Critical vulnerabilities, curated daily for security professionals
π― SSCV Profile
See how vulnerabilities affect your specific environment
CRS uses the System Security Context Vector (SSCV) Framework v1.0 to adjust CVSS scores based on your system's exposure level, network position, and business criticality. Learn more about SSCV Framework
Risk scores will be adjusted based on your selected environment
π
Archived Security Brief
SAP NetWeaver Application Server ABAP and Apache HTTP Server anchor Tuesday's disclosures, with SAP CVE-2026-44748 (CVSS 9.9) and Apache CVE-2026-44631 (CVSS 9.8) exposing widely deployed enterprise and web-facing systems to remote compromise. The day brought 12 critical CVEs, up from 3 the prior day (+300%), alongside 62 high-priority CVEs, up from 33 (+88%). Google Chrome accounted for a cluster of critical browser flaws including CVE-2026-11634 and CVE-2026-11638 (both CVSS 9.6), while CVE-2026-27671 (CVSS 9.8) marks a second critical SAP NetWeaver ABAP issue and CVE-2026-11499 (CVSS 9.8) affects Tenda HG-series routers. Remote code execution and unauthenticated access dominate the high-impact set, spanning enterprise application servers, web servers, browsers, and edge networking hardware. No patches were recorded as available at disclosure across this set, and six CVEsβincluding issues in the Linux Kernel, Android Framework, Check Point Security Gateway, and SolarWinds Serv-Uβare under active exploitation, warranting a treat-as-unpatched, mitigation-first posture.
SAP NetWeaver Application Server ABAP carries two critical flaws (CVE-2026-44748 at CVSS 9.9 and CVE-2026-27671 at CVSS 9.8), placing core ERP infrastructure at highest exposure
Critical CVEs rose to 12 from 3 the prior day, a 300% increase
High-priority CVEs climbed to 62 from 33, an 88% increase
Remote code execution and unauthenticated access patterns dominate, affecting Apache HTTP Server (CVE-2026-44631), Google Chrome (CVE-2026-11634, CVE-2026-11638), and Tenda HG-series routers (CVE-2026-11499)
Patch availability stands at 0% across this disclosure set, requiring compensating controls and exposure reduction in the interim
Six CVEs show active exploitation, including the Linux Kernel, Android Framework, Check Point Security Gateway, and SolarWinds Serv-U
Immediate action: Prioritize SAP NetWeaver ABAP, Apache HTTP Server, and internet-facing Tenda routers for immediate review, and update Chrome through managed channels as fixes ship. With no patches available at disclosure, apply vendor mitigations, restrict network exposure of affected services, and monitor the actively exploited Linux Kernel, Android, Check Point, and SolarWinds Serv-U issues closely.
π‘ Tip: Swipe CVE cards left to β star, right to β remove
Section Navigation
β οΈ
CISA Known Exploited Vulnerabilities
β οΈ CISA KEVURGENT
CVE-2022-0492
9.5ππ Late Disclosure
LinuxKernel
β° Federal Deadline:June 4, 2026(-4 days remaining)
A privilege escalation vulnerability in the Linux Kernel cgroup_release_agent_write function allows unprivileged users to escape container environments and gain elevated host privileges.
CVSS Base9.5
β
CRSSelect profile
β οΈ CISA KEVURGENT
CVE-2025-48595
9.5π
AndroidFramework
β° Federal Deadline:June 4, 2026(-4 days remaining)
An integer overflow vulnerability in the Android Framework allows for potential unauthorized system access and is currently tracked in the CISA KEV catalog.
CVSS Base9.5
β
CRSSelect profile
β οΈ CISA KEVURGENT
CVE-2026-45247
9.5π
MirasvitFull Page Cache Warmer for Magento 2
β° Federal Deadline:June 5, 2026(-3 days remaining)
Mirasvit Full Page Cache Warmer for Magento 2 contains a PHP object injection vulnerability allowing unauthenticated RCE via the CacheWarmer cookie.
