CVE ID : CVE-2026-3266 Published : March 3, 2026, 11:15 p.m. | 27 minutes ago Description : Missing Authorization vulnerability in OpenText™ Filr allows Authentication Bypass. The vulnerability could allow unauthenticated users to get…
CVE-2026-28289 – FreeScout Patch Bypass Remote Code Execution Vulnerability
CVE ID : CVE-2026-28289 Published : March 3, 2026, 11:15 p.m. | 27 minutes ago Description : FreeScout is a free help desk and shared inbox built with PHP’s Laravel framework. A patch…
CVE-2026-27971 – Qwik RCE via Unauthenticated Server RPC Deserialization
CVE ID : CVE-2026-27971 Published : March 3, 2026, 11:15 p.m. | 27 minutes ago Description : Qwik is a performance focused javascript framework. qwik Severity: 9.2 | CRITICAL Visit the link for…
CVE-2026-27905 – BentoML Symlink File Write Vulnerability
CVE ID : CVE-2026-27905 Published : March 3, 2026, 11:15 p.m. | 27 minutes ago Description : BentoML is a Python library for building online serving systems optimized for AI apps and model…
CVE-2026-27622 – OpenEXR Integer Overflow in CompositeDeepScanLine::readPixels
CVE ID : CVE-2026-27622 Published : March 3, 2026, 11:15 p.m. | 27 minutes ago Description : OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format…
CVE-2026-0754 – SIP Service Providers – Possible Impersonation of Poly Voice Device
CVE ID : CVE-2026-0754 Published : March 3, 2026, 12:48 a.m. | 54 minutes ago Description : An embedded test key and certificate could be extracted from a Poly Voice device using specialized…
CVE-2026-1566 – LatePoint <= 5.2.7 – Authenticated (Agent+) Privilege Escalation
CVE ID : CVE-2026-1566 Published : March 3, 2026, 12:15 a.m. | 1 hour, 26 minutes ago Description : The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable…
CVE-2026-3338 – PKCS7_verify Signature Validation Bypass in AWS-LC
CVE ID : CVE-2026-3338 Published : March 2, 2026, 10:16 p.m. | 1 hour, 26 minutes ago Description : Improper signature validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass signature verification…
CVE-2026-3337 – Timing Side-Channel in AES-CCM Tag Verification in AWS-LC
CVE ID : CVE-2026-3337 Published : March 2, 2026, 10:16 p.m. | 1 hour, 26 minutes ago Description : Observable timing discrepancy in AES-CCM decryption in AWS-LC allows an unauthenticated user to potentially determine…
CVE-2026-3336 – PKCS7_verify Certificate Chain Validation Bypass in AWS-LC
CVE ID : CVE-2026-3336 Published : March 2, 2026, 10:16 p.m. | 1 hour, 26 minutes ago Description : Improper certificate validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass certificate chain…