Use after free in Dawn in Google Chrome prior to 146
Description
Use after free in Dawn in Google Chrome prior to 146
Remediation
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Search and filter 17426 vulnerabilities with AI analyst insights
Use after free in Dawn in Google Chrome prior to 146
Use after free in Dawn in Google Chrome prior to 146
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
A heap overflow vulnerability exists within the cjson library of Apache Kvrocks, which could lead to memory corruption or arbitrary code execution.
A heap overflow vulnerability exists within the cjson library of Apache Kvrocks, which could lead to memory corruption or arbitrary code execution.
Update Apache Software Foundation Apache Kvrocks to the latest version. Check the vendor security advisory for specific patch details. Monitor for exploitation attempts and review access logs.
Heap buffer overflow in WebGL in Google Chrome prior to 146
Heap buffer overflow in WebGL in Google Chrome prior to 146
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
A vulnerability has been identified in SINEC INS (All versions < V1
A vulnerability has been identified in SINEC INS (All versions < V1
---METADATA---
VENDOR: Siemens
PRODUCT: SINEC INS
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A vulnerability in Siemens SINEC INS allows for potential security compromise in versions prior to V1.
Executive Summary:
A high-severity vulnerability in Siemens SINEC INS presents a significant security risk that requires immediate attention to prevent unauthorized system impact.
Vulnerability Details
CVE-ID: CVE-2026-46748
Affected Software: Siemens SINEC INS
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: This vulnerability affects the Siemens SINEC INS network management software. Due to the lack of specific technical details regarding the entry vector, it must be treated as a potential gateway for unauthorized access or service disruption.
Business Impact
With a CVSS score of 8.8, this vulnerability represents a high risk to operational technology environments. Successful exploitation could lead to unauthorized access to network management infrastructure, potentially resulting in complete loss of confidentiality, integrity, or availability of the managed network segments.
Remediation Plan
Immediate Action: Consult the official Siemens security advisory to identify the specific patched version and apply the firmware or software update immediately.
Proactive Monitoring: Monitor network management server logs for anomalous access patterns or unauthorized configuration changes.
Compensating Controls: Restrict network access to the SINEC INS management interface to trusted administrative subnets only.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 10, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the critical role of SINEC INS in industrial network management, organizations must prioritize this update. Administrators should verify their current version against the vendor's guidance and initiate patching procedures immediately to mitigate the risk of unauthorized system exploitation.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
A vulnerability has been identified in SINEC INS (All versions < V1
A vulnerability has been identified in SINEC INS (All versions < V1
---METADATA---
VENDOR: Siemens
PRODUCT: SINEC INS
AFFECTED_VERSIONS: All versions < V1
---END_METADATA---
Description Summary:
A vulnerability has been identified in Siemens SINEC INS, affecting all versions prior to V1.
Executive Summary:
A high-severity vulnerability in Siemens SINEC INS requires immediate attention and patching to prevent unauthorized access or system impact.
Vulnerability Details
CVE-ID: CVE-2026-46746
Affected Software: Siemens SINEC INS
Affected Versions: All versions < V1
Vulnerability: This vulnerability affects Siemens SINEC INS, a network management software suite. The flaw allows for potential exploitation that could result in significant security breaches within the industrial or enterprise network environment.
Business Impact
SINEC INS is critical for network management in Siemens environments. A successful exploit, rated at 8.8 on the CVSS scale, could allow an attacker to gain control over network management functions, leading to operational downtime or unauthorized visibility into sensitive industrial control network traffic.
Remediation Plan
Immediate Action: Upgrade all instances of SINEC INS to version V1 or higher as recommended by Siemens.
Proactive Monitoring: Monitor network management server logs for unusual configuration changes or unauthorized access attempts.
Compensating Controls: Isolate the management network from the public internet and restrict access to the SINEC INS console to authorized administrators only.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 10, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Industrial and enterprise environments relying on Siemens SINEC INS should prioritize this upgrade immediately. Patching is essential to secure the network management infrastructure and prevent potential malicious interference with critical operational systems.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Out of bounds read in CSS in Google Chrome prior to 146
Out of bounds read in CSS in Google Chrome prior to 146
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2
Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2
---METADATA---
VENDOR: Dell
PRODUCT: Display and Peripheral Manager (DDPM Mac)
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
Dell Display and Peripheral Manager (DDPM) for macOS versions prior to 2 contain a vulnerability that could lead to unauthorized system impacts.
Executive Summary:
A vulnerability in Dell Display and Peripheral Manager for macOS could allow an attacker to gain unauthorized privileges or disrupt system processes.
Vulnerability Details
CVE-ID: CVE-2026-46735
Affected Software: Dell Display and Peripheral Manager (DDPM Mac)
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: This vulnerability exists in the Dell Display and Peripheral Manager software on macOS. The flaw likely involves improper validation of inputs or insecure handling of local system resources, necessitating local access for successful exploitation.
Business Impact
The CVSS score of 7.8 indicates a high-severity risk for local system security. If exploited, an attacker could potentially escalate privileges on the host macOS machine, leading to full system compromise and the exposure of sensitive local user data.
Remediation Plan
Immediate Action: Update Dell Display and Peripheral Manager for macOS to version 2 or higher immediately.
Proactive Monitoring: Review system logs for unusual process execution or privilege escalation attempts originating from the DDPM application.
Compensating Controls: Implement endpoint protection solutions that monitor for unauthorized changes to system binaries or sensitive configuration files.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 27, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the potential for local privilege escalation, all macOS systems running the Dell Display and Peripheral Manager should be updated to the latest version immediately. Users should ensure that software updates are enforced to mitigate the risk of local exploitation.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Heap buffer overflow in WebAudio in Google Chrome prior to 146
Heap buffer overflow in WebAudio in Google Chrome prior to 146
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Das U-Boot before 2026
Das U-Boot before 2026
---METADATA---
VENDOR: DENX Software Engineering
PRODUCT: Das U-Boot
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
CONFIDENCE: medium
MISSING: patch, technical_details
---END_METADATA---
Description Summary:
Das U-Boot versions prior to 2026 contain a vulnerability that may allow for unauthorized system interaction or compromise during the boot process.
Executive Summary:
Das U-Boot versions prior to 2026 are vulnerable, potentially allowing an attacker to compromise the boot process and gain control over the underlying hardware.
Vulnerability Details
CVE-ID: CVE-2026-46728
Affected Software: Das U-Boot
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: This vulnerability affects the bootloader process, which is a critical component for system integrity. The flaw may allow an attacker to interfere with the secure boot chain or gain elevated access to the device.
Business Impact
With a CVSS score of 8.2 (High), this vulnerability poses a severe risk to device integrity and security. A compromise at the bootloader level grants an attacker persistent control over the hardware, bypassing operating system security controls and potentially leading to total system takeover or data exfiltration.
Remediation Plan
Immediate Action: Audit systems for the presence of Das U-Boot and coordinate with hardware manufacturers to apply the necessary firmware or bootloader updates.
Proactive Monitoring: Monitor for unusual boot-time errors or unexpected changes in system firmware configurations that might indicate an attempt to manipulate the boot sequence.
Compensating Controls: Ensure physical security of hardware devices to prevent local access, which is often a prerequisite for exploiting bootloader-level vulnerabilities.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of May 17, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Bootloader vulnerabilities are critical due to their position in the system architecture. Organizations must verify their firmware versions against the vendor's security bulletins and apply updates as soon as they are made available to protect the integrity of the device lifecycle.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Improper Input Validation, Exposure of Sensitive Information to an Unauthorized Actor, Server-Side Request Forgery (SSRF) vulnerability in Apache Came...
Improper Input Validation, Exposure of Sensitive Information to an Unauthorized Actor, Server-Side Request Forgery (SSRF) vulnerability in Apache Camel in Vertx Websocket component
---METADATA---
VENDOR: Apache Software Foundation
PRODUCT: Apache Camel Vertx Websocket
AFFECTED_VERSIONS: 4.0.0 up to 4.14.8, 4.15.0 up to 4.18.3, 4.19.0 up to 4.21.0
CONFIDENCE: high
MISSING: none
---END_METADATA---
Description Summary:
A Server-Side Request Forgery (SSRF) and information exposure vulnerability exists in the Apache Camel Vertx Websocket component due to improper input validation.
Executive Summary:
A high-severity SSRF vulnerability in Apache Camel Vertx Websocket allows unauthenticated attackers to perform unauthorized requests and expose sensitive information.
Vulnerability Details
CVE-ID: CVE-2026-46726
Affected Software: Apache Software Foundation Apache Camel Vertx Websocket
Affected Versions: 4.0.0 up to 4.14.8, 4.15.0 up to 4.18.3, 4.19.0 up to 4.21.0
Vulnerability: The vulnerability involves improper input validation (CWE-20) leading to Server-Side Request Forgery (CWE-918) and information exposure (CWE-200). An unauthenticated attacker can manipulate the Vertx Websocket component to force the server to make unauthorized requests to internal resources.
Business Impact
The ability to perform SSRF attacks allows an attacker to interact with internal services that are otherwise protected from the public internet. With a CVSS score of 7.5, this high-severity flaw could lead to the exposure of internal configuration data, cloud metadata, or unauthorized access to backend systems.
Remediation Plan
Immediate Action: Upgrade to version 4.14.8, 4.18.3, 4.21.0 or later as advised by the Apache Camel security team.
Proactive Monitoring: Monitor network traffic originating from the server for unexpected outbound requests to internal or restricted network segments.
Compensating Controls: Ensure the application runs with the principle of least privilege, restricting network egress to only necessary endpoints via firewall rules or network security groups.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of July 7, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
SSRF vulnerabilities often serve as a gateway to deeper infrastructure compromise. IT administrators should treat this update with high priority and verify that the affected Camel components are updated to the patched versions immediately.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Net::Statsd::Tiny versions before 0
Net::Statsd::Tiny versions before 0
---METADATA---
VENDOR: Net::Statsd::Tiny
PRODUCT: Net::Statsd::Tiny
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A vulnerability in the Net::Statsd::Tiny package may allow an attacker to trigger unintended behaviors within the application's telemetry handling.
Executive Summary:
Net::Statsd::Tiny contains a high-severity flaw that could lead to system instability or unauthorized data processing issues.
Vulnerability Details
CVE-ID: CVE-2026-46720
Affected Software: Net::Statsd::Tiny
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: This vulnerability involves the handling of metrics data within the Net::Statsd::Tiny library, potentially allowing an attacker to exploit the data processing pipeline.
