|
3471
|
7.5 |
HIGH
Network
|
-
|
-
|
A vulnerability in the connection-handling mechanism of Cisco Crosswork Network Controller (CNC) and Cisco Network Services Orchestrator (NSO) could allow an unauthenticated, remote attacker to cause…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-20188
|
2026-05-7 03:59 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3472
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the log file download functionality of Cisco Prime Infrastructure could allow an authenticated, remote attacker to download arbitrary log files from the server.
This vulner…
|
CWE-862
Missing Authorization
|
CVE-2026-20189
|
2026-05-7 03:59 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3473
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the RADIUS Policy API endpoints of Cisco ISE could allow an authenticated, remote attacker with read-only Administrator privileges to gain unauthorized access to sensitive inf…
|
CWE-862
Missing Authorization
|
CVE-2026-20193
|
2026-05-7 03:59 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3474
|
5.4 |
MEDIUM
Network
|
-
|
-
|
A vulnerability in the REST API of Cisco Slido could have allowed an authenticated, remote attacker to access the social profile data of other users or affect quiz and poll results. Cisco has address…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-20219
|
2026-05-7 03:59 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3475
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ALSA: caiaq: take a reference on the USB device in create_card()
The caiaq driver stores a pointer to the parent USB device in
cd…
|
NVD-CWE-noinfo
|
CVE-2026-31701
|
2026-05-7 03:55 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3476
|
7.5 |
HIGH
Network
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: correctly handle tunneled traffic on IPV6_CSUM GSO fallback
NETIF_F_IPV6_CSUM only advertises support for checksum offload o…
|
NVD-CWE-noinfo
|
CVE-2026-43057
|
2026-05-7 03:48 |
2026-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3477
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix use-after-free of sbi in f2fs_compress_write_end_io()
In f2fs_compress_write_end_io(), dec_page_count(sbi, type) can br…
|
CWE-416
Use After Free
|
CVE-2026-31702
|
2026-05-7 03:44 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3478
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
writeback: Fix use after free in inode_switch_wbs_work_fn()
inode_switch_wbs_work_fn() has a loop like:
wb_get(new_wb);
whil…
|
CWE-416
Use After Free
|
CVE-2026-31703
|
2026-05-7 03:42 |
2026-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3479
|
7.3 |
HIGH
Network
|
apache
|
http_server
|
Allocation of Resources Without Limits or Throttling vulnerability in Apache HTTP Server's mod_md via OCSP response data.
This issue affects Apache HTTP Server: from 2.4.30 through 2.4.66.
Users a…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2026-29168
|
2026-05-7 03:39 |
2026-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3480
|
9.1 |
CRITICAL
Network
|
-
|
-
|
An issue was discovered in Gambio 4.9.2.0 (patched in 2024-02 v1.0.0 for GX4 v4.0.0.0 to v4.9.2.0). The password reset function can be bypassed to set arbitrary passwords for arbitrary accounts if th…
|
CWE-640
Weak Password Recovery Mechanism for Forgotten Password
|
CVE-2026-34408
|
2026-05-7 03:16 |
2026-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
