Browsing: Alerts

Serial number: AV26-467Date: May 14, 2026 On May 13, 2026, GitLab published a security advisory to address vulnerabilities in the following products:…

HomeDescriptionWEBCON BPS is vulnerable to Reflected XSS via one of parameters used by “/openinmobileapp” endpoint. An attacker can send a…

For the oldstable distribution (bookworm), these problems have been fixedin version 1:140.10.2esr-1~deb12u1.For the stable distribution (trixie), these problems have been…

HomeDescriptionUncontrolled Recursion vulnerability in Apache Commons. When processing an untrusted configuration file, Commons Configuration will throw a StackOverflowError for YAML…

View CSAF Summary ABB became aware of multiple internally discovered vulnerabilities in the WebPro SNMP card PowerValue for the product…

For the oldstable distribution (bookworm), this problem has been fixedin version 1.52.0-1+deb12u3.For the stable distribution (trixie), this problem has been…

CVSSv3 Score: 9.1 A missing authorization vulnerability [CWE-862] in FortiSandbox, FortiSandbox Cloud and FortiSandbox PaaS WEB UI may allow an…

View CSAF Summary ABB became aware of severe vulnerability in the products versions listed as affected in the advisory. An…

CVSSv3 Score: 6.5 An OS command injection vulnerabtility [CWE-78] in FortiAP and FortiAP-W2 cli may allow an authenticated attacker to…

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the CoreSymbolication framework…