Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Security Intel Hub 35656+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
DBI::SQL::Nano SQL String Comparison Operator Logic Error
github.com · 2026-07-14

### Vulnerability Overview This vulnerability involves incorrect behavior of SQL comparison operators during string comparisons. Specifically, the `=` operator is incorrectly interpreted as `le` (less…

Read more
Premium intel
CVSS 10.0
Siemens Opcenter X Authentication Bypass Vulnerability (CVE-2026-56451)
cert-portal.siemens.com · 2026-07-14

### Vulnerability Overview - **Vulnerability Name**: Token Invalidation Vulnerability in Opcenter X Before V2604 - **CVE ID**: CVE-2026-56451 - **CVSS Score**: 10.0 (V3.1 and V4.0) - **Description**: …

Read more
Premium intel
CVSS 6.7
Siemens IAM Client Unquoted Search Path Vulnerability (CVE-2025-40945) Advisory
cert-portal.siemens.com · 2026-07-14

### Vulnerability Overview - **Vulnerability Name**: Unquoted Search Path Vulnerability in IAM Client - **CVE ID**: CVE-2025-40945 - **CVSS v3.1 Base Score**: 6.7 - **CVSS v4.0 Base Score**: 8.5 - **D…

Read more
Premium intel
CVSS 9.1
Siemens Mendix Insecure Inherited Permission Vulnerability (CVE-2026-7891) Advisory
cert-portal.siemens.com · 2026-07-14

# Siemens Security Advisory: SSA-814963: Insecure Inherited Permission in Mendix ## Vulnerability Overview - **Vulnerability ID**: CVE-2026-7891 - **CVSS v3.1 Base Score**: 9.1 - **CVSS v4.0 Base Scor…

Read more
CVSS 5.3
Siemens Simcenter STAR-CCM+ License Server Information Disclosure (CVE-2022-34659)
cert-portal.siemens.com · 2026-07-14

### Vulnerability Overview - **Vulnerability Name**: SSA-555707: Information Disclosure Vulnerability in Simcenter STAR-CCM+ - **Publication Date**: 2022-08-09 - **Last Update Date**: 2026-07-14 - **C…

Read more
Ubuntu Wget Security Update (USN-8543-1): Redirect Hijacking, DoS, Integer Overflow
ubuntu.com · 2026-07-14

### Vulnerability Overview - **Vulnerability ID**: USN-8543-1 - **Publication Date**: July 14, 2026 - **Description**: - Wget incorrectly handles semicolons when processing the userinfo component of a…

Read more
Mint HTTP/2 Zero-length CONTINUATION Frame Bypass Causes Memory Exhaustion
github.com · 2026-07-14

### Vulnerability Overview **Title**: Incomplete CONTINUATION-flood fix: zero-length HTTP/2 CONTINUATION frames bypass the byte-size cap **Description**: Mint’s HTTP/2 CONTINUATION frame processor lim…

Read more
Mint.HTTP DoS fix: Improper header size limits in HTTP/1.1/2
github.com · 2026-07-14

### Vulnerability Overview This vulnerability involves improper configuration of size limits for response headers or chunked trailers in the HTTP/1.1 and HTTP/2 protocols, which may lead to Denial of …

Read more
Mint Erlang CVE-2024-36229 Unbounded Memory Exhaustion DoS Vulnerability and POC
github.com · 2026-07-14

### Vulnerability Overview **Vulnerability Name**: Unbounded HTTP/1 response-header and chunked-trailer accumulation allows memory-exhaustion DoS **Vulnerability Description**: The Mint HTTP/1 respons…

Read more
Snowflake Connector for Spark 3.2.1 Patch: Fixes SQL Injection in CREATE STAGE and Log Redaction for Sensitive Data
docs.snowflake.com · 2026-07-14

### Vulnerability Overview - **Vulnerability Name**: The specific vulnerability name is not explicitly stated, but it involves multiple fixes in Snowflake Connector for Spark. - **Affected Version**: …

Read more
CVE-2026-58229: Elixir Mint Unbounded Header Accumulation Memory-Exhaustion DoS
cna.erlef.org · 2026-07-14

