CVE Vulnerabilities - 14 April 2026

The rootio-fastmcp package contains a security flaw that could allow an attacker to run unauthorized code on your server. This could happen if an attacker sends a special network request to your serve...

A security patch has been released for rootio-fastmcp, a library used in some Root systems. If left unpatched, an attacker could potentially access unauthorized areas of the system by sending maliciou...

A security issue in rootio-fastmcp could allow an attacker to access sensitive data without permission. This affects users of the rootio-fastmcp package on the Root PyPI repository. To stay secure, up...

A patch has been released to prevent unauthorized access to sensitive data in the rootio-fastmcp software. This issue affects users who install and use rootio-fastmcp. To ensure security, update to th...

The rootio-fastmcp software has a weakness that could allow an attacker to gain access to sensitive configuration settings. This could lead to unauthorized changes to the system or data exposure. Upda...

The rootio-fastmcp package has a security flaw that allows unauthorized access to your system. This could allow attackers to run malicious code on your server. Update to the latest version of rootio-f...

The Apache HTTP Server has a vulnerability that allows an attacker to execute arbitrary commands without being authenticated. This means that anyone can potentially take control of the server. To prot...

A security issue exists in older versions of WordPress due to its outdated PHP version. This can allow an attacker to take control of a website, leading to data theft or unauthorized changes. To fix t...

A security issue was discovered in Oracle MySQL that could allow an attacker to access sensitive data. This affects non-BellSoft installations of Oracle MySQL. Users of affected systems should apply t...

A flaw in the Apache HTTP Server can cause the server to consume excessive resources, leading to a denial of service. This affects Apache HTTP Server versions 2.4.25 and 2.4.26. To mitigate this issue...

Apache HTTP Server allows an attacker to run malicious code on a server without a login. This could happen if a website is using an outdated version of the Apache HTTP Server software. To protect agai...

Apache Tomcat servers may expose sensitive information about the server and its configuration. This could allow an attacker to gather valuable information that could be used to launch targeted attacks...

Adobe Flash Player has a vulnerability that could allow hackers to run malicious code on your computer without your knowledge or permission. This could lead to data theft, system compromise, or other ...

This vulnerability does not affect BellSoft software, so no action is needed. All BellSoft products are safe to use. No update or patch is required for BellSoft users.

Apache's HTTP Server software has a critical security flaw that can be exploited by attackers to run malicious code on a server without needing a password. This means that if your website or web appli...

A vulnerability in Apache Tomcat's Java-based web server software allows attackers to execute arbitrary code on a server. This could lead to unauthorized access and data theft. Update to the latest ve...

An unpatched vulnerability in the WP GDPR Compliance plugin for WordPress allows an attacker to access sensitive data. This can lead to unauthorized access to user data, potentially compromising user ...

This vulnerability does not affect BellSoft software products. You do not need to take any action regarding this issue.