[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
  [ vulnerabilities | tools ]
CISA Advisories
US-CERT
FullDisclosure
Asterisk Security Release 23.2.2
Asterisk Security Release 21.12.1
Asterisk Security Release 22.8.2
Asterisk Security Release 20.18.2
Certified Asterisk Security Release certified-20.7-cert9
SEC Consult SA-20260202-0 :: Multiple vulnerabilities in Native Instruments Native Access (MacOS)
CyberDanube Security Research 20260119-0 | Authenticated Command Injection in Phoenix Contact TC Router Series
[KIS-2026-03] Blesta <= 5.13.1 (2Checkout) Multiple PHP Object Injection Vulnerabilities
[KIS-2026-02] Blesta <= 5.13.1 (Admin Interface) Multiple PHP Object Injection Vulnerabilities
[KIS-2026-01] Blesta <= 5.13.1 (confirm_url) Reflected Cross-Site Scripting Vulnerability
US CERT Weekly
Open Source Security
CVE-2025-33042: Apache Avro Java SDK: Code injection on Java generated code
Pillow 12.1.1 released with fix for CVE-2026-25990
PyCA cryptography 46.0.5 released with fix for CVE-2026-26007
CVE-2026-25506: MUNGE 0.5-0.5.17 buffer overflow allowing key leakage
PowerDNS Security Advisory 2026-01: Crafted zones can lead to increased resource usage in Recursor
Re: FreeRDP fixes 12 CVEs in 3.22.0 release
FreeRDP fixes 12 CVEs in 3.22.0 release
libpng 1.6.55: Heap buffer overflow vulnerability fixed: CVE-2026-25646
gnutls 3.8.12 fixes CVE-2026-1584 & CVE-2025-14831
CVE-2026-23906: Apache Druid: Authentication Bypass via LDAP Anonymous Bind
© 2026 RiskDiscovery | Sponsored by: Deception Logic