Overview
Description
Ruby JSON is a JSON implementation for Ruby. From version 2.14.0 to before versions 2.15.2.1, 2.17.1.2, and 2.19.2, a format string injection vulnerability can lead to denial of service attacks or information disclosure, when the allow_duplicate_key: false parsing option is used to parse user supplied documents. This issue has been patched in versions 2.15.2.1, 2.17.1.2, and 2.19.2.
Statistics
- 1 Post
Last activity: 19 hours ago
Overview
- argoproj
- Argo CD
02 May 2026
Published
02 May 2026
Updated
CVSS v3.1
HIGH (7.7)
EPSS
Pending
KEV
Description
In Argo CD 3.2.0 before 3.2.11 and 3.3.0 before 3.3.9, ServerSideDiff allows reading cleartext Kubernetes Secret data.
Statistics
- 1 Post
Last activity: 4 hours ago
Fediverse
⚠️ HIGH-severity vuln (CVE-2026-43824) in Argo CD 3.2.0 – 3.2.10 & 3.3.0 – 3.3.8: ServerSideDiff leaks cleartext Kubernetes Secrets. Restrict feature use & monitor for patches. Details: https://radar.offseq.com/threat/cve-2026-43824-cwe-212-improper-removal-of-sensiti-5eb1043e #OffSeq #ArgoCD #Kubernetes #Vuln
Overview
- IBM
- WebSphere Application Server - Liberty
25 Mar 2026
Published
27 Mar 2026
Updated
CVSS v3.1
MEDIUM (6.7)
EPSS
0.01%
KEV
Description
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty could provide weaker than expected security when administering security settings.
Statistics
- 1 Post
Last activity: 14 hours ago
Overview
- Microsoft
- ASP.NET Core 10.0
21 Apr 2026
Published
30 Apr 2026
Updated
CVSS v3.1
CRITICAL (9.1)
EPSS
0.02%
KEV
Description
Improper verification of cryptographic signature in ASP.NET Core allows an unauthorized attacker to elevate privileges over a network.
Statistics
- 1 Post
Last activity: 3 hours ago