetes. The Capsule Controller runs with cluster-admin privileges. Although the TenantResource RawItems processing logic forcibly sets th…

capsule | Remote | Authorization
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
6.5 MEDIUM
CVE-2026-10283 — Bottelet DaybydayCRM Setting missing authentication

A vulnerability was detected in Bottelet DaybydayCRM up to 2.2.1. Affected is an unknown function of the component Setting Handler. Performing a manipulation results in missing authentication. Remote…

Remote | Authentication
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
5.3 MEDIUM
CVE-2026-10282 — Bottelet DaybydayCRM DocumentsController.php view improper authorization

A security vulnerability has been detected in Bottelet DaybydayCRM up to 2.2.1. This impacts the function view of the file app/Http/Controllers/DocumentsController.php. Such manipulation leads to imp…

Remote | Authorization
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
7.5 HIGH
CVE-2026-10281 — Enderfga claw-orchestrator API Endpoint embedded-server.ts EmbeddedServer missing authent…

A weakness has been identified in Enderfga claw-orchestrator up to 3.5.5. This affects the function EmbeddedServer of the file src/embedded-server.ts of the component API Endpoint. This manipulation …

Remote | Authentication
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
7.5 HIGH
CVE-2026-10280 — horizon921 mcpilot MCP API Call Endpoint route.ts server-side request forgery

A security flaw has been discovered in horizon921 mcpilot 0.1.0. The impacted element is an unknown function of the file client/src/app/api/mcp/call/route.ts of the component MCP API Call Endpoint. T…

Remote | Server-Side Request Forgery
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
6.5 MEDIUM
CVE-2026-10279 — hiraishikentaro wezterm-mcp switch_pane/write_to_specific_pane wezterm_executor.ts os com…

A vulnerability was identified in hiraishikentaro wezterm-mcp 0.1.0. The affected element is an unknown function of the file src/wezterm_executor.ts of the component switch_pane/write_to_specific_pan…

Remote | Injection
Jun 01, 2026 Jun 01, 2026
Jun 01, 2026
Jun 01, 2026
Showing 20 of 6879 Results