CVE-2026-15320: Missing Authorization in Sipeed PicoClaw
CVE-2026-15320 is a medium severity vulnerability in Sipeed PicoClaw up to version 0.2.9. It involves missing authorization in the function rt.ReloadConfig within the file pkg/channels/pico/pico.go…
Read the full articleYou might also wanna read
Cisco Unified CM Vulnerability (CVE-2026-20230, CVSS 8.6) Actively Exploited for Root Privilege Escalation
CVE-2026-20230 has a CVSS score of 8.6 and stems from improper input validation for specific HTTP requests. Successful exploitation can let

CVE-2026-11462: Improper Authorization Vulnerability in BeikeShop Stripe Plugin (Up to v1.6.0.22)
A vulnerability was found in Chengdu Everbrite Network Technology BeikeShop up to 1.6.0.22. This impacts the function callback of the file p
Analyzing CVE-2026-31431: How Rootless Podman Containers Mitigate the "Copy Fail" Privilege Escalation
In the previous post about SELinux MCS and GitLab runners, I briefly mentioned CVE-2026-31431 (“Copy Fail”) as a motivating example for per-
CVE-2026-0257: PAN-OS GlobalProtect Authentication Bypass Under Active Exploitation
CVE-2026-0257 has a CVSS score of 7.8 and is a medium-severity authentication bypass affecting PAN-OS and Prisma Access. The flaw targets Gl

WAF - WAF Release - 2025-08-18
This week's update This week, a series of critical vulnerabilities were discovered impacting core enterprise and open-source infrastructure.
CVE-2026-48558: Critical Authentication Bypass Vulnerability in SimpleHelp RMM Exploited for Credential Theft and Malware Delivery
Summary CVE-2026-48558 is a critical authentication bypass vulnerability in SimpleHelp Remote Monitoring and Management (RMM) software, caus

Comments
Sign in to join the conversation.
No comments yet. Be the first.