@vuldb profile picture
VulDB 🛡 @vuldb

Number one vulnerability management & threat intelligence platform | no support on 𝐗, use vuldb.com/contact instead | 🐘 infosec.exchange/@vuldb

Joined August 2009
  • Tweets 37,448
  • Following 4
  • Followers 2,214
47 Photos and videos
Pinned Tweet
VulDB 🛡@vuldb
18 Mar 2025
Bring your vulnerability management to the next level with vuldb.com We provide high quality vulnerability data covering CVE, CPE, CWE, CVSS2, CVSS3, CVSS4, KEV, EPSS and CTI details like IOB, IOC, TTP, and IOA.
0:17
2
1
2
2,713
We have just added an important vulnerability affecting Yealink SIP-T46U (CVE-2026-12222) vuldb.com/vuln/370865

CVE-2026-12222 Yealink SIP-T46U Web FastCGI Service bttest mod_webd.BlueToothTest stack-based...

A vulnerability was determined in Yealink SIP-T46U 108.86.0.118. The identification of this vulnerability is CVE-2026-12222.

vuldb.com
27
The severity is increased for this new vulnerability affecting Yealink SIP-T46U (CVE-2026-12221) vuldb.com/vuln/370864

CVE-2026-12221 Yealink SIP-T46U Firmware Chunk Upload upgrade sprintf stack-based overflow

A vulnerability was found in Yealink SIP-T46U 108.86.0.118. This vulnerability was named CVE-2026-12221.

vuldb.com
17
It is possible to see elevated activities targeting fooplugins Photo Gallery by FooGallery Plugin (CVE-2026-9134) vuldb.com/vuln/370822/cti
19
A severe vulnerability was disclosed for GALAYOU Y4 (CVE-2026-12192) vuldb.com/vuln/370838

CVE-2026-12192 GALAYOU Y4 Web Server buffer overflow

A vulnerability was determined in GALAYOU Y4 1.0.0. This vulnerability is tracked as CVE-2026-12192.

vuldb.com
41
Our CTI team identified a lot of activities targeting codesupplyco Canvas Plugin (CVE-2026-9629) vuldb.com/vuln/370825/cti
34
The severity is increased for this new vulnerability affecting VS Revo RevoUninstaller (CVE-2026-12193) vuldb.com/vuln/370839

CVE-2026-12193 VS Revo RevoUninstaller IOCTL RevoDetector.sys IOCtl_Handler heap-based overflow

A vulnerability was identified in VS Revo RevoUninstaller 2.5.x/2.6.x. This vulnerability is listed as CVE-2026-12193. It is recommended to upgrade the affected component.

vuldb.com
39
A new vulnerability with increased severity was disclosed for Comma AI Openpilot (CVE-2026-12191) vuldb.com/vuln/370837

CVE-2026-12191 Comma AI Openpilot Pickle modeld.py pickle.loads deserialization

A vulnerability was found in Comma AI Openpilot 0.11. This vulnerability is identified as CVE-2026-12191.

vuldb.com
1
48
A severe vulnerability was disclosed for GL.iNet GL-MT3000 (CVE-2026-12187) vuldb.com/vuln/370833

CVE-2026-12187 GL.iNet GL-MT3000 Online Firmware Upgrade one_click_upgrade command injection

A security vulnerability has been detected in GL.iNet GL-MT3000 up to 4.4.5. This vulnerability is uniquely identified as CVE-2026-12187. Upgrading the affected component is advised.

vuldb.com
54
It is possible to see elevated activities targeting ladela Online Scheduling and Appointment Booking System Plugin (CVE-2026-5513) vuldb.com/vuln/370827/cti
44
Some increased actor activities are shown targeting MISP (CVE-2026-54358) vuldb.com/vuln/370709/cti
43
Attention, elevated activities detected targeting Zoom Workplace and Meeting SDK (CVE-2026-53408) vuldb.com/vuln/370718/cti
61
Improved indicators: DeimosC2 ( 1), Evilginx ( 1), RansomHub ( 1), Meterpreter ( 2), XWorm ( 1), VShell ( 3) and AsyncRAT ( 7). vuldb.com/actor #apt #cti #ioc

Actors

Predictive activity analysis of APT actors in social media, private forums, chat rooms, and darknet markets.

vuldb.com
1
1
58
A lot of offensive activity is originating from China vuldb.com/country/cn #china #country #cti #apt
17
A lot of offensive activities were identified targeting Naxclow Smart Doorbell X3 and other products (CVE-2026-28742) vuldb.com/vuln/370711/cti
35
Some increased actor activities are shown targeting Aqara IAM SSO Gateway (CVE-2026-50086) vuldb.com/vuln/370634/cti
64
We have just added an important vulnerability affecting D-Link DCS-935L (CVE-2026-12174) vuldb.com/vuln/370815

CVE-2026-12174 D-Link DCS-935L HTTP rhea snprintf format string

A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This vulnerability is traded as CVE-2026-12174.

vuldb.com
49
The severity is increased for this new vulnerability affecting Imagination Graphics DDK (CVE-2026-41157) vuldb.com/vuln/370729

CVE-2026-41157 Imagination Graphics DDK GPU user-space Driver out-of-bounds write

A vulnerability was found in Imagination Graphics DDK up to 1.18 RTM/23.2 RTM/24.2 RTM/25.3 RTM/26.1 RTM. This vulnerability was named CVE-2026-41157. It is advisable to upgrade the affected compon...

vuldb.com
36
There is a new vulnerability with elevated criticality in Naxclow Smart Doorbell X3 and other products (CVE-2026-42947) vuldb.com/vuln/370706

CVE-2026-42947 Naxclow Smart Doorbell X3/X Smart Home/V720/ix cam authorization

A weakness has been identified in Naxclow Smart Doorbell X3, X Smart Home, V720 and ix cam. This vulnerability is registered as CVE-2026-42947.

vuldb.com
33
There is a new vulnerability with elevated criticality in Ubiquiti UniFi OS Server and other products (CVE-2026-47370) vuldb.com/vuln/370526

CVE-2026-47370 Ubiquiti UniFi OS Server command injection (EUVD-2026-36384)

A weakness has been identified in Ubiquiti UniFi OS Server, Express, UDM, UDM-Pro, UDM-SE, UDM-Pro-Max, UDM-Beast, EFG, UDW, UDR, UDR7, UDR-5G, Express 7, UNVR, UNVR-Pro, UNVR-Instant, UNVR-G2,...

vuldb.com
90
Some increased actor activities are shown targeting KeepInMind Dashboard Notes Plugin (CVE-2026-9271) vuldb.com/vuln/370559/cti
33
Load more