Severe

Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability

Arista Extensible Operating System Incomplete Comparison with Missing Factors Vulnerability

Google Chromium V8 Out-of-Bounds Read and Write Vulnerability

BerriAI LiteLLM Command Injection Vulnerability

Check Point Security Gateway Improper Authentication Vulnerability

SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability

Mirasvit Full Page Cache Warmer Deserialization of Untrusted Data Vulnerability

Android Framework Integer Overflow Vulnerability

Adobe Campaign Classic (ACC) versions 7.4.3 build 9394 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerability that could result in privilege escalation. Exploitation of this issue does not require user interaction. S

An issue was discovered in bitbank2 AnimatedGIF v2.2.0. A buffer overflow in the DecodeLZW function allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via a crafted GIF file.

Adobe Campaign Classic (ACC) versions 7.4.3 build 9394 and earlier are affected by an Incorrect Authorization vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does no

ColdFusion versions 2023.19, 2025.8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user in

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in smb2_compound_op() If a server sends a truncated response but a large OutputBufferLength, and terminates the EA list early, check_ws

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: Fix IPv6 inner_thoff desync In nft_inner_parse_l2l3(), when processing inner IPv6 packets, ipv6_find_hdr() correctly computes the transport header o

Use after free in Printing in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

Issue summary: A specially crafted PKCS#7 or S/MIME signed message could trigger a use-after-free during PKCS#7 signature verification. Impact summary: A use-after-free may result in process crashes, heap corruption, or potentially remote

OpenSSL vulnerabilities

CVE-2026-45447 · CVE-2026-34182 · CVE-2026-34180 · CVE-2026-42766 +2

Go Networking vulnerability

CVE-2026-39821

Vim vulnerabilities

CVE-2026-46483 · CVE-2026-43961

OpenSSL vulnerabilities

CVE-2026-45447 · CVE-2026-34182 · CVE-2026-42764 · CVE-2026-45446 +11

uriparser vulnerability

CVE-2025-67899

GDK-PixBuf vulnerability

CVE-2026-5201

QEMU vulnerabilities

CVE-2021-3416 · CVE-2020-15469 · CVE-2020-1711 · CVE-2021-3409 +35

Cyborg vulnerabilities

CVE-2026-40213 · CVE-2026-40214

More Evidence That Words Don't Mean What We Thought They Meant (Ivanti Sentry Pre-Auth OS Command Injection CVE-2026-10520) - watchTowr Labs

Microsoft Defender 'RoguePlanet' zero-day grants SYSTEM privileges

A Record-Breaking Patch Tuesday for June 2026

CVE-2026-49160 · CVE-2026-45586 · CVE-2026-50507

Blinding the Watchmen: Abusing Cloud Logging Services for Defense Evasion and Visibility

ServiceNow discloses security incident exposing customer data

Microsoft Patch Tuesday for June 2026 - Snort rules and prominent vulnerabilities

OpenClaw AI agent found falling for phishing attacks, spills user data

Patch Tuesday - June 2026