Common Vulnerabilities and Exposures (CVE)

CVE-2026-56810

Jul 7, 2026 04:32:36 UTC

Allocation of Resources Without Limits or Throttling vulnerability in elixir-mint mint (Mint.HTTP1 module) allows a denial of service via an oversized chunked transfer-encoded response. This vulnerability is associated with program files l...

CVE-2026-54893

Jul 7, 2026 04:32:26 UTC

URL path injection in the Microsoft Graph adapter of Swoosh. Swoosh.Adapters.MsGraph builds its Microsoft Graph API request URL by interpolating the sender's email address into the URL path (/users/{from}/sendMail) without percent-encoding ...

CVE-2026-48316

Jul 7, 2026 03:56:39 UTC

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user in...

CVE-2026-13383

Jul 7, 2026 03:56:38 UTC

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS ikestubd process could allow an authenticated privileged user to execute arbitrary code via a specially crafted requests to the Management Web UI.This vulnerability affects Fire...

CVE-2026-13384

Jul 7, 2026 03:56:37 UTC

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS wgagent process could allow an authenticated privileged user to execute arbitrary code via a specially crafted requests to the Management Web UI.This vulnerability affects Firew...

CVE-2026-13722

Jul 7, 2026 03:56:36 UTC

WatchGuard Fireware OS contains a firmware validation bypass when processing a backup image via the backup/restore feature. An authenticated administrator can exploit this vulnerability to install a tampered firmware image.This vulnerabilit...

CVE-2026-13368

Jul 7, 2026 03:56:35 UTC

WatchGuard Fireware OS contains a race condition leading to a use-after-free vulnerability in LDAP authentication for the Mobile User VPN with IKEv2. A remote unauthenticated attacker could exploit this vulnerability to execute arbitrary co...

CVE-2026-8247

Jul 7, 2026 03:56:33 UTC

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS may allow an unauthenticated attacker on the same local network segment to execute arbitrary code. This vulnerability affects Fireware OS 11.0 up to and including 11.12.4_Up...

CVE-2026-40138

Jul 7, 2026 03:56:32 UTC

A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Support and Privileged Remote Access. Improper validation of authentication data may allow a network-positioned attacker to bypass acce...

CVE-2026-40139

Jul 7, 2026 03:56:31 UTC

A critical pre-authentication vulnerability exists in the authentication subsystem of BeyondTrust Remote Support. Improper processing of authentication requests may allow an unauthenticated remote attacker to bypass access controls and gain...

CVE-2026-21384

Jul 7, 2026 03:56:30 UTC

Memory Corruption when updating prepared commands with invalid port indices based on user space input exceeds supported read client limits.

CVE-2026-21370

Jul 7, 2026 03:56:29 UTC

Memory Corruption when validating input batch size and buffer plane count exceeds maximum allowed values.

CVE-2026-21369

Jul 7, 2026 03:56:28 UTC

Memory Corruption when handling flash commands due to outdated LED count values being used after userspace modification.

CVE-2026-21368

Jul 7, 2026 03:56:27 UTC

Memory Corruption when parsing jpeg commands due to unaccounted extra writes to the buffer during validation checks.

CVE-2026-13079

Jul 7, 2026 03:56:26 UTC

A local privilege escalation vulnerability in the WatchGuard Mobile VPN with SSL client for Windows allows a local attacker to escalate their privileges to NT AUTHORITY\SYSTEM on the machine where the client is installed. This issue affect...