Spring Product Security Update Advisory (CVE-2026-40968)
Security updates have been released for vulnerabilities in Spring products. the target is Spring gRPC versions 1.0.0 through 1.0.2 and earlier. the vulnerability is CVE-2026-40968, which is a request-to-request SecurityContext (a security state that holds authentication and authorization information) leak in Spring gRPC. the vulnerability occurs in the context of
IBM Product Security Update Advisory
A security update has been released to address a vulnerability in an IBM product. the affected product is IBM Langflow Desktop, and versions 1.0.0 through 1.8.4 are affected. CVE-2026-4503 is an unauthenticated Insecure Direct Object Reference (IDOR) vulnerability that occurs in the Langflow Desktop image download endpoint. CVE-2026-6543 is a
Linux Kernel Security Update Advisory (CVE-2026-31431)
Overview A security update has been released for CVE-2026-31431, a vulnerability in the Linux Kernel. the vulnerability is described as an incorrect in-place handling vulnerability in the algif_aead cryptographic interface (the interface that handles cryptographic operations). Affected by Linux Kernel versions 4.14 and later but earlier than 6.18.22. Linux Kernel
May 04, 2026
May 04, 2026 Hash 1d5f15f44ad98b27bc40dbbfff8238779 290a7a54b49e75b01f24e644884a79105 315627b0b54fd35c6054d26f4b5caabd0 URL 1http[:]//homededepot[.]com/ 2http[:]//annat[.]site/ 3http[:]//roblox[.]mk/ IP 136[.]140[.]21[.]61 281[.]192[.]46[.]29 3183[.]250[.]89[.]44...
CPanel Product Security Update Advisory (CVE-2026-41940)
Overview a security update has been issued for a vulnerability in the cPanel product. the targets are cPanel & WHM and WP Squared, and the vulnerability is an authentication bypass vulnerability identified as CVE-2026-41940. Affected Products the following versions and earlier are affected cPanel & WHM 11.86.0.41 and earlier. cPanel
May 03, 2026
May 03, 2026 Hash 140420d4839b504c2206475a54d8ba713 2fb4d9db0cd7fd9b1591b8f5b5d45530a 39ae8af331cbf6ee6461e796cade33d41 URL 1https[:]//yallatiri[.]com/ 2http[:]//greathockey939[.]weebly[.]com/ 3https[:]//pelisflix200[.]life/ IP 1223[.]73[.]37[.]101 2109[.]91[.]4[.]177 314[.]103[.]213[.]121...
May 02, 2026
May 02, 2026 Hash 1e2c61f9ccdf4b9ec43aa405fb5b3e961 2169baf26c7a93f5dfe3c96e34c6f20fb 376f02ca080a66522d8a812657575d073 URL 1http[:]//elproductorsa[.]com[.]ar/ 2http[:]//8[.]149[.]139[.]253/ 3http[:]//awardnibht[.]weebly[.]com/ IP 1186[.]38[.]26[.]5 280[.]245[.]93[.]163 351[.]195[.]43[.]114...
May 01, 2026
May 01, 2026 Hash 1133a5a4046f93fef7233e84c82234fdc 2b4dcaa85938eccb74cccd3949afc0fb9 348872eef992afa921360608f434cc2f3 URL 1http[:]//www[.]cabba-cacao[.]com/ 2http[:]//172[.]245[.]155[.]91/98/goodideadscreatingbestthings[.]hta 3http[:]//googlw[.]co/ IP 1156[.]245[.]246[.]50 2139[.]59[.]112[.]10 3190[.]60[.]242[.]28...
Tenable Product Security Update Advisory (CVE-2026-33694)
Tenable has released security updates that address vulnerabilities in its products. the affected products are Nessus Agent and Nessus. CVE-2026-33694 is an arbitrary file deletion vulnerability in Nessus Agent and Nessus. affected Versions are Nessus Agent 11.1.2 and earlier and Nessus 10.11.3 and earlier. resolved versions are Nessus Agent 11.1.3,
Spring Product Security Update Advisory
Overview A security update has been released to address a vulnerability in Spring products. the target is Spring AI, and users should update to the latest version. Affected by Spring AI 1.0.0 or later and earlier than 1.0.6. Spring AI 1.1.0 and above, but below 1.1.5. Resolved vulnerabilities CVE-2026-40967: Failure