Business Impact
Successful exploitation could result in the corruption of monitoring data, denial of service for telemetry services, or potentially arbitrary code execution depending on the implementation. With a CVSS score of 8.2, this vulnerability is considered a high-priority risk that could impact the reliability and integrity of internal performance monitoring systems.
Remediation Plan
Immediate Action: Update the Net::Statsd::Tiny dependency to the latest secure version within all affected application manifests.
Proactive Monitoring: Review application performance monitoring logs for unusual spikes in traffic or malformed data packets sent to the Statsd collector.
Compensating Controls: Utilize input validation at the application level to sanitize data before it is passed to the telemetry library, reducing the risk of malicious payload injection.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 21, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the critical nature of libraries used in production monitoring, it is imperative to update the affected component immediately. Organizations should verify their software supply chain to identify and remediate all instances of this library to prevent potential exploitation.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Nezha Monitoring contains a vulnerability where a low-privileged user can trigger arbitrary commands across all monitored servers, resulting in cross-...
Nezha Monitoring contains a vulnerability where a low-privileged user can trigger arbitrary commands across all monitored servers, resulting in cross-tenant remote code execution.
---METADATA---
VENDOR: Nezha
PRODUCT: Monitoring
AFFECTED_VERSIONS: From version 1.4.0 to before version 2.0.8
---END_METADATA---
Description Summary:
Nezha Monitoring contains a vulnerability where a low-privileged user can trigger arbitrary commands across all monitored servers, resulting in cross-tenant remote code execution.
Executive Summary:
A critical RCE vulnerability in Nezha Monitoring allows authenticated users to execute arbitrary commands on all managed servers, regardless of tenant boundaries.
Vulnerability Details
CVE-ID: CVE-2026-46716
Affected Software: Nezha Monitoring
Affected Versions: From version 1.4.0 to before version 2.0.8
Vulnerability: A RoleMember user can create a malicious cron task that pushes arbitrary commands to the global server pool. These commands are executed by agents on all monitored servers, bypassing tenant isolation.
Business Impact
This is a critical cross-tenant Remote Code Execution (RCE) vulnerability. An attacker with minimal access can gain control over every server managed by the Nezha instance, leading to a complete compromise of the entire server fleet. Given the CVSS score of 9.9, this vulnerability poses an extreme threat to organizational operations.
Remediation Plan
Immediate Action: Update Nezha Monitoring to version 2.0.8 immediately.
Proactive Monitoring: Audit existing cron tasks within the Nezha dashboard for any unauthorized or suspicious commands. Review agent execution logs for command execution patterns.
Compensating Controls: Restrict access to the Nezha dashboard interface to a limited set of trusted administrators until the patch is applied.
Exploitation Status
Public Exploit Available: True
Analyst Notes: As of Jun 12, 2026, a public exploit exists for this vulnerability. The risk of exploitation is extremely high and immediate remediation is required.
Analyst Recommendation
The ability to execute arbitrary code across an entire fleet of managed servers is a catastrophic risk. Administrators must update to version 2.0.8 immediately to prevent potential mass compromise of their server infrastructure.
Update Nezha Multiple Products to the latest version. Check vendor security advisory for specific patch details. Monitor for exploitation attempts and review access logs.
Notepad++ is a free and open-source source code editor
Notepad++ is a free and open-source source code editor
---METADATA---
VENDOR: Notepad++
PRODUCT: Notepad++
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A security vulnerability exists in the Notepad++ source code editor that may allow for unauthorized system impact.
Executive Summary:
A high-severity security vulnerability in Notepad++ presents a potential risk to system integrity and requires immediate attention.
Vulnerability Details
CVE-ID: CVE-2026-46710
Affected Software: Notepad++
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: The specific nature of this vulnerability in Notepad++ remains under investigation; however, it is classified as a high-severity flaw that may impact application stability or security. Authentication requirements are currently unspecified, necessitating a cautious approach until full disclosure is provided by the vendor.
Business Impact
The vulnerability carries a CVSS score of 7.5, reflecting a significant risk to organizational assets. Successful exploitation could lead to unauthorized local access, potential data manipulation, or system instability, directly impacting business continuity and the security of sensitive development environments.
Remediation Plan
Immediate Action: Verify the version of Notepad++ in use and apply the latest security patches released by the vendor as soon as they become available.
Proactive Monitoring: Review system and application logs for anomalous behavior or unauthorized process execution associated with the Notepad++ application.
Compensating Controls: Restrict application execution privileges and implement endpoint detection and response (EDR) solutions to identify and block suspicious activity originating from text editor processes.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 28, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the high severity of this CVE, administrators must prioritize monitoring official vendor channels for patch releases. Once a patch is available, it should be deployed across all affected workstations immediately to mitigate the risk of exploitation.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
An authentication bypass vulnerability in Progress Software MOVEit Automation allows unauthorized access to the application.
An authentication bypass vulnerability in Progress Software MOVEit Automation allows unauthorized access to the application.
---METADATA---
VENDOR: Progress Software
PRODUCT: MOVEit Automation
AFFECTED_VERSIONS: 2025.0.0-2025.0.8, 2024.0.0-2024.1.7, prior to 2024.0.0
---END_METADATA---
Description Summary:
An authentication bypass vulnerability in Progress Software MOVEit Automation allows unauthorized access to the application.
Executive Summary:
A critical authentication bypass vulnerability in Progress Software MOVEit Automation allows attackers to circumvent login requirements and gain unauthorized access.
Vulnerability Details
CVE-ID: CVE-2026-4670
Affected Software: Progress Software MOVEit Automation
Affected Versions: 2025.0.0 before 2025.0.9, 2024.0.0 before 2024.1.8, and versions prior to 2024.0.0.
Vulnerability: The application contains a flaw that permits an authentication bypass, effectively allowing an attacker to access the system without valid credentials.
Business Impact
With a CVSS score of 9.8, this vulnerability is critical. Unauthorized access to MOVEit Automation, which is frequently used for sensitive file transfers, poses an extreme risk of data exfiltration and loss of confidentiality for all data processed by the platform.
Remediation Plan
Immediate Action: Update MOVEit Automation to the latest patched version (2025.0.9, 2024.1.8, or the latest available) immediately.
Proactive Monitoring: Review authentication and access logs for anomalous login activity or unauthorized access attempts from unexpected IP addresses.
Compensating Controls: Implement strict network access controls to limit access to the MOVEit interface to known, trusted management segments.
Exploitation Status
Public Exploit Available: Unknown
Analyst Notes: As of April 30, 2026, there is no public information indicating active exploitation. However, the criticality of authentication bypasses requires immediate attention.
Analyst Recommendation
Organizations should prioritize this update. Given the nature of MOVEit as a high-value target for data theft, ensure that the patch is applied across all instances immediately.
Update Progress Software MOVEit to the latest version. Check vendor security advisory for specific patch details. Monitor for exploitation attempts and review access logs.
Boxlite prior to 0.9.0 fails to restrict kernel capabilities, allowing malicious code to remount directories as read-write and perform arbitrary write...
Boxlite prior to 0.9.0 fails to restrict kernel capabilities, allowing malicious code to remount directories as read-write and perform arbitrary write operations.
---METADATA---
VENDOR: Boxlite
PRODUCT: Boxlite
AFFECTED_VERSIONS: < 0.9.0
---END_METADATA---
Description Summary:
Boxlite prior to 0.9.0 fails to restrict kernel capabilities, allowing malicious code to remount directories as read-write and perform arbitrary write operations.
Executive Summary:
A critical sandbox-escape vulnerability in Boxlite allows attackers to gain unauthorized write access to host directories, necessitating an immediate update to version 0.9.0.
Vulnerability Details
CVE-ID: CVE-2026-46695
Affected Software: Boxlite
Affected Versions: < 0.9.0
Vulnerability: This is a sandbox-escape vulnerability where untrusted code can remount host directories from read-only to read-write. The issue stems from a failure to restrict kernel capabilities and drop CAP_SYS_ADMIN from the guest, which is accessible to unauthenticated attackers running code within the container.
Business Impact
Successful exploitation allows an attacker to bypass critical security boundaries, gaining unauthorized write access to host directories that should be read-only. Given the CVSS score of 10.0, this represents a total compromise of the sandbox integrity, potentially leading to system-wide data corruption or further privilege escalation on the host server.
Remediation Plan
Immediate Action: Upgrade Boxlite to version 0.9.0 or later, which enforces read-only status at the hypervisor level and drops CAP_SYS_ADMIN from the guest.
Proactive Monitoring: Monitor system logs for unexpected file system remount commands or unauthorized write activity within container environments.
Compensating Controls: Implement strict resource constraints and restrict the usage of privileged containers until the patch can be applied.
Exploitation Status
Public Exploit Available: True
Analyst Notes: As of June 10, 2026, a public exploit is available for this vulnerability. Given the ease of bypassing the read-only contract, organizations should prioritize patching immediately to prevent sandbox escapes.
Analyst Recommendation
The severity of this vulnerability is extreme, as it effectively nullifies the isolation provided by the Boxlite sandbox. Administrators must immediately upgrade to version 0.9.0 to enforce the necessary hypervisor-level security controls and prevent arbitrary code execution on the underlying host.
Update Unknown Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
Bludit is a content management system
Bludit is a content management system
---METADATA---
VENDOR: Bludit
PRODUCT: Bludit CMS
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A security vulnerability has been identified in the Bludit content management system that may allow for unauthorized system impact.
Executive Summary:
A high-severity vulnerability in the Bludit content management system poses a significant risk to the integrity and availability of hosted web content.
Vulnerability Details
CVE-ID: CVE-2026-46656
Affected Software: Bludit CMS
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: The vulnerability exists within the Bludit core framework; while specific exploitation vectors remain under investigation, such flaws often involve improper input validation or insufficient authentication controls within the CMS architecture.
Business Impact
The vulnerability carries a CVSS score of 8.8, indicating a high potential for unauthorized access or administrative compromise. Successful exploitation could lead to the defacement of websites, unauthorized data exfiltration, or the deployment of malicious scripts, resulting in severe reputational damage and operational disruption.
Remediation Plan
Immediate Action: Administrators must monitor the official Bludit security advisory portal and apply the latest security patches as soon as they are released.
Proactive Monitoring: Review web server access logs for anomalous request patterns or unauthorized attempts to access sensitive administrative directories.
Compensating Controls: Deploy a Web Application Firewall (WAF) with updated rulesets to filter out common web-based attack vectors and provide virtual patching for the environment.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 9, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the high CVSS score, this vulnerability should be treated as a priority item. Organizations running Bludit should perform an inventory of their instances and prepare for an emergency patching cycle once the vendor releases specific remediation guidance.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Twenty CRM is vulnerable to RCE via chained SQL injection and PostgreSQL COPY TO PROGRAM attacks in the REST API.