CVSS Base9.5
β
CRSSelect profile
β οΈ CISA KEVURGENT
CVE-2026-50751
9.5π
Check PointSecurity Gateway
β° Federal Deadline:June 10, 2026(2 days remaining)
Check Point Security Gateway is affected by an improper authentication vulnerability that is currently being exploited in the wild.
CVSS Base9.5
β
CRSSelect profile
β οΈ CISA KEV
CVE-2026-28318
9.5π
SolarWindsServ-U
β° Federal Deadline:June 18, 2026(10 days remaining)
SolarWinds Serv-U is vulnerable to an uncontrolled resource consumption flaw allowing unauthenticated attackers to crash the service via specially crafted POST requests.
CVSS Base9.5
β
CRSSelect profile
β οΈ CISA KEV
CVE-2026-42271
8.8π
LiteLLMLiteLLM
β° Federal Deadline:June 21, 2026(13 days remaining)
LiteLLM contains a command injection vulnerability in its MCP server test endpoints that, when chained with a host header bypass, enables unauthenticated remote code execution.
CVSS Base8.8
β
CRSSelect profile
π¨
Critical Vulnerabilities
CVE-2026-11634
9.6π
GoogleChrome
A use-after-free vulnerability in the Google Chrome Gamepad component allows a remote attacker to achieve sandbox escape via a crafted HTML page.
CVSS Base9.6
β
CRSSelect profile
CVE-2026-11638
9.6π
GoogleChrome
A use-after-free vulnerability in the Google Chrome Printing component allows a remote attacker to achieve sandbox escape via a crafted HTML page.
CVSS Base9.6
β
CRSSelect profile
CVE-2026-11651
9.6π
GoogleChrome
A use-after-free vulnerability in the Google Chrome Network component allows a remote attacker to execute arbitrary code within the sandbox.
CVSS Base9.6
β
CRSSelect profile
CVE-2026-11671
9.6π
GoogleChrome
A use-after-free vulnerability in the Google Chrome Navigation component allows a remote attacker to achieve sandbox escape via a crafted HTML page.
CVSS Base9.6
β
CRSSelect profile
CVE-2026-52778
9.8π
YesWikiYesWiki
YesWiki is vulnerable to an unsafe execution flaw in the Bazar form field calculator, allowing potential arbitrary PHP code execution and ReDoS attacks via malicious mathematical formulas.
CVSS Base9.8
β
CRSSelect profile
CVE-2026-44631
9.8π
ApacheHTTP Server
A buffer underwrite vulnerability in the Apache HTTP Server, triggered by crafted regular expressions, allows for potential memory corruption.
CVSS Base9.8
β
CRSSelect profile
CVE-2026-11499
9.8π
TendaHG7HG9 and HG10
Tenda networking devices contain a stack-based buffer overflow vulnerability in the `formDOMAINBLK` function, allowing remote attackers to trigger a crash or execute arbitrary code.
CVSS Base9.8
β
CRSSelect profile
CVE-2026-25555
9.8π
OpenBullet2OpenBullet2
OpenBullet2 contains an authentication bypass vulnerability in its API key middleware, allowing unauthenticated attackers to access the admin console by providing an empty API key.
CVSS Base9.8
β
CRSSelect profile
CVE-2026-44748
9.9π
SAPNetWeaver Application Server ABAP
An authenticated attacker can tamper with signed XML documents in SAP NetWeaver, leading to unauthorized access and potential system disruption.
CVSS Base9.9
β
CRSSelect profile
CVE-2026-27671
9.8π
SAPNetWeaver Application Server ABAP
A memory corruption vulnerability in the SAP Kernel allows unauthenticated attackers to trigger crashes or execute code via crafted RFC requests.
CVSS Base9.8
β
CRSSelect profile
CVE-2026-39910
9.8π
STACKITIaaS API
A missing authorization check in the STACKIT IaaS API allows low-privileged users to escalate privileges to full organization compromise.
