24h | 7d | 30d

CVE-2026-44578

Overview

  • Pending
Pending
Published
Pending
Updated
CVSS
Pending
EPSS
Pending
KEV

Description

This candidate has been reserved by a CVE Numbering Authority (CNA). This record will be updated by the assigning CNA once details are available.

Statistics

  • 1 Post
  • 2 Interactions
Last activity: 11 hours ago

Fediverse

Profile picture fallback
Sam Stepanyan :verified: 🐘 @securestep9

and Server Components hit with 12 vulnerabilities with 3 high-severity vulns (CVE-2026-44574, CVE-2026-44578, CVE-2026-44581) requiring the most urgent attention and impacting virtually every production NextJS deployment - patch now!

cyberkendra.com/2026/05/react-

  • 2
  • 0
  • 0
  • 11h ago

CVE-2026-44574

Overview

  • Pending
Pending
Published
Pending
Updated
CVSS
Pending
EPSS
Pending
KEV

Description

This candidate has been reserved by a CVE Numbering Authority (CNA). This record will be updated by the assigning CNA once details are available.

Statistics

  • 1 Post
  • 2 Interactions
Last activity: 11 hours ago

Fediverse

Profile picture fallback
Sam Stepanyan :verified: 🐘 @securestep9

and Server Components hit with 12 vulnerabilities with 3 high-severity vulns (CVE-2026-44574, CVE-2026-44578, CVE-2026-44581) requiring the most urgent attention and impacting virtually every production NextJS deployment - patch now!

cyberkendra.com/2026/05/react-

  • 2
  • 0
  • 0
  • 11h ago

CVE-2026-44581

Overview

  • Pending
Pending
Published
Pending
Updated
CVSS
Pending
EPSS
Pending
KEV

Description

This candidate has been reserved by a CVE Numbering Authority (CNA). This record will be updated by the assigning CNA once details are available.

Statistics

  • 1 Post
  • 2 Interactions
Last activity: 11 hours ago

Fediverse

Profile picture fallback
Sam Stepanyan :verified: 🐘 @securestep9

and Server Components hit with 12 vulnerabilities with 3 high-severity vulns (CVE-2026-44574, CVE-2026-44578, CVE-2026-44581) requiring the most urgent attention and impacting virtually every production NextJS deployment - patch now!

cyberkendra.com/2026/05/react-

  • 2
  • 0
  • 0
  • 11h ago

CVE-2026-29202

Overview

  • Pending
Pending
Published
Pending
Updated
CVSS
Pending
EPSS
Pending
KEV

Description

This candidate has been reserved by a CVE Numbering Authority (CNA). This record will be updated by the assigning CNA once details are available.

Statistics

  • 1 Post
  • 1 Interaction
Last activity: 6 hours ago

Fediverse

Profile picture fallback
Pikachu1331 @Pikachu1331

@campuscodi

I'm a cPanel Partner but I hope all their customers are receiving this heads up as well. Basically:

- 3 CVE's will come public at 12pm EST (CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203).
- All cPanel releases affected.
- They strongly recommend updating as soon as the patches are released. Yes, in the middle of a business day for most of us. 😅
- It sounds like they are pulling an all-nighter to get things ready.
- It's bad enough that they are patching long EOL'd cPanel releases right off the bat.

  • 0
  • 1
  • 0
  • 6h ago

CVE-2026-29201

Overview

  • Pending
Pending
Published
Pending
Updated
CVSS
Pending
EPSS
Pending
KEV

Description

This candidate has been reserved by a CVE Numbering Authority (CNA). This record will be updated by the assigning CNA once details are available.

Statistics

  • 1 Post
  • 1 Interaction
Last activity: 6 hours ago

Fediverse

Profile picture fallback
Pikachu1331 @Pikachu1331

@campuscodi

I'm a cPanel Partner but I hope all their customers are receiving this heads up as well. Basically:

- 3 CVE's will come public at 12pm EST (CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203).
- All cPanel releases affected.
- They strongly recommend updating as soon as the patches are released. Yes, in the middle of a business day for most of us. 😅
- It sounds like they are pulling an all-nighter to get things ready.
- It's bad enough that they are patching long EOL'd cPanel releases right off the bat.

  • 0
  • 1
  • 0
  • 6h ago

CVE-2026-29203

Overview

  • Pending
Pending
Published
Pending
Updated
CVSS
Pending
EPSS
Pending
KEV

Description

This candidate has been reserved by a CVE Numbering Authority (CNA). This record will be updated by the assigning CNA once details are available.

Statistics

  • 1 Post
  • 1 Interaction
Last activity: 6 hours ago

Fediverse

Profile picture fallback
Pikachu1331 @Pikachu1331

@campuscodi

I'm a cPanel Partner but I hope all their customers are receiving this heads up as well. Basically:

- 3 CVE's will come public at 12pm EST (CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203).
- All cPanel releases affected.
- They strongly recommend updating as soon as the patches are released. Yes, in the middle of a business day for most of us. 😅
- It sounds like they are pulling an all-nighter to get things ready.
- It's bad enough that they are patching long EOL'd cPanel releases right off the bat.

