24h | 7d | 30d

CVE-2026-12221

Overview

  • Yealink
  • SIP-T46U
15 Jun 2026
Published
15 Jun 2026
Updated
CVSS v4.0
HIGH (8.6)
EPSS
0.37%
KEV

Description

A vulnerability was found in Yealink SIP-T46U 108.86.0.118. This impacts the function sprintf of the file /api/upgrade/upgrade of the component Firmware Chunk Upload Handler. Performing a manipulation of the argument uid/start_offset results in stack-based buffer overflow. The attack needs to be approached within the local network. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Statistics

  • 1 Post
  • 1 Interaction
Last activity: 11 hours ago

Fediverse

Profile picture fallback
OffSequence @offseq

🔎 CVE-2026-12221: HIGH severity stack-based buffer overflow in Yealink SIP-T46U (108.86.0.118). Exploitable via local network — potential code execution or DoS. No fix yet; restrict device access & monitor updates. radar.offseq.com/threat/cve-20

  • 1
  • 0
  • 0
  • 11h ago

CVE-2026-12222

Overview

  • Yealink
  • SIP-T46U
15 Jun 2026
Published
15 Jun 2026
Updated
CVSS v4.0
HIGH (8.6)
EPSS
0.37%
KEV

Description

A vulnerability was determined in Yealink SIP-T46U 108.86.0.118. Affected is the function mod_webd.BlueToothTest of the file /api/inner/bttest of the component Web FastCGI Service. Executing a manipulation of the argument btMac/pin/reserved can lead to stack-based buffer overflow. The attack needs to be done within the local network. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.

Statistics

  • 1 Post
  • 1 Interaction
Last activity: 13 hours ago

Fediverse

Profile picture fallback
OffSequence @offseq

Yealink SIP-T46U v108.86.0.118 hit by HIGH-severity stack-based buffer overflow (CVE-2026-12222). Exploitable via local network — no patch, vendor unresponsive. Restrict access & monitor. radar.offseq.com/threat/cve-20

  • 1
  • 0
  • 0
  • 13h ago

CVE-2026-12187

Overview

  • GL.iNet
  • GL-MT3000
14 Jun 2026
Published
15 Jun 2026
Updated
CVSS v4.0
HIGH (8.7)
EPSS
1.99%
KEV

Description

A security vulnerability has been detected in GL.iNet GL-MT3000 up to 4.4.5. Affected by this vulnerability is an unknown functionality of the file /usr/bin/one_click_upgrade of the component Online Firmware Upgrade Handler. Such manipulation leads to command injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. Upgrading to version 4.7 addresses this issue. Upgrading the affected component is advised. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.

Statistics

  • 1 Post
  • 1 Interaction
Last activity: 21 hours ago

Fediverse

Profile picture fallback
OffSequence @offseq

🛡️ CVE-2026-12187: HIGH severity command injection in GL.iNet GL-MT3000 (fw 4.4.0 – 4.4.5). Remote code execution possible via /usr/bin/one_click_upgrade. Upgrade to v4.7 now! radar.offseq.com/threat/cve-20

  • 1
  • 0
  • 0
  • 21h ago

CVE-2026-44188

Overview

  • Red Hat
  • Red Hat Ansible Automation Platform 2.7
  • ansible-automation-platform-27/lightspeed-rhel9
15 Jun 2026
Published
15 Jun 2026
Updated
CVSS
Pending
EPSS
0.44%
KEV

Description

A flaw was found in Ansible Lightspeed. This vulnerability, related to insufficient session expiration, allows a remote attacker to maintain persistent access to the Ansible Lightspeed instance. If an attacker exfiltrates a valid OAuth (Open Authorization) access token before a user logs out, they can continue to authenticate and access sensitive data. This is because the application fails to invalidate the token on the backend, leaving it valid until its natural expiration. This can lead to unauthorized read access to Ansible resources such as inventories, playbooks, and configuration data.

Statistics

  • 1 Post
  • 1 Interaction
Last activity: 8 hours ago

Fediverse

Profile picture fallback
OffSequence @offseq

đźš© Red Hat Ansible Automation Platform 2.7 container update resolves HIGH severity issues (CVE-2026-44188 & more). Flaws include resource mgmt errors & info exposure. No known exploitation, but update ASAP after prior errata. radar.offseq.com/threat/red-ha

  • 0
  • 1
  • 0
  • 8h ago

CVE-2026-48907

Overview

  • joomlacontenteditor.net
  • Joomla Content Editor (JCE) extension for Joomla
05 Jun 2026
Published
05 Jun 2026
Updated
CVSS v4.0
CRITICAL (10.0)
EPSS
0.84%
KEV

Description

A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated users, ultimately resulting in PHP code upload and execution.

