NVD CVEs — 本日公開 (27 件)
CVE-2026-12993 6.5 MEDIUM
A flaw was found in Apicurio Registry. The DocumentBuilderAccessor correctly blocks external DTD and schema access but does not disable DOCTYPE declarations or enable FEATURE_SECURE_PROCESSING. An attacker with artifact-write permission can upload XML documents with internal entity-expansion payload
CVE-2026-13083 6.9 MEDIUM
A flaw was found in the Pen Drive report generator. Cluster-sourced data is rendered into HTML reports without proper escaping or sanitization. An attacker with cluster administrator privileges can inject a stored cross-site scripting (XSS) payload into cluster objects (such as ClusterVersion spec.c
CVE-2026-13218 4.2 MEDIUM
A flaw was found in KubeVirt's virt-handler network cache handling. The WriteToCachedFile function writes data to a launcher-rooted path using os.WriteFile and os.Chown without symlink protection. A user with access to the virt-launcher container can plant a symlink at the cache file path, causing v
CVE-2026-13318 6.4 MEDIUM
A server-side request forgery (SSRF) flaw was found in KubeVirt's virt-api port-forward handler. When processing a port-forward request to a VirtualMachineInstance (VMI), virt-api reads the target IP from vmi.Status.Interfaces[0].IP and passes it directly to net.Dial() without validation. For VMIs u
CVE-2026-13322 3.8 LOW
A flaw was found in KubeVirt's downward metrics virtio-serial server. The server reads guest requests using textproto.Reader.ReadLine(), which buffers input indefinitely until a newline character is received, with no length limit or read deadline. A user with access to a VM guest that has the downwa
CVE-2026-43920
FOSSBilling is a free, open-source billing and client management system. In versions 0.5.4 through 0.7.2, the /run-patcher maintenance endpoint in FOSSBilling was accessible without authentication, which allowed unauthenticated remote users to trigger update patch routines that modify configuration
CVE-2026-9219 6.5 MEDIUM
Setracker2 Android Companion App com.tgelec.setracker versions 3.1.5 and prior have a predictable registration ID derived from IMEI. The enrollment system lacks additional authentication before assignment. If an attacker is able to obtain the registration ID, they would be able to arbitrarily enroll
CVE-2026-9220 7.5 HIGH
Setracker2 Android Companion App com.tgelec.setracker versions 3.1.5 and prior encrypts requests between the watch and its backend with static hardcoded AES keys and initialization vectors. This allows an attacker to decrypt Setracker2 watch traffic.
CVE-2026-9221 7.5 HIGH
The Setracker2 Android Companion App (com.tgelec.setracker) versions 3.1.5 and earlier uses MD5 to generate a request signature for authenticating communications between the mobile client and the backend REST API. Attackers could potentially reverse the signature to recover the session ID. With the
CVE-2026-9222 8.1 HIGH
Setracker2 Android Companion App com.tgelec.setracker versions 3.1.5 and prior only require the password hash when authenticating with backend services from the client. This could allow an attacker, who knows the hash, to authenticate and gain full access.
GitHub Security Advisories — 本日公開 (20 件)
GHSA-6r62-qf74-xpgg
MEDIUM
Server-Side Cross-Site Scripting and Server-Side Request Forgery vulnerability in the...
GHSA-v78r-pfp2-f4c7
MEDIUM
A bypass for CVE‑2026‑34913 exists with proper ownership validation that had not been applied to...
GHSA-q5xg-wh3x-vmcf
MEDIUM
A bypass to the admin‑only restriction of the XML‑RPC API in Revive Adserver 6.0.7. The API...
GHSA-w359-3g2m-wx65
MEDIUM
A missing sanitisation vulnerability of user input in the zone-include.php script exists in...
GHSA-9qm6-cjgc-f64v
LOW
A flaw in Node.js Permission API can cause a file metadata to be modified even on a path that was...
GHSA-8xrw-qpv5-m4qm
MEDIUM
A missing sanitisation vulnerability exists with user input in the stats-video.php script. The...
GHSA-hwhp-f859-r728
LOW
A flaw in Node.js Permission API can cause a local server to be started (via a Unix domain socket...
GHSA-q7h4-cw8q-5rmq
MEDIUM
A stored XSS vulnerabilities exists in the `maintenance-acl-check.php` and `maintenance-banners...
GHSA-66rh-2cvm-487w
HIGH
Bypass to the fix for CVE-2026-34916. Variants of such vectors have been also reported by phucrio...
GHSA-px9q-xv67-75fr
MEDIUM
A flaw in Node.js TLS host verification can cause an attacker to bypass certification validation....