Twenty CRM is vulnerable to RCE via chained SQL injection and PostgreSQL COPY TO PROGRAM attacks in the REST API.
---METADATA---
VENDOR: Twenty
PRODUCT: Twenty CRM
AFFECTED_VERSIONS: 1.7.7 through 1.16.7
---END_METADATA---
Description Summary:
Twenty CRM is vulnerable to RCE via chained SQL injection and PostgreSQL COPY TO PROGRAM attacks in the REST API.
Executive Summary:
An authenticated Remote Code Execution (RCE) vulnerability in Twenty CRM allows attackers to execute arbitrary OS commands on the database server.
Vulnerability Details
CVE-ID: CVE-2026-46624
Affected Software: Twenty, Twenty CRM
Affected Versions: 1.7.7 through 1.16.7
Vulnerability: This is a critical RCE vulnerability involving a chained SQL injection and PostgreSQL COPY TO PROGRAM attack. An authenticated user can inject malicious SQL through the unsanitized timeZone parameter in the REST API, resulting in arbitrary command execution if the database service runs with superuser privileges.
Business Impact
The vulnerability poses a severe risk to organizational data integrity and system availability. With a CVSS score of 9.9, this flaw allows for complete system compromise, enabling attackers to extract sensitive CRM data or pivot into the internal network. Successful exploitation could lead to catastrophic reputational damage and prolonged operational downtime.
Remediation Plan
Immediate Action: Upgrade Twenty CRM to a patched version that sanitizes the timeZone input parameter.
Proactive Monitoring: Review database query logs for anomalous COPY TO PROGRAM syntax or unusual SQL injection patterns within the REST API.
Compensating Controls: Implement strict input validation at the Web Application Firewall (WAF) level to block suspicious SQL queries containing command execution patterns.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of May 26, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the critical nature of this RCE vulnerability and the potential for full system takeover, immediate patching is mandatory. Administrators must prioritize updating Twenty CRM and auditing current database user permissions to adhere to the principle of least privilege, ensuring the application does not run as a database superuser.
Update PostgreSQL COPY TO to the latest version. Monitor for exploitation attempts and review access logs.
SolidInvoice is an open-source invoicing platform
SolidInvoice is an open-source invoicing platform
---METADATA---
VENDOR: SolidInvoice
PRODUCT: SolidInvoice
AFFECTED_VERSIONS: Prior to version 2.3.17
---END_METADATA---
Description Summary:
SolidInvoice stores API tokens in plaintext within the database, risking full credential compromise if the database is exposed or accessed by an unauthorized party.
Executive Summary:
A critical plaintext credential storage vulnerability in SolidInvoice exposes all REST API tokens to potential theft, facilitating full system compromise.
Vulnerability Details
CVE-ID: CVE-2026-46622
Affected Software: SolidInvoice
Affected Versions: Prior to version 2.3.17
Vulnerability: This vulnerability involves the insecure storage of API tokens as plaintext strings in the api_tokens database table. An attacker with access to the database—whether via SQL injection, leaked backups, or insider access—can retrieve these tokens to impersonate users and gain full unauthorized access to the application.
Business Impact
With a CVSS score of 8.1, this vulnerability poses a significant risk to the confidentiality and integrity of the invoicing platform. Successful exploitation allows for complete unauthorized access to API-connected services, potentially leading to the theft of financial data, customer records, and unauthorized manipulation of invoicing workflows.
Remediation Plan
Immediate Action: Upgrade to version 2.3.17 or later immediately to address the insecure storage mechanism.
Proactive Monitoring: Audit database access logs for unusual queries targeting the api_tokens table and monitor API logs for anomalous usage patterns.
Compensating Controls: Ensure strict access controls on database backups and implement database encryption at rest to mitigate the impact of physical or logical data exposure.
Exploitation Status
Public Exploit Available: true
Analyst Notes: As of June 13, 2026, there is a public exploit available for this vulnerability. Given the ease with which plaintext tokens can be harvested, organizations should prioritize patching as an urgent security requirement.
Analyst Recommendation
The exposure of API tokens in plaintext is a severe security oversight that provides an immediate path to full account takeover. Administrators must update to version 2.3.17 immediately and rotate all existing API tokens to invalidate any credentials that may have already been compromised.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
The JetEngine plugin for WordPress is vulnerable to SQL Injection via the `listing_load_more` AJAX action in all versions up to, and including, 3
The JetEngine plugin for WordPress is vulnerable to SQL Injection via the `listing_load_more` AJAX action in all versions up to, and including, 3
Update WordPress plugin/theme to the latest version. Review WordPress security settings and remove if no longer needed.
A route authorization bypass in the Fission router allows unauthorized callers to invoke functions by guessing their metadata, bypassing defined HTTPT...
A route authorization bypass in the Fission router allows unauthorized callers to invoke functions by guessing their metadata, bypassing defined HTTPTrigger restrictions.
---METADATA---
VENDOR: Fission
PRODUCT: Fission Router
AFFECTED_VERSIONS: Prior to version 1.23.0
---END_METADATA---
Description Summary:
A route authorization bypass in the Fission router allows unauthorized callers to invoke functions by guessing their metadata, bypassing defined HTTPTrigger restrictions.
Executive Summary:
A critical routing vulnerability in Fission prior to version 1.23.0 allows unauthenticated attackers to invoke serverless functions, bypassing security controls.
Vulnerability Details
CVE-ID: CVE-2026-46614
Affected Software: Fission Fission Router
Affected Versions: Prior to version 1.23.0
Vulnerability: The Fission router incorrectly registers internal-style routes for all Function objects, regardless of whether an HTTPTrigger is defined. This allows an unauthenticated attacker who can reach the router to invoke any function by guessing its name and namespace, circumventing host, path, and method restrictions.
Business Impact
With a CVSS score of 9.8, this vulnerability poses a severe risk to the confidentiality, integrity, and availability of the serverless environment. Successful exploitation could lead to unauthorized execution of internal functions, potentially exposing sensitive data or allowing an attacker to manipulate serverless workloads. This aligns with MITRE ATT&CK technique T1068 (Exploitation for Privilege Escalation).
Remediation Plan
Immediate Action: Upgrade Fission to version 1.23.0 or later to ensure proper route authorization is enforced.
Proactive Monitoring: Monitor router access logs for high volumes of 404 errors or unexpected requests targeting the /fission-function/ path, which may indicate enumeration attempts.
Compensating Controls: Implement network-level access control lists (ACLs) to restrict access to the Fission router (port 8888) to known, authorized internal services only.
Exploitation Status
Public Exploit Available: False
Analyst Notes: As of Jun 10, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
This vulnerability represents a significant security failure in the Fission routing architecture. Administrators must prioritize updating to version 1.23.0 immediately to prevent unauthorized function invocation and potential privilege escalation within the Kubernetes cluster.
Update Kubernetes Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes
Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes
---METADATA---
VENDOR: Fission
PRODUCT: Fission
AFFECTED_VERSIONS: See vendor advisory
---END_METADATA---
Description Summary:
Fission, a Kubernetes-native serverless framework, contains a vulnerability that requires immediate attention from users of the platform.
Executive Summary:
A high-severity vulnerability has been identified in the Fission serverless framework, requiring urgent review and remediation to maintain cluster security.
Vulnerability Details
CVE-ID: CVE-2026-46612
Affected Software: Fission
Affected Versions: See vendor advisory
Vulnerability: Fission is an open-source, Kubernetes-native serverless framework. While specific technical details are currently limited, the vulnerability is classified as high severity, indicating a potential risk to the integrity or availability of the Kubernetes-native environment.
Business Impact
With a CVSS score of 8.8, this vulnerability represents a significant risk. As Fission manages the deployment of serverless functions within Kubernetes, an exploit could potentially allow for unauthorized code execution, privilege escalation within the cluster, or disruption of serverless workloads.
Remediation Plan
Immediate Action: Monitor official Fission security communications and apply vendor-recommended updates or patches as soon as they become available.
Proactive Monitoring: Review Kubernetes audit logs for unauthorized access to Fission-related resources and monitor serverless function execution for anomalous behavior.
Compensating Controls: Apply strict Kubernetes RBAC policies to limit the permissions associated with Fission components to the minimum necessary for operation.
Exploitation Status
Public Exploit Available: False
Analyst Notes: As of Jun 11, 2026, there is no public information indicating active exploitation of this vulnerability. Organizations should remain vigilant and apply updates as soon as the vendor releases specific guidance.
Analyst Recommendation
Given the high CVSS score, organizations utilizing Fission must stay updated on security disclosures. Immediate application of patches upon release is recommended to mitigate the risk of cluster-level compromise or service disruption.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Glances is an open-source system cross-platform monitoring tool
Glances is an open-source system cross-platform monitoring tool
---METADATA---
VENDOR: Nicolargo
PRODUCT: Glances
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
An additional security vulnerability has been identified in the Glances monitoring tool that may permit unauthorized system-level interactions.
Executive Summary:
The Nicolargo Glances monitoring tool is susceptible to a high-severity vulnerability that could facilitate unauthorized system access if left unpatched.
Vulnerability Details
CVE-ID: CVE-2026-46607
Affected Software: Nicolargo Glances
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: This vulnerability affects the Glances monitoring tool's ability to securely manage system interactions and input processing. The flaw allows for potential exploitation by an attacker to execute unauthorized operations, undermining the security posture of the monitored environment.
Business Impact
Exploitation of this vulnerability threatens the integrity of the monitoring environment and, by extension, the underlying systems being monitored. With a CVSS score of 7.8, the risk of unauthorized access or service disruption is significant, potentially leading to loss of control over critical server management processes.
Remediation Plan
Immediate Action: Apply the latest security updates provided by the vendor to remediate the vulnerability in the Glances application.
Proactive Monitoring: Increase the frequency of log audits for the Glances service, specifically looking for unexpected process spawning or anomalous configuration changes.
Compensating Controls: Restrict network access to the Glances monitoring interface using VPNs or firewalls to ensure only authenticated users can interact with the service.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 27, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Security teams must address CVE-2026-46607 as a matter of urgency to prevent the exploitation of monitoring infrastructure. Applying the latest updates is the most effective way to eliminate this risk and ensure that the monitoring tool remains a secure component of the environment.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Glances is an open-source system cross-platform monitoring tool
Glances is an open-source system cross-platform monitoring tool
---METADATA---
VENDOR: Nicolargo
PRODUCT: Glances
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A security vulnerability in the Glances cross-platform monitoring tool could potentially be leveraged by remote attackers to compromise system monitoring integrity.
