NIXPKGS-2026-1839

GitHub issue published 1 week, 4 days ago

Permalink CVE-2026-45192

6.5 MEDIUM

• CVSS version (CVSS): 3.1
• Attack Vector (AV): Network (N)
• Attack Complexity (AC): Low (L)
• Privileges Required (PR): Low (L)
• User Interaction (UI): None (N)
• Scope (S): Unchanged (U)
• Confidentiality (C): High (H)
• Integrity (I): None (N)
• Availability (A): None (N)
• Modified Attack Vector (MAV): Network (N)
• Modified Attack Complexity (MAC): Low (L)
• Modified Privileges Required (MPR): Low (L)
• Modified User Interaction (MUI): None (N)
• Modified Confidentiality (MC): High (H)
• Modified Scope (MS): Unchanged (U)
• Modified Integrity (MI): None (N)
• Modified Availability (MA): None (N)

updated 1 week, 4 days ago by @LeSuisse Activity log

• Created suggestion 1 week, 5 days ago
• @LeSuisse accepted 1 week, 5 days ago
• @LeSuisse published on GitHub 1 week, 4 days ago

Apache Airflow: Incomplete Redaction of Sensitive Fields in Connection Extra API Response

• https://github.com/apache/airflow/pull/66673 patch
• https://lists.apache.org/thread/r2q93dg2wp5h9sd9vh6y4y5ljqd9crdd vendor-advisory
• http://www.openwall.com/lists/oss-security/2026/06/01/3

---

apache-airflow

• <3.2.2

NIXPKGS-2026-1840

GitHub issue published 1 week, 4 days ago

Permalink CVE-2026-48839

7.1 HIGH

• CVSS version (CVSS): 3.1
• Attack Vector (AV): Network (N)
• Attack Complexity (AC): Low (L)
• Privileges Required (PR): None (N)
• User Interaction (UI): Required (R)
• Scope (S): Changed (C)
• Confidentiality (C): Low (L)
• Integrity (I): Low (L)
• Availability (A): Low (L)
• Modified Attack Vector (MAV): Network (N)
• Modified Attack Complexity (MAC): Low (L)
• Modified Privileges Required (MPR): None (N)
• Modified User Interaction (MUI): Required (R)
• Modified Confidentiality (MC): Low (L)
• Modified Scope (MS): Changed (C)
• Modified Integrity (MI): Low (L)
• Modified Availability (MA): Low (L)

updated 1 week, 4 days ago by @LeSuisse Activity log

• Created suggestion 1 week, 5 days ago
• @LeSuisse accepted 1 week, 5 days ago
• @LeSuisse published on GitHub 1 week, 4 days ago

WordPress WP Statistics plugin <= 14.16.6 - Cross Site Scripting (XSS) vulnerability

• https://patchstack.com/database/wordpress/plugin/wp-statistics/vulnerability/wo… vdb-entry

---

wp-statistics

• =<14.16.6

NIXPKGS-2026-1838

GitHub issue published 1 week, 4 days ago

Permalink CVE-2026-10157

5.5 MEDIUM

• CVSS version (CVSS): 4.0
• Attack Vector (AV): Network (N)
• Attack Complexity (AC): Low (L)
• Attack Requirement (AT): None (N)
• Privileges Required (PR): None (N)
• User Interaction (UI): None (N)
• Vulnerable System Impact Confidentiality (VC): Low (L)
• Vulnerable System Impact Integrity (VI): Low (L)
• Vulnerable System Impact Availability (VA): Low (L)
• Subsequent System Impact Confidentiality (SC): None (N)
• Subsequent System Impact Integrity (SI): None (N)
• Subsequent System Impact Availability (SA): None (N)
• Exploit Maturity (E): POC (P)
• Modified Attack Vector (MAV): Network (N)
• Modified Attack Complexity (MAC): Low (L)
• Modified Attack Requirement (MAT): None (N)
• Modified Privileges Required (MPR): None (N)
• Modified User Interaction (MUI): None (N)
• Modified Vulnerable System Impact Confidentiality (MVC): Low (L)
• Modified Vulnerable System Impact Integrity (MVI): Low (L)
• Modified Vulnerable System Impact Availability (MVA): Low (L)
• Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
• Modified Subsequent System Impact Integrity (MSI): Negligible (N)
• Modified Subsequent System Impact Availability (MSA): Negligible (N)
• Safety (S): Not Defined (X)
• Automatable (AU): Not Defined (X)
• Recovery (R): Not Defined (X)
• Value Density (V): Not Defined (X)
• Vulnerability Response Effort (RE): Not Defined (X)
• Provider Urgency (U): Not Defined (X)
• Confidentiality Req. (CR): Not Defined (X)
• Integrity Req. (IR): Not Defined (X)
• Availability Req. (AR): Not Defined (X)