CVSS Base9.8
β
CRSSelect profile
CVE-2026-5067
9.8π
ZephyrHTTP Server
A memory corruption vulnerability in the Zephyr HTTP server WebSocket upgrade path allows unauthenticated remote attackers to trigger denial of service or code execution.
CVSS Base9.8
β
CRSSelect profile
β οΈ
High Priority Updates
CVE-2026-11662
8.8π
GoogleChrome
A Type Confusion vulnerability in Google Chrome Bindings allows for potential memory corruption.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11643
8.1π
GoogleChrome
A Use-After-Free vulnerability in the Google Chrome Proxy component allows for potential memory corruption.
CVSS Base8.1
β
CRSSelect profile
CVE-2026-11633
8.8π
GoogleChrome
A Use-After-Free vulnerability exists in the Bluetooth component of Google Chrome on macOS.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11637
8.8π
GoogleChrome
A Use-After-Free vulnerability in the Google Chrome Views component on macOS allows for memory corruption.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11646
8.8π
GoogleChrome
A Use-After-Free vulnerability in the ViewTransitions component of Google Chrome allows for memory corruption.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11649
8.8π
GoogleChrome
A use-after-free vulnerability in the V8 engine of Google Chrome allows remote attackers to execute arbitrary code via a crafted HTML page.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11650
8.8π
GoogleChrome
A use-after-free vulnerability in the V8 engine of Google Chrome allows remote attackers to execute arbitrary code via a crafted HTML page.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11657
8.8π
GoogleChrome
A use-after-free vulnerability in the Payments component of Google Chrome on Mac allows remote attackers to execute arbitrary code via a crafted HTML page.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11670
8.8π
GoogleChrome
A use-after-free vulnerability in the PDF rendering component of Google Chrome allows remote attackers to execute arbitrary code via a crafted PDF file.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11673
8.8π
GoogleChrome
A use-after-free vulnerability in the InterestGroups implementation of Google Chrome allows remote attackers to execute arbitrary code via a crafted HTML page.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11674
8.8π
GoogleChrome
A use-after-free vulnerability exists in the Guest View component of Google Chrome prior to version 149, potentially allowing arbitrary code execution.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11680
8.8π
GoogleChrome
A use-after-free vulnerability in the Media component of Google Chrome for Windows prior to version 149 may allow for arbitrary code execution.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11683
8.8π
GoogleChrome
A use-after-free vulnerability in the WebCodecs component of Google Chrome prior to version 149 could lead to arbitrary code execution.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11687
8.8π
GoogleChrome
A use-after-free vulnerability in the Dawn component of Google Chrome on Mac prior to version 149 may allow for arbitrary code execution.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11698
8.8π
GoogleChrome
A use-after-free vulnerability in the Bluetooth component of Google Chrome on Mac prior to version 149 could lead to arbitrary code execution.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11699
8.8π
GoogleChrome
A use-after-free vulnerability exists in the Bluetooth component of Google Chrome on macOS, potentially allowing for arbitrary code execution.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11024
8.8π
GoogleChrome
A stack buffer overflow vulnerability in the Skia graphics library within Google Chrome may allow an attacker to execute arbitrary code.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11304
8.8π
GoogleChrome
A use-after-free vulnerability in the PDFium library of Google Chrome may allow attackers to execute arbitrary code via malicious PDF documents.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11635
8.3π
GoogleChrome
A use-after-free vulnerability in the Bluetooth component of Google Chrome on macOS may allow an attacker to gain unauthorized code execution.
CVSS Base8.3
β
CRSSelect profile
CVE-2026-11642
8.3π
GoogleChrome
A use-after-free vulnerability in the Web Apps component of Google Chrome may allow for arbitrary code execution via malicious web applications.
CVSS Base8.3
β
CRSSelect profile
CVE-2026-11647
8.3π
GoogleChrome
A use-after-free vulnerability exists in the Printing component of Google Chrome on Android, potentially allowing arbitrary code execution.
