CVE Vulnerabilities - 17 February 2026

Red Hat Ceph Storage 8.1 has been updated with security patches and bug fixes. This update affects the underlying Ceph storage system used by Red Hat products. If not applied, this could leave your st...

A security update is available for the Go programming language, which fixes a potential security issue. This issue affects Go installations and could allow an attacker to execute arbitrary code. Updat...

Some Go development tools for Red Hat Enterprise Linux 8 are outdated and need to be updated to prevent potential security risks. This update will ensure the tools are secure and up-to-date, protectin...

A security issue was found in osbuild-composer, a tool used to build operating system images. An attacker could potentially upload malicious files, allowing them to inject malicious data into the syst...

A security update is available for osbuild-composer, which is used to build and compose container images. If not updated, a remote attacker could potentially access and modify container build processe...

IBM Concert versions 1.0.0 to 2.1.0 have incorrect file permissions, allowing a knowledgeable local user to gain elevated access. This could lead to unauthorized access to sensitive data or system fun...

OpenClaw's MS Teams integration may leak sensitive tokens to unauthorized domains when downloading attachments. If you use MS Teams, update to OpenClaw 2026.2.1 or disable the Teams extension to preve...

A security flaw in the SSH service of Beetel 777VR1 routers up to version 01.00.09 allows hackers to use weak encryption, which can put your data at risk. This is a concern because hackers can potenti...

A security weakness in the Node Sonos API's macOS text-to-speech feature allows an attacker to execute arbitrary system commands. This could potentially allow an attacker to take control of the system...

The OpenClaw Twitch plugin doesn't properly block unauthorized users from triggering agent pipelines. This affects OpenClaw installations with the Twitch plugin enabled. To fix this, update to version...

An unknown part of the system's web reporting feature is vulnerable to a security attack that could allow hackers to access sensitive data. This could happen if an attacker knows how to manipulate cer...

An unknown feature in Huace Monitoring and Early Warning System 2.2 can be exploited by entering malicious data, potentially allowing an attacker to access sensitive data without permission. This issu...

An attacker could potentially load malicious content from the internet by specifying a full URL in a request. This could lead to security issues if the loaded content is executed or accessed. Rocket T...

A security update is available for the Linux kernel on Red Hat systems. This update fixes a vulnerability that could allow an attacker to access sensitive information. It's recommended to apply the up...

A security update is available for the Red Hat Linux kernel. This update addresses a critical vulnerability that could allow an attacker to execute arbitrary code on a system. It is recommended that a...

OpenClaw Node is affected by a security issue that allows attackers to bypass security checks if they can run a command on the system. This happens when the system is configured to ask for approval be...

Older versions of Dell SmartFabric OS10 are vulnerable to a security risk where attackers with remote access can execute unauthorized commands. This could lead to unauthorized changes to the system or...

A security issue in Jizhicms 2.5.6 allows an attacker to delete articles by manipulating the 'data' parameter, potentially disrupting website content. This affects sites using Jizhicms version 2.5.6. ...

A security flaw in the Wavlink WL-NU516U1's firewall settings can be exploited remotely, allowing an attacker to execute malicious code on the device. This can happen if the device is not updated to a...

The WordPress RSS Aggregator plugin has a security weakness that allows attackers to inject malicious scripts into pages visited by users. This can happen if a user clicks on a link sent by an attacke...

The TeamT5 ThreatSonar Anti-Ransomware software doesn't check files uploaded to it thoroughly, allowing attackers to upload malicious files that can harm your server. This means an attacker with admin...

A security issue exists in the lty628 aidigu plugin for WordPress that can allow an attacker to inject malicious code into the password input field on the Password tool page. This could potentially al...

OpenClaw versions 2.0.0-beta3 to 2026.2.12 have a security issue that allows an attacker to inject messages into specific sessions. This can happen if an attacker has a valid token and can guess or de...

A security update is available for the Python wheel package on Red Hat systems. This update fixes a potential security issue that could allow an attacker to execute malicious code. Users are advised t...

This issue affects Apache Arrow C++ versions 15.0.0 to 23.0.0. If you're reading certain types of files with pre-buffering turned on, it could cause random crashes or memory corruption. Check if you'r...