| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-26338 | Hyland Alfresco Transformation Service SSRF | Hyland | Alfresco Transformation Service (Enterprise) | Critical | 9.8 | 2026-02-19 17:03:24 | Deep Dive |
| CVE-2026-26337 | Hyland Alfresco Transformation Service Absolute Path Traversal Arbitrary File Read and SSRF | Hyland | Alfresco Transformation Service (Enterprise) | High | 8.2 | 2026-02-19 17:01:26 | Deep Dive |
| CVE-2026-26336 | Hyland Alfresco Improper Authorization Arbitrary File Read | Hyland | Alfresco Enterprise | High | 7.5 | 2026-02-19 15:56:26 | Deep Dive |
| CVE-2026-2733 | Org.keycloak/keycloak-services: keycloak: missing check on disabled client for docker registry protocol | Red Hat | Red Hat build of Keycloak 26.4 | Low | 3.8 | 2026-02-19 07:48:09 | Deep Dive |
| CVE-2026-0665 | Qemu-kvm: heap off-by-one in kvm xen physdevop_map_pirq | - | - | Medium | 6.5 | 2026-02-18 20:50:04 | Deep Dive |
| CVE-2025-8860 | Qemu-kvm: uefi-vars: information disclosure vulnerability in uefi_vars_write callback | - | - | Low | 3.3 | 2026-02-18 20:49:06 | Deep Dive |
| CVE-2025-14876 | Qemu-kvm: unbounded allocation in virtio-crypto | - | - | Medium | 5.5 | 2026-02-18 20:47:54 | Deep Dive |
| CVE-2026-1999 | Incorrect Authorization vulnerability was identified in GitHub Enterprise Server that allowed unauthorized merging of pull requests | GitHub | Enterprise Server | 中危 | - | 2026-02-18 20:44:51 | Deep Dive |
| CVE-2026-1355 | Missing Authorization Check in GitHub Enterprise Server Allows Unauthorized Uploads to Repository Migration Exports | GitHub | Enterprise Server | 中危 | - | 2026-02-18 20:42:07 | Deep Dive |
| CVE-2026-0573 | Improper Handling of HTTP Redirects vulnerability was identified in GitHub Enterprise Server that allowed leaking of authorization token and enabled remote code execution | GitHub | Enterprise Server | 超危 | - | 2026-02-18 20:37:40 | Deep Dive |
| CVE-2025-1272 | Kernel: secure boot does not automatically enable kernel lockdown | Fedora Project | Fedora Linux | High | 7.7 | 2026-02-18 20:29:15 | Deep Dive |
| CVE-2025-0577 | Glibc: vdso getrandom acceleration may return predictable randomness | - | - | Medium | 4.8 | 2026-02-18 20:25:35 | Deep Dive |
| CVE-2026-20142 | Sensitive Information Disclosure in "_internal" index in Splunk Enterprise | Splunk | Splunk Enterprise | Medium | 6.8 | 2026-02-18 16:45:37 | Deep Dive |
| CVE-2026-20138 | Sensitive Information Disclosure in "_internal" index in Splunk Enterprise | Splunk | Splunk Enterprise | Medium | 6.8 | 2026-02-18 16:45:34 | Deep Dive |
| CVE-2026-20139 | Client-Side Denial of Service (DoS) through ''/splunkd/__raw/services/authentication/users/username'' REST API endpoint in Splunk Enterprise | Splunk | Splunk Enterprise | Medium | 4.3 | 2026-02-18 16:45:32 | Deep Dive |
| CVE-2026-20144 | Sensitive Information Disclosure in ''_internal'' index in Splunk Enterprise | Splunk | Splunk Enterprise | Medium | 6.8 | 2026-02-18 16:45:24 | Deep Dive |
| CVE-2026-20141 | Improper Access Control in Splunk Monitoring Console App | Splunk | Splunk Enterprise | Medium | 4.3 | 2026-02-18 16:45:21 | Deep Dive |
| CVE-2026-20137 | Risky Commands Safeguards Bypass through preloaded Data Models due to Path Traversal vulnerability in Splunk Enterprise | Splunk | Splunk Enterprise | Low | 3.5 | 2026-02-18 16:45:18 | Deep Dive |
| CVE-2026-23599 | Local Privilege Escalation Vulnerability in HPE Aruba Networking Clear Pass Policy Manager OnGuard for Linux | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking ClearPass Policy Manager | High | 7.8 | 2026-02-17 23:04:36 | Deep Dive |
| CVE-2026-23598 | Unauthenticated Information Disclosure in application API allows sensitive system information exposure | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Private 5G Core | Medium | 6.5 | 2026-02-17 20:47:21 | Deep Dive |