Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Security Intel Hub 33941+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
CVSS 5.5
CVE-2026-57025: Junos OS I2ald DoS via show I2-learning Command
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview - **Vulnerability Name**: 2026-07 Security Bulletin: Junos OS and Junos OS Evolved: EX Series, QFX Series, MX Series: A specific 'show I2-learning' command causes I2ald cras…

Read more
CVE-2026-39245: decompress Path Traversal via IndexOf Check Bypass
github.com · 2026-07-10

### Vulnerability Overview - **Vulnerability ID**: CVE-2026-39245 - **Vulnerability Type**: Path Traversal - **Description**: `decompress` (≤ 4.2.1) uses `String.indexOf()` to verify that the resolved…

Read more
CVE-2026-39243: Arbitrary Hardlink Creation Vulnerability in decompress
github.com · 2026-07-10

### Vulnerability Overview **CVE-2026-39243**: An arbitrary hard link creation vulnerability exists in the `decompress` library (versions chunks.push(c)); pack.on('end', async () => { await decompress…

Read more
CVE-2026-39246: decompress Arbitrary Symbolic Link Creation Leading to Info Leak
github.com · 2026-07-10

# [CVE-2026-39246] Arbitrary Symbolic Link Creation During Extraction → Information Disclosure #114 ## Vulnerability Overview `decompress` ( chunks.push(c)); pack.on('end', async () => { await decompr…

Read more
CVSS 5.9
Juniper Junos OS PFE DoS via TCP Response (CVE-2026-57022) Security Bulletin
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview - **Vulnerability Name**: 2026-07 Security Bulletin: Junos OS: MX Series with SPC3, SRX Series: Specific packet in response to a TCP connection establishment by the affected…

Read more
CVE-2020-12265: Path Traversal in decompress for Node.js
nvd.nist.gov · 2026-07-10

### Vulnerability Overview - **CVE ID**: CVE-2020-12265 - **Description**: An arbitrary file write vulnerability exists in the decompress package in Node.js for versions prior to 4.2.1. The vulnerabil…

Read more
CVSS 7.5
Juniper Junos OS SIP ALG Remote DoS Vulnerability (CVE-2026-57026) Security Bulletin
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview - **Vulnerability Name**: 2026-07 Security Bulletin: Junos OS: MX Series with SPC3, SRX Series: Processing of a specifically malformed SIP invite causes a flowd crash (CVE-2…

Read more
CVSS 7.3
Juniper Junos OS Evolved Unauthorized License Access via Exposed Port (CVE-2026-57028)
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview - **Vulnerability Name**: Junos OS Evolved: A port unexpectedly exposed, allowing attackers to access the port - **CVE ID**: CVE-2026-57028 - **Severity**: High - **CVSS Sco…

Read more
CVSS 6.5
Juniper Junos OS MX Series CVE-2026-57019 DoS Security Bulletin
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview - **Vulnerability Name**: 2026-07 Security Bulletin: Junos OS: MX Series: Specific traffic causes an FPC to reset (CVE-2026-57019) - **Vulnerability Description**: On Junipe…

Read more
CVSS 4.7
Juniper Junos OS MX Series: Static Interface Subscriber Input Filter Bypass (CVE-2026-57031)
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview - **Vulnerability Name**: Junos OS: MX Series: Input filters are not in effect for subscribers configured on static interfaces (CVE-2026-57031) - **Vulnerability Description…

Read more
CVSS 5.3
Juniper SRX Junos OS CVE-2026-57021: http-gk DoS via VPN pre-login compliance check
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview - **Vulnerability Name**: Junos OS: SRX Series - If VPN compliance-check is configured, an attacker can cause http-gk process crash - **CVE ID**: CVE-2026-57021 - **Severity…

Read more
CVSS 6.5
Junos OS EX Series gRPC Telemetry DoS via Unsupported Sensor Path (CVE-2026-57032)
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview - **Vulnerability Name**: Junos OS: EX Series: Subscription to unsupported telemetry sensor paths causes fxpc process crash - **CVE ID**: CVE-2026-57032 - **Severity**: Medi…

Read more
CVSS 5.3
Juniper Junos OS iked DoS via VPN negotiation failures (CVE-2026-57024)
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview - **Vulnerability Name**: Junos OS: MX with SPC3, SRX Series: Repeated VPN negotiation failures will eventually cause iked to crash continuously (CVE-2026-57024) - **Vulnera…

Read more
CVSS 5.3
CVE-2026-57029: Juniper Junos OS Evolved DoS via sFlow race condition
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview - **Vulnerability Name**: 2026-07 Security Bulletin: Junos OS Evolved: QFX Series: When sFlow collector reachability changes evo-pfemand process can crash (CVE-2026-57029) -…

Read more
CVSS 6.5
Juniper Junos OS QFX10000 IPv6 Multicast Flood Vulnerability (CVE-2026-57020)
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview - **Vulnerability Name**: Junos OS: QFX10000 Series: IPv6 multicast traffic received on non-IRB interfaces causes a multicast flood (CVE-2026-57020) - **Vulnerability Descri…

Read more
CVSS 6.5
Juniper Junos OS EXA100/EX4400 Use-After-Free FPC Crash Vulnerability (CVE-2026-57027) Bulletin
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview - **Vulnerability Name**: 2026-07 Security Bulletin: Junos OS: EXA100 Series, EX4400: With sFlow configured in a VC scenario multicast traffic leads to an FPC crash (CVE-202…

Read more
CVSS 5.8
Juniper Junos OS MX Web Filter Bypass Vulnerability (CVE-2026-57054)
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview A vulnerability exists in the web filtering feature of Junos OS MX Series devices, allowing attackers to bypass web filtering by sending URLs in a specific format to access …

Read more
CVSS 7.5
Juniper Junos OS MX/SRX flowd Crash Vulnerability (CVE-2026-57023) Advisory and Patches
supportportal.juniper.net · 2026-07-10

### Vulnerability Overview - **Vulnerability Name**: Junos OS: MX Series with SPC3, SRX Series: A specifically malformed TCP packet causes a flowd crash (CVE-2026-57023) - **Vulnerability Description*…

Read more
CVSS 5.3
DeepSeek MCP HTTP Auth Bypass and Cross-Session Data Leakage (CVE-2026-55605/55604)
github.com · 2026-07-10

Based on the provided webpage screenshot, here is a summary of the key vulnerability information: ### Vulnerability Overview 1. **CVE-2026-55605** - **Description**: Missing authentication on self-hos…

Read more
CVSS 5.3
CVE-2025-5505 GHSA: Missing Authentication on Self-Hosted HTTP MCP Endpoint in @arunks/deepseek-mcp-server
github.com · 2026-07-10

### Vulnerability Overview **Vulnerability Name**: Missing Authentication on Self-Hosted HTTP MCP Endpoint **Vulnerability ID**: GHSA-72F5-6W86-7V3 **Severity**: Moderate (5.3 / 10) **CVE ID**: CVE-20…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.