Statistics

  • 1 Post
  • 1 Interaction
Last activity: 10 hours ago

Bluesky

Profile picture fallback
Undercode Testing @undercode.bsky.social
CVE-2026-48907 (CVSS 100): The Unauthenticated RCE That Turns Your Joomla Site into a Pwned Statistic + Video Introduction: A new zero‑click Remote Code Execution (RCE) vulnerability has been discovered in the popular Joomla Content Editor (JCE) extension. Tracked as CVE‑2026‑48907 and carrying a…
  • 0
  • 1
  • 0
  • 10h ago

CVE-2026-46316

Overview

  • Linux
  • Linux
09 Jun 2026
Published
14 Jun 2026
Updated
CVSS v3.1
CRITICAL (9.3)
EPSS
0.13%
KEV

Description

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry vgic_its_invalidate_cache() walks the per-ITS translation cache with xa_for_each() and drops the cache's reference on each entry with vgic_put_irq(). It puts the iterated pointer, though, rather than the value returned by xa_erase(). The function is called from contexts that do not exclude one another: the ITS command handlers hold its_lock, the GITS_CTLR write path holds cmd_lock, and the path that clears EnableLPIs in a redistributor's GICR_CTLR holds neither. Two or more of them can drain the same cache concurrently, and if each one observes the same entry, erases it and then puts it, the single reference the cache holds on that entry is dropped more than once. The entry can then be freed while an ITE still maps it. xa_erase() is atomic and returns the previous entry, so put only the entry that this context actually removed. The cache reference is then dropped exactly once per entry even when the invalidations run concurrently, and the behavior is unchanged when only one context runs.

Statistics

  • 1 Post
  • 1 Interaction
Last activity: 17 hours ago

Bluesky

Profile picture fallback
Cybersecurity News Everyday @hendryadrian.bsky.social
Weekly threat recap: supply-chain intrusions, Microsoft token phishing, cloud and identity abuse, plus ransomware and extortion cases. Also covered defenses tied to CVE-2026-46316. #ShaiHulud #EntraID #Ransomware
  • 0
  • 1
  • 0
  • 17h ago

CVE-2026-53833

Overview

  • OpenClaw
  • OpenClaw
12 Jun 2026
Published
15 Jun 2026
Updated
CVSS v4.0
HIGH (7.4)
EPSS
0.12%
KEV

Description

OpenClaw before 2026.4.29 contains an authorization bypass vulnerability in the QQBot streaming command that allows authenticated senders to mutate configuration without explicit allowFrom restrictions. Attackers can modify QQBot streaming configuration outside intended admin policy by reaching the affected command without non-wildcard allowlist entry requirements.

Statistics

  • 1 Post
Last activity: 21 hours ago

Fediverse

Profile picture fallback
Hugo | DevOps | Cybersecurity @hugovalters

CVE-2026-53833 - Authorization bypass in Openclaw QQBot. Authenticated attackers can mutate config outside intended policy. CVSS 7.7. No patch available. Restrict access immediately. #CVE #Openclaw #infosec

valtersit.com/cve/CVE-2026-538

  • 0
  • 0
  • 0
  • 21h ago

CVE-2026-12193

Overview

  • VS Revo
  • RevoUninstaller
14 Jun 2026
Published
15 Jun 2026
Updated
CVSS v4.0
HIGH (8.5)
EPSS
0.19%
KEV

Description

A vulnerability was identified in VS Revo RevoUninstaller 2.5.x/2.6.x. The affected element is the function IOCtl_Handler in the library RevoDetector.sys of the component IOCTL Handler. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available and might be used. Upgrading to version 2.7.0 is sufficient to fix this issue. It is recommended to upgrade the affected component.

Statistics

  • 1 Post
Last activity: 20 hours ago

Fediverse

Profile picture fallback
OffSequence @offseq

VS Revo RevoUninstaller 2.5.x/2.6.x affected by HIGH severity heap-based buffer overflow (CVE-2026-12193). Public exploit out — local attack vector. Upgrade to 2.7.0 ASAP! radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 0
  • 20h ago

CVE-2026-12214

Overview

  • Qihoo
  • 360 Total Security
15 Jun 2026
Published
15 Jun 2026
Updated
CVSS v4.0
HIGH (8.5)
EPSS
0.12%
KEV

Description

A security flaw has been discovered in Qihoo 360 Total Security 6.0. This vulnerability affects the function RpcStringBindingComposeW of the component Nucleus Engine Monitoring Logic. Performing a manipulation of the argument NetworkAddr results in protection mechanism failure. The attack requires a local approach. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

Statistics

  • 1 Post
Last activity: 14 hours ago

Fediverse

Profile picture fallback
OffSequence @offseq

CVE-2026-12214: HIGH severity flaw in Qihoo 360 Total Security 6.0. Local attackers can exploit RpcStringBindingComposeW to bypass protections. No patch & public exploit out. Restrict local access & monitor endpoints! radar.offseq.com/threat/cve-20

  • 0
  • 0
  • 0
  • 14h ago

CVE-2026-54230

Overview

  • Red Hat
  • Red Hat Enterprise Linux 6
  • abrt
13 Jun 2026
Published
15 Jun 2026
Updated
CVSS
Pending
EPSS
0.12%
KEV

Description

A symlink following vulnerability was found in the ABRT post-create event handler scripts in libreport. Event scripts write output files using shell redirections without the O_NOFOLLOW flag. If the target file is replaced with a symlink, the shell process running as root follows the symlink and writes content to the symlink target, allowing arbitrary file overwrites on the system.

Statistics

  • 1 Post
Last activity: 6 hours ago

Fediverse

Profile picture fallback
Hugo | DevOps | Cybersecurity @hugovalters

CVE-2026-54230 - Arbitrary file overwrite via symlink attack in libreport's ABRT event scripts. CVSS 7.0. Unpatched. Restrict access or monitor immediately. #CVE #infosec #cybersecurity

valtersit.com/cve/CVE-2026-542

  • 0
  • 0
  • 0
  • 6h ago
Showing 11 to 20 of 52 CVEs