### Vulnerability Overview **CVE-2026-58229** **Title**: Unbounded HTTP/1 response-header and chunked-trailer accumulation in Mint causes memory-exhaustion DoS **Description**: An unbounded resource a…

Read more
Premium intel
CVSS 8.9
Argo CD Repo-Server Unauthenticated RCE and Mitigation Guidance
thehackernews.com · 2026-07-14

### Vulnerability Overview - **Vulnerability Name**: Unpatched Vulnerability in Argo CD Repo-Server - **Discoverer**: Synacktiv - **Description**: An unpatched vulnerability exists in the Argo CD `rep…

Read more
Mint Library Uncontrolled Resource Consumption DoS (CVE-2026-58229)
osv.dev · 2026-07-14

# EEF-CVE-2026-58229 ## Vulnerability Overview - **Vulnerability ID**: CVE-2026-58229 - **Published Date**: 2026-07-14 - **Modified Date**: 2026-07-14 - **Severity**: 9.2 (High) - **CVSS Score**: CVSS…

Read more
Premium intel
CVSS 8.9
CVE-2026-15416 Argo CD repo-server Unauthenticated RCE via GenerateManifest gRPC
bugzilla.redhat.com · 2026-07-14

### Vulnerability Overview - **Vulnerability ID**: CVE-2026-15416 - **Vulnerability Title**: Unauthenticated remote code execution in Argo CD repo-server via GenerateManifest gRPC endpoint - **Report …

Read more
Eclipse Jetty HTTP/1.1 Trailer Cross-Request Information Disclosure
gitlab.eclipse.org · 2026-07-14

### Vulnerability Overview - **Vulnerability Name**: [Eclipse Jetty] Cross request leakage of HTTP/1.1 trailers - **CVE ID**: To be assigned - **Description**: This vulnerability involves the cross-re…

Read more
CVSS 7.5
Eclipse Jetty Memory Leak Vulnerability (CVE-2024-XXXXX) Advisory
gitlab.eclipse.org · 2026-07-14

### Vulnerability Overview - **Vulnerability Name**: [Eclipse Jetty] Memory leak in HttpConnection - **CVE ID**: CVE-2024-XXXXX - **Created Date**: August 13, 2024 - **Creator**: Simone Bordet - **Sta…

Read more
Apache Tomcat EncryptInterceptor Undocumented Requirements Vulnerability (CVE-2026-59084)
lists.apache.org · 2026-07-14

### Vulnerability Overview - **Vulnerability ID**: CVE-2026-59084 - **Vulnerability Name**: Apache Tomcat - EncryptInterceptor requirements not clearly documented - **Severity**: Low - **Description**…

Read more
CVE-2026-59246: Elixir Mint HTTP/2 Remote DoS via Zero-Length CONTINUATION Frames
osv.dev · 2026-07-14

# EEF-CVE-2026-59246 ## Vulnerability Overview - **Vulnerability ID**: CVE-2026-59246 - **Source**: [https://cna.ariel.org/osv/EEF-CVE-2026-59246.html](https://cna.ariel.org/osv/EEF-CVE-2026-59246.htm…

Read more
elixir-mint CVE-2026-59246 HTTP/2 Memory Exhaustion Vulnerability
cna.erlef.org · 2026-07-14

### Vulnerability Overview - **Vulnerability ID**: CVE-2026-59246 - **Vulnerability Type**: CWE-770 — CWE-770 Allocation of Resources Without Limits or Throttling - **CVSS 4.0 Score**: 6.3 (MEDIUM) - …

Read more
Ubuntu Dnsmasq Security Fix: USN-8542-1 addressing CVE-2026-12725 (DoS) and CVE-2026-12969 (Info Disclosure)
ubuntu.com · 2026-07-14

### Vulnerability Overview - **Vulnerability ID**: USN-8542-1 - **Publication Date**: July 14, 2026 - **Vulnerability Description**: - Dnsmasq contains a logging error when processing DS or DNSKEY rec…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.