CVE-2026-8609: CWE-400 in Grafana Grafana OSS
An unauthenticated attacker can repeatedly call Grafana's OAuth login route with unique values, causing unbounded memory growth that can eventually exhaust memory and crash the Grafana instance…
Read the full articleYou might also wanna read
Proof-of-Concept Exploit Released for Critical NGINX Heap Buffer Overflow (CVE-2026-42945)
exploit for CVE-2026-42945. Contribute to DepthFirstDisclosures/Nginx-Rift development by creating an account on GitHub.
Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer
An unknown threat actor has been observed exploiting a recently disclosed maximum-severity security flaw in SimpleHelp to deliver two previo
Critical Redis Vulnerability (CVE-2025-49844) Allows Remote Code Execution with Maximum CVSS Score
Wiz Research discovers vulnerability stemming from 13-year-old bug present in all Redis versions, used in 75% of cloud environments.
Critical Undocumented Authentication Backdoor Found in Multiple Tenda Router Firmware Versions (CVE-2026-11405)
Tenda firmware (multiple versions) contains hidden authentication backdoor
CVE-2026-48558: Critical Authentication Bypass Vulnerability in SimpleHelp RMM Exploited for Credential Theft and Malware Delivery
Summary CVE-2026-48558 is a critical authentication bypass vulnerability in SimpleHelp Remote Monitoring and Management (RMM) software, caus
Unpatchable Vulnerabilities of Kubernetes: CVE-2020-8561
A look at how Kubernetes CVE-2020-8561 works

Comments
Sign in to join the conversation.
No comments yet. Be the first.