CVE-2026-32312 - GLPI: Unauthorized export of form structure
CVE ID :CVE-2026-32312
Published : May 19, 2026, 12:16 a.m. | 1 hour, 7 minutes ago
Description :GLPI is a free asset and IT management software package. In versions 11.0.0 through 11.0.6, an authenticated user with forms READ permission can export the structure of unauthorized forms. This issue has been fixed in version 11.0.7.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-32312
Published : May 19, 2026, 12:16 a.m. | 1 hour, 7 minutes ago
Description :GLPI is a free asset and IT management software package. In versions 11.0.0 through 11.0.6, an authenticated user with forms READ permission can export the structure of unauthorized forms. This issue has been fixed in version 11.0.7.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-32323 - Mullvad VPN for macOS: Local Privilege Escalation via unverified bundle path in installer
CVE ID :CVE-2026-32323
Published : May 19, 2026, 2:16 a.m. | 1 hour, 8 minutes ago
Description :Mullvad VPN is a VPN client app for desktop and mobile. When using macOS with versions 2026.1 and below, Mullvad VPN may allow local privilege escalation during installation or upgrade. The installer package executes binaries from /Applications/Mullvad VPN.app without verifying if the bundle is attacker-controlled or that the path is the legitimate Mullvad application. A user in the admin group can pre-place a crafted application bundle at that location and may be able to achieve code execution as root. Since the issue only affected the installer, there is no immediate need for users to update if they are already running an older version. This issue has been fixed in version 2026.2-beta1.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-32323
Published : May 19, 2026, 2:16 a.m. | 1 hour, 8 minutes ago
Description :Mullvad VPN is a VPN client app for desktop and mobile. When using macOS with versions 2026.1 and below, Mullvad VPN may allow local privilege escalation during installation or upgrade. The installer package executes binaries from /Applications/Mullvad VPN.app without verifying if the bundle is attacker-controlled or that the path is the legitimate Mullvad application. A user in the admin group can pre-place a crafted application bundle at that location and may be able to achieve code execution as root. Since the issue only affected the installer, there is no immediate need for users to update if they are already running an older version. This issue has been fixed in version 2026.2-beta1.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-33052 - MantisBT: Authorization Bypass in Global Profile Creation
CVE ID :CVE-2026-33052
Published : May 19, 2026, 2:16 a.m. | 1 hour, 8 minutes ago
Description :Mantis Bug Tracker (MantisBT) is an open source issue tracker. Versions 2.28.0 and 2.28.1 allow a low-privileged authenticated user assigned the "add_profile_threshold" permission to create a global profile despite not having manage_global_profile_threshold, by tampering with the user_id parameter in a valid profile creation request. This issue has been fixed in version 2.28.2.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-33052
Published : May 19, 2026, 2:16 a.m. | 1 hour, 8 minutes ago
Description :Mantis Bug Tracker (MantisBT) is an open source issue tracker. Versions 2.28.0 and 2.28.1 allow a low-privileged authenticated user assigned the "add_profile_threshold" permission to create a global profile despite not having manage_global_profile_threshold, by tampering with the user_id parameter in a valid profile creation request. This issue has been fixed in version 2.28.2.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-33232 - AutoGPT: Unauthenticated DoS via Disk Space Exhaustion
CVE ID :CVE-2026-33232
Published : May 19, 2026, 2:16 a.m. | 1 hour, 8 minutes ago
Description :AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Versions 0.4.2 through 0.6.51 are vulnerable to an unauthenticated Denial of Service (DoS) through the server due to uncontrolled disk space consumption. The download_agent_file endpoint creates persistent temporary files for every request but fails to delete them after they are served. An unauthenticated attacker can repeatedly call this endpoint to exhaust the server's disk space, causing the database or other system services to fail due to "No space left on device" errors, rendering the entire AutoGPT Platform backend unavailable to all users. This issue has been patched in version 0.6.52.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-33232
Published : May 19, 2026, 2:16 a.m. | 1 hour, 8 minutes ago
Description :AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Versions 0.4.2 through 0.6.51 are vulnerable to an unauthenticated Denial of Service (DoS) through the server due to uncontrolled disk space consumption. The download_agent_file endpoint creates persistent temporary files for every request but fails to delete them after they are served. An unauthenticated attacker can repeatedly call this endpoint to exhaust the server's disk space, causing the database or other system services to fail due to "No space left on device" errors, rendering the entire AutoGPT Platform backend unavailable to all users. This issue has been patched in version 0.6.52.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-33233 - AutoGPT Platform: Remote Code Execution via Unsafe Pickle Deserialization of Redis Cache Entries
CVE ID :CVE-2026-33233
Published : May 19, 2026, 2:16 a.m. | 1 hour, 8 minutes ago
Description :AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. In versions 0.6.34 through 0.6.51, the backend deserializes Redis cache bytes using pickle.loads without integrity/authenticity checks. The write path serializes values with pickle.dumps(...) into Redis and the read path blindly invokes pickle.loads(...) on bytes with no HMAC/signature or strict schema validation gating deserialization. If an attacker can poison a shared-cache key in Redis, arbitrary command execution is possible in the backend container context, affecting confidentiality, integrity, and availability. This issue has been fixed in version 0.6.52.