CVSS Base8.3
β
CRSSelect profile
CVE-2026-11652
8.3π
GoogleChrome
A use-after-free vulnerability in the Extensions component of Google Chrome may allow for arbitrary code execution.
CVSS Base8.3
β
CRSSelect profile
CVE-2026-11656
8.3π
GoogleChrome
A use-after-free vulnerability in the ServiceWorker component of Google Chrome could lead to arbitrary code execution.
CVSS Base8.3
β
CRSSelect profile
CVE-2026-11663
8.3π
GoogleChrome
A use-after-free vulnerability in the Skia graphics library within Google Chrome could allow an attacker to execute arbitrary code.
CVSS Base8.3
β
CRSSelect profile
CVE-2026-11679
8.3π
GoogleChrome
A use-after-free vulnerability in the Codecs component of Google Chrome on Windows could result in arbitrary code execution.
CVSS Base8.3
β
CRSSelect profile
CVE-2026-11692
8.3π
GoogleChrome
A use-after-free vulnerability in the Read Anything feature of Google Chrome allows remote attackers to potentially escape the sandbox via a crafted HTML page.
CVSS Base8.3
β
CRSSelect profile
CVE-2026-11700
8.3π
GoogleChrome
A use-after-free vulnerability in the Tracing component of Google Chrome allows remote attackers to potentially escape the sandbox via a crafted HTML page.
CVSS Base8.3
β
CRSSelect profile
CVE-2026-10953
8.3π
GoogleChrome for Android
A use-after-free vulnerability in the Core component of Google Chrome on Android allows remote attackers to escape the browser sandbox.
CVSS Base8.3
β
CRSSelect profile
CVE-2026-11645
8.8π
GoogleChrome
An out-of-bounds read and write vulnerability in the V8 JavaScript engine allows remote attackers to execute arbitrary code via a crafted HTML page.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11688
8.8π
GoogleChrome
An inappropriate implementation in the SVG component of Google Chrome allows remote attackers to execute arbitrary code inside the browser sandbox via a crafted HTML page.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11124
8.8π
GoogleChrome
An integer overflow vulnerability in the Skia graphics library within Google Chrome may allow for memory corruption and potential code execution.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11295
8.8π
GoogleChrome for Android
An inappropriate implementation in the WebView component of Google Chrome for Android may lead to security bypasses or unauthorized access.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11301
8.8π
GoogleChrome
An inappropriate implementation in the LiveCaption feature of Google Chrome may lead to security constraints being bypassed.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-10940
8.3π
GoogleChrome for Windows
A race condition in the Codecs component of Google Chrome for Windows may lead to memory corruption or arbitrary code execution.
CVSS Base8.3
β
CRSSelect profile
CVE-2026-41249
8.2π
PimcoreCoreShop
CoreShop, a Pimcore enhanced eCommerce solution, contains a vulnerability that requires immediate attention.
CVSS Base8.2
β
CRSSelect profile
CVE-2026-9662
8.1π
WordPressRecover Exit For WooCommerce Plugin
The "Recover Exit For WooCommerce" WordPress plugin is vulnerable to Local File Inclusion (LFI), which could allow attackers to access sensitive server files.
CVSS Base8.1
β
CRSSelect profile
CVE-2026-11158
8.6π
GoogleChrome
Google Chrome on macOS contains an input validation vulnerability in the Downloads component, which can be leveraged to achieve a sandbox escape.
CVSS Base8.6
β
CRSSelect profile
CVE-2026-44543
8.7π
KubernetesLocal Path Provisioner
A security vulnerability in the Kubernetes Local Path Provisioner may allow users to gain unauthorized access to local storage nodes.
