| unknown |
CISA Adds Eight Known Exploited Vulnerabilities to Catalog |
advisory |
cisa-advisories |
|
|
2026-04-20 |
| medium |
CVE-2026-6654 — Double-Free / Use-After-Free (UAF) in the `IntoIter::drop` and `ThinVec::clear` functions in the thi… |
vulnerability |
nvd |
CVE-2026-6654 |
|
2026-04-20 |
| high |
CVE-2026-6632 — A vulnerability was identified in Tenda F451 1.0.0.7_cn_svn7958. The affected element is the functio… |
vulnerability |
nvd |
CVE-2026-6632 |
|
2026-04-20 |
| high |
CVE-2026-6631 — A vulnerability was determined in Tenda F451 1.0.0.7_cn_svn7958. Impacted is the function fromwebExc… |
vulnerability |
nvd |
CVE-2026-6631 |
|
2026-04-20 |
| high |
CVE-2026-6630 — A vulnerability was found in Tenda F451 1.0.0.7_cn_svn7958. This issue affects the function fromGstD… |
vulnerability |
nvd |
CVE-2026-6630 |
|
2026-04-20 |
| high |
CVE-2026-6629 — A vulnerability has been found in Metasoft 美特软件 MetaCRM up to 6.4.0. This vulnerability affects the… |
vulnerability |
nvd |
CVE-2026-6629 |
|
2026-04-20 |
| critical |
Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain |
news |
general-news |
|
rce, supply-chain |
2026-04-20 |
| medium |
FakeWallet crypto stealer spreading in the App Store |
threat-intel |
otx |
fd0dc5d4bba740c7… |
provisioning profiles, fakewallet, chinese targeting, enterprise certificates, ios, phishing apps, cryptocurrency, sparkkitty, phishing, supply-chain |
2026-04-20 |
| medium |
CVE-2026-6628 — A flaw has been found in phili67 Ecclesia CRM up to 8.0.0. This affects the function ValidateInput o… |
vulnerability |
nvd |
CVE-2026-6628 |
|
2026-04-20 |
| medium |
CVE-2026-6626 — A vulnerability was detected in Cockpit-HQ Cockpit up to 2.13.5. Affected by this issue is some unkn… |
vulnerability |
nvd |
CVE-2026-6626 |
|
2026-04-20 |
| high |
CVE-2026-6625 — A security vulnerability has been detected in moxi624 Mogu Blog v2 up to 5.2. Affected by this vulne… |
vulnerability |
nvd |
CVE-2026-6625 |
|
2026-04-20 |
| low |
CVE-2026-6624 — A weakness has been identified in BichitroGan ISP Billing Software 2025.3.20. Affected is an unknown… |
vulnerability |
nvd |
CVE-2026-6624 |
|
2026-04-20 |
| low |
CVE-2026-6623 — A security flaw has been discovered in BichitroGan ISP Billing Software 2025.3.20. This impacts an u… |
vulnerability |
nvd |
CVE-2026-6623 |
|
2026-04-20 |
| low |
CVE-2026-6622 — A vulnerability was identified in BichitroGan ISP Billing Software 2025.3.20. This affects an unknow… |
vulnerability |
nvd |
CVE-2026-6622 |
|
2026-04-20 |
| unknown |
CVE-2026-31430 — In the Linux kernel, the following vulnerability has been resolved: X.509: Fix out-of-bounds access… |
vulnerability |
nvd |
CVE-2026-31430 |
|
2026-04-20 |
| unknown |
CVE-2026-31429 — In the Linux kernel, the following vulnerability has been resolved: net: skb: fix cross-cache free o… |
vulnerability |
nvd |
CVE-2026-31429 |
|
2026-04-20 |
| unknown |
CVE-2025-13480 — Fudo Enterprise in versions from 5.5.0 through 5.6.2 allows low privileged users to access certain a… |
vulnerability |
nvd |
CVE-2025-13480 |
|
2026-04-20 |
| unknown |
NCSC Outlines Coordinated Plan to Boost NHS Cyber Resilience |
news |
general-news |
|
|
2026-04-20 |
| high |
CVE-2026-6621 — A vulnerability was determined in 1024bit extend-deep up to 0.1.6. The impacted element is an unknow… |
vulnerability |
nvd |
CVE-2026-6621 |
|
2026-04-20 |
| medium |
CVE-2026-6620 — A vulnerability was found in SonicCloudOrg sonic-server up to 2.0.0. The affected element is the fun… |
vulnerability |
nvd |
CVE-2026-6620 |
|
2026-04-20 |
| low |
CVE-2026-6619 — A vulnerability has been found in langgenius dify up to 1.13.3. Impacted is the function openInNewTa… |
vulnerability |
nvd |
CVE-2026-6619 |
|
2026-04-20 |
| medium |
CVE-2026-6618 — A flaw has been found in langgenius dify up to 1.13.3. This issue affects the function parse_openai_… |
vulnerability |
nvd |
CVE-2026-6618 |
|
2026-04-20 |
| high |
CVE-2026-5967 — ThreatSonar Anti-Ransomware developed by TeamT5 has an Privilege Escalation vulnerability. Authentic… |
vulnerability |
nvd |
CVE-2026-5967 |
ransomware |
2026-04-20 |
| unknown |
CVE-2026-39454 — SKYSEA Client View and SKYMEC IT Manager provided by Sky Co.,LTD. configure the installation folder… |
vulnerability |
nvd |
CVE-2026-39454 |
|
2026-04-20 |
| medium |
CVE-2026-6617 — A vulnerability was detected in langgenius dify up to 0.6.9. This vulnerability affects the function… |
vulnerability |
nvd |
CVE-2026-6617 |
|
2026-04-20 |
| medium |