updated 1 week, 4 days ago by @LeSuisse Activity log

• Created suggestion 1 week, 5 days ago
• @LeSuisse ignored
  4 references

  • https://github.com/open5gs/open5gs/
  • Submit #818939 | open5gs Open5GS v2.7.6…
  • CVE-2026-10157 | CVE Analysis and Report
  • VDB-367410 | CTI Indicators (IOB, IOC, …
  1 week, 5 days ago
• @LeSuisse ignored package open5gs-webui 1 week, 5 days ago
• @LeSuisse accepted 1 week, 5 days ago
• @LeSuisse published on GitHub 1 week, 4 days ago

Open5GS NGAP PathSwitchRequest Message ngap-handler.c improper authentication

• VDB-367410 | Open5GS NGAP PathSwitchRequest Message ngap-handler.c improper authentication vdb-entry
• https://github.com/open5gs/open5gs/issues/4393 issue-trackingexploit
• https://github.com/open5gs/open5gs/pull/4557 issue-trackingpatch
• https://github.com/open5gs/open5gs/commit/a188e36b1741ffc2252133f59b1bda4f14d3c… patch

Ignored references (4)

• VDB-367410 | CTI Indicators (IOB, IOC, IOA) permissions-requiredsignature
• CVE-2026-10157 | CVE Analysis and Report third-party-advisory
• Submit #818939 | open5gs Open5GS v2.7.6 Improper Authentication third-party-advisory
• https://github.com/open5gs/open5gs/ product

---

Open5GS

• ==2.7.1
• ==2.7.4
• ==2.7.0
• ==2.7.3
• ==2.7.5
• ==2.7.6
• ==2.7.2

NIXPKGS-2026-1837

GitHub issue published 1 week, 4 days ago

Permalink CVE-2026-10232

1.9 LOW

• CVSS version (CVSS): 4.0
• Attack Vector (AV): Local (L)
• Attack Complexity (AC): Low (L)
• Attack Requirement (AT): None (N)
• Privileges Required (PR): Low (L)
• User Interaction (UI): None (N)
• Vulnerable System Impact Confidentiality (VC): Low (L)
• Vulnerable System Impact Integrity (VI): Low (L)
• Vulnerable System Impact Availability (VA): Low (L)
• Subsequent System Impact Confidentiality (SC): None (N)
• Subsequent System Impact Integrity (SI): None (N)
• Subsequent System Impact Availability (SA): None (N)
• Exploit Maturity (E): POC (P)
• Modified Attack Vector (MAV): Local (L)
• Modified Attack Complexity (MAC): Low (L)
• Modified Attack Requirement (MAT): None (N)
• Modified Privileges Required (MPR): Low (L)
• Modified User Interaction (MUI): None (N)
• Modified Vulnerable System Impact Confidentiality (MVC): Low (L)
• Modified Vulnerable System Impact Integrity (MVI): Low (L)
• Modified Vulnerable System Impact Availability (MVA): Low (L)
• Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
• Modified Subsequent System Impact Integrity (MSI): Negligible (N)
• Modified Subsequent System Impact Availability (MSA): Negligible (N)
• Safety (S): Not Defined (X)
• Automatable (AU): Not Defined (X)
• Recovery (R): Not Defined (X)
• Value Density (V): Not Defined (X)
• Vulnerability Response Effort (RE): Not Defined (X)
• Provider Urgency (U): Not Defined (X)
• Confidentiality Req. (CR): Not Defined (X)
• Integrity Req. (IR): Not Defined (X)
• Availability Req. (AR): Not Defined (X)

updated 1 week, 4 days ago by @LeSuisse Activity log

• Created suggestion 1 week, 5 days ago
• @LeSuisse ignored
  4 references

  • https://github.com/assimp/assimp/
  • Submit #821192 | Assimp commit 17c12da …
  • CVE-2026-10232 | CVE Analysis and Report
  • VDB-367511 | CTI Indicators (IOB, IOC, …
  1 week, 5 days ago
• @LeSuisse accepted 1 week, 5 days ago
• @LeSuisse published on GitHub 1 week, 4 days ago

