CVE-2026-45591 - Uncontrolled resource consumption in ASP.NET Core allows an unauthorized attacker to deny service over a network.
Published: June 09, 2026; 1:17:26 PM -0400

CVE-2026-45647 - Time-of-check time-of-use (toctou) race condition in Microsoft Defender for Endpoint allows an authorized attacker to elevate privileges locally.
Published: June 09, 2026; 1:17:31 PM -0400

V3.1: 7.0 HIGH

CVE-2026-45644 - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Live Share Canvas SDK allows an authorized attacker to elevate privileges over a network.
Published: June 09, 2026; 1:17:31 PM -0400

CVE-2026-45639 - Out-of-bounds read in Windows RDP allows an unauthorized attacker to disclose information over a network.
Published: June 09, 2026; 1:17:30 PM -0400

CVE-2026-8714 - A denial-of-service vulnerability exists in the RTSP server component of TP-Link Tapo C520WS v2 due to improper handling of syntactically invalid input.  Crafted inputs can trigger a processing error, causing the RTSP service to enter non-responsi... read CVE-2026-8714
Published: June 05, 2026; 1:17:04 PM -0400

V3.1: 6.5 MEDIUM

CVE-2026-47655 - Exposure of sensitive information to an unauthorized actor in Microsoft Graph allows an authorized attacker to disclose information over a network.
Published: June 04, 2026; 7:17:32 PM -0400

CVE-2026-46889 - Vulnerability in the Siebel Apps - Marketing product of Oracle Siebel CRM (component: Marketing). Supported versions that are affected are 17.0-26.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to... read CVE-2026-46889
Published: June 17, 2026; 6:54:06 AM -0400

CVE-2026-46887 - Vulnerability in the Siebel Apps - Marketing product of Oracle Siebel CRM (component: Marketing). Supported versions that are affected are 17.0-26.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to... read CVE-2026-46887
Published: June 17, 2026; 6:54:06 AM -0400

CVE-2026-46886 - Vulnerability in the Siebel Apps - Marketing product of Oracle Siebel CRM (component: Marketing). Supported versions that are affected are 17.0-26.5. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to ... read CVE-2026-46886
Published: June 17, 2026; 6:54:06 AM -0400

CVE-2026-46884 - Vulnerability in the Siebel Apps - Marketing product of Oracle Siebel CRM (component: Marketing). Supported versions that are affected are 17.0-26.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to... read CVE-2026-46884
Published: June 17, 2026; 6:54:06 AM -0400

CVE-2026-46879 - Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure Security). Supported versions that are affected are 9.2.0.0-9.2.26.2. Easily exploitable vulnerability allows unauthenticated a... read CVE-2026-46879
Published: June 17, 2026; 6:54:05 AM -0400

CVE-2026-46878 - Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure Security). Supported versions that are affected are 9.2.0.0-9.2.26.2. Easily exploitable vulnerability allows unauthenticated a... read CVE-2026-46878
Published: June 17, 2026; 6:54:05 AM -0400

CVE-2026-46869 - Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Dump and Load). Supported versions that are affected are 8.4.0-8.4.9 and 9.0.0-9.7.0. Easily exploitable vulnerability allows unauthenticated attacker with network acces... read CVE-2026-46869
Published: June 17, 2026; 6:54:04 AM -0400

CVE-2026-46863 - Vulnerability in the MySQL Server, MySQL Cluster product of Oracle MySQL (component: Server: Connection Handling). Supported versions that are affected are MySQL Server: 8.4.0-8.4.9, 9.0.0-9.7.0; MySQL Cluster: 8.0.11-8.0.46, 8.4.0-8.4.9 and 9.0... read CVE-2026-46863
Published: June 17, 2026; 6:54:03 AM -0400

CVE-2026-46862 - Vulnerability in the MySQL Router product of Oracle MySQL (component: Router: General). Supported versions that are affected are 8.4.0-8.4.9 and 9.0.0-9.7.0. Easily exploitable vulnerability allows unauthenticated attacker with network access vi... read CVE-2026-46862
Published: June 17, 2026; 6:54:03 AM -0400

CVE-2026-46861 - Vulnerability in the MySQL NDB Cluster product of Oracle MySQL (component: Cluster: NDB Operator). Supported versions that are affected are 8.0.11-8.0.46, 8.4.0-8.4.9 and 9.0.0-9.7.0. Easily exploitable vulnerability allows low privileged at... read CVE-2026-46861
Published: June 17, 2026; 6:54:03 AM -0400

CVE-2026-46860 - Vulnerability in the MySQL Router product of Oracle MySQL (component: Router: General). Supported versions that are affected are 9.0.0-9.7.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to comprom... read CVE-2026-46860
Published: June 17, 2026; 6:54:03 AM -0400

CVE-2026-46859 - Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: Security). The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to comprom... read CVE-2026-46859
Published: June 17, 2026; 6:54:03 AM -0400

CVE-2026-46858 - Vulnerability in the APM - Application Performance Management product of Oracle Enterprise Manager (component: JADM, JVM Diagnostics). Supported versions that are affected are 13.5 and 24.1. Easily exploitable vulnerability allows unauthenticate... read CVE-2026-46858
Published: June 17, 2026; 6:54:03 AM -0400

CVE-2026-46851 - Vulnerability in the PeopleSoft Enterprise CS Campus Community product of Oracle PeopleSoft (component: Security). The supported version that is affected is 9.2.38. Difficult to exploit vulnerability allows unauthenticated attacker with network ... read CVE-2026-46851
Published: June 17, 2026; 6:54:02 AM -0400