Executive Summary:
A high-severity vulnerability in the Nicolargo Glances monitoring tool exposes systems to potential unauthorized exploitation and administrative risk.
Vulnerability Details
CVE-ID: CVE-2026-46606
Affected Software: Nicolargo Glances
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: This vulnerability resides within the Glances cross-platform monitoring framework, affecting how the tool processes requests or manages internal operations. The flaw may allow an attacker to bypass standard security controls to execute unauthorized actions on the host system.
Business Impact
A successful exploit of this vulnerability could grant an attacker unauthorized control over the monitoring tool, potentially leading to system-wide compromise or the exfiltration of sensitive performance and configuration data. The CVSS score of 7.8 confirms the high severity, as monitoring tools often require elevated privileges to function, thereby amplifying the blast radius of a successful attack.
Remediation Plan
Immediate Action: Update the Glances installation to the latest version provided by the vendor to ensure all security patches are applied.
Proactive Monitoring: Review system logs for unusual execution patterns or unauthorized attempts to access the Glances web-based or API interface.
Compensating Controls: Utilize a Web Application Firewall (WAF) or network-level access control lists (ACLs) to limit access to the Glances interface to authorized administrative workstations only.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 27, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
The reliance on Glances for system oversight makes it a high-value target for attackers looking to maintain persistence or gain intelligence on infrastructure. Security teams should treat this vulnerability with high priority and ensure that all instances are updated or isolated from public-facing networks.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
HashiCorp’s go-getter library up to v1
HashiCorp’s go-getter library up to v1
---METADATA---
VENDOR: HashiCorp
PRODUCT: go-getter
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
HashiCorp’s go-getter library contains a vulnerability, potentially related to improper handling of remote resources, that could lead to security risks in dependent applications.
Executive Summary:
A high-severity vulnerability in HashiCorp's go-getter library requires immediate attention as it impacts multiple downstream products relying on this library for resource retrieval.
Vulnerability Details
CVE-ID: CVE-2026-4660
Affected Software: HashiCorp go-getter
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: The vulnerability exists within the go-getter library, which is commonly used to download remote files or directories. While specific details are limited, such flaws typically involve insecure handling of URLs or data during the retrieval process.
Business Impact
Because go-getter is a foundational library used by various infrastructure-as-code and orchestration tools, this vulnerability could lead to remote code execution or unauthorized file access in dependent applications. The CVSS score of 7.5 highlights the potential for severe security degradation across affected enterprise environments.
Remediation Plan
Immediate Action: Identify all internal applications and services that utilize the HashiCorp go-getter library and update them to the version specified in the vendor advisory.
Proactive Monitoring: Monitor for unexpected outbound network connections or file system modifications initiated by applications utilizing go-getter.
Compensating Controls: Implement egress filtering to prevent applications from fetching resources from untrusted or unknown external origins.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of April 11, 2026, there is no public information indicating active exploitation of this vulnerability. However, the widespread use of this library in infrastructure tools makes the potential for exploitation high.
Analyst Recommendation
Given the central role of go-getter in HashiCorp and third-party tools, organizations should perform an immediate inventory of their software stack to identify affected dependencies. Prioritize patching to prevent potential remote exploitation of infrastructure management workflows.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Improper Input Validation, Unintended Proxy or Intermediary ('Confused Deputy') vulnerability in Apache Camel CXF SOAP component
Improper Input Validation, Unintended Proxy or Intermediary ('Confused Deputy') vulnerability in Apache Camel CXF SOAP component
---METADATA---
VENDOR: Apache Software Foundation
PRODUCT: Apache Camel
AFFECTED_VERSIONS: 4.0.0 up to (excluding) 4.14.8, 4.15.0 up to (excluding) 4.18.3, 4.19.0 up to (excluding) 4.21.0
CONFIDENCE: high
MISSING: none
---END_METADATA---
Description Summary:
The Apache Camel CXF SOAP component is vulnerable to an Improper Input Validation and 'Confused Deputy' issue, allowing unauthenticated attackers to bypass security controls.
Executive Summary:
An improper input validation vulnerability in Apache Camel's CXF SOAP component enables unauthenticated attackers to act as a confused deputy, leading to unauthorized information disclosure.
Vulnerability Details
CVE-ID: CVE-2026-46592
Affected Software: Apache Software Foundation Apache Camel
Affected Versions: 4.0.0 up to (excluding) 4.14.8, 4.15.0 up to (excluding) 4.18.3, 4.19.0 up to (excluding) 4.21.0
Vulnerability: This vulnerability stems from improper input validation (CWE-20) and a 'Confused Deputy' (CWE-441) flaw in the CXF SOAP component. It allows an unauthenticated attacker to manipulate the component into acting as an intermediary to access restricted resources.
Business Impact
The ability for an unauthenticated attacker to exploit this vulnerability creates a significant risk of unauthorized information disclosure. By inducing the system to act as a proxy for malicious requests, an attacker can bypass internal security perimeters. With a CVSS score of 7.5, the risk is substantial for any organization using Apache Camel to handle SOAP-based web services.
Remediation Plan
Immediate Action: Apply the vendor-provided security updates by upgrading to the latest patched version of Apache Camel (4.14.8, 4.18.3, or 4.21.0).
Proactive Monitoring: Monitor SOAP traffic for malformed requests or unexpected intermediary behavior that deviates from standard service patterns.
Compensating Controls: Implement strict input validation at the gateway level and ensure that the SOAP service is not permitted to make outbound requests to sensitive internal networks.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of July 7, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
This vulnerability is particularly concerning as it is exploitable by unauthenticated attackers. Security teams should expedite the deployment of the necessary patches across all affected Apache Camel instances to prevent potential unauthorized access.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Improper Neutralization of Special Elements in Data Query Logic vulnerability in Apache Camel Neo4J component
Improper Neutralization of Special Elements in Data Query Logic vulnerability in Apache Camel Neo4J component
---METADATA---
VENDOR: Apache Software Foundation
PRODUCT: Apache Camel
AFFECTED_VERSIONS: 4.10.0 up to 4.14.8, 4.15.0 up to 4.18.3, 4.19.0 up to 4.21.0
CONFIDENCE: high
MISSING: none
---END_METADATA---
Description Summary:
An improper neutralization of special elements in data query logic exists in the Apache Camel Neo4J component, enabling potential query injection.
Executive Summary:
A high-severity query injection vulnerability in the Apache Camel Neo4J component allows unauthenticated attackers to manipulate data queries.
Vulnerability Details
CVE-ID: CVE-2026-46591
Affected Software: Apache Software Foundation Apache Camel
Affected Versions: 4.10.0 up to 4.14.8, 4.15.0 up to 4.18.3, 4.19.0 up to 4.21.0
Vulnerability: The Neo4J component fails to properly neutralize special elements within data query logic. This allows an unauthenticated attacker to inject malicious query parameters, potentially leading to unauthorized data modification or disclosure.
Business Impact
With a CVSS score of 8.2, this vulnerability represents a significant threat to data integrity. Attackers can bypass application-level controls to perform unauthorized operations on the backend database, potentially leading to the compromise of sensitive information or corruption of critical business data.
Remediation Plan
Immediate Action: Update Apache Camel to the versions identified by the vendor to ensure proper neutralization of query inputs.
Proactive Monitoring: Monitor database query logs for syntax anomalies or unauthorized query patterns that deviate from standard application behavior.
Compensating Controls: Implement strict input validation at the application layer and utilize parameterized queries wherever possible to neutralize potential injection attempts.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of July 7, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the ease with which this vulnerability can be exploited and its impact on data integrity, organizations should treat this as a high-priority update. Ensure all affected Camel integrations are patched to prevent unauthorized database manipulation.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Deserialization of Untrusted Data vulnerability in Apache Camel PQC component
Deserialization of Untrusted Data vulnerability in Apache Camel PQC component
---METADATA---
VENDOR: Apache Software Foundation
PRODUCT: Apache Camel
AFFECTED_VERSIONS: 4.18.0 up to (excluding) 4.18.3, 4.19.0 up to (excluding) 4.21.0
CONFIDENCE: high
MISSING: none
---END_METADATA---
Description Summary:
The Apache Camel PQC component is susceptible to a Deserialization of Untrusted Data vulnerability, potentially allowing remote code execution if exploited.
Executive Summary:
A critical deserialization vulnerability in the Apache Camel PQC component could allow an authenticated attacker to execute arbitrary code on affected systems.
Vulnerability Details
CVE-ID: CVE-2026-46590
Affected Software: Apache Software Foundation Apache Camel
Affected Versions: 4.18.0 up to (excluding) 4.18.3, 4.19.0 up to (excluding) 4.21.0
Vulnerability: This vulnerability involves the insecure deserialization of untrusted data (CWE-502) within the PQC component. An authenticated attacker can leverage this flaw to trigger unauthorized code execution.
Business Impact
Successful exploitation of this vulnerability can result in a full system compromise, including the loss of confidentiality, integrity, and availability of the host environment. Given the high CVSS score of 8.8, this vulnerability represents an urgent threat to any infrastructure relying on Apache Camel for data processing.
Remediation Plan
Immediate Action: Upgrade Apache Camel to version 4.18.3 or 4.21.0, or the latest stable release provided by the vendor.
Proactive Monitoring: Review application access logs for unusual serialization patterns or unexpected inbound data streams that may indicate exploitation attempts.
Compensating Controls: Restrict network access to the affected service to trusted internal sources only, and utilize runtime security tools to monitor for spawned child processes.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of July 7, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Organizations must prioritize upgrading the Apache Camel framework to the specified non-vulnerable versions. Given the potential for remote code execution, this update should be treated as a high-priority maintenance task.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
The Unlimited Elements for Elementor plugin for WordPress is vulnerable to Arbitrary File Read via the Repeater JSON/CSV URL parameter in versions up...
The Unlimited Elements for Elementor plugin for WordPress is vulnerable to Arbitrary File Read via the Repeater JSON/CSV URL parameter in versions up to, and including, 2
Update WordPress plugin/theme to the latest version. Review WordPress security settings and remove if no longer needed.
Improper Input Validation vulnerability in Apache Camel
Improper Input Validation vulnerability in Apache Camel
---METADATA---
VENDOR: Apache
PRODUCT: Camel
AFFECTED_VERSIONS: 0 through 4.14.7, 4.15.0 through 4.18.2, 4.19.0 through 4.20.0
CONFIDENCE: high
MISSING: none
---END_METADATA---
Description Summary:
A critical improper input validation vulnerability in Apache Camel allows unauthenticated attackers to potentially perform unauthorized operations on the affected system.
