CVE CyberSecurity Database News (Page 6)

Feb 25, 2026 Exploit Cisco

CVE-2026-20127 - Cisco Catalyst SD-WAN Peering Auth Bypass Lets Attackers Get Admin Rights

A newly disclosed vulnerability, CVE-2026-20127, affects Cisco Catalyst SD-WAN Controller (formerly SD-WAN vSmart) and SD-WAN Manager (formerly SD-WAN vManage). This flaw means that a remote

Feb 24, 2026

CVE-2026-26983 - Understanding ImageMagick’s MSL `<map>` Use-After-Free Vulnerability

ImageMagick is a popular, free tool for handling images. A big reason for its popularity is how flexible and scriptable it is, letting users automate

Feb 23, 2026 Exploit

CVE-2025-61143 - Exploring the NULL Pointer Dereference in libtiff (up to v4.7.1) and How to Stay Safe

--- Summary: Recently, a new vulnerability, CVE-2025-61143, was found in the popular TIFF image library, libtiff (versions up to 4.7.1). This bug is

Feb 20, 2026 Java Apache

CVE-2026-27133 - How Strimzi’s CA Chain Handling Led to Trusting Untrusted Kafka Brokers (With Exploit Details)

Strimzi makes it dead simple to run Apache Kafka on your Kubernetes or OpenShift cluster. But if you’re running versions .47. up to (but

Feb 20, 2026 XSS WordPress Exploit

CVE-2024-51915 - Stored XSS in LiteSpeed Cache Plugin (<= 6.5.2) — Full Exploit Details

A new security issue—CVE-2024-51915—was discovered in the popular LiteSpeed Cache plugin for WordPress, affecting all versions up to and including 6.5.2.