| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-7837 | TOCTOU with root privilege in ad_flush | Netatalk | Netatalk | Low | 3.7 | 2026-05-21 08:14:45 | Deep Dive |
| CVE-2026-44075 | Missing break in DSI OpenSession | Netatalk | Netatalk | Low | 3.7 | 2026-05-21 08:14:42 | Deep Dive |
| CVE-2026-44074 | Bitwise OR of errno values | Netatalk | Netatalk | Low | 3.7 | 2026-05-21 08:14:38 | Deep Dive |
| CVE-2026-44071 | FORTIFY_SOURCE disabled | Netatalk | Netatalk | Low | 3.7 | 2026-05-21 08:14:35 | Deep Dive |
| CVE-2026-44057 | Dead bounds check in Spotlight RPC unmarshaller | Netatalk | Netatalk | Low | 3.1 | 2026-05-21 08:14:32 | Deep Dive |
| CVE-2026-4858 | Path traversal in integration action URL leading to arbitrary API execution via system admin’s auth token. | Mattermost | Mattermost | High | 8.0 | 2026-05-21 08:12:11 | Deep Dive |
| CVE-2026-9157 | Remote Code Execution in Gmission Web FAX | Gmission | Web Fax | High | 8.4 | 2026-05-21 08:07:48 | Deep Dive |
| CVE-2026-7836 | hextoint macro uppercase bug | Netatalk | Netatalk | Low | 3.1 | 2026-05-21 07:35:13 | Deep Dive |
| CVE-2026-7835 | Format string argument mismatch | Netatalk | Netatalk | Low | 3.1 | 2026-05-21 07:35:11 | Deep Dive |
| CVE-2026-44076 | Shell injection via volume path | Netatalk | Netatalk | Medium | 6.7 | 2026-05-21 07:35:09 | Deep Dive |
| CVE-2026-44073 | seteuid failure ignored in auth modules | Netatalk | Netatalk | Medium | 5.0 | 2026-05-21 07:35:07 | Deep Dive |
| CVE-2026-44072 | system() after failed chdir() | Netatalk | Netatalk | Low | 3.0 | 2026-05-21 07:35:04 | Deep Dive |
| CVE-2026-44070 | Unbounded realloc in charset conversion | Netatalk | Netatalk | Low | 3.1 | 2026-05-21 07:35:02 | Deep Dive |
| CVE-2026-44069 | Integer underflow in volxlate | Netatalk | Netatalk | Low | 3.9 | 2026-05-21 07:35:00 | Deep Dive |
| CVE-2026-44068 | EA path traversal via incomplete sanitization | Netatalk | Netatalk | High | 7.6 | 2026-05-21 07:34:58 | Deep Dive |
| CVE-2026-44067 | EA header parsing heap over-read | Netatalk | Netatalk | Medium | 4.2 | 2026-05-21 07:34:56 | Deep Dive |
| CVE-2026-44066 | Heap out-of-bounds reads in Spotlight RPC unmarshalling | Netatalk | Netatalk | High | 7.1 | 2026-05-21 07:34:54 | Deep Dive |
| CVE-2026-44065 | Off-by-two in papd lp_write() | Netatalk | Netatalk | Medium | 4.2 | 2026-05-21 07:34:51 | Deep Dive |
| CVE-2026-44064 | ASP session ID out-of-bounds access | Netatalk | Netatalk | High | 7.1 | 2026-05-21 07:34:49 | Deep Dive |
| CVE-2026-44063 | LDAP filter injection | Netatalk | Netatalk | Medium | 4.2 | 2026-05-21 07:34:47 | Deep Dive |