|
1
|
8.1 |
HIGH
Network
|
zoom
|
meeting_software_development_kit
workplace
|
Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privi…
New
|
CWE-939
Improper Authorization in Handler for Custom URL Scheme
|
CVE-2026-53408
|
2026-06-17 03:59 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2
|
7.2 |
HIGH
Network
|
mariadb
|
mariadb
|
MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.27, 10.11.1 to before 10.11.18, 11.4.1 to before 11.4.12, 11.8.1 to before 11.8.8, and 12.3.1, a high…
Update
|
CWE-78
OS Command
|
CVE-2026-48165
|
2026-06-17 03:58 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3
|
6.1 |
MEDIUM
Local
|
docker
mobyproject
|
engine
moby
moby\/v2
|
Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version 2.0.0-beta.14, a race condition during …
New
|
CWE-81
CWE-367
Improper Neutralization of Script in an Error Message Web Page
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2026-41568
|
2026-06-17 03:31 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4
|
7.2 |
HIGH
Local
|
docker
mobyproject
|
engine
moby
moby\/v2
|
Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version 2.0.0-beta.14, a race condition during …
New
|
CWE-61
CWE-367
UNIX Symbolic Link (Symlink) Following
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2026-42306
|
2026-06-17 03:31 |
2026-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5
|
5.5 |
MEDIUM
Local
|
amd
|
uprof
|
Unrestricted resource allocation in AMD uProf may be exploitable to consume excessive system resources, potentially leading to a loss of availability.
Update
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2026-28237
|
2026-06-17 03:08 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6
|
5.5 |
MEDIUM
Local
|
amd
|
uprof
|
Improper access control in AMD uProf may allow a local attacker with user privileges to write to the kernel-shared memory section, potentially resulting in crash or denial of service.
Update
|
CWE-497
Exposure of Sensitive System Information to an Unauthorized Control Sphere
|
CVE-2026-0466
|
2026-06-17 03:05 |
2026-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
7
|
5.5 |
MEDIUM
Local
|
gpac
|
gpac
|
A heap use-after-free in the gf_node_get_tag function (scenegraph/base_scenegraph.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
New
|
CWE-416
Use After Free
|
CVE-2025-55650
|
2026-06-17 02:39 |
2026-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
8
|
5.5 |
MEDIUM
Local
|
gpac
|
gpac
|
A NULL pointer dereference in the gf_media_map_esd function (media_tools/isom_tools.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
New
|
CWE-476
NULL Pointer Dereference
|
CVE-2025-55649
|
2026-06-17 02:39 |
2026-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
9
|
5.5 |
MEDIUM
Local
|
gpac
|
gpac
|
A heap buffer overflow in the gf_opus_parse_packet_header function (media_tools/av_parsers.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
New
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2025-55648
|
2026-06-17 02:39 |
2026-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
10
|
5.5 |
MEDIUM
Local
|
gpac
|
gpac
|
An Out-of-Memory in the mp4_mux_cenc_insert_pssh function (filters/mux_isom.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file.
New
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2025-55647
|
2026-06-17 02:38 |
2026-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
