|
2271
|
8.6 |
HIGH
Network
|
-
|
-
|
A flaw was found in Pacemaker. An unauthenticated remote attacker can exploit an integer overflow vulnerability in the remote message decompression process. By sending a specially crafted compressed …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2026-10649
|
2026-06-17 02:37 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2272
|
- |
|
-
|
-
|
To allow builds of Python to be run from an in-tree layout (rather than
an installed file layout), the VPATH variable is defined at build time
and used to locate certain landmarks - specifically,
Mod…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2026-12003
|
2026-06-17 02:37 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2273
|
7.8 |
HIGH
Local
|
-
|
-
|
NVIDIA NeMo Framework for all platforms contains a code injection vulnerability. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclos…
|
CWE-94
Code Injection
|
CVE-2026-24155
|
2026-06-17 02:37 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2274
|
7.8 |
HIGH
Local
|
-
|
-
|
NVIDIA NeMo Framework for Linux contains a vulnerability where an attacker may cause deserialization of untrusted data. A successful exploit of this vulnerability may lead to code execution, escalati…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-24228
|
2026-06-17 02:37 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2275
|
8.8 |
HIGH
Adjacent
|
-
|
-
|
Passing of unsanitized strings from DHCP replies into the wicked dhcp client before wicked 0.6.79 could be used by attackers operating a malicious DHCP server to execute code on the local machine.
|
CWE-78
OS Command
|
CVE-2026-44932
|
2026-06-17 02:37 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2276
|
9.1 |
CRITICAL
Network
|
-
|
-
|
Perry before 0.5.1166 contains a JWT validation vulnerability that allows remote attackers to bypass token expiration by exploiting the unconditional setting of validate_exp = false in the verify_dec…
|
CWE-613
Insufficient Session Expiration
|
CVE-2026-53776
|
2026-06-17 02:36 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2277
|
8.6 |
HIGH
Local
|
-
|
-
|
Yeoman Environment provides an API to discover, create, and run generators, and to configure where and how a generator is resolved. Versions 2.9.0 through 6.0.0 install missing local generator packag…
|
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
|
CVE-2026-42089
|
2026-06-17 02:35 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2278
|
6.7 |
MEDIUM
Local
|
-
|
-
|
Dell Peripheral Manager, versions from 1.5.1 to 1.7.2, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2024-22451
|
2026-06-17 02:34 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2279
|
8.8 |
HIGH
Network
|
-
|
-
|
Dell OpenManage Integration with Microsoft Windows Admin Center contains a Remote Code Execution vulnerability in the gateway plugin. A remote authenticated user could potentially exploit this vulner…
|
CWE-77
Command Injection
|
CVE-2024-24909
|
2026-06-17 02:34 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2280
|
5.4 |
MEDIUM
Network
|
-
|
-
|
PowerStore contains a Stored Cross-Site Scripting Vulnerability in the PowerStore Manager. A remote authenticated low-privileged malicious actor could potentially exploit this vulnerability, it could…
|
CWE-79
Cross-site Scripting
|
CVE-2024-30476
|
2026-06-17 02:34 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
