7.5

CVSS3.1

CVE-2026-22565 - Improper Input Validation Leads to Denial of Service in Ubiquiti UniFi Play Devices

An Improper Input Validation vulnerability could allow a malicious actor with access to the UniFi Play network to cause the device to stop responding.
 Affected Products: UniFi Play PowerAmp (Version 1.0.35 and earlier)
 UniFi Play Audio Port  (Version 1.0.24 and earlier)
 Mitigation: Update Un…

📅 Published: April 13, 2026, 9:28 p.m. 🔄 Last Modified: April 14, 2026, 9:16 p.m.

9.8

CVSS3.1

CVE-2026-22564 -

An Improper Access Control vulnerability could allow a malicious actor with access to the UniFi Play network to enable SSH to make unauthorized changes to the system.
 Affected Products: UniFi Play PowerAmp (Version 1.0.35 and earlier)
 UniFi Play Audio Port  (Version 1.0.24 and earlier)
 Mitig…

📅 Published: April 13, 2026, 9:28 p.m. 🔄 Last Modified: April 14, 2026, 1:14 p.m.

6.2

CVSS3.1

CVE-2026-40169 - ImageMagick: Heap buffer overflow (WRITE) in the YAML and JSON encoders

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, a crafted image could result in an out of bounds heap write when writing a yaml or json output, resulting in a crash. This issue has been fixed in version 7.1.2-19.

📅 Published: April 13, 2026, 9:25 p.m. 🔄 Last Modified: April 13, 2026, 10:16 p.m.

6.9

CVSS4.0

CVE-2026-6224 - nocobase plugin-workflow-javascript Vm.js createSafeConsole sandbox

A security flaw has been discovered in nocobase plugin-workflow-javascript up to 2.0.23. This issue affects the function createSafeConsole of the file packages/plugins/@nocobase/plugin-workflow-javascript/src/server/Vm.js. Performing a manipulation results in sandbox issue. The attack can be initia…

📅 Published: April 13, 2026, 9:15 p.m. 🔄 Last Modified: April 13, 2026, 10:16 p.m.

5.1

CVSS3.1

CVE-2026-34238 - ImageMagick: Integer overflow in despeckle operation causes heap buffer overflow on 32-bit builds

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, an integer overflow in the despeckle operation causes a heap buffer overflow on 32-bit builds that will result in an out of bounds write. This issue has been…

📅 Published: April 13, 2026, 9:14 p.m. 🔄 Last Modified: April 13, 2026, 10:16 p.m.

7.5

CVSS3.1

CVE-2026-33908 - ImageMagick is vulnerable to Stack Overflow in DestroyXMLTree()

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, Magick frees the memory of the XML tree via the `DestroyXMLTree()` function; however, this process is executed recursively with no depth limit imposed. When …

📅 Published: April 13, 2026, 9:06 p.m. 🔄 Last Modified: April 13, 2026, 10:16 p.m.

5.5

CVSS3.1

CVE-2026-33905 - ImageMagick has an Out-of-Bounds read via -sample operation

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, the -sample operation has an out of bounds read when an specific offset is set through the `sample:offset` define that could lead to an out of bounds read. T…

📅 Published: April 13, 2026, 9:02 p.m. 🔄 Last Modified: April 13, 2026, 10:16 p.m.

5.1

CVSS4.0

CVE-2026-6220 - HummerRisk Video File Download URL ServerService.java ServerService.addServer server-side request f…

A vulnerability was identified in HummerRisk up to 1.5.0. This vulnerability affects the function ServerService.addServer of the file ServerService.java of the component Video File Download URL Handler. Such manipulation of the argument streamIp leads to server-side request forgery. It is possible …

📅 Published: April 13, 2026, 9 p.m. 🔄 Last Modified: April 13, 2026, 10:16 p.m.

5.5

CVSS3.1

CVE-2026-33902 - ImageMagick: Stack Overflow via Recursive FX Expression Parsing

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, a stack overflow vulnerability in ImageMagick's FX expression parser allows an attacker to crash the process by providing a deeply nested expression. This is…

📅 Published: April 13, 2026, 8:59 p.m. 🔄 Last Modified: April 13, 2026, 10:16 p.m.

7.5

CVSS3.1

CVE-2026-33901 - ImageMagick has a Heap Buffer Overflow via MVG decoder

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, a heap buffer overflow occurs in the MVG decoder that could result in an out of bounds write when processing a crafted image. This issue has been fixed in ve…

📅 Published: April 13, 2026, 8:56 p.m. 🔄 Last Modified: April 13, 2026, 9:16 p.m.
Total resulsts: 344690
Page 51 of 34,469
« previous page » next page
Filters