A vulnerability described as critical has been identified in jirka-h haveged. Affected by this issue is the function socket_handler of the file src/havegecmd.c. Such manipulation leads to privilege escalation.
This vulnerability is listed as CVE-2026-41054. The attack must be carried out from within the local network. There is no available exploit.
Upgrading the affected component is recommended.
A vulnerability described as critical has been identified in 9front. This impacts an unknown function. Such manipulation leads to denial of service.
This vulnerability is uniquely identified as CVE-2026-9054. The attack can be launched remotely. No exploit exists.
It is advisable to implement a patch to correct this issue.
A vulnerability categorized as problematic has been discovered in ConnectWise Automate. This issue affects some unknown processing. Such manipulation leads to download of code without integrity check.
This vulnerability is uniquely identified as CVE-2026-9089. The attack can be launched remotely. No exploit exists.
It is advisable to upgrade the affected component.
A vulnerability was found in Git up to 2.37.0 and classified as critical. Affected is an unknown function. Such manipulation leads to improper access controls.
This vulnerability is traded as CVE-2022-29187. The attack may be launched remotely. There is no exploit available.
It is suggested to upgrade the affected component.
A vulnerability has been found in Fortinet FortiOS and FortiProxy and classified as critical. This issue affects some unknown processing of the component HTTP GET Request Handler. Performing a manipulation results in uninitialized pointer.
This vulnerability is reported as CVE-2022-29055. The attack is possible to be carried out remotely. No exploit exists.
A vulnerability was found in Mahara up to 20.10.4/21.04.3/21.10.1. It has been declared as problematic. This vulnerability affects unknown code. Executing a manipulation can lead to cross-site request forgery.
This vulnerability is tracked as CVE-2022-28892. The attack can be launched remotely. No exploit exists.
It is recommended to upgrade the affected component.
A CVSS score 8.5 AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H severity vulnerability discovered by 'GangMin Kim' was reported to the affected vendor on: 2026-05-22, 41 days ago. The vendor is given until 2026-09-19 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.
A CVSS score 6.5 AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N severity vulnerability discovered by 'Hyunwoo' was reported to the affected vendor on: 2026-05-22, 41 days ago. The vendor is given until 2026-09-19 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.
A CVSS score 7.5 AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Nicholas Zubrisky (@NZubrisky) of TrendAI Research' was reported to the affected vendor on: 2026-05-22, 41 days ago. The vendor is given until 2026-09-19 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Javohir Abduxalilov (JavaSec.uz)' was reported to the affected vendor on: 2026-05-22, 41 days ago. The vendor is given until 2026-09-19 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.
A CVSS score 7.2 AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Nicholas Zubrisky (@NZubrisky) of TrendAI Research' was reported to the affected vendor on: 2026-05-22, 41 days ago. The vendor is given until 2026-09-19 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.