A vulnerability classified as problematic was found in libarchive. This affects an unknown part of the component RAR5 Reader. Executing a manipulation can lead to double free.
The identification of this vulnerability is CVE-2026-14164. The attack may be launched remotely. There is no exploit available.
A patch should be applied to remediate this issue.
A vulnerability marked as problematic has been reported in websockets ws up to 8.20.0. This affects the function websocket.close. Performing a manipulation of the argument Reason results in uninitialized resource.
This vulnerability is cataloged as CVE-2026-45736. It is possible to initiate the attack remotely. There is no exploit available.
It is suggested to upgrade the affected component.
A vulnerability was found in IBM WebSphere Application Server up to 26.0.0.7 and classified as critical. Affected by this vulnerability is an unknown functionality. Such manipulation leads to server-side request forgery.
This vulnerability is traded as CVE-2026-11546. The attack may be launched remotely. There is no exploit available.
It is suggested to upgrade the affected component.
A vulnerability, which was classified as critical, has been found in IBM WebSphere Application Server up to 26.0.0.7. Affected by this vulnerability is an unknown functionality. This manipulation causes server-side request forgery.
This vulnerability is tracked as CVE-2026-11714. The attack is possible to be carried out remotely. No exploit exists.
It is advisable to upgrade the affected component.
A vulnerability was found in Linux Kernel up to 6.12.80/6.18.21/6.19.11. It has been declared as critical. This vulnerability affects unknown code of the component Tegra Crypto Driver. The manipulation results in denial of service.
This vulnerability is known as CVE-2026-31739. Access to the local network is required for this attack. No exploit is available.
It is recommended to upgrade the affected component.
A vulnerability categorized as critical has been discovered in open-webui Open WebUI up to 0.6.36. This vulnerability affects unknown code. Such manipulation leads to server-side request forgery.
This vulnerability is referenced as CVE-2025-65958. It is possible to launch the attack remotely. No exploit is available.
It is advisable to upgrade the affected component.
This entry seems to have a duplicate CVE-2026-56399 assigned.