Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
0.0 NA
CVE-2026-46247 — clk: qcom: gfx3d: add parent to parent request map

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gfx3d: add parent to parent request map After commit d228ece36345 ("clk: divider: remove round_rate() in favor of dete…

| Misconfiguration
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
0.0 NA
CVE-2026-46246 — power: supply: pm8916_lbc: Fix use-after-free for extcon in IRQ handler

In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_lbc: Fix use-after-free for extcon in IRQ handler Using the `devm_` variant for requesting IRQ _before_ the…

| Race Condition
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
0.0 NA
CVE-2026-46245 — drm/amd/display: Fix dc_link NULL handling in HPD init

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix dc_link NULL handling in HPD init amdgpu_dm_hpd_init() may see connectors without a valid dc_link. The code…

| Misconfiguration
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
0.0 NA
CVE-2026-46244 — netfilter: nft_inner: Fix IPv6 inner_thoff desync

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: Fix IPv6 inner_thoff desync In nft_inner_parse_l2l3(), when processing inner IPv6 packets, ipv6_find_hdr() …

| Injection
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
7.8 HIGH
CVE-2026-40290 — OP-TEE has a Use-After-Free race in FF-A shared-memory teardown

OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.16.0 and prior …

| Race Condition
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
6.3 MEDIUM
CVE-2026-39107 — Kimi AI Cross-Site Scripting

A Cross Site Scripting vulnerability exists in the Kimi AI v1.0 web interface's 'Preview' feature. The application fails to properly sanitize or encode HTML/JavaScript payloads generated by the AI mo…

Remote | Cross-Site Scripting
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
0.0 NA
CVE-2026-36618 — Mercusys DNS Resolver Information Disclosure Vulnerability

Mercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909 responds to version.bind CHAOS TXT queries, disclosing the DNS resolver software version (unbound 1.22.0), aiding targeted attacks against kno…

| Information Disclosure
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
0.0 NA
CVE-2026-36616 — Mercusys Hardcoded WiFi Credentials

Mercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909 contains hardcoded WiFi driver credentials including a RADIUS shared secret, WPS test key, and default PSK embedded in the production firmware…

| Misconfiguration
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
4.3 MEDIUM
CVE-2026-36615 — Mercusys AC12G Information Disclosure

Mercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909 exposes an undocumented /agileconfigreset endpoint that returns internal buffer contents to unauthenticated attackers on the adjacent network.

| Information Disclosure
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
4.3 MEDIUM
CVE-2026-36613 — Mercusys Uninitialized Buffer Information Disclosure

Mercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909 returns 128 bytes of uninitialized internal buffer contents when receiving HTTP POST requests to undefined paths, exposing server state to una…

| Information Disclosure
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
0.0 NA
CVE-2026-36612 — Mercusys AC12G: WPS 2.0 Weak Lockout Policy

Mercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909 enables WPS 2.0 by default with a weak lockout policy (60-second lockout after 10 attempts).

| Authentication
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
0.0 NA
CVE-2026-36611 — Mercusys UPnP Uninitialized Buffer Exposure

Mercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909 returns 128 bytes of uninitialized buffer when receiving POST requests without SOAPAction header on UPnP port 1900, exposing internal memory t…

| Information Disclosure
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
0.0 NA
CVE-2026-36610 — Mercusys AC12G Cleartext DDNS Credential Transmission

Mercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909 transmits DDNS credentials over plaintext HTTP with only Base64 encoding. The firmware contains no TLS implementation, allowing man-in-the-mid…

| Cryptography
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
0.0 NA
CVE-2026-36609 — Mercusys AC12G Authentication Bypass via Static Nonce and Predictable Encoding

Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 uses a static authentication nonce that does not change between requests from the same source IP. Combined with the predictable XOR-bas…

| Authentication
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
8.8 HIGH
CVE-2026-36608 — Mercusys UPnP Port Forwarding Vulnerability

Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows UPnP AddPortMapping to forward external ports to the router's own admin interface by accepting its own IP (192.168.1.1) or local…

| Misconfiguration
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
8.8 HIGH
CVE-2026-36607 — Mercusys AC12G Brute-Force Vulnerability

Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows unauthenticated brute-force attacks via the TDDP password change endpoint (code=10), which lacks the rate limiting applied to th…

| Authentication
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
7.1 HIGH
CVE-2026-36606 — Mercusys AC12G Configuration Backup DES Encryption Weakness

Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 encrypts configuration backups with a hardcoded DES key using single DES in ECB mode. An attacker who obtains a backup file can decrypt…

| Cryptography
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
6.5 MEDIUM
CVE-2026-36605 — Mercusys HTTP Denial of Service

Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 is vulnerable to a HTTP denial of service via a low number of crafted incomplete HTTP requests, causing a persistent crash that require…

| Denial of Service
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
0.0 NA
CVE-2026-36604 — Mercusys AC12G: Host Header Validation Bypass via DNS Rebinding

Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 does not validate the HTTP Host header, enabling DNS rebinding attacks. An external attacker can rebind a domain to the router's intern…

| Misconfiguration
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
0.0 NA
CVE-2026-36603 — Mercusys AC12G Router Unauthenticated UPnP Port Mapping Vulnerability

Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 exposes 15 of 18 UPnP IGD actions without authentication on port 1900, including AddPortMapping and GetExternalIPAddress. UPnP is enabl…

| Authentication
Jun 03, 2026 Jun 03, 2026
Jun 03, 2026
Jun 03, 2026
Showing 20 of 7141 Results