CVSS Base8.7
β
CRSSelect profile
CVE-2026-11498
8.8π
TendaHG7HG9 and HG10
A vulnerability has been identified in Tenda HG7HG9 and HG10 routers, potentially allowing unauthorized system access.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11503
8.8π
TendaCX12L
A security vulnerability has been detected in the Tenda CX12L router, which may expose the device to unauthorized exploitation.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11504
8.8π
TendaCX12L
A vulnerability has been detected in the Tenda CX12L router that could potentially compromise the deviceβs integrity.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11522
8.8π
TendaW20E
A vulnerability has been detected in the Tenda W20E router, which may allow for unauthorized system interaction.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11523
8.8π
TendaW20E
A security flaw has been found in the Tenda W20E router, potentially exposing the device to unauthorized access.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11524
8.8π
TendaW20E
A critical security vulnerability has been identified in the Tenda W20E router, requiring immediate attention from network administrators.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11528
8.8π
TendaAC18
A security vulnerability has been identified in the Tenda AC18 router, potentially impacting device security and network integrity.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11553
8.8π
TendaHG7, HG9, and HG10
A security vulnerability has been identified in Tenda HG7, HG9, and HG10 series gateways, potentially impacting network security.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11556
8.8π
TendaF451
A security flaw has been identified in the Tenda F451 router, necessitating immediate attention to ensure device integrity.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11557
8.8π
TendaF451
A security weakness has been identified in the Tenda F451 router, which may impact the security of the device and its network.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-23687
8.8π
SAPNetWeaver Application Server ABAP / ABAP Platform
SAP NetWeaver Application Server ABAP contains a vulnerability allowing an authenticated attacker to manipulate and send signed XML documents to the verifier.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-3999
8.8π
UnknownMultiple Products
A broken access control vulnerability in an unspecified product allows authenticated users to perform horizontal privilege escalation.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11517
8.8π
UTTHiPER 2610G
A high-severity vulnerability exists in the UTT HiPER 2610G networking hardware, potentially allowing for unauthorized system control.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-46656
8.8π
BluditBludit CMS
A security vulnerability has been identified in the Bludit content management system that may allow for unauthorized system impact.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-25559
8.8π
OpenBulletOpenBullet2
OpenBullet2 contains a high-severity vulnerability that could expose users to unauthorized access or system manipulation.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-25855
8.8π
OpenBulletOpenBullet2
A second high-severity vulnerability has been identified in OpenBullet2, requiring urgent review and remediation by administrators.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-25856
8.8π
OpenBulletOpenBullet2
A security vulnerability in OpenBullet2 allows for potential unauthorized operations.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-11572
8.8π
Rich Harris (Degit)degit
A vulnerability exists in the degit package that may allow for malicious repository cloning or unauthorized file system interactions.
CVSS Base8.8
β
CRSSelect profile
CVE-2016-20025
8.8ππ Late Disclosure
ZKTecoZKAccess Professional
A legacy vulnerability in ZKTeco ZKAccess Professional 3 may allow for unauthorized access to physical security management systems.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-49195
8.8π
UnknownDebug Service
An unauthenticated debug service vulnerability allows potential remote code execution or unauthorized system access.
CVSS Base8.8
β
CRSSelect profile
CVE-2026-46481
8.3π
OpenMetadataOpenMetadata Platform
A high-severity vulnerability has been disclosed in the OpenMetadata unified metadata platform, potentially impacting system security and data integrity.
CVSS Base8.3
β
CRSSelect profile
CVE-2026-46484
8.1π
HeadplaneHeadplane Web UI
A security vulnerability has been identified in the Headplane Web UI for Headscale, which may permit unauthorized access or impact the management of the network overlay.
CVSS Base8.1
β
CRSSelect profile
CVE-2026-41855
8.1π
Apache Software FoundationActiveMQ (JMS)
A vulnerability has been identified in JMS (Java Message Service) environments, potentially allowing for remote code execution or unauthorized operations.
CVSS Base8.1
β
CRSSelect profile
CVE-2017-7563
8.1ππ Late Disclosure
ARMTrusted Firmware
A late-disclosed vulnerability in ARM Trusted Firmware 1 may allow for unauthorized access or security bypasses at the firmware level.