|
251
|
7.5 |
HIGH
Network
|
-
|
-
|
FlexRIC v2.0.0 contains a reachable assertion in e2ap_recv_sctp_msg() (src/lib/ep/e2ap_ep.c). The function allocates a fixed 32KB receive buffer and enforces assert(rc < len) on the sctp_recvmsg() re…
New
|
CWE-617
Reachable Assertion
|
CVE-2026-37228
|
2026-06-2 23:35 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252
|
7.5 |
HIGH
Network
|
-
|
-
|
FlexRIC v2.0.0 contains a reachable assertion in e2ap_create_pdu() triggered when ASN.1 PER decoding fails. A remote unauthenticated attacker can send any non-PER byte sequence (e.g., a single 0x00 b…
New
|
CWE-617
Reachable Assertion
|
CVE-2026-37229
|
2026-06-2 23:35 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253
|
7.5 |
HIGH
Network
|
-
|
-
|
FlexRIC v2.0.0 uses a uint16_t counter for xapp_id assignment but stores the value in uint32_t message fields. After 65,530+ E42_SETUP_REQUESTs, the 16-bit counter wraps around and produces duplicate…
New
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2026-37231
|
2026-06-2 23:35 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254
|
8.2 |
HIGH
Network
|
-
|
-
|
FlexRIC v2.0.0 allows a single SCTP connection to bind multiple xapp_ids by sending multiple E42_SETUP_REQUESTs. On disconnect, only the first registered xapp_id's resources are cleaned up; subsequen…
New
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-37234
|
2026-06-2 23:35 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255
|
6.5 |
MEDIUM
Network
|
-
|
-
|
MLflow 3.9.0 with basic-auth (`--app-name basic-auth`) fails to enforce authorization checks for multiple Gateway API 'list' endpoints. Specifically, the `BEFORE_REQUEST_HANDLERS` dictionary in `mlfl…
New
|
CWE-284
Improper Access Control
|
CVE-2026-3198
|
2026-06-2 23:35 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256
|
7.5 |
HIGH
Network
|
-
|
-
|
In version 3.6.19 of prefecthq/prefect, an authentication bypass vulnerability exists due to the improper handling of URL path exemptions for health check probes. Specifically, the authentication mid…
New
|
CWE-863
Incorrect Authorization
|
CVE-2026-3514
|
2026-06-2 23:35 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257
|
6.8 |
MEDIUM
Network
|
-
|
-
|
A path traversal vulnerability exists in jupyter-server version 2.17.0 due to an incorrect root directory boundary check in the _get_os_path() function within jupyter_server/services/contents/fileio.…
New
|
CWE-23
Relative Path Traversal
|
CVE-2026-5422
|
2026-06-2 23:35 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258
|
4.9 |
MEDIUM
Network
|
mattermost
|
legal_hold
|
Mattermost Plugins versions <=1.1.5 fail to sanitize filenames received from federated peers before using them to construct export destination paths, which allows an administrator of a remote federat…
Update
|
CWE-22
Path Traversal
|
CVE-2026-6957
|
2026-06-2 23:29 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259
|
8.1 |
HIGH
Network
|
erlang
|
erlang\/otp
|
Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_cert and public_key modules) allows a DNS nameConstraints bypass via subject CommonName fallback in TLS hostname verific…
Update
|
CWE-295
CWE-297
Improper Certificate Validation
Improper Validation of Certificate with Host Mismatch
|
CVE-2026-42790
|
2026-06-2 23:24 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260
|
8.1 |
HIGH
Network
|
openstack
|
keystone
|
An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone federated token rescoping mechanism does not propagate the original token's expiry to the newly issued token. When a federate…
Update
|
CWE-863
Incorrect Authorization
|
CVE-2026-44394
|
2026-06-2 23:21 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
