Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 24719+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Bandit WebSocket permessage-deflate DoS Vulnerability (CVE-2026-39804)
cna.erlef.org · 2026-05-02

### Vulnerability Overview - **CVE ID**: CVE-2026-39804 - **Vulnerability Name**: WebSocket permessage-deflate inflate has no output-size cap in bandit - **CVSS 4.0 Score**: 8.2 (HIGH) - **Vulnerabili…

Read more
Elixir bandit WebSocket permessage-deflate OOM Vulnerability (CVE-2026-39804)
osv.dev · 2026-05-02

# Vulnerability Summary: EEF-CVE-2026-39804 ## Overview - **Vulnerability Name**: WebSocket permessage-deflate inflate lacks output size limit - **Vulnerability Type**: Allocation of Resources Without…

Read more
CVSS 6.3
SQL Injection in astro-mcp-server (CVE-89) with POC
github.com · 2026-05-02

# SQL Injection Vulnerability Summary (astro-mcp-server) ## Vulnerability Overview * **Vulnerability Name**: SQL Injection Vulnerability in astro-mcp-server * **CVE ID**: CVE-89 (CWE-89: SQL Injection…

Read more
CVSS 5.3
Splunk MCP Integration CSV Export Path Traversal Vulnerability
github.com · 2026-05-02

# Summary of Arbitrary File Write Vulnerability in Splunk MCP Integration CSV Export ## Vulnerability Overview The CSV export service in Splunk MCP Integration contains a path traversal vulnerability.…

Read more
CVSS 7.3
Branch Monkey MCP Command Injection via /api/local-claude/time-machine/preview
github.com · 2026-05-02

# Vulnerability Summary: Branch Monkey Command Injection Vulnerability ## Overview * **Vulnerability Name**: Branch Monkey Command Injection via `/api/local-claude/time-machine/preview` * **Vulnerabil…

Read more
PassMark Driver CVE-2025-52347 Arbitrary Physical Memory Read via IOCTL
github.com · 2026-05-02

# CVE-2025-52347 Vulnerability Summary ## Vulnerability Overview * **Vulnerability ID**: CVE-2025-52347 * **Vulnerability Name**: Arbitrary Physical Memory Read via IOCTL 0x8011E044 * **Vulnerability …

Read more
CVSS 5.3
Path Traversal Vulnerability in coding-standards-mcp and Remediation
github.com · 2026-05-02

# Summary of Template Injection Vulnerability in coding-standard-mcp ## Vulnerability Overview In the `coding-standards-mcp` project, the `get_style_guide` tool contains a path traversal vulnerability…

Read more
Flipper Zero Firmware main Thread Stack Overflow Vulnerability (CVE-2026-30363)
github.com · 2026-05-02

### Vulnerability Overview - **Vulnerability Name**: Potential thread stack overflow in main #4332 - **Vulnerability Type**: Thread Stack Overflow - **Vulnerability Description**: In the `flipperzero-…

Read more
GSVoIP Web Panel Reflected XSS Vulnerability (CVE-2025-69606)
github.com · 2026-05-02

# CVE-2025-69606 — Reflected XSS Vulnerability in GSVoIP Web Panel ## Vulnerability Overview A reflected Cross-Site Scripting (XSS) vulnerability was identified in GSVoIP Web Panel (v2.0.90). The `msg…

Read more
Flipper Zero Firmware CVE-2026-30363: Potential Stack Overflow in main Function
gist.github.com · 2026-05-02

### Vulnerability Overview - **CVE ID**: CVE-2026-30363 - **Vulnerability Type**: Potential Stack Overflow - **Description**: A potential stack overflow vulnerability exists in the `main` function due…

Read more
CVSS 3.3
Oracle Linux dtrace CVE-2026-21996 Integer Division by Zero Vulnerability
linux.oracle.com · 2026-05-02

# CVE-2026-21996 Vulnerability Summary ## Vulnerability Overview - **Publication Date**: 2026-04-27 - **Impact Level**: Low - **CVSS v3 Base Score**: 3.3 - **Description**: An unauthorized attacker ca…

Read more
CVSS 4.4
CVE-2026-35233: Oracle Linux strace Out-of-Bounds Read Crash Vulnerability
linux.oracle.com · 2026-05-02

# CVE-2026-35233 Vulnerability Summary ## Vulnerability Overview - **Published Date**: 2026-04-28 - **Impact Severity**: Moderate - **CVSS v3 Score**: 4.4 - **Description**: An attacker can craft a ma…

Read more
CVSS 8.4
OpenAMP elf_loader.c Remote Code Execution Vulnerability Analysis
github.com · 2026-05-02

# Vulnerability Summary ## Vulnerability Overview - **Vulnerability Type**: Remote Code Execution (RCE) - **Vulnerability Description**: A remote code execution vulnerability exists in the `elf_loader…

Read more
CVSS 7.1
isotp-c Buffer Overflow Vulnerability Analysis
github.com · 2026-05-02

### Vulnerability Overview The provided screenshot displays a code file, `receive.c`, from the open-source project `isotp-c`. The code implements the ISO-TP (ISO 15765-2) protocol, primarily used for …

Read more
Premium intel
CVSS 8.8
hashgraph/guardian Sandbox Escape Fix: vm.createContext Hardening
github.com · 2026-05-02

### Vulnerability Overview This vulnerability affects the `policy-service/src/policy-engine/helpers/workers/custom-logic-worker.ts` file in the `hashgraph/guardian` project. The root cause is that the…

Read more
CVSS 4.3
Open5GS AMF DoS via State Machine Mismatch in N2 Sm Info Handling
github.com · 2026-05-02

# [Bug]: AMF crash on NSMF /modify success response with n2SmInfoType=PDU_RES_SETUP_REQ in the wrong state #4408 ## Vulnerability Overview In the Open5GS AMF (Access and Mobility Management Function) …

Read more
Premium intel
CVSS 10.0
Summary of Buffer Overflow Vulnerabilities in Automotive CAN Protocol Libraries (CVE-2026-37534)
gist.github.com · 2026-05-02

# Summary of Buffer Overflow Vulnerabilities in Automotive CAN Protocol Libraries ## Vulnerability Overview This report discloses buffer overflow vulnerabilities present in multiple automotive CAN pro…

Read more
CVSS 4.3
Open5GS AMF DoS via Malformed gpsis in UDM Response
github.com · 2026-05-02

# Open5GS AMF Crash Vulnerability Summary ## Vulnerability Overview A vulnerability exists in the Access and Mobility Management Function (AMF) component of Open5GS that causes a service crash. When a…

Read more
Premium intel
CVSS 9.8
AGL Multiple Vulnerabilities Summary: Privilege Escalation, RCE, Buffer Overflow (CVE-2026-37525/37526/37530/42485/37531
gist.github.com · 2026-05-02

# Automotive Grade Linux (AGL) Vulnerability Summary ## Vulnerability Overview This page discloses multiple security vulnerabilities in Automotive Grade Linux (AGL), primarily involving privilege esca…

Read more
CVSS 4.3
OpenSGS AMF Buffer Overflow Vulnerability Analysis
github.com · 2026-05-02

# OpenSGS AMF Buffer Overflow Vulnerability Summary ## Vulnerability Overview * **Vulnerability ID**: #4403 * **Vulnerability Type**: Buffer Overflow / Memory Corruption * **Trigger Condition**: Occur…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.