| CVE-2026-42355 | NanaZip: Uncontrolled recursion in NanaZip Electron ASAR parser causes stack exhaustion | M2Team | NanaZip | Low | 3.3 | 2026-05-12 19:20:35 | Deep Dive |
| CVE-2026-44873 | Insufficient Session Invalidation on User Account Deactivation in AOS-8 Operating System | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | Medium | 5.4 | 2026-05-12 19:20:00 | Deep Dive |
| CVE-2026-42446 | NanaZip: Stack out-of-bounds read in NanaZip ZealFS bitmap parser | M2Team | NanaZip | Medium | 4.4 | 2026-05-12 19:19:45 | Deep Dive |
| CVE-2026-44874 | Authenticated Arbitrary File Download via AOS-10 Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | Medium | 4.9 | 2026-05-12 19:19:25 | Deep Dive |
| CVE-2026-44872 | Authenticated Arbitrary File Upload via Command Injection in AOS-8 AND AOS-10 Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | High | 7.2 | 2026-05-12 19:18:17 | Deep Dive |
| CVE-2026-44870 | Authenticated Command Injection Vulnerabilities in Command Line Interface (CLI) Service Accessed by PAPI Protocol of AOS-8 and AOS-10 Operating Systems | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | High | 7.2 | 2026-05-12 19:16:37 | Deep Dive |
| CVE-2026-44869 | Authenticated Command Injection Vulnerabilities in the Web-Based Management Interface of AOS-8 and AOS-10 | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | High | 7.2 | 2026-05-12 19:15:51 | Deep Dive |
| CVE-2026-44868 | Authenticated Command Injection Vulnerabilities in the Web-Based Management Interface of AOS-8 and AOS-10 | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | High | 7.2 | 2026-05-12 19:15:05 | Deep Dive |
| CVE-2026-44867 | Authenticated Command Injection Vulnerabilities in the Web-Based Management Interface of AOS-8 and AOS-10 | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | High | 7.2 | 2026-05-12 19:13:42 | Deep Dive |
| CVE-2026-44866 | Authenticated Command Injection Vulnerabilities in the Web-Based Management Interface of AOS-8 and AOS-10 | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | High | 7.2 | 2026-05-12 19:12:48 | Deep Dive |
| CVE-2026-42191 | OpenTelemetry.Exporter.OpenTelemetryProtocol: Disk retry default temp path enables local blob injection for OTLP Exporter | open-telemetry | opentelemetry-dotnet | Medium | 6.5 | 2026-05-12 19:12:03 | Deep Dive |
| CVE-2026-44865 | Authenticated Command Injection Vulnerabilities in the Web-Based Management Interface of AOS-8 and AOS-10 | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | High | 7.2 | 2026-05-12 19:12:01 | Deep Dive |
| CVE-2026-44864 | Authenticated Remote Code Execution via SQL Injection in AOS-8 and AOS-10 Operating Systems | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | High | 7.2 | 2026-05-12 19:11:10 | Deep Dive |
| CVE-2026-7474 | Nomad vulnerable to path traversal in dynamic host volume which may lead to code execution | HashiCorp | Nomad | High | 8.8 | 2026-05-12 19:09:45 | Deep Dive |
| CVE-2026-44863 | Authenticated Remote Code Execution via SQL Injection in AOS-8 and AOS-10 Operating Systems | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | High | 7.2 | 2026-05-12 19:09:20 | Deep Dive |
| CVE-2026-8052 | Nomad's exec2 task driver vulnerable to arbitrary file read/write on client host through symlink attack | HashiCorp | Shared library | Medium | 6.0 | 2026-05-12 19:09:15 | Deep Dive |
| CVE-2026-44862 | Authenticated Remote Code Execution via SQL Injection in AOS-8 and AOS-10 Operating Systems | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | High | 7.2 | 2026-05-12 19:08:16 | Deep Dive |
| CVE-2026-44861 | Authenticated Remote Code Execution via SQL Injection in AOS-8 and AOS-10 Operating Systems | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | High | 7.2 | 2026-05-12 19:06:36 | Deep Dive |
| CVE-2026-44860 | Authenticated Remote Code Execution via SQL Injection in AOS-8 and AOS-10 Operating Systems | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | High | 7.2 | 2026-05-12 19:05:21 | Deep Dive |
| CVE-2026-44859 | Authenticated Stack-Based Buffer Overflow in PAPI Services | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS) | High | 7.2 | 2026-05-12 19:04:21 | Deep Dive |