---
Vulnerabilities
---
Vendors
---
Products
Vulnerability Media Exposure
These listed vulnerabilities have been referenced across multiple public sources, indicating high media attention and potential significance.
CVE-2026-31431 EUVD-2026-24639
HIGH

In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.

Siemens:SIMATIC S7-1500 CPU 1518-4 PN/DP MFP
Siemens:SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP
Siemens:SIMATIC S7-1500 TM MFP - GNU/Linux subsystem
Siemens:SIPLUS S7-1500 CPU 1518-4 PN/DP MFP
linux:linux_kernel
redhat:openshift_container_platform
redhat:enterprise_linux
redhat:enterprise_linux_aus
redhat:enterprise_linux_eus
redhat:enterprise_linux_tus
redhat:enterprise_linux_update_services_for_sap_solutions
amazon:amazon_linux
canonical:ubuntu_linux
debian:debian_linux
opensuse:leap
suse:caas_platform
suse:enterprise_storage
suse:manager_proxy
suse:manager_retail_branch_server
suse:manager_server
suse:openstack_cloud
suse:openstack_cloud_crowbar
suse:linux_enterprise_high_availability_extension
suse:linux_enterprise_high_performance_computing
suse:linux_enterprise_micro
suse:linux_enterprise_real_time
suse:linux_enterprise_server
suse:linux_micro
nixos:nixos
arista:cloudvision_agni
arista:cloudvision_portal
arista:velocloud_edge
arista:velocloud_gateway
vmware:velocloud_orchestrator
arista:netvisor_os
siemens:simatic_s7-1500_cpu_1518-4_pn/dp_mfp_firmware
siemens:simatic_s7-1500_cpu_1518f-4_pn/dp_mfp_firmware
siemens:siplus_s7-1500_cpu_1518-4_pn/dp_mfp_firmware
siemens:simatic_s7-1500_tm_mfp_firmware
CVE-2026-55200 EUVD-2026-37784
HIGH

libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2_transport_read() that fails to enforce upper bounds on packet_length field. Remote attackers can send crafted SSH packets with excessively large packet_length values to corrupt heap memory and achieve remote code execution.

libssh2:libssh2
CVE-2026-45659 EUVD-2026-31518
HIGH

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

microsoft:sharepoint_server
CVE-2026-43284 EUVD-2026-28535
HIGH

In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags MSG_SPLICE_PAGES can attach pages from a pipe directly to an skb. TCP marks such skbs with SKBFL_SHARED_FRAG after skb_splice_from_iter(), so later paths that may modify packet data can first make a private copy. The IPv4/IPv6 datagram append paths did not set this flag when splicing pages into UDP skbs. That leaves an ESP-in-UDP packet made from shared pipe pages looking like an ordinary uncloned nonlinear skb. ESP input then takes the no-COW fast path for uncloned skbs without a frag_list and decrypts in place over data that is not owned privately by the skb. Mark IPv4/IPv6 datagram splice frags with SKBFL_SHARED_FRAG, matching TCP. Also make ESP input fall back to skb_cow_data() when the flag is present, so ESP does not decrypt externally backed frags in place. Private nonlinear skb frags still use the existing fast path. This intentionally does not change ESP output. In esp_output_head(), the path that appends the ESP trailer to existing skb tailroom without calling skb_cow_data() is not reachable for nonlinear skbs: skb_tailroom() returns zero when skb->data_len is nonzero, while ESP tailen is positive. Thus ESP output will either use the separate destination-frag path or fall back to skb_cow_data().

linux:linux_kernel
CVE-2026-48558 EUVD-2026-36509
CRITICAL

SimpleHelp versions 5.5.15 and prior and 6.0 pre-release versions contain an authentication bypass vulnerability in the OIDC authentication flow. When OIDC authentication is configured, identity tokens submitted during login are accepted without verifying their cryptographic signature. In a vulnerable configuration, a remote, unauthenticated attacker can submit a forged token containing arbitrary identity claims to obtain a fully authenticated technician session. In some configurations, this may also allow bypass of multi-factor authentication. No user interaction is required.

simple-help:simplehelp
Newly recorded security issues per week
Stay up to date! New information is added to our knowledge database every day. Here you can see the history of newly added vulnerabilities that have been added to our CVE DB in recent years.
Vulnerabilities by severity (over the last 7 days)
Information about the vulnerabilities of the last 7 days can be found here. As you can see, critical vulnerabilities are also added on a daily basis. Therefore, validate your current security situation sets on a daily basis to ensure the security of your IT.
CVSS Score Distribution
The CVSS score rates security vulnerabilities from 0 to 10, based on factors like attack vectors and impacts on confidentiality, integrity, and availability.
EPSS Score Distribution
The EPSS score predicts the likelihood of a known vulnerability being exploited, complementing CVSS by assessing real-world exploitability based on threat activity and exploit availability.
Enginsight Threat Intelligence
Our multi-source enrichment pipeline aggregates vulnerability data from dozens of security organizations worldwide — delivering affected product details and severity scores before the NVD has completed their analysis.
3,331
Early Detections
Vulnerabilities identified
before NVD analysis
1,410
Critical + High
CVSS 7.0 or above
among early detections
20+
Intelligence Sources
Security organizations
contributing data
---
Detections / Week
New vulnerabilities enriched
ahead of NVD each week
Monthly Early Detections
Vulnerabilities enriched with affected product data before NVD has completed analysis.
Severity Distribution
Severity breakdown of vulnerabilities detected ahead of the NVD.
Top Intelligence Sources
Security organizations contributing the most vulnerability intelligence to our database.
NVD Analysis Gap
Where our early detections stand in the NVD pipeline — most are still waiting for official analysis.
Latest Vulnerability Reports
The 10 most recently published CVE reports.
  • Improper access control in Microsoft Edge for Android allows an unauthorized attacker to bypass a security feature over a network.

  • A security vulnerability has been detected in NousResearch hermes-agent up to 2026.4.30. Affected is the function GatewayStreamConsumer._filter_and_accumulate of the file gateway/stream_consumer.py of the component Streaming Reasoning Tag Filter. The manipulation leads to improper handling of case sensitivity. The attack may be initiated remotely. The attack's complexity is rated as high. The exploitability is told to be difficult. The exploit has been disclosed publicly and may be used. The project decided to not implement a dedicated fix: "[T]he analysis and the fix are both sound. It just lands below the bar for the maintenance cost of a duplicated scrub path."

  • CVE-2026-58597 EUVD-2026-41597
    MEDIUM

    Insufficient ui warning of dangerous operations in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

  • CVE-2026-58524 EUVD-2026-41596
    MEDIUM

    Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

  • CVE-2026-58522 EUVD-2026-41573
    MEDIUM

    Relative path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally.

  • CVE-2026-58426 EUVD-2026-41608
    CRITICAL

    Gitea Actions Artifacts V4 signed URL HMAC ambiguity allows cross-repository artifact read and cross-task upload-state write

  • CVE-2026-58424 EUVD-2026-41607
    HIGH

    Permanent Fork PR Workflow Approval Gate Bypass

  • CVE-2026-58423 EUVD-2026-41606
    HIGH

    LFS authentication bypass via malformed SSH sub-verb allows unauthorized read access to private repositories

  • CVE-2026-58422 EUVD-2026-41605
    UNKNOWN

    Improper authorization on OAuth sign-in callback silently re-enables administrator-disabled accounts

  • CVE-2026-58421 EUVD-2026-41604
    UNKNOWN

    Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service