| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-41684 | Incus: Nil Dereferences on Restore via Malformed YAML | lxc | incus | Medium | 6.5 | 2026-05-07 13:08:13 | Deep Dive |
| CVE-2026-41648 | Incus: Unbounded YAML Metadata Decode via Parsing | lxc | incus | - | - | 2026-05-07 13:05:42 | Deep Dive |
| CVE-2026-41647 | Incus: Nil-Pointer Dereference via S3 Bucket Import | lxc | incus | Medium | 6.5 | 2026-05-07 13:02:16 | Deep Dive |
| CVE-2026-6795 | Open Redirect in DivvyDrive Information Technologies' DivvyDrive | DivvyDrive Information Technologies Inc. | DivvyDrive | Critical | 9.6 | 2026-05-07 12:58:37 | Deep Dive |
| CVE-2026-5784 | Stored XSS in DivvyDrive Information Technologies' DivvyDrive | DivvyDrive Information Technologies Inc. | DivvyDrive | High | 8.8 | 2026-05-07 12:54:07 | Deep Dive |
| CVE-2026-6002 | HTML Injection in DivvyDrive Information Technologies' DivvyDrive | DivvyDrive Information Technologies Inc. | DivvyDrive | High | 8.8 | 2026-05-07 12:50:20 | Deep Dive |
| CVE-2026-8093 | Memory safety bugs fixed in Thunderbird 150.0.2 | Mozilla | Firefox | - | - | 2026-05-07 12:45:08 | Deep Dive |
| CVE-2026-8094 | Other issue in the WebRTC component | Mozilla | Firefox | - | - | 2026-05-07 12:45:08 | Deep Dive |
| CVE-2026-8092 | Memory safety bugs fixed in Thunderbird ESR 140.10.2 and Thunderbird 150.0.2 | Mozilla | Firefox | - | - | 2026-05-07 12:45:07 | Deep Dive |
| CVE-2026-8091 | Incorrect boundary conditions in the Audio/Video: Playback component | Mozilla | Firefox | - | - | 2026-05-07 12:45:06 | Deep Dive |
| CVE-2026-8090 | Use-after-free in the DOM: Networking component | Mozilla | Firefox | - | - | 2026-05-07 12:45:05 | Deep Dive |
| CVE-2026-5791 | CSRF in DivvyDrive Information Technologies' DivvyDrive | DivvyDrive Information Technologies Inc. | DivvyDrive | Medium | 6.5 | 2026-05-07 12:40:55 | Deep Dive |
| CVE-2026-8080 | MISP core - Stored XSS in MISP template (old engine) element attribute type | misp | misp | - | - | 2026-05-07 12:07:59 | Deep Dive |
| CVE-2026-42010 | Gnutls: gnutls: authentication bypass via nul character in username | Red Hat | Red Hat Enterprise Linux 10 | High | 7.1 | 2026-05-07 12:00:05 | Deep Dive |
| CVE-2026-41644 | monetr is vulnerable to server-side request forgery in Lunch Flow link creation and refresh | monetr | monetr | - | - | 2026-05-07 11:56:38 | Deep Dive |
| CVE-2026-41643 | GoBGP: Remote Denial of Service (Panic) in UpdatePathAttrs4ByteAs via Malformed BGP UPDATE | osrg | gobgp | High | 7.5 | 2026-05-07 11:53:24 | Deep Dive |
| CVE-2026-42285 | GoBGP: Panic in AdjRib.Update via malformed BGP Update message (Nil Pointer Dereference) | osrg | gobgp | High | 7.5 | 2026-05-07 11:53:14 | Deep Dive |
| CVE-2026-41642 | GoBGP: Remote Denial of Service (Panic) via Malformed Well-known Path Attribute | osrg | gobgp | High | 7.5 | 2026-05-07 11:50:42 | Deep Dive |
| CVE-2026-6508 | RCE in TUBITAK BILGEM's Liderahenk | TUBITAK BILGEM Software Technologies Research Institute | Liderahenk | Critical | 9.8 | 2026-05-07 11:47:28 | Deep Dive |
| CVE-2026-3953 | Reflected XSS in Gosoft Software's Proticaret E-Commerce | Gosoft Software Industry and Trade Ltd. Co. | Proticaret E-Commerce | High | 8.8 | 2026-05-07 11:20:12 | Deep Dive |