Latest CVE Exploit Alerts
-
CVE Exploit Alert: CVE-2026-33017 | CRITICAL | CVSS 9.3 | Langflow Langflow
🔴 CRITICAL Severity Overview CVSS Base Score: 9.3 Severity: CRITICAL CVSS Version: 4.0 Priority: Critical priority Summary Langflow is a tool for building and deploying AI-powered agents and workflows. In versions prior to 1.9.0, the POST /api/v1/build_public_tmp/{flow_id}/flow endpoint allows building public flows without requiring authentication. When the optional data parameter is supplied, the endpoint uses
-
CVE Exploit Alert: CVE-2026-33634 | CRITICAL | CVSS 9.4 | Aquasecurity Trivy
🔴 CRITICAL Severity Overview CVSS Base Score: 9.4 Severity: CRITICAL CVSS Version: 4.0 Priority: Critical priority Summary Trivy is a security scanner. On March 19, 2026, a threat actor used compromised credentials to publish a malicious Trivy v0.69.4 release, force-push 76 of 77 version tags in `aquasecurity/trivy-action` to credential-stealing malware, and replace all 7 tags