CVE-2026-55882: CWE-200: Exposure of Sensitive Information to an Unauthorized Actor in tilt-dev tilt
Tilt versions from 0.19.5 through 0.37.3 expose Go net/http/pprof debug handlers under /debug without access control. This allows unauthenticated network callers to read process memory, including…
Read the full articleYou might also wanna read

WAF - WAF Release - 2025-08-18
This week's update This week, a series of critical vulnerabilities were discovered impacting core enterprise and open-source infrastructure.

WAF - WAF Release - 2026-06-09
This release introduces new detections for a critical SQL injection vulnerability in Drupal installations utilizing PostgreSQL (CVE-2026-908
Cisco Unified CM Vulnerability (CVE-2026-20230, CVSS 8.6) Actively Exploited for Root Privilege Escalation
CVE-2026-20230 has a CVSS score of 8.6 and stems from improper input validation for specific HTTP requests. Successful exploitation can let

WAF - WAF Release - 2025-09-28 - Emergency
This week highlights multiple critical Cisco vulnerabilities (CVE-2025-20363, CVE-2025-20333, CVE-2025-20362). This flaw stems from improper

WAF - WAF Release - 2026-04-15
This week's release introduces a new detection for a critical Remote Code Execution (RCE) vulnerability in Mesop (CVE-2026-33057), alongside

WAF - WAF Release - 2026-04-07
This week's release introduces new detections for a critical Remote Code Execution (RCE) vulnerability in MCP Server (CVE-2026-23744), along

Comments
Sign in to join the conversation.
No comments yet. Be the first.