🟠 CVE-2026-45104 - High (7.5)

MapServer is a system for developing web-based GIS applications. From 6.4.0 to before 8.6.3, msSLDParseUserStyle always calls _SLDApplyRuleValues(psRule, psLayer, 1); for any carrying — it assumes msSLDParseRule added one class. When the rule ...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-45104/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

🔴 CVE-2026-45102 - Critical (9.9)

OneUptime is an open-source monitoring and observability platform. Prior to 10.0.98, OneUptime uses the Node.js' vm module as an isolation primitive. This API was not designed for that and can be escaped via error objects and infinite recursion. T...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-45102/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

🔴 CVE-2026-44888 - Critical (9.8)

Pi.Alert is a WIFI / LAN intruder detector with web service monitoring. Prior to 2026-05-07, Pi.Alert's SaveConfigFile() endpoint writes user-supplied numeric config values (e.g., SMTP_PORT) directly into
pialert.conf without validation. Since pia...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-44888/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

🟠 CVE-2026-8915 - High (8.8)

Out-of-bounds write vulnerability in Samsung Open Source Escargot allows Overflow Buffers.

This issue affects Escargot: 36f5fb58366a67b713c02f6fd985e924fcc09e31.

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-8915/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

#infosec #vulnerability #0day

A Shared Responsibility : Protecting Customers Through Coordinated Vulnerability Disclosure

https://www.microsoft.com/en-us/msrc/blog/2026/05/a-shared-responsibility-protecting-customers-through-coordinated-vulnerability-disclosure

🚨 EUVD-2026-32679

📊 Score: 8.8/10 (CVSS v3.1)
📦 Product: Escargot
🏢 Vendor: Samsung Open Source
📅 Updated: 2026-05-28

📝 Out-of-bounds write vulnerability in Samsung Open Source Escargot allows Overflow Buffers.

This issue affects Escargot: 36f5fb58366a67b713c02f6fd985e924fcc09e31.

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-32679

#cybersecurity #infosec #euvd #cve #vulnerability

Apparently, you can be IDed by what your SSD does

Websites have a new way to spy on visitors: analyzing their SSD activity

https://arstechnica.com/security/2026/05/websites-have-a-new-way-to-spy-on-visitors-analyzing-their-ssd-activity/

#Websites #Spyware #SSD #Hardware #Storage #Privacy #Vulnerability #Security #Surveillance #Tech

🚨 EUVD-2026-32678

📊 Score: 4.3/10 (CVSS v3.1)
📦 Product: Everest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form Builder
🏢 Vendor: WPEverest
📅 Updated: 2026-05-27

📝 The Everest Forms – Contact Form, Payment Form, Quiz, Survey & Custom Form Builder plugin for WordPress is vulnerable to unauthorized email sending due to a missing capability check on ...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-32678

#cybersecurity #infosec #euvd #cve #vulnerability

🟠 CVE-2026-48064 - High (8.1)

pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.1, when a PAM service is configured with deny_remote=false in pam_usb (commonly done for display managers such as gdm-password or lightdm to bypass pro...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-48064/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack