Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Security Intel Hub 28718+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
CVSS 6.3
Hunyuan3D Arbitrary File Read and SSRF Vulnerabilities with PoC and Fixes
github.com · 2026-06-03

### Vulnerability Overview Two security vulnerabilities were identified in the Hunyuan3D integration: 1. **Arbitrary File Read**: The `generate_hunyuan3d_model` function accepts a local file path as t…

Read more
CVSS 6.3
SSRF Vulnerability in blender-mcp Hunyuan3D Extension
github.com · 2026-06-03

### Vulnerability Overview A Server-Side Request Forgery (SSRF) vulnerability exists in the `blender-mcp` server. The root cause is that the `zip_file_url` parameter in the `import_generated_asset_hun…

Read more
CVSS 4.3
Blender-MCP Server Arbitrary File Read Vulnerability Analysis
github.com · 2026-06-03

### Vulnerability Overview An Arbitrary File Read vulnerability exists in the Blender-MCP Server. The root cause of this vulnerability is the use of Python’s `open()` function to read user-controlled …

Read more
CVSS 4.3
Apache Tomcat CVE-2024-56320 Denial of Service via Base64
www.wordfence.com · 2026-06-03

# Vulnerability Overview This vulnerability exists in the `com.sun.org.apache.xerces.internal.impl.dv.util.Base64` class. Attackers can trigger an `ArrayIndexOutOfBoundsException` by crafting maliciou…

Read more
Premium intel
CVSS 9.0
IBM WebSphere Application Server RCE Vulnerabilities Advisory (CVE-2026-9311/9330)
www.ibm.com · 2026-06-03

### Vulnerability Overview IBM WebSphere Application Server is affected by a remote code execution vulnerability (CVE-2026-9311, CVE-2026-9330). ### Scope of Impact - **CVE-2026-9311**: IBM WebSphere …

Read more
Premium intel
CVSS 8.0
RHSA-2026:21516: Cockpit Arbitrary Command Execution via System Logs UI
access.redhat.com · 2026-06-03

### Vulnerability Overview - **Vulnerability Name**: RHSA-2026:21516 - Security Advisory - **Release Date**: 2026-05-27 - **Update Date**: 2026-05-27 - **Severity**: Important - **CVSS Score**: Specif…

Read more
Premium intel
CVSS 9.8
IBM Aspera High-Speed Transfer Server/Endpoint Multiple Vulnerabilities: Auth Bypass, AFR, RCE
www.ibm.com · 2026-06-03

### Vulnerability Overview Multiple vulnerabilities exist in IBM Aspera High-Speed Transfer Server and IBM Aspera High-Speed Transfer Endpoint, including authentication bypass, arbitrary file read, bu…

Read more
CVSS 7.1
IBM Security Bulletin: Unauthenticated File Upload in Langflow OSS (CVE-2026-7528)
www.ibm.com · 2026-06-03

# IBM Security Bulletin: Unauthenticated File Upload Vulnerability Allows Disk Space Exhaustion and Path Disclosure in Langflow OSS ## Vulnerability Overview - **CVEID**: CVE-2026-7528 - **Description…

Read more
IBM Power System BMC Unauth DoS Vulnerability (CVE-2026-7254) Advisory
www.ibm.com · 2026-06-03

# IBM Power System Security Bulletin: CVE-2026-7254 ## Vulnerability Overview - **CVEID**: CVE-2026-7254 - **Description**: The BMC HTTPS service is vulnerable to attacks from unauthorized network use…

Read more
IBM Aspera HSTS for CP4I Authentication Bypass Vulnerability (CVE-2026-7876) Security Bulletin
www.ibm.com · 2026-06-03

# IBM Security Bulletin: Authentication bypass vulnerability found in Aspera High-Speed Transfer Server for Cloud Pak for Integration (CP4I) ## Vulnerability Overview IBM Aspera High-Speed Transfer Se…

Read more
CVSS 6.5
IBM i ILE Compiler Uncontrolled Recursion Denial of Service Vulnerability (CVE-2026-6936)
www.ibm.com · 2026-06-03

### Vulnerability Overview IBM i is affected by a denial-of-service vulnerability (CVE-2026-6936). The vulnerability is caused by an uncontrolled recursion within the Integrated Language Environment (…

Read more
CVSS 8.4
IBM Operations Analytics Log Analysis Pre-Auth RCE via Default Credentials (CVE-2026-7365)
www.ibm.com · 2026-06-03

### Vulnerability Overview IBM Operations Analytics - Log Analysis contains an information disclosure vulnerability because the default password is not forced to be changed after installation. Attacke…

Read more
CVSS 5.5
IBM Db2 DoS Vulnerability CVE-2026-6053 Advisory
www.ibm.com · 2026-06-03

### Vulnerability Overview IBM Db2 contains a denial-of-service vulnerability (CVE-2026-6053) that may cause service unavailability when a specially crafted query is executed on a range-partitioned ta…

Read more
CVSS 5.5
IBM Db2 Denial of Service Vulnerability (CVE-2026-6051) Advisory
www.ibm.com · 2026-06-03

### Vulnerability Overview - **Vulnerability Name**: IBM Db2® Denial of Service Vulnerability (CVE-2026-6051) - **Description**: A denial of service vulnerability exists in IBM Db2® when executing cra…

Read more
CVSS 6.5
Red Hat OpenShift 4.14 RCE Vulnerability (CVE-2024-21632) Advisory and Fix
access.redhat.com · 2026-06-03

### Vulnerability Overview - **Vulnerability Name**: CVE-2024-21632 - **Vulnerability Type**: Remote Code Execution (RCE) - **Description**: In Red Hat OpenShift Container Platform 4.14, insufficient …

Read more
Premium intel
CVSS 7.8
IBM Netezza Performance Server Replication Services Privilege Escalation Vulnerability (CVE-2026-3623)
www.ibm.com · 2026-06-03

# IBM Netezza Performance Server Replication Services Vulnerability ## Vulnerability Overview - **CVE ID**: CVE-2026-3623 - **Description**: IBM Netezza Performance Server Replication Services contain…

Read more
CVSS 6.5
IBM DB2 and Associated Components Vulnerability Advisory with Patch Details (Multiple CVEs)
www.ibm.com · 2026-06-03

### Vulnerability Overview Several vulnerabilities exist when IBM DB2 is bundled with IBM Application Performance Management products, potentially leading to denial of service, remote code execution, …

Read more
CVSS 6.3
Hunyuan3D Integration Arbitrary File Read and SSRF Vulnerability Patch
github.com · 2026-06-03

### Vulnerability Overview This vulnerability involves two security issues in the Hunyuan3D integration: Arbitrary File Read and SSRF (Server-Side Request Forgery). ### Impact Scope 1. **Arbitrary Fil…

Read more
CVSS 5.3
libwebsockets CVE-2026-10650 Pre-Auth Remote DoS (OOM) via Unbounded Allocation
github.com · 2026-06-03

### Vulnerability Overview **CVE-2026-10650**: Missing upper bound check on `msg_len` in `lws_ssh_parse_plaintext()`, leading to a pre-authentication remote denial of service (OOM killer termination o…

Read more
CVSS 5.3
OpenSSH Pre-Auth Unbounded Allocation DoS Vulnerability and PoC
github.com · 2026-06-03

### Vulnerability Overview This vulnerability is a Pre-Auth Unbounded Allocation flaw within the SSH protocol. Attackers can trigger excessive memory allocation on the server during processing by send…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.