Executive Summary:
Apache Camel contains an improper input validation flaw that exposes the platform to unauthenticated remote exploitation, necessitating urgent remediation.
Vulnerability Details
CVE-ID: CVE-2026-46588
Affected Software: Apache Camel
Affected Versions: 0 through 4.14.7, 4.15.0 through 4.18.2, 4.19.0 through 4.20.0
Vulnerability: The vulnerability stems from insufficient validation of input data processed by the Apache Camel framework. This allows an unauthenticated remote attacker to influence application behavior through crafted input, which may lead to adverse security consequences.
Business Impact
With a CVSS score of 7.3, this vulnerability represents a substantial threat to the stability and security of internal data pipelines. Successful exploitation could result in unauthorized access to sensitive data transmitted through Camel or the degradation of system services. Addressing this vulnerability is essential for maintaining the confidentiality and integrity of business-critical data flows.
Remediation Plan
Immediate Action: Update Apache Camel instances to the latest vendor-provided version that addresses this specific CVE.
Proactive Monitoring: Review system and application access logs for anomalous traffic patterns or unexpected input strings targeting integrated services.
Compensating Controls: Utilize network-level traffic inspection and WAF rules to sanitize or block potentially malicious payloads before they reach the Camel framework.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of July 7, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Security teams must treat this vulnerability with high priority, as it permits unauthenticated access to the underlying framework. It is recommended to verify all affected versions in production and development environments and apply the vendor-recommended patches at the earliest opportunity.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Improper Input Validation vulnerability in Apache Camel
Improper Input Validation vulnerability in Apache Camel
---METADATA---
VENDOR: Apache
PRODUCT: Camel
AFFECTED_VERSIONS: 0 through 4.14.7, 4.15.0 through 4.18.2, 4.19.0 through 4.20.0
CONFIDENCE: high
MISSING: none
---END_METADATA---
Description Summary:
Apache Camel is susceptible to an Improper Input Validation vulnerability, potentially allowing unauthenticated remote attackers to impact system integrity and availability.
Executive Summary:
An unauthenticated remote code execution or injection risk exists in Apache Camel due to improper input validation, requiring immediate patching to prevent unauthorized system interaction.
Vulnerability Details
CVE-ID: CVE-2026-46587
Affected Software: Apache Camel
Affected Versions: 0 through 4.14.7, 4.15.0 through 4.18.2, 4.19.0 through 4.20.0
Vulnerability: This vulnerability involves improper input validation (CWE-20) within the Apache Camel framework. The flaw is remotely exploitable by an unauthenticated attacker, meaning no prior user credentials or session tokens are required to trigger the vulnerable code path.
Business Impact
The vulnerability carries a CVSS score of 7.3, reflecting a high-severity risk to business operations. Exploitation could lead to unauthorized data manipulation or service disruption, directly impacting the availability and reliability of enterprise integration services. Organizations relying on Camel for critical data routing should prioritize this fix to prevent potential service downtime or unauthorized system access.
Remediation Plan
Immediate Action: Upgrade to the latest patched version of Apache Camel as specified in the official vendor security advisory.
Proactive Monitoring: Monitor application logs for unusual input patterns or unexpected error codes that may indicate probing for input validation flaws.
Compensating Controls: Deploy a Web Application Firewall (WAF) or equivalent traffic filtering solution to inspect and block malformed requests directed at Camel endpoints.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of July 7, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw and the ease of network-based exploitation, the potential for exploitation is considered high.
Analyst Recommendation
Given the high CVSS score and the widespread use of Apache Camel in integration middleware, this vulnerability poses a significant risk to organizational infrastructure. Administrators should audit their environments to identify all instances of the affected software and apply the necessary security updates immediately to mitigate the risk of remote exploitation.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Improper Control of Generation of Code ('Code Injection'), Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') vuln...
Improper Control of Generation of Code ('Code Injection'), Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') vulnerability in Apache OFBiz
---METADATA---
VENDOR: Apache
PRODUCT: OFBiz
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
CONFIDENCE: high
MISSING: versions, patch
---END_METADATA---
Description Summary:
Apache OFBiz is vulnerable to code injection and eval injection, which may allow attackers to execute arbitrary code.
Executive Summary:
Apache OFBiz is susceptible to critical code injection and eval injection vulnerabilities that could allow for remote code execution.
Vulnerability Details
CVE-ID: CVE-2026-46586
Affected Software: Apache OFBiz
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: The software suffers from improper control of code generation and improper neutralization of directives in dynamically evaluated code, which can be exploited by an attacker to perform code injection.
Business Impact
A CVSS score of 7.3 highlights a significant risk, as code injection vulnerabilities often allow for complete system compromise, including unauthorized data access and lateral movement within the network. This represents a severe threat to the availability and confidentiality of the Apache OFBiz environment.
Remediation Plan
Immediate Action: Immediately apply the latest security patches provided by the Apache Software Foundation for OFBiz.
Proactive Monitoring: Monitor server logs for suspicious system calls or unexpected dynamic evaluation of inputs that deviate from normal application behavior.
Compensating Controls: Deploy a WAF with strict input validation rules to inspect and filter malicious payloads targeting dynamic code evaluation functions.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of May 20, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the critical nature of code injection, organizations running Apache OFBiz should treat this as a high-priority task. Ensure all instances are patched to the latest version to prevent potential remote code execution by unauthorized actors.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Improper Input Validation, Authorization Bypass Through User-Controlled Key vulnerability in Apache Camel Lucene Component
Improper Input Validation, Authorization Bypass Through User-Controlled Key vulnerability in Apache Camel Lucene Component
---METADATA---
VENDOR: Apache Software Foundation
PRODUCT: Apache Camel Lucene
AFFECTED_VERSIONS: 4.0.0 up to 4.14.8, 4.15.0 up to 4.18.3, 4.19.0 up to 4.21.0
CONFIDENCE: high
MISSING: none
---END_METADATA---
Description Summary:
The Apache Camel Lucene component contains an improper input validation vulnerability that allows for authorization bypass via user-controlled keys.
Executive Summary:
A high-severity authorization bypass vulnerability in Apache Camel Lucene allows unauthenticated attackers to potentially gain unauthorized access to sensitive data.
Vulnerability Details
CVE-ID: CVE-2026-46585
Affected Software: Apache Software Foundation Apache Camel Lucene
Affected Versions: 4.0.0 up to 4.14.8, 4.15.0 up to 4.18.3, 4.19.0 up to 4.21.0
Vulnerability: This vulnerability stems from improper input validation (CWE-20) and improper authorization handling (CWE-639). An unauthenticated remote attacker can supply a crafted user-controlled key to bypass security checks within the component.
Business Impact
Successful exploitation of this vulnerability poses a significant risk to data confidentiality. With a CVSS score of 7.5, the vulnerability is classified as High; it allows unauthorized actors to access information that should be restricted, potentially leading to the leakage of proprietary or sensitive business data.
Remediation Plan
Immediate Action: Upgrade to version 4.14.8, 4.18.3, 4.21.0 or later as specified in the vendor security advisory.
Proactive Monitoring: Review application access logs for unusual patterns or suspicious requests containing unexpected input keys targeting the Lucene component.
Compensating Controls: Implement strict input validation at the Web Application Firewall (WAF) layer to filter out malicious or malformed keys before they reach the backend service.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of July 7, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the ease of exploitability (low attack complexity and no authentication required), organizations should prioritize patching this vulnerability during the next maintenance cycle. Applying the vendor-supplied updates is the only definitive way to eliminate the underlying security flaw.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Plane is an open-source project management tool
Plane is an open-source project management tool
---METADATA---
VENDOR: Plane
PRODUCT: Plane
AFFECTED_VERSIONS: Prior to version 1.3.1
---END_METADATA---
Description Summary:
A cross-workspace asset authorization bypass exists in Plane, allowing authenticated users to read, copy, delete, and overwrite assets in other workspaces.
Executive Summary:
An authorization bypass vulnerability in the Plane project management tool allows authenticated users to illicitly access and modify assets across unauthorized workspaces.
Vulnerability Details
CVE-ID: CVE-2026-46558
Affected Software: Plane
Affected Versions: Prior to version 1.3.1
Vulnerability: This is an authorization bypass vulnerability occurring within the asset management functionality. It allows any authenticated user to interact with assets in workspaces they do not own or have permission to access, essentially negating workspace isolation.
Business Impact
With a CVSS score of 8.3, this high-severity vulnerability poses a significant risk to organizational data integrity and confidentiality. Successful exploitation could lead to unauthorized data exfiltration, the deletion of critical project documentation, or the overwriting of sensitive assets, potentially resulting in severe operational disruption and loss of intellectual property.
Remediation Plan
Immediate Action: Upgrade your Plane installation to version 1.3.1 or later immediately to apply the necessary authorization checks.
Proactive Monitoring: Review application access logs for unusual patterns of asset interaction, particularly requests targeting workspace IDs associated with other teams or projects.
Compensating Controls: Ensure strict role-based access control (RBAC) policies are enforced at the network level and consider placing the instance behind a WAF to detect anomalous API requests.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 12, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
The ability for an authenticated user to bypass workspace boundaries constitutes a critical failure in logical access control. Organizations utilizing Plane must prioritize upgrading to version 1.3.1 to ensure workspace integrity and prevent unauthorized cross-workspace data manipulation.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management
mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management
---METADATA---
VENDOR: Kubernetes
PRODUCT: mcp-server-kubernetes
AFFECTED_VERSIONS: Prior to version 3.6.0
---END_METADATA---
Description Summary:
An access control bypass in mcp-server-kubernetes allows clients to invoke Kubernetes operations directly, bypassing tool discovery restrictions.
Executive Summary:
A failure in access control enforcement within the mcp-server-kubernetes tool allows unauthorized execution of sensitive cluster management commands.
Vulnerability Details
CVE-ID: CVE-2026-46519
Affected Software: Kubernetes mcp-server-kubernetes
Affected Versions: Prior to version 3.6.0
Vulnerability: The project enforces environment variables intended to restrict Kubernetes operations only at the tool discovery layer (tools/list). It fails to enforce these same restrictions at the execution layer (tools/call), allowing any client that knows the name of a restricted tool to invoke it directly.
Business Impact
With a CVSS score of 8.8, this is a critical security failure. If an attacker gains access to the MCP server, they can execute unauthorized Kubernetes cluster management operations. This could lead to the deletion of resources, unauthorized access to secrets, or full cluster compromise, significantly impacting the stability and security of the entire infrastructure.
Remediation Plan
Immediate Action: Upgrade to mcp-server-kubernetes version 3.6.0 or later to ensure that security restrictions are properly enforced during the tool execution phase.
