In Foreman versions prior to 6.16.10 a medium severity vulnerability CVE-2026-5135 was detected. This vulnerability allows an authenticated user with host-edit permissions to retarget an existing lookup value override to a different host. To address this issue, users should upgrade Foreman to version 6.16.10 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-5135.
Read more IT Business ManagementIn PHP a critical severity vulnerability CVE-2026-34116 was detected. This vulnerability allows unauthenticated attackers to execute arbitrary commands on the server. To address this issue, users should upgrade PHP to the latest available version. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-34116.
Read more Web DevelopmentIn Kibana versions from 8.0.0 up to and including 8.19.14 a medium severity vulnerability CVE-2026-49087 was detected. This vulnerability allows an authenticated user to cause a denial of service by submitting a specially crafted bulk deletion request. To address this issue, users should upgrade Kibana to version 8.19.15 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-49087.
Read more Data AnalyticsIn Foreman versions prior to 6.16.10 a medium severity vulnerability CVE-2026-5138 was detected. This vulnerability allows an authenticated user with host-edit permissions to access information from other tenants. To address this issue, users should upgrade Foreman to version 6.16.10 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-5138.
Read more IT Business ManagementIn Foreman versions prior to 6.16.10 a high severity vulnerability CVE-2026-5136 was detected. This vulnerability allows attackers to gain unintended role permissions. To address this issue, users should upgrade Foreman to version 6.16.10 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-5136.
Read more IT Business ManagementIn Apache Tomcat versions 11.0.0-M1 through 11.0.22, 10.1.0-M1 through 10.1.55, 9.0.0.M1 through 9.0.118, 8.5.0 through 8.5.100, and 7.0.0 through 7.0.109 a medium severity vulnerability CVE-2026-50229 was detected. This vulnerability allows a remote attacker to inject malicious scripts into the ‘number guess example’ web page. To address this issue, users should upgrade Apache Tomcat to the latest available version. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2026-50229.
Read more Application Development