  • 0
  • 1
  • 0
  • 6h ago

CVE-2026-25253

Overview

  • OpenClaw
  • OpenClaw
01 Feb 2026
Published
03 Feb 2026
Updated
CVSS v3.1
HIGH (8.8)
EPSS
0.09%
KEV

Description

OpenClaw (aka clawdbot or Moltbot) before 2026.1.29 obtains a gatewayUrl value from a query string and automatically makes a WebSocket connection without prompting, sending a token value.

Statistics

  • 1 Post
Last activity: 22 hours ago

Bluesky

Profile picture fallback
piggo @pigondrugs.bsky.social
~Kaspersky~ Q1 2026 exploit volumes surged due to AI discovery, with APTs heavily targeting MS Office, web apps, and AI frameworks. - IOCs: CVE-2026-21514, CVE-2026-25253, CVE-2026-21533 - #APT #ThreatIntel #Vulnerabilities
  • 0
  • 0
  • 0
  • 22h ago

CVE-2025-61726

Overview

  • Go standard library
  • net/url
  • net/url
28 Jan 2026
Published
29 Jan 2026
Updated
CVSS
Pending
EPSS
0.03%
KEV

Description

The net/url package does not set a limit on the number of query parameters in a query. While the maximum size of query parameters in URLs is generally limited by the maximum request header size, the net/http.Request.ParseForm method can parse large URL-encoded forms. Parsing a large form containing many unique query parameters can cause excessive memory consumption.

Statistics

  • 3 Posts
Last activity: 17 hours ago

Bluesky

Profile picture fallback
GCP Weekly @gcpweekly.bsky.social
This addresses the following vulnerabilities: CVE-2025-68119 CVE-2025-61731 CVE-2025-61726 N/A Security fixes for apigee-operators
  • 0
  • 0
  • 0
  • 17h ago
Profile picture fallback
GCP Weekly @gcpweekly.bsky.social
This addresses the following vulnerabilities: CVE-2026-32283 CVE-2026-32281 CVE-2026-32280 CVE-2026-27144 CVE-2026-27143 CVE-2026-27140 CVE-2026-25679 CVE-2025-68119 CVE-2025-61732 CVE-2025-61731 CVE-2025-61726 CVE-2025-47907 CVE-2025-4674 N/A Security fixes for
  • 0
  • 0
  • 1
  • 17h ago

CVE-2025-68119

Overview

  • Go toolchain
  • cmd/go
  • cmd/go
28 Jan 2026
Published
26 Feb 2026
Updated
CVSS
Pending
EPSS
0.02%
KEV

Description

Downloading and building modules with malicious version strings can cause local code execution. On systems with Mercurial (hg) installed, downloading modules from non-standard sources (e.g., custom domains) can cause unexpected code execution due to how external VCS commands are constructed. This issue can also be triggered by providing a malicious version string to the toolchain. On systems with Git installed, downloading and building modules with malicious version strings can allow an attacker to write to arbitrary files on the filesystem. This can only be triggered by explicitly providing the malicious version strings to the toolchain and does not affect usage of @latest or bare module paths.

Statistics

  • 3 Posts
Last activity: 17 hours ago

Bluesky

Profile picture fallback
GCP Weekly @gcpweekly.bsky.social
This addresses the following vulnerabilities: CVE-2025-68119 CVE-2025-61731 CVE-2025-61726 N/A Security fixes for apigee-operators
  • 0
  • 0
  • 0
  • 17h ago
Profile picture fallback
GCP Weekly @gcpweekly.bsky.social
This addresses the following vulnerabilities: CVE-2026-32283 CVE-2026-32281 CVE-2026-32280 CVE-2026-27144 CVE-2026-27143 CVE-2026-27140 CVE-2026-25679 CVE-2025-68119 CVE-2025-61732 CVE-2025-61731 CVE-2025-61726 CVE-2025-47907 CVE-2025-4674 N/A Security fixes for
  • 0
  • 0
  • 1
  • 17h ago

CVE-2026-21514

Overview

  • Microsoft
  • Microsoft 365 Apps for Enterprise
10 Feb 2026
Published
10 Apr 2026
Updated
CVSS v3.1
HIGH (7.8)
EPSS
5.39%
KEV

Description

Reliance on untrusted inputs in a security decision in Microsoft Office Word allows an unauthorized attacker to bypass a security feature locally.

Statistics

  • 1 Post
Last activity: 22 hours ago

Bluesky

Profile picture fallback
piggo @pigondrugs.bsky.social
~Kaspersky~ Q1 2026 exploit volumes surged due to AI discovery, with APTs heavily targeting MS Office, web apps, and AI frameworks. - IOCs: CVE-2026-21514, CVE-2026-25253, CVE-2026-21533 - #APT #ThreatIntel #Vulnerabilities
  • 0
  • 0
  • 0
  • 22h ago
Showing 61 to 70 of 112 CVEs