|
31
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nfnetlink_log: account for netlink header size
This is a followup to an old bug fix: NLMSG_DONE needs to account
for t…
Update
|
-
|
CVE-2026-31416
|
2026-04-18 18:16 |
2026-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
32
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
ipv6: avoid overflows in ip6_datagram_send_ctl()
Yiming Qian reported :
<quote>
I believe I found a locally triggerable kernel b…
Update
|
-
|
CVE-2026-31415
|
2026-04-18 18:16 |
2026-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
33
|
4.0 |
MEDIUM
Local
|
-
|
-
|
Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in cmslut.c because the overflow check is performed after the multiplication.
New
|
CWE-696
Incorrect Behavior Order
|
CVE-2026-41254
|
2026-04-18 16:16 |
2026-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
34
|
- |
|
-
|
-
|
Secrets in Variables saved as JSON dictionaries were not properly redacted - in case thee variables were retrieved by the user the secrets stored as nested fields were not masked.
If you do not stor…
New
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2026-32690
|
2026-04-18 16:16 |
2026-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
35
|
- |
|
-
|
-
|
UI / API User with asset materialize permission could trigger dags they had no access to.
Users are advised to migrate to Airflow version 3.2.0 that fixes the issue.
New
|
CWE-863
Incorrect Authorization
|
CVE-2026-32228
|
2026-04-18 16:16 |
2026-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
36
|
- |
|
-
|
-
|
In case of SQL errors, exception/stack trace of errors was exposed in API even if "api/expose_stack_traces" was set to false. That could lead to exposing additional information to potential attacker.…
New
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2026-30912
|
2026-04-18 16:16 |
2026-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
37
|
- |
|
-
|
-
|
An example of BashOperator in Airflow documentation suggested a way of passing dag_run.conf in the way that could cause unsanitized user input to be used to escalate privileges of UI user to allow ex…
New
|
CWE-77
Command Injection
|
CVE-2026-30898
|
2026-04-18 16:16 |
2026-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
38
|
- |
|
-
|
-
|
Dag Authors, who normally should not be able to execute code in the webserver context could craft XCom payload causing the webserver to execute arbitrary code. Since Dag Authors are already highly tr…
New
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-25917
|
2026-04-18 16:16 |
2026-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
39
|
6.9 |
MEDIUM
Local
|
-
|
-
|
In iTerm2 through 3.6.9, displaying a .txt file can cause code execution via DCS 2000p and OSC 135 data, if the working directory contains a malicious file whose name is valid output from the conduct…
New
|
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
|
CVE-2026-41253
|
2026-04-18 15:16 |
2026-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
40
|
8.8 |
HIGH
Network
|
-
|
-
|
The CMP – Coming Soon & Maintenance Plugin by NiteoThemes plugin for WordPress is vulnerable to arbitrary file upload and remote code execution in all versions up to, and including, 4.1.16 via the `c…
New
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2026-6518
|
2026-04-18 14:16 |
2026-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