Proactive Monitoring: Audit Kubernetes API server logs for unexpected or unauthorized tool execution calls originating from the MCP server.
Compensating Controls: Implement strict network policies and RBAC for the MCP server itself, ensuring that only authenticated and authorized entities can communicate with the server endpoint.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 12, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Access control failures at the execution level are extremely dangerous in infrastructure management tools. Administrators must ensure that security logic is applied consistently across all request pathways and should prioritize the update to version 3.6.0 immediately.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
SimpleSAMLphp-casserver is a CAS 1
SimpleSAMLphp-casserver is a CAS 1
---METADATA---
VENDOR: SimpleSAMLphp
PRODUCT: casserver
AFFECTED_VERSIONS: Prior to version 7.0.3
---END_METADATA---
Description Summary:
A path traversal vulnerability in the SimpleSAMLphp-casserver allows attackers to read and potentially execute arbitrary code via malicious file-based ticket manipulation.
Executive Summary:
The SimpleSAMLphp-casserver module is vulnerable to path traversal and remote code execution, requiring an immediate update to version 7.0.3.
Vulnerability Details
CVE-ID: CVE-2026-46491
Affected Software: SimpleSAMLphp-casserver
Affected Versions: Prior to version 7.0.3
Vulnerability: The vulnerability stems from improper input validation and path construction in the file-based ticket storage. Attackers can use path traversal sequences like ../target.serialized to read and unserialize files outside the intended directory, facilitating remote code execution.
Business Impact
The CVSS score of 8.6 reflects the severe risk of remote code execution, which could allow an attacker to gain full control over the underlying server. This could lead to a complete compromise of authentication services, data exfiltration, and significant reputational damage to organizations relying on this CAS implementation.
Remediation Plan
Immediate Action: Update the SimpleSAMLphp-casserver module to version 7.0.3 or higher immediately.
Proactive Monitoring: Monitor server logs for suspicious file access patterns, particularly those involving directory traversal sequences or attempts to access serialized files outside the designated ticket storage directory.
Compensating Controls: Implement a Web Application Firewall (WAF) with rules configured to block path traversal attempts and suspicious serialized data patterns.
Exploitation Status
Public Exploit Available: true
Analyst Notes: As of June 11, 2026, public exploitation information is available for this vulnerability. Organizations should treat this as a high-priority incident and apply patches immediately.
Analyst Recommendation
The presence of a public exploit significantly increases the risk of active targeting. Security teams should prioritize patching this vulnerability immediately to prevent unauthorized access and potential system takeover.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
samlify is a Node
samlify is a Node
---METADATA---
VENDOR: Samlify
PRODUCT: Samlify
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A high-severity vulnerability has been identified in the Samlify Node.js library, which is commonly used for SAML authentication.
Executive Summary:
A critical security flaw in the Samlify Node.js library threatens the integrity of SAML-based authentication mechanisms in integrated applications.
Vulnerability Details
CVE-ID: CVE-2026-46490
Affected Software: Samlify (Node.js library)
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: This vulnerability impacts the Samlify library, a tool for handling SAML assertions in Node.js applications. The flaw potentially compromises the authentication flow, which could allow for identity spoofing or authentication bypass depending on the implementation.
Business Impact
As Samlify is used to manage authentication, a vulnerability here puts the security of all connected applications at risk. A CVSS score of 8.8 highlights the possibility of unauthorized access to protected resources, which could lead to widespread data exposure across the enterprise.
Remediation Plan
Immediate Action: Update the Samlify library dependency in all Node.js projects to the version specified by the vendor as containing the fix.
Proactive Monitoring: Monitor authentication logs for suspicious login patterns or irregular SAML assertion failures.
Compensating Controls: Implement additional validation checks for SAML assertions at the application level as a secondary layer of defense.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 10, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the central role of authentication libraries, developers and security teams must treat this update as a high priority. Ensure that all applications utilizing the Samlify library are patched and tested to maintain the integrity of user identity management.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
SolidInvoice is an open-source invoicing platform
SolidInvoice is an open-source invoicing platform
---METADATA---
VENDOR: SolidInvoice
PRODUCT: SolidInvoice
AFFECTED_VERSIONS: SolidInvoice up to 2.3.16
---END_METADATA---
Description Summary:
An authenticated administrator in SolidInvoice can upload an SVG file containing embedded JavaScript, resulting in stored cross-site scripting (XSS).
Executive Summary:
A stored XSS vulnerability in SolidInvoice allows an authenticated administrator to execute malicious scripts in the browsers of other users.
Vulnerability Details
CVE-ID: CVE-2026-46489
Affected Software: SolidInvoice
Affected Versions: SolidInvoice up to 2.3.16
Vulnerability: The application fails to properly sanitize SVG file uploads. An authenticated administrator can upload an SVG file containing malicious JavaScript, which is then stored and executed in the browser of any user who views the file.
Business Impact
With a CVSS score of 8.1, this vulnerability poses a significant risk to the integrity of user sessions. An attacker can use this XSS to steal session cookies, capture administrative credentials, or perform unauthorized actions on behalf of other users, leading to potential data breach and administrative account compromise.
Remediation Plan
Immediate Action: Upgrade SolidInvoice to version 2.3.17 or later to implement strict file upload sanitization.
Proactive Monitoring: Review audit logs for suspicious file uploads and monitor for anomalous browser behavior among administrative users.
Compensating Controls: Implement a Content Security Policy (CSP) that restricts script execution and prevents the loading of unauthorized scripts from uploaded files.
Exploitation Status
Public Exploit Available: true
Analyst Notes: As of June 13, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
This stored XSS vulnerability grants significant leverage to an attacker who has already gained administrative access. Updating to version 2.3.17 is essential to prevent the execution of malicious scripts and protect the organization's user base from cross-site scripting attacks.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Headplane is a feature-complete Web UI for Headscale
Headplane is a feature-complete Web UI for Headscale
---METADATA---
VENDOR: Headplane
PRODUCT: Headplane Web UI
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A security vulnerability has been identified in the Headplane Web UI for Headscale, which may permit unauthorized access or impact the management of the network overlay.
Executive Summary:
A high-severity vulnerability in the Headplane management interface could allow unauthorized actors to manipulate network configurations.
Vulnerability Details
CVE-ID: CVE-2026-46484
Affected Software: Headplane Web UI
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: The vulnerability resides in the Web UI layer, likely involving an authentication or access control bypass that permits an attacker to perform administrative actions without valid credentials.
Business Impact
The CVSS score of 8.1 highlights the risk of unauthorized management of network infrastructure. Since Headplane interfaces with Headscale (a Tailscale-compatible controller), an exploit could allow an attacker to disrupt network connectivity, add unauthorized nodes, or access sensitive network metadata, causing widespread operational disruption.
Remediation Plan
Immediate Action: Apply the latest security updates released by the Headplane maintainers immediately.
Proactive Monitoring: Monitor logs for unauthorized login attempts or unexpected modifications to the network state, such as newly registered nodes that were not authorized by the administrator.
Compensating Controls: Implement strict network segmentation to ensure the Headplane UI is not exposed to the public internet, requiring a VPN or proxy with authentication for access.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 9, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the critical role of network management tools, it is imperative to mitigate this vulnerability promptly. Administrators should verify their current version and apply patches immediately to prevent potential unauthorized access to the network control plane.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
OpenMetadata is a unified metadata platform
OpenMetadata is a unified metadata platform
---METADATA---
VENDOR: OpenMetadata
PRODUCT: OpenMetadata Platform
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A high-severity vulnerability has been disclosed in the OpenMetadata unified metadata platform, potentially impacting system security and data integrity.
Executive Summary:
A critical security flaw within the OpenMetadata platform exposes the environment to unauthorized access, necessitating immediate administrative review.
Vulnerability Details
CVE-ID: CVE-2026-46481
Affected Software: OpenMetadata Platform
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: This vulnerability affects the core functionality of the metadata platform, likely involving improper authorization checks that could permit unauthorized actors to interact with sensitive metadata or administrative functions.
Business Impact
With a CVSS score of 8.3, this vulnerability represents a significant risk to data governance environments. Unauthorized access to metadata platforms can lead to the exposure of sensitive data structures, business intelligence configurations, and internal system architectures, potentially facilitating further lateral movement within the network.
Remediation Plan
Immediate Action: Update the OpenMetadata deployment to the latest version provided by the vendor to address the underlying security defect.
Proactive Monitoring: Conduct a thorough audit of user authentication logs and monitor for unusual API activity or unauthorized configuration changes within the platform.
Compensating Controls: Restrict network access to the OpenMetadata interface to trusted IP ranges and ensure all administrative interfaces are protected by multi-factor authentication (MFA).
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 9, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
The severity of this issue demands immediate attention. System administrators should prioritize testing and deploying the latest vendor updates in non-production environments before rolling them out to production to maintain the integrity of their data metadata infrastructure.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Flowise is a drag & drop user interface to build a customized large language model flow
Flowise is a drag & drop user interface to build a customized large language model flow
---METADATA---
VENDOR: FlowiseAI
PRODUCT: Flowise
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A vulnerability exists in the Flowise drag-and-drop user interface used for building Large Language Model (LLM) flows.
Executive Summary:
A high-severity vulnerability in the Flowise LLM workflow interface poses a significant risk to organizations utilizing this platform for AI automation.
Vulnerability Details
CVE-ID: CVE-2026-46480
Affected Software: FlowiseAI Flowise
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: The vulnerability affects the Flowise interface, which is used for creating customized LLM flows. While specific technical details are limited, the severity score of 8.8 indicates a significant security deficiency potentially allowing for unauthorized access or code execution.
Business Impact
Compromise of the Flowise interface could allow attackers to manipulate LLM workflows, potentially leading to unauthorized data exfiltration, injection of malicious prompts, or disruption of AI-driven business processes. A CVSS score of 8.8 necessitates immediate attention to prevent the abuse of sensitive LLM integrations.
Remediation Plan
Immediate Action: Check the vendor's official documentation for the latest release and update the Flowise instance to the recommended secure version.
Proactive Monitoring: Review access logs for the Flowise dashboard and monitor for unusual workflow configurations or unauthorized project modifications.
Compensating Controls: Place the Flowise interface behind a reverse proxy or VPN with strict authentication requirements to minimize exposure to untrusted networks.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 10, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Organizations integrating Flowise into their production pipelines should treat this vulnerability as urgent. Apply available patches immediately and audit existing LLM flows for any signs of tampering or unauthorized configuration changes.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Flowise is a drag & drop user interface to build a customized large language model flow
Flowise is a drag & drop user interface to build a customized large language model flow
---METADATA---
VENDOR: Flowise
PRODUCT: Flowise
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A security vulnerability exists within the Flowise drag-and-drop interface used for building customized large language model flows.
