cve.li

Recent

CVE-2026-45554CWE-248CWE-770

NiceGUI: Unauthenticated log-flood DoS via trailing slash on ESM and per-component resource routes

Published 2026-06-02 by GitHub_M

CVE-2026-10591CWE-732

Kiro IDE Insufficient File Write Restrictions to Execution-Sensitive Paths

Published 2026-06-02 by AMZN

CVE-2026-45553CWE-200

NiceGUI: Local file disclosure via Docutils file insertion in ui.restructured_text()

Published 2026-06-02 by GitHub_M

CVE-2026-45080CWE-200CWE-284

Klaw: Improper Access Control Allows Disclosure of Password Hash

Published 2026-06-02 by GitHub_M

CVE-2026-44367CWE-178CWE-20

Klaw: user lockout due to case sensitivity inconsistency

Published 2026-06-02 by GitHub_M

CVE-2026-34460CWE-302CWE-346CWE-352

NamelessMC: OAuth callback `state` is not validated, allowing login CSRF / session swapping

Published 2026-06-02 by GitHub_M

CVE-2026-45686CWE-190

OpenTelemetry eBPF Instrumentation: Memcached payload length overflow can crash OBI

Published 2026-06-02 by GitHub_M

CVE-2026-45685CWE-20CWE-248CWE-704

OpenTelemetry eBPF Instrumentation: MongoDB parser panics on malformed wire messages

Published 2026-06-02 by GitHub_M

CVE-2026-45684CWE-126CWE-787

OpenTelemetry eBPF Instrumentation: Log enricher writev path can overread and overwrite user buffers

Published 2026-06-02 by GitHub_M

CVE-2026-45683CWE-127CWE-200

OpenTelemetry eBPF Instrumentation: Java TLS ioctl kprobe allows kernel memory disclosure

Published 2026-06-02 by GitHub_M

Load more ↓