A critical, unpatched vulnerability in Ollama’s GGUF model quantization engine, tracked as CVE-2026-5757, allows unauthenticated attackers to...
Year: 2026
A critical out-of-bounds buffer write vulnerability (CVE-2026-3298) has been disclosed in Python’s asyncio.ProactorEventLoop on Windows, allowing attackers to write...
Google has released an emergency security update for Chrome’s Stable channel, pushing versions 147.0.7727.116/117 for Windows and macOS, and 147.0.7727.116...
Microsoft has disclosed a critical Server-Side Request Forgery (SSRF) vulnerability, CVE-2026-35431, in Microsoft Entra ID Entitlement Management,...
Microsoft has disclosed a critical Server-Side Request Forgery (SSRF) vulnerability in Microsoft Purview eDiscovery, tracked as CVE-2026-26150,...
A high-severity Cypher injection vulnerability (CVE-2026-41274, CVSS 8.1) has been disclosed in Flowise’s GraphCypherQAChain node. Allowing authenticated...
Marimo, a popular open‑source reactive Python notebook used in data science and AI workflows, is under active...
Microsoft has disclosed CVE-2026-32172, a critical remote code execution (RCE) vulnerability in Microsoft Power Apps caused by...
A high-severity vulnerability in Microsoft Defender, tracked as CVE-2026-33825, allows attackers with low-level local access to escalate...
A maximum-severity vulnerability in the paperclipai server npm package enables any remote, unauthenticated attacker to execute arbitrary...