CVE-2026-48558
SimpleHelp contains an authentication bypass in the OIDC flow, allowing unauthenticated attackers to forge tokens and gain full technician access without multi-factor authentication.
Critical vulnerabilities, curated daily for security professionals
See how vulnerabilities affect your specific environment
CRS uses the System Security Context Vector (SSCV) Framework v1.0 to adjust CVSS scores based on your system's exposure level, network position, and business criticality. Learn more about SSCV Framework
Gitea's open-source Git server dominates the critical tier with three high-severity flaws, alongside a Microsoft Edge issue, concentrating risk in developer infrastructure and browsers. The day brought 4 critical CVEs, down 88% from the prior day's 34, and 41 high-priority CVEs, down 47% from 78. Notable entries include CVE-2026-20896 (CVSS 9.8) and CVE-2026-22874 (CVSS 9.6) in Gitea, and CVE-2026-58289 (CVSS 9.0) in Chromium-based Microsoft Edge. The concentration in Git server and browser components points to remote code execution and privilege exposure in widely deployed development and end-user systems. No patches were available at disclosure for these CVEs (0% patch availability), so teams should prioritize monitoring and compensating controls while fixes are pending; two CVEs, in SimpleHelp and Microsoft Office SharePoint, have confirmed active exploitation.
Immediate action: Prioritize Gitea Git server instances (CVE-2026-20896, CVE-2026-58426, CVE-2026-22874) and Chromium-based Microsoft Edge deployments for immediate review, and validate exposure in SimpleHelp and Microsoft Office SharePoint given confirmed exploitation. With no patches available for the day's critical issues, apply access restrictions, network segmentation, and heightened monitoring until vendor fixes are released.
SimpleHelp contains an authentication bypass in the OIDC flow, allowing unauthenticated attackers to forge tokens and gain full technician access without multi-factor authentication.
An insecure deserialization vulnerability in Microsoft Office SharePoint allows an authorized attacker to execute arbitrary code over a network.
A type confusion vulnerability in Microsoft Edge (Chromium-based) allows an unauthorized remote attacker to execute arbitrary code.
A default configuration error in Gitea Docker images allows unauthenticated attackers to spoof user identities via reverse-proxy authentication headers.
An HMAC ambiguity in Gitea Actions Artifacts allows cross-repository data reads and cross-task state writes, compromising the integrity and confidentiality of CI/CD pipelines.
Gitea versions up to 1.26.2 contain a vulnerability involving incomplete SSRF protection within the webhook and migration allow-list filtering mechanisms.
An incorrect use of privileged APIs in Unity Parsec on Windows hosts leads to a potential elevation of privilege.
A heap-based buffer overflow in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute arbitrary code over a network.
A use-after-free vulnerability in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
A use-after-free vulnerability in Microsoft Edge (Chromium-based) enables an unauthenticated remote attacker to execute arbitrary code.
A use-after-free vulnerability in Microsoft Edge (Chromium-based) allows an unauthenticated attacker to perform remote code execution.
An integer overflow or wraparound vulnerability in Microsoft Edge (Chromium-based) allows an unauthenticated attacker to execute code remotely.
An improper authorization flaw in Microsoft Edge allows an unauthenticated remote attacker to bypass critical security features.
An improper authorization vulnerability in Microsoft Edge enables unauthenticated remote attackers to achieve arbitrary code execution.
A type confusion vulnerability in Microsoft Edge allows unauthenticated remote attackers to execute arbitrary code.
A type confusion vulnerability in Microsoft Edge allows unauthorized attackers to bypass security features via network exploitation.
Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing attacks over a network.
A type confusion vulnerability in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing attacks via network exploitation.
Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.
External control of file paths in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
A malformed SSH sub-verb allows unauthenticated attackers to bypass LFS authentication, resulting in unauthorized read access to private repositories.
A vulnerability in the Gitea workflow approval mechanism allows users to bypass the designated approval gate for permanent fork pull requests.
The Execute Command node in n8n allows authenticated users to execute arbitrary commands on the host system, potentially leading to full system compromise.
A vulnerability exists in Keras version 3 that may expose the machine learning framework to security risks.
A vulnerability in Gitea versions starting from 1 may allow for unauthorized access or security compromise of the Git server environment.
A security vulnerability affects Gitea versions up to and including 1, potentially exposing the Git server to unauthorized actions or data access.
Gitea versions up to and including 1 contain a security vulnerability. Technical details are limited, requiring users to consult the official vendor advisory for specific scope and impact.
The Picklescan utility, used for scanning Python pickle files, contains a vulnerability in versions before 0. Users must update to the latest version to mitigate potential risks.
A security vulnerability exists in Picklescan versions prior to 0, necessitating an immediate update to protect against potential exploitation.
A security vulnerability exists in picklescan that may allow for unauthorized operations. The specific nature of the flaw is currently identified as requiring further vendor clarification.
A security vulnerability exists in picklescan that may allow for unauthorized operations. The specific nature of the flaw is currently identified as requiring further vendor clarification.
A security vulnerability exists in picklescan that may allow for unauthorized operations. The specific nature of the flaw is currently identified as requiring further vendor clarification.
A security vulnerability exists in Picklescan, potentially allowing for unauthorized exploitation due to insufficient security controls within the software.
A security vulnerability exists in Picklescan, potentially allowing for unauthorized exploitation due to insufficient security controls within the software.
A security vulnerability exists in Picklescan, potentially allowing for unauthorized exploitation due to insufficient security controls within the software.
A vulnerability exists in picklescan that may allow for unauthorized code execution. Users are advised to verify their current version against vendor security updates.
A vulnerability exists in picklescan that may allow for unauthorized code execution. Users are advised to verify their current version against vendor security updates.
A vulnerability exists in picklescan that may allow for unauthorized code execution. Users are advised to verify their current version against vendor security updates.
A security vulnerability exists in picklescan that may allow for unauthorized code execution or system compromise.
A security vulnerability in the picklescan utility may permit unauthorized exploitation of the host environment.
The Picklescan utility is affected by a security vulnerability that may allow for unauthorized system compromise.
A security vulnerability exists in Picklescan that may allow for unauthorized code execution or system compromise.
A security vulnerability in Picklescan may allow for unauthorized system compromise, necessitating immediate administrative attention.
A high-severity vulnerability in the Gitea Git server may allow for unauthorized access or system impact.
A security vulnerability exists in Gitea Open Source Git Server that may allow unauthorized actions.
A security vulnerability in Gitea Open Source Git Server has been identified that may facilitate unauthorized system interaction.
A security vulnerability in the NLTK library has been identified that may allow for unauthorized processing or system impact.