Severity: 7.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-33233
Published : May 19, 2026, 2:16 a.m. | 1 hour, 8 minutes ago
Description :AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. In versions 0.6.34 through 0.6.51, the backend deserializes Redis cache bytes using pickle.loads without integrity/authenticity checks. The write path serializes values with pickle.dumps(...) into Redis and the read path blindly invokes pickle.loads(...) on bytes with no HMAC/signature or strict schema validation gating deserialization. If an attacker can poison a shared-cache key in Redis, arbitrary command execution is possible in the backend container context, affecting confidentiality, integrity, and availability. This issue has been fixed in version 0.6.52.
Severity: 7.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-33234 - AutoGPT: SendEmailBlock's IP blocklist bypass allows SSRF via user-controlled SMTP server
CVE ID :CVE-2026-33234
Published : May 19, 2026, 2:16 a.m. | 1 hour, 8 minutes ago
Description :AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. In versions 0.1.0 through 0.6.51, SendEmailBlock in autogpt_platform/backend/backend/blocks/email_block.py accepts a user-supplied smtp_server (string) and smtp_port (integer) as per-execution block inputs, then passes them directly to Python's smtplib.SMTP() to open a raw TCP connection with no IP address validation. This completely bypasses the platform's hardened SSRF protections in backend/util/request.py — the validate_url_host() function and BLOCKED_IP_NETWORKS blocklist that every other block uses to block connections to private, loopback, link-local, and cloud metadata addresses. An authenticated user on a shared AutoGPT deployment can use this to perform non-blind internal network port scanning and service fingerprinting: smtplib reads the target's TCP banner on connect and embeds it in the exception message, which is persisted as user-visible block output via the execution framework. This issue has been fixed in version 0.6.52.
Severity: 5.0 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-33234
Published : May 19, 2026, 2:16 a.m. | 1 hour, 8 minutes ago
Description :AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. In versions 0.1.0 through 0.6.51, SendEmailBlock in autogpt_platform/backend/backend/blocks/email_block.py accepts a user-supplied smtp_server (string) and smtp_port (integer) as per-execution block inputs, then passes them directly to Python's smtplib.SMTP() to open a raw TCP connection with no IP address validation. This completely bypasses the platform's hardened SSRF protections in backend/util/request.py — the validate_url_host() function and BLOCKED_IP_NETWORKS blocklist that every other block uses to block connections to private, loopback, link-local, and cloud metadata addresses. An authenticated user on a shared AutoGPT deployment can use this to perform non-blind internal network port scanning and service fingerprinting: smtplib reads the target's TCP banner on connect and embeds it in the exception message, which is persisted as user-visible block output via the execution framework. This issue has been fixed in version 0.6.52.
Severity: 5.0 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-33514 - Discourse: Information Disclosure in Form Template API Due to Missing Authorization
CVE ID :CVE-2026-33514
Published : May 19, 2026, 2:16 a.m. | 1 hour, 8 minutes ago
Description :Discourse is an open-source discussion platform. In versions prior to 2026.1.4, 2026.3.1, 2026.4.1 and 2026.5.0-latest.1, an authenticated user on a Discourse instance with the form templates feature enabled can read the name and structured content of form templates that are intended exclusively for categories they are not authorized to access. Impact is limited to disclosure of site configuration metadata. This issue has been fixed in versions 2026.1.4, 2026.3.1, 2026.4.1 and 2026.5.0-latest.1.