Assimp ASE File scene.cpp ~aiNode use after free

• VDB-367511 | Assimp ASE File scene.cpp ~aiNode use after free technical-descriptionvdb-entry
• https://github.com/assimp/assimp/issues/6617 issue-tracking
• https://github.com/user-attachments/files/27200601/poc.zip exploit

Ignored references (4)

• VDB-367511 | CTI Indicators (IOB, IOC, IOA) permissions-requiredsignature
• CVE-2026-10232 | CVE Analysis and Report third-party-advisory
• Submit #821192 | Assimp commit 17c12da Memory Corruption third-party-advisory
• https://github.com/assimp/assimp/ product

---

Assimp

• ==6.0.4
• ==6.0.3
• ==6.0.1
• ==6.0.2
• ==6.0.0

NIXPKGS-2026-1836

GitHub issue published 1 week, 4 days ago

Permalink CVE-2026-42358

updated 1 week, 4 days ago by @LeSuisse Activity log

• Created suggestion 1 week, 5 days ago
• @LeSuisse accepted 1 week, 5 days ago
• @LeSuisse published on GitHub 1 week, 4 days ago

Apache Airflow: Variable masker depth-limit bypass returns cleartext nested secrets

• https://github.com/apache/airflow/pull/65912 patch
• https://lists.apache.org/thread/33635mv3zjb75wn5453c5yf9trs8x2om vendor-advisory

---

apache-airflow

• <3.2.2

NIXPKGS-2026-1835

GitHub issue published 1 week, 4 days ago

Permalink CVE-2026-10268

1.9 LOW

• CVSS version (CVSS): 4.0
• Attack Vector (AV): Local (L)
• Attack Complexity (AC): Low (L)
• Attack Requirement (AT): None (N)
• Privileges Required (PR): Low (L)
• User Interaction (UI): None (N)
• Vulnerable System Impact Confidentiality (VC): None (N)
• Vulnerable System Impact Integrity (VI): None (N)
• Vulnerable System Impact Availability (VA): Low (L)
• Subsequent System Impact Confidentiality (SC): None (N)
• Subsequent System Impact Integrity (SI): None (N)
• Subsequent System Impact Availability (SA): None (N)
• Exploit Maturity (E): POC (P)
• Modified Attack Vector (MAV): Local (L)
• Modified Attack Complexity (MAC): Low (L)
• Modified Attack Requirement (MAT): None (N)
• Modified Privileges Required (MPR): Low (L)
• Modified User Interaction (MUI): None (N)
• Modified Vulnerable System Impact Confidentiality (MVC): None (N)
• Modified Vulnerable System Impact Integrity (MVI): None (N)
• Modified Vulnerable System Impact Availability (MVA): Low (L)
• Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
• Modified Subsequent System Impact Integrity (MSI): Negligible (N)
• Modified Subsequent System Impact Availability (MSA): Negligible (N)
• Safety (S): Not Defined (X)
• Automatable (AU): Not Defined (X)
• Recovery (R): Not Defined (X)
• Value Density (V): Not Defined (X)
• Vulnerability Response Effort (RE): Not Defined (X)
• Provider Urgency (U): Not Defined (X)
• Confidentiality Req. (CR): Not Defined (X)
• Integrity Req. (IR): Not Defined (X)
• Availability Req. (AR): Not Defined (X)

updated 1 week, 4 days ago by @LeSuisse Activity log

• Created suggestion 1 week, 5 days ago
• @LeSuisse ignored
  4 references

  • https://github.com/janet-lang/janet/
  • CVE-2026-10268 | CVE Analysis and Report
  • VDB-367547 | CTI Indicators (IOB, IOC, …
  • Submit #825075 | janet-lang janet 1.41.…
  1 week, 5 days ago
• @LeSuisse ignored
  6 packages

