Samsung Print Service Plugin – Potential Information Disclosure

Published 2026-05-06 by hp

OpenTelemetry.Exporter.OneCollector vulnerable to denial of service via unbounded HTTP error response body

Published 2026-05-06 by GitHub_M

Unbounded HTTP response body read in OpenTelemetry.Resources.Azure

Published 2026-05-06 by GitHub_M

OpenTelemetry .NET Zipkin exporter has unbounded remote endpoint cache leading to memory growth

Published 2026-05-06 by GitHub_M

Netty vulnerable to HTTP request smuggling and RTSP request injection via DefaultHttpRequest.setUri()

Published 2026-05-06 by GitHub_M

PhpSpreadsheet vulnerable to XSS in HTML writer via custom number format codes

Published 2026-05-06 by GitHub_M

Gotenberg vulnerable to argument injection via newlines in ExifTool metadata values

Published 2026-05-06 by GitHub_M

Incus out-of-bounds panic in snapshot metadata handling allows denial of service

Published 2026-05-06 by GitHub_M

Incus OVN TLS verification accepts peer-supplied roots and permits endpoint impersonation

Published 2026-05-06 by GitHub_M

Incus nil-pointer dereference in custom volume import allows denial of service

Published 2026-05-06 by GitHub_M