| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-9879 | Google Chrome 缓冲区错误漏洞 | Chrome | - | - | 2026-05-28 22:25:10 | Deep Dive | |
| CVE-2026-9878 | Google Chrome 资源管理错误漏洞 | Chrome | - | - | 2026-05-28 22:25:10 | Deep Dive | |
| CVE-2026-9877 | Google Chrome 资源管理错误漏洞 | Chrome | - | - | 2026-05-28 22:25:09 | Deep Dive | |
| CVE-2026-9876 | Google Chrome 资源管理错误漏洞 | Chrome | - | - | 2026-05-28 22:25:09 | Deep Dive | |
| CVE-2026-9875 | Google Chrome on Android 缓冲区错误漏洞 | Chrome | - | - | 2026-05-28 22:25:09 | Deep Dive | |
| CVE-2026-9874 | Google Chrome 资源管理错误漏洞 | Chrome | - | - | 2026-05-28 22:25:08 | Deep Dive | |
| CVE-2026-9873 | Google Chrome 资源管理错误漏洞 | Chrome | - | - | 2026-05-28 22:25:08 | Deep Dive | |
| CVE-2026-9872 | Google Chrome on Android 缓冲区错误漏洞 | Chrome | - | - | 2026-05-28 22:25:07 | Deep Dive | |
| CVE-2026-49299 | OpenStack Neutron 安全漏洞 | OpenStack | Neutron | - | - | 2026-05-28 21:53:03 | Deep Dive |
| CVE-2026-45364 | Better Auth: Rate limiter keys IPv6 addresses individually and is bypassable via prefix rotation | better-auth | better-auth | High | 7.3 | 2026-05-28 21:34:51 | Deep Dive |
| CVE-2026-45023 | AutoGP: Credit system bypassed via direct block execution in POST /api/blocks/{block_id}/execute | Significant-Gravitas | AutoGPT | Medium | 5.4 | 2026-05-28 21:30:55 | Deep Dive |
| CVE-2026-44973 | Billy: Path traversal vulnerabilities | go-git | go-billy | High | 8.1 | 2026-05-28 21:26:15 | Deep Dive |
| CVE-2026-45410 | Time-based user enumeration in TREK authentication endpoint | mauriceboe | TREK | Medium | 5.3 | 2026-05-28 21:23:01 | Deep Dive |
| CVE-2026-47713 | AnythingLLM: Legacy mobile device tokens bypass multi-user workspace scoping after mode migration | Mintplex-Labs | anything-llm | Low | 2.0 | 2026-05-28 21:20:57 | Deep Dive |
| CVE-2026-48116 | AnythingLLM: RCE via ripgrep --pre argument injection in filesystem-search-files agent skill | Mintplex-Labs | anything-llm | High | 7.5 | 2026-05-28 21:19:52 | Deep Dive |
| CVE-2026-45403 | AnythingLLM: filesystem-copy-file follows nested symlinks and copies files from outside the allowed directory | Mintplex-Labs | anything-llm | Low | 2.0 | 2026-05-28 21:18:09 | Deep Dive |
| CVE-2026-39929 | Lakeside SysTrack Agent LsiAgent.exe Out-of-Bounds Read via UDP | Lakeside Software, LLC. | SysTrack Agent | High | 7.5 | 2026-05-28 21:14:12 | Deep Dive |
| CVE-2026-44881🧪 | Portainer: Arbitrary File Read via Git Symlink Injection in Stack Auto-Update | portainer | portainer | - | - | 2026-05-28 21:11:33 | Deep Dive |
| CVE-2026-44848 | Portainer: Missing authorization on Docker plugin endpoints allows host RCE | portainer | portainer | - | - | 2026-05-28 21:08:17 | Deep Dive |
| CVE-2026-44849 | Portainer: Endpoint security bypass via Swarm service create/update | portainer | portainer | - | - | 2026-05-28 21:06:05 | Deep Dive |