|
2661
|
4.3 |
MEDIUM
Network
|
apache
|
activemq_artemis
artemis
|
A vulnerability exists in Apache Artemis whereby an application using the STOMP protocol with security credentials that grant either the consume or send permission on an address can augment the routi…
|
CWE-863
Incorrect Authorization
|
CVE-2026-40914
|
2026-05-29 21:25 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2662
|
6.8 |
MEDIUM
Local
|
-
|
-
|
Versions of the package json-2-csv from 3.15.0 and before 5.5.11 are vulnerable to CSV Injection via the preventCsvInjection option which can be bypassed. An attacker can inject formulas into CSV fil…
|
CWE-1236
Improper Neutralization of Formula Elements in a CSV File
|
CVE-2026-9673
|
2026-05-29 11:47 |
2026-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2663
|
9.8 |
CRITICAL
Network
|
-
|
-
|
Vulnerability in the Oracle Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications (component: Opera). Supported versions that are affected are 5.6.19.24, 5.6.22, 5.6.25.19…
|
-
|
CVE-2026-34311
|
2026-05-29 11:47 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2664
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A flaw was found in glib-networking. A remote attacker can exploit this vulnerability by presenting a specially crafted certificate chain to an application that uses glib-networking with the GnuTLS b…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2026-10028
|
2026-05-29 11:47 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2665
|
5.5 |
MEDIUM
Local
|
-
|
-
|
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a memory leak in the handling of big responses to AppArmor notifications. The bug can be triggered by an unprivileged local user. The memory …
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2026-47326
|
2026-05-29 11:45 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2666
|
3.3 |
LOW
Local
|
-
|
-
|
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in the handling of AppArmor notifications. The bug can be triggered by an unprivileged local user. This c…
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-47327
|
2026-05-29 11:45 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2667
|
6.1 |
MEDIUM
Local
|
-
|
-
|
Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly attempt to free a pointer which was not previously kmalloc()d, while at the same time leaking allocated memory. The bug…
|
CWE-590
Free of Memory not on the Heap
|
CVE-2026-47328
|
2026-05-29 11:45 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2668
|
3.3 |
LOW
Local
|
-
|
-
|
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches which fail to validate invalid sizes of the name field in AppAmor notification responses. The bug can be triggered by an unprivileged local user a…
|
CWE-1284
Improper Validation of Specified Quantity in Input
|
CVE-2026-47329
|
2026-05-29 11:45 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2669
|
3.3 |
LOW
Local
|
-
|
-
|
Ubuntu Linux 6.8, 7.17 and 7.0 contain AppArmor SAUCE patches which can, under certain circumstances, use an uninitialized variable in notification handling code. The bug can be triggered by an unpri…
|
CWE-457
Use of Uninitialized Variable
|
CVE-2026-47330
|
2026-05-29 11:45 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2670
|
7.8 |
HIGH
Local
|
-
|
-
|
Ubuntu Linux 6.8 contains AppArmor SAUCE patches which fail to acquire a lock when modifying a linked list. An unprivileged local user could trigger the race condition that can lead to a use-after-fr…
|
CWE-416
Use After Free
|
CVE-2026-47331
|
2026-05-29 11:45 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