Severity: 6.0 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-33514
Published : May 19, 2026, 2:16 a.m. | 1 hour, 8 minutes ago
Description :Discourse is an open-source discussion platform. In versions prior to 2026.1.4, 2026.3.1, 2026.4.1 and 2026.5.0-latest.1, an authenticated user on a Discourse instance with the form templates feature enabled can read the name and structured content of form templates that are intended exclusively for categories they are not authorized to access. Impact is limited to disclosure of site configuration metadata. This issue has been fixed in versions 2026.1.4, 2026.3.1, 2026.4.1 and 2026.5.0-latest.1.
Severity: 6.0 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-22069 - O+ Connect Local Privilege Escalation Vulnerability
CVE ID :CVE-2026-22069
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :A local privilege escalation vulnerability exists in O+ Connect because it fails to validate the identity of the caller on the pipe interface.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-22069
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :A local privilege escalation vulnerability exists in O+ Connect because it fails to validate the identity of the caller on the pipe interface.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-24792 - web_webview has a Race Condition vulnerability
CVE ID :CVE-2026-24792
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-24792
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-25110 - Sensors_medical_sensor has a NULL pointer dereference vulnerability
CVE ID :CVE-2026-25110
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-25110
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-25781 - kernel_liteos_a has an out-of-bounds write vulnerability
CVE ID :CVE-2026-25781
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS and it cannot be recovered.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-25781
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS and it cannot be recovered.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-25850 - filemanagement_storage_service has an improper preservation of permissions vulnerability
CVE ID :CVE-2026-25850
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause information leak
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-25850
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause information leak
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-27648 - web_webview has an out-of-bounds write vulnerability
CVE ID :CVE-2026-27648
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-27648
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-27766 - multimedia_audio_framework has a Race Condition vulnerability
CVE ID :CVE-2026-27766
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause information leak.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-27766
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause information leak.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-27781 - kernel_liteos_a has an integer overflow vulnerability
CVE ID :CVE-2026-27781
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-27781
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-28733 - filemanagement_storage_service has an use after free vulnerability
CVE ID :CVE-2026-28733
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker arbitrary code execution.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-28733
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker arbitrary code execution.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-28751 - filemanagement_storage_service has an improper input validation vulnerability
CVE ID :CVE-2026-28751
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-28751
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-33565 - kernel_linux_common_modules has a Race Condition vulnerability
CVE ID :CVE-2026-33565
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-33565
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-47307 - Samsung Open Source Walrus Null Pointer Dereference Denial of Service Vulnerability
CVE ID :CVE-2026-47307
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :NULL pointer dereference vulnerability in Samsung Open Source Walrus allows an attacker to cause a denial of service via a crafted WebAssembly module containing deeply nested instructions. This issue affects Walrus: f339b8ee4ea701772e8ae640b3d1b12ac02b1ae9.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-47307
Published : May 19, 2026, 4:16 a.m. | 3 hours, 8 minutes ago
Description :NULL pointer dereference vulnerability in Samsung Open Source Walrus allows an attacker to cause a denial of service via a crafted WebAssembly module containing deeply nested instructions. This issue affects Walrus: f339b8ee4ea701772e8ae640b3d1b12ac02b1ae9.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-47309 - Samsung Open Source Escargot Uncontrolled Recursion Deserialization Vulnerability
CVE ID :CVE-2026-47309
Published : May 19, 2026, 4:47 a.m. | 2 hours, 37 minutes ago
Description :Uncontrolled Recursion vulnerability in Samsung Open Source Escargot allows Oversized Serialized Data Payloads. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-47309
Published : May 19, 2026, 4:47 a.m. | 2 hours, 37 minutes ago
Description :Uncontrolled Recursion vulnerability in Samsung Open Source Escargot allows Oversized Serialized Data Payloads. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-47310 - Samsung Escargot After Free Pointer Manipulation
CVE ID :CVE-2026-47310
Published : May 19, 2026, 4:52 a.m. | 2 hours, 32 minutes ago
Description :Use after free vulnerability in Samsung Open Source Escargot allows Pointer Manipulation. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-47310
Published : May 19, 2026, 4:52 a.m. | 2 hours, 32 minutes ago
Description :Use after free vulnerability in Samsung Open Source Escargot allows Pointer Manipulation. This issue affects Escargot: 590345cc6258317c5da850d846ce6baaf2afc2d3.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...