[ News | Newsletters | Blogs | Lists | Media | Jobs ] HoneyDB
  [ vulnerabilities | tools ]
CISA Advisories
US-CERT
FullDisclosure
SEC Consult SA-20260608-0 :: Privilege Escalation via Binary Planting in Genetec-provided RabbitMQ in multiple Genetec products
[SYSS-2026-004] SAP NetWeaver SAML XML Signature Wrapping
[REVIVE-SA-2026-002] Revive Adserver Vulnerabilities
CyberDanube Security Research 20260528-0 | Multiple Vulnerabilities in Multiple Vulnerabilities in Mennekes Amtron Series
bmcweb (OpenBMC web server): four vulnerabilities — two unfixed, GHSA without a CVE
Re: Dovecot Security Advisory OXDC-2026-0002
SSRF in Anthropic mcp-server-fetch and Microsoft playwright-mcp — publicly disclosed via GitHub issues
[SECURITY ADVISORY] CVE-2021-21735 - ZTE ZXHN H168N V3.5 Unauthenticated Admin Credential Leak
[SECURITY ADVISORY] CVE-2026-34474 - ZTE H298A/H108N Unauthenticated Admin Credential Exposure
[SECURITY ADVISORY] CVE-2026-34472 - ZTE ZXHN H188A V6 Authentication Bypass via Pre-Login Wizard
US CERT Weekly
Open Source Security
CVE-2026-50639: Metrics::Any::Adapter::SignalFx versions before 0.04 for Perl does not protect against metric injections
CVE-2026-50638: Metrics::Any::Adapter::DogStatsd versions before 0.04 for Perl does not protect against metric injections
CVE-2026-50637: Metrics::Any::Adapter::Statsd versions before 0.04 for Perl does not protect against metric injections
ITScape: Guest-to-Host Escape in KVM/arm64 (CVE-2026-46316)
Re: Local privilege escalation in Lix and Nix
Re: Fwd: Node.js security updates for all active release lines, June 2026
CVE-2026-50223: Apache OFBiz: DataResource Low-Privileged Authenticated FreeMarker Template Injection Leads to Remote Code Execution
CVE-2026-47342: Apache OFBiz: Privilege Escalation via updateOrRemove Authorization Bypass
Fwd: Node.js security updates for all active release lines, June 2026
CVE-2026-25700: Apache Answer: AdminToken not invalidated after admin deactivation
© 2026 RiskDiscovery | Sponsored by: Deception Logic