RSJ CVE Dashboard // cve.rlstjohn.com
Built 2026-06-28 10:08 UTC · Auto-refreshed daily
CISA KEV — Last 30 Days  ·  Stack-filtered  ·  Newest first Catalog total: 1,629
CVE-2026-54420 KNOWN EXPLOITED
Product cPanel Plugin Vendor LiteSpeed Added to KEV 2026-06-15 FCEB Deadline 2026-06-18
LiteSpeed cPanel Plugin UNIX Symbolic Link (Symlink) Following Vulnerability
LiteSpeed cPanel plugin contains a UNIX symbolic link (Symlink) following vulnerability that could allow a user with FTP or web shell access on a shared hosting server running CloudLinux/CageFS.
Required Action: Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-11645 KNOWN EXPLOITED
Product Chromium V8 Vendor Google Added to KEV 2026-06-09 FCEB Deadline 2026-06-23
Google Chromium V8 Out-of-Bounds Read and Write Vulnerability
Google Chromium V8 out-of-bounds read and write vulnerability that could allow a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
Required Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2022-0492 KNOWN EXPLOITED
Product Kernel Vendor Linux Added to KEV 2026-06-02 FCEB Deadline 2026-06-05
Linux Kernel Improper Authentication Vulnerability
Linux Kernel contains an improper authentication vulnerability which could allow for privilege escalation via the cgroups v1 release_agent feature.
Required Action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
NVD HIGH / CRITICAL — Last 14 Days  ·  Stack-filtered  ·  Score descending  ·  Max 20
CVE-2026-48930 9.8 CRITICAL
Published 2026-06-26
A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebinding due to c-string truncation in resolver bindings. This vulnerability affects all suppo…
References: support@hackerone.com
CVE-2026-50574 8.3 HIGH
Published 2026-06-23
yt-dlp is a command-line audio/video downloader. Prior to 2026.06.09, if aria2c is used as an external downloader for a fragmented manifest format (such as an HLS/DASH stream), yt-dlp passes insuffici…
References: security-advisories@github.com
CVE-2026-56351 8.2 HIGH
Published 2026-06-24
n8n before version 2.4.0 contains a sql injection vulnerability in MySQL, PostgreSQL, and Microsoft SQL nodes that allows authenticated users to inject arbitrary SQL through unescaped identifier value…
References: disclosure@vulncheck.com · disclosure@vulncheck.com
CVE-2026-55200 8.1 HIGH
Published 2026-06-17
libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2_transport_read() that fails to enforce upper bounds on packet_length field. Remote attackers can s…
References: disclosure@vulncheck.com · disclosure@vulncheck.com · disclosure@vulncheck.com
CVE-2026-44726 7.4 HIGH
Published 2026-06-23
Deno is a JavaScript, TypeScript, and WebAssembly runtime. From 2.0.0 until 2.7.8, a flaw in Deno's Node.js tls compatibility layer could cause a TLS client to transmit application data in plaintext a…
References: security-advisories@github.com
CVE-2026-9261 6.8 MEDIUM
Published 2026-06-16
Use of weak SSH cryptographic algorithms in Canon EOS Network Setting Tool Version 1.5.0 or earlier
References: f98c90f0-e9bd-4fa7-911b-51993f3571fd · f98c90f0-e9bd-4fa7-911b-51993f3571fd · f98c90f0-e9bd-4fa7-911b-51993f3571fd
CVE-2026-9258 6.5 MEDIUM
Published 2026-06-16
Improper validation of SSH host keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier
References: f98c90f0-e9bd-4fa7-911b-51993f3571fd · f98c90f0-e9bd-4fa7-911b-51993f3571fd · f98c90f0-e9bd-4fa7-911b-51993f3571fd
CVE-2026-48776 4.2 MEDIUM
Published 2026-06-17
LangGraph Python SDK is used to connect to running LangGraph API servers, manage assistants, threads and stream runs from Python applications. Versions 0.3.14 and prior have unsafe URL path constructi…
References: security-advisories@github.com · security-advisories@github.com
Monitored Stack

Infrastructure

Proxmox VE (NUC-Lab)NUC-Lab · 192.168.1.100
Debian 12Pi-Primary (.192), Pi-Secondary (.218)
Linux kernel6.1.21-v7+
Windows 11NUC desktop

Network / DNS

AdGuard Homev0.107.77 · current
Tailscale1.98.4 · 1.98.5 pending
WireGuardall nodes

Services

nginxreverse proxy
OpenSSHall nodes
Cloudflare PagesWorkers / ZT
Python 3.xautomation / build
Node.jstooling
Known Pending Patches

Action Required on Return Home

CVE-2026-31431 Kernel LPE — pending on Pi-Primary (.192) and Pi-Secondary (.218) · patch on return home
Tailscale 1.98.5 One patch ahead on both Pis · update on return home
Notable CVEs (Out-of-Stack, Situational Awareness)
Splunk CVE-2026-20253 9.8 CRITICAL NOT IN STACK
Not in stack — tracking for situational awareness.
Joomla CVE-2026-48907 10.0 CRITICAL CISA KEV NOT IN STACK
CISA KEV — FCEB deadline pending. Not in stack but CVSSv3 10.0 warrants awareness.