Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 24810+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Flipper Zero Firmware CVE-2026-30363: Potential Stack Overflow in main Function
gist.github.com · 2026-05-02

### Vulnerability Overview - **CVE ID**: CVE-2026-30363 - **Vulnerability Type**: Potential Stack Overflow - **Description**: A potential stack overflow vulnerability exists in the `main` function due…

Read more
CVSS 3.3
Oracle Linux dtrace CVE-2026-21996 Integer Division by Zero Vulnerability
linux.oracle.com · 2026-05-02

# CVE-2026-21996 Vulnerability Summary ## Vulnerability Overview - **Publication Date**: 2026-04-27 - **Impact Level**: Low - **CVSS v3 Base Score**: 3.3 - **Description**: An unauthorized attacker ca…

Read more
CVSS 4.4
CVE-2026-35233: Oracle Linux strace Out-of-Bounds Read Crash Vulnerability
linux.oracle.com · 2026-05-02

# CVE-2026-35233 Vulnerability Summary ## Vulnerability Overview - **Published Date**: 2026-04-28 - **Impact Severity**: Moderate - **CVSS v3 Score**: 4.4 - **Description**: An attacker can craft a ma…

Read more
CVSS 8.4
OpenAMP elf_loader.c Remote Code Execution Vulnerability Analysis
github.com · 2026-05-02

# Vulnerability Summary ## Vulnerability Overview - **Vulnerability Type**: Remote Code Execution (RCE) - **Vulnerability Description**: A remote code execution vulnerability exists in the `elf_loader…

Read more
CVSS 7.1
isotp-c Buffer Overflow Vulnerability Analysis
github.com · 2026-05-02

### Vulnerability Overview The provided screenshot displays a code file, `receive.c`, from the open-source project `isotp-c`. The code implements the ISO-TP (ISO 15765-2) protocol, primarily used for …

Read more
Premium intel
CVSS 8.8
hashgraph/guardian Sandbox Escape Fix: vm.createContext Hardening
github.com · 2026-05-02

### Vulnerability Overview This vulnerability affects the `policy-service/src/policy-engine/helpers/workers/custom-logic-worker.ts` file in the `hashgraph/guardian` project. The root cause is that the…

Read more
CVSS 4.3
Open5GS AMF DoS via State Machine Mismatch in N2 Sm Info Handling
github.com · 2026-05-02

# [Bug]: AMF crash on NSMF /modify success response with n2SmInfoType=PDU_RES_SETUP_REQ in the wrong state #4408 ## Vulnerability Overview In the Open5GS AMF (Access and Mobility Management Function) …

Read more
Premium intel
CVSS 10.0
Summary of Buffer Overflow Vulnerabilities in Automotive CAN Protocol Libraries (CVE-2026-37534)
gist.github.com · 2026-05-02

# Summary of Buffer Overflow Vulnerabilities in Automotive CAN Protocol Libraries ## Vulnerability Overview This report discloses buffer overflow vulnerabilities present in multiple automotive CAN pro…

Read more
CVSS 4.3
Open5GS AMF DoS via Malformed gpsis in UDM Response
github.com · 2026-05-02

# Open5GS AMF Crash Vulnerability Summary ## Vulnerability Overview A vulnerability exists in the Access and Mobility Management Function (AMF) component of Open5GS that causes a service crash. When a…

Read more
Premium intel
CVSS 9.8
AGL Multiple Vulnerabilities Summary: Privilege Escalation, RCE, Buffer Overflow (CVE-2026-37525/37526/37530/42485/37531
gist.github.com · 2026-05-02

# Automotive Grade Linux (AGL) Vulnerability Summary ## Vulnerability Overview This page discloses multiple security vulnerabilities in Automotive Grade Linux (AGL), primarily involving privilege esca…

Read more
CVSS 4.3
OpenSGS AMF Buffer Overflow Vulnerability Analysis
github.com · 2026-05-02

# OpenSGS AMF Buffer Overflow Vulnerability Summary ## Vulnerability Overview * **Vulnerability ID**: #4403 * **Vulnerability Type**: Buffer Overflow / Memory Corruption * **Trigger Condition**: Occur…

Read more
Python CVE-2020-2297: SourcelessFileLoader io.open_code Fix
github.com · 2026-05-02

### Vulnerability Overview - **CVE ID**: CVE-2020-2297 - **Description**: This vulnerability involves an issue with `SourcelessFileLoader` when using `io.open_code`. ### Impact Scope - **Affected Modu…

Read more
Python tarfile GNU Long Filename Directory Type Misidentification
github.com · 2026-05-02

### Vulnerability Overview - **Vulnerability ID**: gh-141707 - **Description**: The normalization of `TarInfo` `DIRTYPE` is skipped when processing GNU long filenames. Specifically, when a filename en…

Read more
Python tarfile GNU Long Name Type Misclassification Fix
github.com · 2026-05-02

### Vulnerability Overview This vulnerability involves the normalization of `TarInfo.DIRTYTYPE` during GNU long filename processing. Specifically, when processing tar files containing GNU long filenam…

Read more
SQL Injection in BuildHelper.php where method with POC
github.com · 2026-05-02

### Vulnerability Overview The provided webpage screenshot displays a PHP file named `BuildHelper.php`, which contains a potential SQL injection vulnerability. The vulnerability is located in the `whe…

Read more
Premium intel
CVSS 8.4
mix-php/mix Server.php Exception Handling Logic Flaw Analysis
github.com · 2026-05-02

### Vulnerability Overview This vulnerability affects the `Server.php` file in the `mix-php/mix` project. The specific issue is that the scheduler continues to execute scheduling operations even when …

Read more
CVSS 6.9
V2Board ≤1.7.4 Stored XSS, Token Exposure, and SQL Injection Vulnerabilities
gist.github.com · 2026-05-02

# V2Board ≤ 1.7.4 Multiple Vulnerabilities Summary ## Vulnerability Overview V2Board is a deprecated project (unmaintained since 2023). Multiple security vulnerabilities were identified in versions ≤ …

Read more
CVSS 8.1
ProFTPD mod_sql SQL Injection (CVE-2026-42167): RCE and Auth Bypass Analysis
www.openwall.com · 2026-05-02

### Vulnerability Overview - **Vulnerability Name**: SQL Injection in ProFTPD prior to 1.3.9a - **CVE ID**: CVE-2026-42167 - **Description**: A SQL injection vulnerability exists in the `mod_sql` modu…

Read more
CVSS 4.3
Open5GS BSF Remote DoS via Invalid IPv6 Prefix in pcfBindings
github.com · 2026-05-01

# BSF crash on nbsf-management pcfBindings when ipv6Prefix is not /128 ## Vulnerability Overview A security vulnerability exists in the BSF (Bootstrap Server Function) module of Open5GS when handling …

Read more
Open CASCADE Technology (OCCT) Multiple Parser Heap/Stack OOB Read Vulnerabilities (CVE-2026-42476 to 42481)
gist.github.com · 2026-05-01

### Vulnerability Overview Open CASCADE Technology (OCCT) contains multiple memory safety vulnerabilities (CVE-2026-42476 through CVE-2026-42481). These vulnerabilities involve heap and stack overflow…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.