  • python314Packages.tree-sitter-grammars.tree-sitter-janet-simple
  • python313Packages.tree-sitter-grammars.tree-sitter-janet-simple
  • python312Packages.tree-sitter-grammars.tree-sitter-janet-simple
  • tree-sitter-grammars.tree-sitter-janet-simple
  • vscode-extensions.janet-lang.vscode-janet
  • vimPlugins.nvim-treesitter-parsers.janet_simple
  1 week, 5 days ago
• @LeSuisse accepted 1 week, 5 days ago
• @LeSuisse published on GitHub 1 week, 4 days ago

janet-lang janet marsh.c unmarshal_one_fiber integer overflow

• VDB-367547 | janet-lang janet marsh.c unmarshal_one_fiber integer overflow technical-descriptionvdb-entry
• https://github.com/janet-lang/janet/issues/1744 issue-tracking
• https://github.com/biniamf/pocs/tree/main/janet-marsh-unmarshal-intovf exploit
• https://github.com/janet-lang/janet/commit/d9b1d711ea1fde52ac73a82088b512a3e17b… patch

Ignored references (4)

• VDB-367547 | CTI Indicators (IOB, IOC, IOA) permissions-requiredsignature
• CVE-2026-10268 | CVE Analysis and Report third-party-advisory
• Submit #825075 | janet-lang janet 1.41.0 Integer Overflow third-party-advisory
• https://github.com/janet-lang/janet/ product

---

janet

• ==1.14
• ==1.40
• ==1.0
• ==1.35
• ==1.20
• ==1.16
• ==1.27
• ==1.31
• ==1.37
• ==1.36
• ==1.23
• ==1.29
• ==1.25
• ==1.33
• ==1.28
• ==1.12
• ==1.22
• ==1.3
• ==1.9
• ==1.10
• ==1.17
• ==1.2
• ==1.8
• ==1.15
• ==1.6
• ==1.19
• ==1.32
• ==1.21
• ==1.18
• ==1.11
• ==1.38
• ==1.34
• ==1.7
• ==1.41.0
• ==1.5
• ==1.13
• ==1.4
• ==1.30
• ==1.24
• ==1.26
• ==1.39
• ==1.1

NIXPKGS-2026-1834

GitHub issue published 1 week, 4 days ago

Permalink CVE-2026-10231

1.9 LOW

• CVSS version (CVSS): 4.0
• Attack Vector (AV): Local (L)
• Attack Complexity (AC): Low (L)
• Attack Requirement (AT): None (N)
• Privileges Required (PR): Low (L)
• User Interaction (UI): None (N)
• Vulnerable System Impact Confidentiality (VC): Low (L)
• Vulnerable System Impact Integrity (VI): Low (L)
• Vulnerable System Impact Availability (VA): Low (L)
• Subsequent System Impact Confidentiality (SC): None (N)
• Subsequent System Impact Integrity (SI): None (N)
• Subsequent System Impact Availability (SA): None (N)
• Exploit Maturity (E): POC (P)
• Modified Attack Vector (MAV): Local (L)
• Modified Attack Complexity (MAC): Low (L)
• Modified Attack Requirement (MAT): None (N)
• Modified Privileges Required (MPR): Low (L)
• Modified User Interaction (MUI): None (N)
• Modified Vulnerable System Impact Confidentiality (MVC): Low (L)
• Modified Vulnerable System Impact Integrity (MVI): Low (L)
• Modified Vulnerable System Impact Availability (MVA): Low (L)
• Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
• Modified Subsequent System Impact Integrity (MSI): Negligible (N)
• Modified Subsequent System Impact Availability (MSA): Negligible (N)
• Safety (S): Not Defined (X)
• Automatable (AU): Not Defined (X)
• Recovery (R): Not Defined (X)
• Value Density (V): Not Defined (X)
• Vulnerability Response Effort (RE): Not Defined (X)
• Provider Urgency (U): Not Defined (X)
• Confidentiality Req. (CR): Not Defined (X)
• Integrity Req. (IR): Not Defined (X)
• Availability Req. (AR): Not Defined (X)

updated 1 week, 4 days ago by @LeSuisse Activity log

• Created suggestion 1 week, 5 days ago
• @LeSuisse ignored
  4 references

  • https://github.com/assimp/assimp/
  • CVE-2026-10231 | CVE Analysis and Report
  • Submit #821191 | Assimp commit 17c12da …
  • VDB-367510 | CTI Indicators (IOB, IOC, …
  1 week, 5 days ago
• @LeSuisse accepted 1 week, 5 days ago
• @LeSuisse published on GitHub 1 week, 4 days ago

Assimp Half-Life 1 MDL Loader HL1MDLLoader.cpp extract_anim_value heap-based overflow