Executive Summary:
A high-severity vulnerability in the Flowise LLM workflow platform poses a significant risk to the integrity and confidentiality of integrated data environments.
Vulnerability Details
CVE-ID: CVE-2026-46479
Affected Software: Flowise Flowise
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: This vulnerability affects the Flowise interface. Users should assume that any flaw in this component requires prompt remediation to prevent unauthorized access or system-level exploitation.
Business Impact
A CVSS score of 8.8 warrants immediate remediation efforts to prevent potential compromise of the Flowise environment. Failure to address this could lead to unauthorized access to sensitive data processed by the LLM, resulting in severe operational or reputational damage.
Remediation Plan
Immediate Action: Ensure the installation is updated to the latest vendor-provided release.
Proactive Monitoring: Maintain detailed logs of all administrative actions within the Flowise interface to identify any unauthorized configuration changes.
Compensating Controls: Restrict access to the Flowise management interface to authorized personnel only via VPN or secure gateway solutions.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 16, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the high severity, it is imperative to maintain a proactive posture by applying updates as soon as they become available. Regularly auditing the security configuration of the Flowise environment is recommended to minimize the attack surface.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Flowise is a drag & drop user interface to build a customized large language model flow
Flowise is a drag & drop user interface to build a customized large language model flow
---METADATA---
VENDOR: Flowise
PRODUCT: Flowise
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A security vulnerability exists within the Flowise drag-and-drop interface used for building customized large language model flows.
Executive Summary:
A high-severity vulnerability in the Flowise LLM workflow platform poses a significant risk to the integrity and confidentiality of integrated data environments.
Vulnerability Details
CVE-ID: CVE-2026-46478
Affected Software: Flowise Flowise
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: The vulnerability involves an issue within the Flowise workflow interface. As with related entries, the flaw requires immediate attention to prevent unauthorized interaction with LLM orchestration components.
Business Impact
With a CVSS score of 8.8, this vulnerability indicates a high potential for impact, potentially allowing attackers to compromise LLM flow integrity. This could lead to unauthorized data processing or the injection of malicious instructions into the language model pipelines.
Remediation Plan
Immediate Action: Apply the latest security updates provided by the vendor immediately upon release to address the underlying vulnerability.
Proactive Monitoring: Monitor application logs for anomalous activity, particularly actions related to workflow creation or modification by non-authorized users.
Compensating Controls: Utilize Web Application Firewalls (WAF) to monitor and block potentially malicious payload structures targeting the Flowise interface.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 16, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Administrators should treat this vulnerability with high urgency. Ensure that the Flowise instance is not exposed to untrusted networks and apply all vendor-supplied patches promptly to secure the LLM infrastructure.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Flowise is a drag & drop user interface to build a customized large language model flow
Flowise is a drag & drop user interface to build a customized large language model flow
---METADATA---
VENDOR: Flowise
PRODUCT: Flowise
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
A security vulnerability exists within the Flowise drag-and-drop interface used for building customized large language model flows.
Executive Summary:
A high-severity vulnerability in the Flowise LLM workflow platform poses a significant risk to the integrity and confidentiality of integrated data environments.
Vulnerability Details
CVE-ID: CVE-2026-46477
Affected Software: Flowise Flowise
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: The vulnerability involves an issue within the Flowise workflow interface. While specific authentication requirements are currently pending further disclosure, similar flaws in low-code platforms often permit unauthorized execution or data access.
Business Impact
Successful exploitation of this flaw could result in unauthorized access to sensitive LLM data pipelines or the manipulation of workflow logic. Given the CVSS score of 8.8, this vulnerability represents a high risk that could lead to significant data exfiltration or service disruption if attackers gain control over LLM orchestration.
Remediation Plan
Immediate Action: Update the Flowise deployment to the latest version provided by the vendor as soon as an official security patch is released.
Proactive Monitoring: Review system and application access logs for unusual traffic patterns or unauthorized API requests directed at the Flowise interface.
Compensating Controls: Implement strict network access controls and utilize a Web Application Firewall (WAF) to filter suspicious requests targeting the workflow builder.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of June 16, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Organizations utilizing Flowise must prioritize the monitoring of vendor security channels for patch availability. Due to the high CVSS score, it is recommended to isolate the service from public-facing networks until a verified update is applied to mitigate the risk of unauthorized workflow manipulation.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Flowise is a drag & drop user interface to build a customized large language model flow
Flowise is a drag & drop user interface to build a customized large language model flow
---METADATA---
VENDOR: Flowise
PRODUCT: Flowise
AFFECTED_VERSIONS: Flowise versions prior to 3.1.2
---END_METADATA---
Description Summary:
A mass assignment vulnerability in Flowise allows an authenticated user to take over custom templates belonging to other workspaces.
Executive Summary:
A high-severity mass assignment vulnerability in Flowise allows authenticated users to hijack other users' custom templates, potentially compromising proprietary LLM workflows.
Vulnerability Details
CVE-ID: CVE-2026-46476
Affected Software: Flowise
Affected Versions: Prior to 3.1.2
Vulnerability: This is a mass assignment flaw where any authenticated user with edit permissions can reassign a custom template to any workspace by guessing or enumerating the workspace UUID. This allows for unauthorized modification or theft of custom LLM flow configurations.
Business Impact
With a CVSS score of 8.8, this vulnerability poses a significant risk to the integrity of AI-driven business processes. Unauthorized access to custom LLM templates can lead to the exposure of sensitive logic, intellectual property theft, or the injection of malicious prompts into corporate workflows.
Remediation Plan
Immediate Action: Upgrade Flowise to version 3.1.2 or later to address the mass assignment vulnerability.
Proactive Monitoring: Review access logs for unusual workspace modification requests or unauthorized enumeration of UUIDs.
Compensating Controls: Implement strict access control policies and ensure that workspace identifiers are not exposed in client-side responses or predictable formats.
Exploitation Status
Public Exploit Available: true
Analyst Notes: As of June 16, 2026, a public exploit is available. The relative ease of enumerating UUIDs makes this a high-priority risk for all Flowise deployments.
Analyst Recommendation
The combination of a mass assignment flaw and a public exploit makes this a critical security concern. Organizations should update their Flowise installations immediately and audit existing workspace configurations to ensure no templates have been subject to unauthorized reassignment.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Flowise is a drag & drop user interface to build a customized large language model flow
Flowise is a drag & drop user interface to build a customized large language model flow
---METADATA---
VENDOR: Flowise
PRODUCT: Flowise
AFFECTED_VERSIONS: Prior to version 3.1.2
---END_METADATA---
Description Summary:
A mass-assignment vulnerability in Flowise allows authenticated users to move assistants between workspaces, resulting in cross-workspace takeover.
Executive Summary:
A mass-assignment flaw in the Flowise platform allows authenticated users to hijack assistants from other workspaces, leading to unauthorized data access and flow manipulation.
Vulnerability Details
CVE-ID: CVE-2026-46475
Affected Software: Flowise
Affected Versions: Prior to version 3.1.2
Vulnerability: This is a mass-assignment vulnerability occurring during the creation or update of assistants. By manipulating the workspaceId in a PUT request, an authenticated user can reassign an assistant to a workspace they control.
Business Impact
With a CVSS score of 8.8, this vulnerability allows for significant unauthorized access within multi-tenant or collaborative environments. The potential for cross-workspace takeover could result in the compromise of sensitive LLM flows and proprietary data, severely impacting organizational security posture.
Remediation Plan
Immediate Action: Update the Flowise platform to version 3.1.2 or later to correct the mass-assignment vulnerability.
Proactive Monitoring: Review access and API logs for unusual PUT requests or unauthorized attempts to modify workspace associations.
Compensating Controls: Implement strict role-based access control (RBAC) and validate that users only have permissions within their intended workspace to limit the impact of such flaws.
Exploitation Status
Public Exploit Available: False
Analyst Notes: As of June 13, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
The ability to manipulate workspace associations represents a critical authorization bypass. Administrators must update to the latest version immediately to ensure that workspace isolation is properly enforced and to prevent unauthorized access to sensitive LLM flows.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Authen::TOTP versions before 0
Authen::TOTP versions before 0
---METADATA---
VENDOR: Authen::TOTP
PRODUCT: Authen::TOTP
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
CONFIDENCE: low
MISSING: versions, patch, technical_details
---END_METADATA---
Description Summary:
The Authen::TOTP library contains a security vulnerability that may affect authentication mechanisms.
Executive Summary:
The Authen::TOTP library is subject to a security vulnerability that could potentially undermine multi-factor authentication processes.
Vulnerability Details
CVE-ID: CVE-2026-46473
Affected Software: Authen::TOTP Authen::TOTP
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: This vulnerability affects the TOTP (Time-based One-Time Password) authentication library, potentially allowing for the bypass or manipulation of authentication tokens. The specific authentication level required to trigger this flaw is currently unknown, but vulnerabilities in authentication libraries frequently affect the integrity of secure login flows.
Business Impact
If exploited, this vulnerability could permit unauthorized access by invalidating or bypassing MFA tokens, directly threatening the security of user accounts. A CVSS score of 7.5 highlights the significant risk to identity and access management systems relying on this component.
Remediation Plan
Immediate Action: Audit all systems and services that utilize the Authen::TOTP library for authentication and apply patches or updates as soon as they are made available by the vendor.
Proactive Monitoring: Monitor authentication logs for unusual behavior, such as repeated failed attempts or irregular successful logins that suggest token manipulation.
Compensating Controls: Implement additional authentication factors or session-based controls that do not rely solely on the potentially compromised TOTP library.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of May 22, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Security teams must prioritize the identification of applications using this library. Given the critical role of TOTP in modern security, applying the vendor-supplied fix is essential to maintaining the integrity of organizational authentication.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Improper Input Validation vulnerability in Apache Camel NATS component
Improper Input Validation vulnerability in Apache Camel NATS component
---METADATA---
VENDOR: Apache Software Foundation
PRODUCT: Apache Camel
AFFECTED_VERSIONS: 4.0.0 up to 4.14.8, 4.15.0 up to 4.18.3, 4.19.0 up to 4.21.0
CONFIDENCE: high
MISSING: none
---END_METADATA---
Description Summary:
An improper input validation vulnerability exists in the Apache Camel NATS component, which may allow for unauthorized data processing.
Executive Summary:
An unauthenticated input validation vulnerability in the Apache Camel NATS component creates a significant risk of unauthorized data manipulation.
