CVE Vulnerabilities - 27 February 2026

Accel Platform's IM-LogicDesigner Allows Malicious File Execution

CVE-2026-27776

IM-LogicDesigner module of intra-mart Accel Platform contains insecure deserialization issue. This can be exploited only when IM-LogicDesigner is depl...

8.6

XWEB Pro 1.12.1 and prior: Malicious Firmware Updates

CVE-2026-24517

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execu...

7.2

Nimiq Proof-of-Stake Protocol: Validator Node Crash Risk

CVE-2026-28402

nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.2...

7.1

Actual Server Sync API Allows Cross-User Access to Budget Files

CVE-2026-27638 GHSA-qmjj-p7m9-wjrv

In multi-user mode (OpenID), the sync API endpoints (`/sync/*`) don't verify that the authenticated user owns or has access to the file being operated...

5.7

OpenEMR (8.0.0 and earlier) allows accessing other patients' data

CVE-2026-25147

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, in `portal/portal_pay...

7.1

Libvips 8.19.0 Allows Local Attackers to Read Sensitive Data

CVE-2026-3283

A vulnerability has been found in libvips 8.19.0. This issue affects the function vips_extract_band_build of the file libvips/conversion/extract.c. Th...

1.9

libvips: Unauthenticated Local Data Exposure in Image Processing

CVE-2026-3282

A flaw has been found in libvips 8.19.0. This vulnerability affects the function vips_unpremultiply_build of the file libvips/conversion/unpremultiply...

1.9

PowerShell Universal stores OpenID Connect secret in plain text

CVE-2026-3277

The OpenID Connect (OIDC) authentication configuration in PowerShell Universal before 2026.1.3 stores the OIDC client secret in cleartext in the .un...

6.8

Red Hat Ansible Automation Platform: Credential Theft via Misleading Routes

CVE-2025-9909

A flaw was found in the Red Hat Ansible Automation Platform Gateway route creation component. This vulnerability allows credential theft via the creat...

6.7

Red Hat Ansible EDA Event Streams: Sensitive Data Exposure

CVE-2025-9908

A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible (EDA) Event Streams. This vulnerability allows an authenticated user...

6.7

Red Hat Ansible Automation Platform exposes sensitive credentials and infrastructure info

CVE-2025-9907

A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible (EDA) Event Stream API. This vulnerability allows exposure of sensit...

6.7

Soliton Systems K.K. Installers: Incorrect Default Permissions Expose System Privileges

CVE-2026-27653

The installers for multiple products provided by Soliton Systems K.K. contain an issue with incorrect default permissions, which may allow arbitrary c...

5.4

Malicious Files Can Run with IJ Scan Utility's Privileges

CVE-2026-1585

An unquoted Windows service executable path vulnerability in IJ Scan Utility for Windows versions 1.1.2 through 1.5.0 may allow a local attacker to ex...

8.4

Vim Prior to 9.2.0075: Malformed Tags File Can Crash the Editor

CVE-2026-28419

Vim is an open source, command line text editor. Prior to version 9.2.0075, a heap-based buffer underflow exists in Vim's Emacs-style tags file parsin...

6.6

XWEB Pro Firmware Update Allows Remote Code Execution

CVE-2026-25195

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code exec...

6.6

ZITADEL has potential SSRF via Actions

CVE-2026-27945 GHSA-7777-fhq9-592v

### Summary ZITADEL Action V2 (introduced as early preview in 2.59.0, beta in 3.0.0 and GA in 4.0.0) is a webhook based approach to allow developers ...

2.1

ZITADEL Users Can Fake Email and Phone Verification

CVE-2026-27946 GHSA-282g-fhmx-xf54

### Summary A vulnerability in ZITADEL's self-management capability allowed users to mark their email and phone as verified without going through an ...

8.2

Kiteworks: Unrestricted Access to Internal Services Through DNS Attack

CVE-2026-28271

Kiteworks is a private data network (PDN). Prior to version 9.2.0, a vulnerability in Kiteworks configuration functionality allows bypassing of SSRF p...

6.5

Perl HTTP::Session2 versions 1.09 and below allow session ID tampering

CVE-2018-25160

HTTP::Session2 versions through 1.09 for Perl does not validate the format of user provided session ids, enabling code injection or other impact depen...

6.5

Docker API Exposes Sensitive Info via Unvalidated Container ID

CVE-2026-27734 GHSA-phwh-4f42-gwf3

### Summary The hub's authenticated API endpoints GET /api/beszel/containers/logs and GET /api/beszel/containers/info pass the user-supplied "contain...

6.5

HTTP::Session2 for Perl generates weak session IDs on Windows

CVE-2026-3255

HTTP::Session2 versions before 1.12 for Perl for Perl may generate weak session ids using the rand() function. The HTTP::Session2 session id generato...

6.5

ClipBucket Video Sharing Platform: Unauthorized Item Access

CVE-2026-28354

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 #59, collection item operations are vulnerable to authorization flaws, ...

5.7

Seerr API Exposes User Settings for Any User

CVE-2026-27793

Seerr is an open-source media request and discovery manager for Jellyfin, Plex, and Emby. Prior to version 3.1.0, the `GET /api/v1/user/:id` endpoint ...

6.5

SODOLA SL902-SWTGW124AS Management Interface Allows Unauthorized Actions

CVE-2026-27758

SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 contain a cross-site request forgery vulnerability in its management interface that allows ...

5.1

SODOLA SL902-SWTGW124AS: Weak Session Cookies Expose Device to Unauthorized Access

CVE-2026-27754

SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 use the cryptographically broken MD5 hash function for session cookie generation, weakening...

6.9