CVE ID :CVE-2026-44827 Published : May 14, 2026, 5:16 p.m. | 1 hour, 11 minutes ago Description :Diffusers is the a library for pretrained diffusion models. Prior to 0.38.0, diffusers 0.37.0 allows remote code execution without the trust_remote_code=True safeguard when loading pipelines…
CVE ID :CVE-2026-44574 Published : May 13, 2026, 5:16 p.m. | 44 minutes ago Description :Next.js is a React framework for building full-stack web applications. From 15.4.0 to before 15.5.16 and 16.2.5, applications that rely on middleware to protect dynamic routes…
CVE ID :CVE-2026-6281 Published : May 13, 2026, 4:17 p.m. | 1 hour, 43 minutes ago Description :A potential vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user on the local network to execute…
CVE ID :CVE-2026-6282 Published : May 13, 2026, 4:17 p.m. | 1 hour, 43 minutes ago Description :A potential improper file path validation vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user to move…
CVE ID :CVE-2026-45033 Published : May 13, 2026, 4:17 p.m. | 1 hour, 43 minutes ago Description :GitHub Copilot CLI brings AI-powered coding assistance directly to your command line. Prior to 1.0.43, a security vulnerability has been identified in GitHub Copilot CLI…
CVE ID :CVE-2026-44470 Published : May 13, 2026, 4:16 p.m. | 1 hour, 43 minutes ago Description :The Claude Desktop app gives you Claude Code with a graphical interface built for running multiple sessions side by side. Prior to 1.3834.0, the CoworkVMService…
CVE ID :CVE-2026-8429 Published : May 12, 2026, 7:16 p.m. | 36 minutes ago Description :SPIP versions prior to 4.4.14 contain a remote code execution vulnerability in the private space that allows attackers to execute arbitrary code in the context of…
CVE ID :CVE-2026-8430 Published : May 12, 2026, 7:16 p.m. | 36 minutes ago Description :SPIP versions prior to 4.4.14 contain a remote code execution vulnerability in the public space that is limited to certain nginx configurations, allowing attackers to execute…
CVE ID :CVE-2026-8431 Published : May 12, 2026, 7:16 p.m. | 36 minutes ago Description :An administrative user with access to configure webhooks can execute arbitrary commands by configuring and then triggering webhooks containing specific FreeMarker template syntax. This issue affects…
CVE ID :CVE-2026-34659 Published : May 12, 2026, 7:16 p.m. | 36 minutes ago Description :Adobe Connect versions 2025.9.15, 2025.8.157 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context…