• VDB-367510 | Assimp Half-Life 1 MDL Loader HL1MDLLoader.cpp extract_anim_value heap-based overflow technical-descriptionvdb-entry
• https://github.com/assimp/assimp/issues/6616 issue-tracking
• https://github.com/user-attachments/files/27195744/poc.zip exploit

Ignored references (4)

• VDB-367510 | CTI Indicators (IOB, IOC, IOA) permissions-requiredsignature
• CVE-2026-10231 | CVE Analysis and Report third-party-advisory
• Submit #821191 | Assimp commit 17c12da Heap-based Buffer Overflow third-party-advisory
• https://github.com/assimp/assimp/ product

---

Assimp

• ==6.0.4
• ==6.0.3
• ==6.0.1
• ==6.0.2
• ==6.0.0

NIXPKGS-2026-1833

GitHub issue published 1 week, 4 days ago

Permalink CVE-2026-49267

updated 1 week, 4 days ago by @LeSuisse Activity log

• Created suggestion 1 week, 5 days ago
• @LeSuisse accepted 1 week, 5 days ago
• @LeSuisse published on GitHub 1 week, 4 days ago

Apache Airflow: No certificate validation on SMTP STARTTLS connections

• https://github.com/apache/airflow/pull/65346 patch
• https://lists.apache.org/thread/6v2ds757000msmjmovnnqryqzks83ps0 vendor-advisory

---

apache-airflow

• <3.2.2

NIXPKGS-2026-1832

GitHub issue published 1 week, 4 days ago

Permalink CVE-2026-40961

updated 1 week, 4 days ago by @LeSuisse Activity log

• Created suggestion 1 week, 5 days ago
• @LeSuisse accepted 1 week, 5 days ago
• @LeSuisse published on GitHub 1 week, 4 days ago

Apache Airflow: Open Redirect Bypass Vulnerability

• https://github.com/apache/airflow/pull/65557 patch
• https://lists.apache.org/thread/qmt8ksh7gty6b8hr9w294t94j36jdv1q vendor-advisory
• http://www.openwall.com/lists/oss-security/2026/05/31/2

---

apache-airflow

• <3.2.2

NIXPKGS-2026-1831

GitHub issue published 1 week, 4 days ago

Permalink CVE-2026-10118

7.8 HIGH

• CVSS version (CVSS): 3.1
• Attack Vector (AV): Local (L)
• Attack Complexity (AC): Low (L)
• Privileges Required (PR): None (N)
• User Interaction (UI): Required (R)
• Scope (S): Unchanged (U)
• Confidentiality (C): High (H)
• Integrity (I): High (H)
• Availability (A): High (H)
• Modified Attack Vector (MAV): Local (L)
• Modified Attack Complexity (MAC): Low (L)
• Modified Privileges Required (MPR): None (N)
• Modified User Interaction (MUI): Required (R)
• Modified Confidentiality (MC): High (H)
• Modified Scope (MS): Unchanged (U)
• Modified Integrity (MI): High (H)
• Modified Availability (MA): High (H)

updated 1 week, 4 days ago by @LeSuisse Activity log

• Created suggestion 1 week, 5 days ago
• @LeSuisse ignored
  13 packages

  • poppler_data
  • libsForQt5.poppler
  • kdePackages.poppler
  • qt6Packages.poppler
  • plasma5Packages.poppler
  • haskellPackages.gi-poppler
  • python312Packages.poppler-qt5
  • python313Packages.poppler-qt5
  • python314Packages.poppler-qt5
  • zathuraPkgs.zathura_pdf_poppler
  • python312Packages.python-poppler
  • python313Packages.python-poppler
  • python314Packages.python-poppler
  1 week, 5 days ago
• @LeSuisse accepted 1 week, 5 days ago
• @LeSuisse published on GitHub 1 week, 4 days ago

Poppler: integer overflow in poppler splashoutputdev::tilingpatternfill leads to heap buffer overflow via unchecked dimension multiplication

• https://access.redhat.com/security/cve/CVE-2026-10118 x_refsource_REDHATvdb-entry
• RHBZ#2460428 issue-trackingx_refsource_REDHAT
• https://gitlab.freedesktop.org/poppler/poppler/-/work_items/1715

---

poppler

compat-poppler022

Patch: https://gitlab.freedesktop.org/poppler/poppler/-/commit/8352264766652b98336e92359a70b3161a9ab97a