6.7

CVSS3.1

CVE-2026-40224 -

In systemd 259 before 260, there is local privilege escalation in systemd-machined because varlink can be used to reach the root namespace.

📅 Published: April 10, 2026, 3:14 p.m. 🔄 Last Modified: April 10, 2026, 3:14 p.m.

8.6

CVSS4.0

CVE-2026-29002 - CouchCMS Privilege Escalation via f_k_levels_list Parameter

CouchCMS contains a privilege escalation vulnerability that allows authenticated Admin-level users to create SuperAdmin accounts by tampering with the f_k_levels_list parameter in user creation requests. Attackers can modify the parameter value from 4 to 10 in the HTTP request body to bypass author…

📅 Published: April 10, 2026, 3:11 p.m. 🔄 Last Modified: April 10, 2026, 3:11 p.m.

4.7

CVSS3.1

CVE-2026-40223 -

In systemd 258 before 260, a local unprivileged user can trigger an assert when a Delegate=yes and User=<unset> unit exists and is running.

📅 Published: April 10, 2026, 3:10 p.m. 🔄 Last Modified: April 10, 2026, 3:10 p.m.

8.8

CVSS3.1

CVE-2026-40217 -

LiteLLM through 2026-04-08 allows remote attackers to execute arbitrary code via bytecode rewriting at the /guardrails/test_custom_code URI.

📅 Published: April 10, 2026, 1:43 p.m. 🔄 Last Modified: April 10, 2026, 1:43 p.m.

0.0

CVE-2026-6069 - CVE-2026-6069

NASM’s disasm() function contains a stack based buffer overflow when formatting disassembly output, allowing an attacker triggered out-of-bounds write when `slen` exceeds the buffer capacity.

📅 Published: April 10, 2026, 1:30 p.m. 🔄 Last Modified: April 10, 2026, 1:30 p.m.
Load More Vulnerability
avatar

Mehmet Ince

@mdisec

CVE stats coming here

avatar

Nuri Çilengir

@ncilengir

CVE stats coming here

avatar

@aydinnyunus

CVE stats coming here

avatar

Onurcan Genç

@onurcangnc

CVE stats coming here

avatar

Seyit Sigirci

@h3xecute

CVE stats coming here

avatar

Ali Ä°ltizar

@iltosec

CVE stats coming here

avatar

@b3rsec

CVE stats coming here

avatar

@furkank

CVE stats coming here

avatar

kutaysec

@kutaysec

CVE stats coming here