Vulnerability Details
CVE-ID: CVE-2026-46457
Affected Software: Apache Software Foundation Apache Camel
Affected Versions: 4.0.0 up to 4.14.8, 4.15.0 up to 4.18.3, 4.19.0 up to 4.21.0
Vulnerability: The NATS component fails to perform adequate input validation. This enables an unauthenticated attacker to send crafted inputs that the component may process improperly, leading to potential integrity compromise.
Business Impact
The CVSS score of 7.5 reflects the high risk posed by this vulnerability. Successful exploitation could allow an attacker to inject unauthorized messages or data into the NATS infrastructure, potentially disrupting business processes or altering the state of downstream systems that rely on Camel-processed data.
Remediation Plan
Immediate Action: Apply the vendor-provided security patches for the Apache Camel NATS component immediately.
Proactive Monitoring: Review NATS message traffic and application logs for unusual input patterns or unexpected message payloads that do not conform to expected schema formats.
Compensating Controls: Utilize message authentication and validation proxies to filter incoming traffic to the NATS component until the underlying software can be patched.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of July 7, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Input validation flaws are common vectors for system disruption. Organizations should prioritize the application of the vendor's security update to ensure that the NATS component correctly handles input, thereby maintaining the integrity of the data stream.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Improper input validation in the Apache Camel AWS2-SQS component allows attackers to inject arbitrary control headers, potentially hijacking downstrea...
Improper input validation in the Apache Camel AWS2-SQS component allows attackers to inject arbitrary control headers, potentially hijacking downstream route behavior.
---METADATA---
VENDOR: Apache
PRODUCT: Camel
AFFECTED_VERSIONS: 4.0.0 before 4.14.8, 4.15.0 before 4.18.3, 4.19.0 before 4.21.0
CONFIDENCE: high
MISSING: none
---END_METADATA---
Description Summary:
Improper input validation in the Apache Camel AWS2-SQS component allows attackers to inject arbitrary control headers, potentially hijacking downstream route behavior.
Executive Summary:
An input validation flaw in the Apache Camel AWS2-SQS component allows attackers to inject Camel control headers, leading to unauthorized manipulation of downstream application logic.
Vulnerability Details
CVE-ID: CVE-2026-46456
Affected Software: Apache Camel
Affected Versions: 4.0.0 before 4.14.8, 4.15.0 before 4.18.3, 4.19.0 before 4.21.0
Vulnerability: The camel-aws2-sqs component fails to filter inbound message attributes, allowing attackers who can send messages to the SQS queue to inject internal control headers. These headers are then processed by downstream producers, potentially redirecting HTTP requests or altering file operations.
Business Impact
With a CVSS score of 9.8, this vulnerability poses a severe risk to service integrity and data flow control. By manipulating headers, an attacker can effectively hijack the application's logic, leading to unauthorized data access, file system tampering, or redirection of sensitive traffic to external endpoints.
Remediation Plan
Immediate Action: Upgrade to version 4.21.0, or the applicable LTS stream version (4.14.8 or 4.18.3), which introduces mandatory inbound header filtering.
Proactive Monitoring: Monitor application logs for evidence of unexpected header values or abnormal route behavior. Review SQS access patterns for unauthorized senders.
Compensating Controls: If patching is delayed, explicitly remove all Camel* and camel* headers at the start of the routing process using removeHeaders and enforce strict sqs:SendMessage permissions on the queue.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Jul 6, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
This vulnerability is highly exploitable if the SQS queue is accessible to untrusted parties. Organizations must prioritize the update to ensure that inbound headers are correctly sanitized, neutralizing the ability for attackers to control internal routing logic.
Update Apache Software Foundation Apache Camel to the latest version. Check the vendor security advisory for specific patch details. Monitor for exploitation attempts and review access logs.
The Apache Camel Keycloak component fails to properly validate token expiration and 'not-before' claims, allowing the acceptance of expired or invalid...
The Apache Camel Keycloak component fails to properly validate token expiration and 'not-before' claims, allowing the acceptance of expired or invalid access tokens.
---METADATA---
VENDOR: Apache Software Foundation
PRODUCT: Apache Camel
AFFECTED_VERSIONS: 4.18.0 to 4.18.2, 4.19.0 to 4.20.x
CONFIDENCE: high
MISSING: none
---END_METADATA---
Description Summary:
The Apache Camel Keycloak component fails to properly validate token expiration and 'not-before' claims, allowing the acceptance of expired or invalid access tokens.
Executive Summary:
An authentication flaw in the Apache Camel Keycloak component allows the use of expired or invalid tokens, potentially granting unauthorized access to protected routes.
Vulnerability Details
CVE-ID: CVE-2026-46455
Affected Software: Apache Software Foundation Apache Camel
Affected Versions: 4.18.0 through 4.18.2, 4.19.0 through 4.20.x
Vulnerability: The 'KeycloakSecurityHelper' fails to invoke the 'IS_ACTIVE' predicate during token verification, meaning the system validates the signature but ignores the token's expiration (exp) and 'not-before' (nbf) claims. This represents an authentication bypass scenario where unauthenticated attackers can reuse expired tokens to gain persistent unauthorized access.
Business Impact
This vulnerability undermines the entire authentication mechanism for applications relying on the Keycloak integration. With a CVSS score of 9.8, the potential for unauthorized access, data compromise, and full system impact is extreme, as an attacker can maintain access long after a session should have expired.
Remediation Plan
Immediate Action: Apply the vendor-provided security update by upgrading to version 4.21.0 or 4.18.3.
Proactive Monitoring: Audit application logs for patterns of session reuse and verify if incoming requests are being accepted with tokens that have exceeded their intended lifetime.
Compensating Controls: For systems that cannot be immediately patched, enforce strict token expiration checks within the application route logic and ensure that upstream API gateways perform comprehensive token validation.
Exploitation Status
Public Exploit Available: False
Analyst Notes: As of July 6, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Authentication bypass vulnerabilities of this nature are critical and require immediate remediation. Security teams must ensure that all instances of the affected Camel Keycloak component are updated to prevent the use of invalid or expired credentials.
Update Apache Software Foundation Apache Camel to the latest version. Check the vendor security advisory for specific patch details. Monitor for exploitation attempts and review access logs.
The Apache Camel Cometd component is vulnerable to improper input validation, allowing unauthenticated remote attackers to inject control headers and...
The Apache Camel Cometd component is vulnerable to improper input validation, allowing unauthenticated remote attackers to inject control headers and influence downstream route behavior.
---METADATA---
VENDOR: Apache Software Foundation
PRODUCT: Apache Camel
AFFECTED_VERSIONS: 4.0.0-4.14.7, 4.15.0-4.18.2, 4.19.0-4.20.x
CONFIDENCE: high
MISSING: none
---END_METADATA---
Description Summary:
The Apache Camel Cometd component is vulnerable to improper input validation, allowing unauthenticated remote attackers to inject control headers and influence downstream route behavior.
Executive Summary:
Apache Camel is vulnerable to an unauthenticated header injection flaw that allows attackers to manipulate message routing and internal control headers.
Vulnerability Details
CVE-ID: CVE-2026-46454
Affected Software: Apache Camel (Cometd Component)
Affected Versions: 4.0.0 through 4.14.7, 4.15.0 through 4.18.2, and 4.19.0 through 4.20.x
Vulnerability: The vulnerability exists because inbound Bayeux message headers are mapped into the Camel Exchange without adequate filtering. An unauthenticated attacker can inject arbitrary control headers, which are then processed by downstream route components.
Business Impact
The ability to manipulate internal control headers allows an attacker to redirect HTTP traffic, alter file processing destinations, or override JMS destinations. The CVSS score of 9.8 highlights the critical risk, as this can lead to data exfiltration, service disruption, or unauthorized processing of sensitive information depending on the route configuration.
Remediation Plan
Immediate Action: Upgrade to Apache Camel version 4.21.0, 4.14.8, or 4.18.3 depending on the specific release stream in use.
Proactive Monitoring: Monitor application logs for unexpected header configurations or anomalous routing behavior within Camel routes.
Compensating Controls: For systems that cannot be patched immediately, implement a HeaderFilterStrategy to strip "Camel*" and "camel*" headers, and enforce Bayeux SecurityPolicies to require authentication for all clients.
Exploitation Status
Public Exploit Available: False
Analyst Notes: As of Jul 6, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
This vulnerability presents a significant risk to the integrity of message routing logic. It is recommended that organizations prioritize upgrading to the specified patched versions to ensure that header filtering is correctly enforced and to prevent potential unauthorized control of Camel routes.
Update Apache Software Foundation Apache Camel to the latest version. Check the vendor security advisory for specific patch details. Monitor for exploitation attempts and review access logs.
---METADATA---
VENDOR: Apache Software Foundation
PRODUCT: Apache Kvrocks
AFFECTED_VERSIONS: 2.0.4 through 2.15.0
---END_METADATA---
Description Summary:
A heap overflow vulnerability exists within the cjson library of Apache Kvrocks, which could lead to memory corruption or arbitrary code execution.
Executive Summary:
Apache Kvrocks is affected by a critical heap overflow vulnerability in the cjson library that could allow unauthenticated attackers to execute arbitrary code or crash the service.
Vulnerability Details
CVE-ID: CVE-2026-46752
Affected Software: Apache Software Foundation Apache Kvrocks
Affected Versions: 2.0.4 through 2.15.0
Vulnerability: This is a heap overflow vulnerability residing in the cjson library used by Apache Kvrocks. The flaw can be triggered by providing specially crafted input to the service, potentially allowing an unauthenticated attacker to corrupt memory.
Business Impact
A successful exploit carries a CVSS score of 10.0, representing the highest level of severity. The ability to trigger a heap overflow could result in complete system compromise, loss of data integrity, and total service unavailability, impacting critical business operations that rely on the Kvrocks database.
Remediation Plan
Immediate Action: Upgrade Apache Kvrocks to version 2.16.0 or higher immediately to resolve the vulnerable cjson library dependency.
Proactive Monitoring: Monitor database logs for repeated crashes or unusual error patterns that may indicate attempts to trigger a heap overflow.
Compensating Controls: Restrict network access to the Kvrocks service via firewall rules to ensure only trusted clients can communicate with the instance.
Exploitation Status
Public Exploit Available: False
Analyst Notes: As of June 25, 2026, there is no public information indicating active exploitation of this vulnerability. However, the nature of heap overflow flaws makes them prime targets for exploit development; immediate patching is required.
Analyst Recommendation
Given the critical CVSS score of 10.0, this vulnerability must be addressed as a top priority. Organizations should immediately plan for an upgrade to version 2.16.0 to eliminate the risk of memory corruption and potential remote code execution.