A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 18.9.6/18.10.5/18.11.2. It has been declared as critical. Affected is an unknown function. Such manipulation leads to authentication bypass using alternate channel.
This vulnerability is traded as CVE-2026-4524. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
A vulnerability identified as problematic has been detected in MongoDB C Driver up to 1.30.7/2.2.3. This affects an unknown part of the component Legacy GridFS API. Performing a manipulation results in improper validation of specified index, position, or offset in input.
This vulnerability is known as CVE-2026-9100. Remote exploitation of the attack is possible. No exploit is available.
You should upgrade the affected component.
A vulnerability has been found in Cisco NX-OS Software and classified as problematic. The impacted element is an unknown function of the component BGP Enforce-First-As Feature. Performing a manipulation results in incorrect control flow.
This vulnerability is cataloged as CVE-2026-20171. It is possible to initiate the attack remotely. There is no exploit available.
The affected component should be upgraded.