CVE-2026-6616 — A security vulnerability has been detected in TransformerOptimus SuperAGI up to 0.0.14. This affects… |
vulnerability |
nvd |
CVE-2026-6616 |
|
2026-04-20 |
| high |
CVE-2026-6615 — A weakness has been identified in TransformerOptimus SuperAGI up to 0.0.14. Affected by this issue i… |
vulnerability |
nvd |
CVE-2026-6615 |
|
2026-04-20 |
| high |
CVE-2026-5966 — ThreatSonar Anti-Ransomware developed by TeamT5 has an Arbitrary File Deletion vulnerability. Authen… |
vulnerability |
nvd |
CVE-2026-5966 |
ransomware |
2026-04-20 |
| critical |
CVE-2026-5963 — EasyFlow .NET developed by Digiwin has a SQL Injection vulnerability, allowing unauthenticated remot… |
vulnerability |
nvd |
CVE-2026-5963, CVE-2026-5964 |
|
2026-04-20 |
| medium |
CVE-2026-41282 — ProjectDiscovery Nuclei 3 before 3.8.0 allows DSL expression injection. This affects use of -env-var… |
vulnerability |
nvd |
CVE-2026-41282 |
|
2026-04-20 |
| high |
Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems |
news |
general-news |
|
ics |
2026-04-20 |
| critical |
CVE-2026-6644 — A command injection vulnerability was found in the PPTP VPN Clients on the ADM. The vulnerability al… |
vulnerability |
nvd |
CVE-2026-6644 |
rce |
2026-04-20 |
| critical |
CVE-2026-6643 — A stack-based buffer overflow vulnerability was found in the VPN Clients on the ADM. The issue stems… |
vulnerability |
nvd |
CVE-2026-6643 |
|
2026-04-20 |
| medium |
CVE-2026-6614 — A security flaw has been discovered in TransformerOptimus SuperAGI up to 0.0.14. Affected by this vu… |
vulnerability |
nvd |
CVE-2026-6614 |
|
2026-04-20 |
| medium |
CVE-2026-6613 — A vulnerability was identified in TransformerOptimus SuperAGI up to 0.0.14. Affected is the function… |
vulnerability |
nvd |
CVE-2026-6613 |
|
2026-04-20 |
| medium |
CVE-2026-6612 — A vulnerability was determined in TransformerOptimus SuperAGI up to 0.0.14. This impacts the functio… |
vulnerability |
nvd |
CVE-2026-6612 |
|
2026-04-20 |
| low |
CVE-2026-6611 — A vulnerability was found in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function… |
vulnerability |
nvd |
CVE-2026-6611 |
|
2026-04-20 |
| low |
CVE-2026-6610 — A vulnerability has been found in liangliangyy DjangoBlog up to 2.1.0.0. The impacted element is an… |
vulnerability |
nvd |
CVE-2026-6610 |
|
2026-04-20 |
| medium |
CVE-2026-6609 — A flaw has been found in liangliangyy DjangoBlog up to 2.1.0.0. The affected element is the function… |
vulnerability |
nvd |
CVE-2026-6609 |
|
2026-04-20 |
| medium |
CVE-2026-6608 — A vulnerability was detected in lm-sys fastchat up to 0.2.36. Impacted is the function add_text of t… |
vulnerability |
nvd |
CVE-2026-6608 |
|
2026-04-20 |
| medium |
CVE-2026-6607 — A security vulnerability has been detected in lm-sys fastchat up to 0.2.36. This issue affects the f… |
vulnerability |
nvd |
CVE-2026-6607 |
botnet |
2026-04-20 |
| high |
CVE-2026-6606 — A weakness has been identified in modelscope agentscope up to 1.0.18. This vulnerability affects the… |
vulnerability |
nvd |
CVE-2026-6606 |
|
2026-04-20 |
| high |
CVE-2026-6605 — A security flaw has been discovered in modelscope agentscope up to 1.0.18. This affects the function… |
vulnerability |
nvd |
CVE-2026-6605 |
|
2026-04-20 |
| high |
CVE-2026-6604 — A vulnerability was identified in modelscope agentscope up to 1.0.18. Affected by this issue is the… |
vulnerability |
nvd |
CVE-2026-6604 |
|
2026-04-20 |
| high |
CVE-2026-6603 — A vulnerability was determined in modelscope agentscope up to 1.0.18. Affected by this vulnerability… |
vulnerability |
nvd |
CVE-2026-6603 |
|
2026-04-20 |
| high |
CVE-2026-6602 — A vulnerability was found in rickxy Hospital Management System up to 88a4290d957dc5bdde8a56e5ad451ad… |
vulnerability |
nvd |
CVE-2026-6602 |
|
2026-04-20 |
| medium |
CVE-2026-6601 — A vulnerability has been found in Lagom WHMCS Template up to 2.4.2. This impacts an unknown function… |
vulnerability |
nvd |
CVE-2026-6601 |
|
2026-04-20 |
| low |
CVE-2026-6600 — A flaw has been found in langflow-ai langflow up to 1.8.3. This affects an unknown function of the f… |
vulnerability |
nvd |
CVE-2026-6600 |
|
2026-04-20 |
| medium |
CVE-2026-6599 — A vulnerability was detected in langflow-ai langflow up to 1.8.3. The impacted element is the functi… |
vulnerability |
nvd |
CVE-2026-6599 |
|
2026-04-20 |
| medium |
CVE-2026-6598 — A security vulnerability has been detected in langflow-ai langflow up to 1.8.3. The affected element… |
vulnerability |
nvd |
CVE-2026-6598 |
|
2026-04-20 |