Page 14

CVE-2026-27905 – BentoML Symlink File Write Vulnerability

Posted on March 4, 2026

CVE ID : CVE-2026-27905 Published : March 3, 2026, 11:15 p.m. | 27 minutes ago Description : BentoML is a Python library for building online serving systems optimized for AI apps and model…

CVE-2026-27622 – OpenEXR Integer Overflow in CompositeDeepScanLine::readPixels

Posted on March 4, 2026

CVE ID : CVE-2026-27622 Published : March 3, 2026, 11:15 p.m. | 27 minutes ago Description : OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format…

CVE-2026-0754 – SIP Service Providers – Possible Impersonation of Poly Voice Device

Posted on March 3, 2026

CVE ID : CVE-2026-0754 Published : March 3, 2026, 12:48 a.m. | 54 minutes ago Description : An embedded test key and certificate could be extracted from a Poly Voice device using specialized…

CVE-2026-1566 – LatePoint <= 5.2.7 – Authenticated (Agent+) Privilege Escalation

Posted on March 3, 2026

CVE ID : CVE-2026-1566 Published : March 3, 2026, 12:15 a.m. | 1 hour, 26 minutes ago Description : The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable…

CVE-2026-3338 – PKCS7_verify Signature Validation Bypass in AWS-LC

Posted on March 3, 2026

CVE ID : CVE-2026-3338 Published : March 2, 2026, 10:16 p.m. | 1 hour, 26 minutes ago Description : Improper signature validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass signature verification…

CVE-2026-3337 – Timing Side-Channel in AES-CCM Tag Verification in AWS-LC

Posted on March 3, 2026

CVE ID : CVE-2026-3337 Published : March 2, 2026, 10:16 p.m. | 1 hour, 26 minutes ago Description : Observable timing discrepancy in AES-CCM decryption in AWS-LC allows an unauthenticated user to potentially determine…

CVE-2026-3336 – PKCS7_verify Certificate Chain Validation Bypass in AWS-LC

Posted on March 3, 2026

CVE ID : CVE-2026-3336 Published : March 2, 2026, 10:16 p.m. | 1 hour, 26 minutes ago Description : Improper certificate validation in PKCS7_verify() in AWS-LC allows an unauthenticated user to bypass certificate chain…

CVE-2026-26713 – Code-Projects Simple Food Order System SQL Injection

Posted on March 3, 2026

CVE ID : CVE-2026-26713 Published : March 2, 2026, 8:16 p.m. | 3 hours, 26 minutes ago Description : code-projects Simple Food Order System v1.0 is vulnerable to SQL Injection in /food/routers/cancel-order.php. Severity: 9.8…

CVE-2026-26712 – Code-Projects Simple Food Order System SQL Injection Vulnerability

Posted on March 3, 2026

CVE ID : CVE-2026-26712 Published : March 2, 2026, 8:16 p.m. | 3 hours, 26 minutes ago Description : code-projects Simple Food Order System v1.0 is vulnerable to SQL Injection in /food/view-ticket-admin.php. Severity: 9.8…

CVE-2026-3400 – Tenda AC15 TextEditingConversion stack-based overflow

Posted on March 2, 2026

CVE ID : CVE-2026-3400 Published : March 2, 2026, 12:16 a.m. | 1 hour, 21 minutes ago Description : A security flaw has been discovered in Tenda AC15 up to 15.13.07.13. Affected by this…