[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f8SV5HxCmPED3BcPmBzHpiPqAlWqxcN9pTwsaNa8Q9Is":3},{"report":4,"cves":37,"nav":282},{"id":5,"week_start":6,"week_end":7,"week_label":8,"year":9,"week_number":10,"total_cves":11,"critical_count":12,"high_count":13,"medium_count":14,"low_count":15,"kev_count":15,"top_products":16,"summary_en":34,"is_published":35,"created_at":36},"b9970ae7-6bf4-4864-a820-3a119bf8095a","2026-06-29","2026-07-05","2026-W27",2026,27,43,1,7,35,0,[17,21,25,28,31],{"name":18,"slug":19,"count":20},"macOS","macos",37,{"name":22,"slug":23,"count":24},"Elasticsearch","elasticsearch",3,{"name":26,"slug":27,"count":12},"PHP","php",{"name":29,"slug":30,"count":12},"Python","python",{"name":32,"slug":33,"count":12},"Linux","linux",null,true,"2026-07-16T17:22:36.127077+00:00",{"critical":38,"high":49,"medium":90,"low":280,"kev":281},[39],{"cveId":40,"severity":41,"cvssScore":42,"description":43,"publishedAt":44,"url":45,"productSlug":19,"productName":18,"productLogo":46,"cycle":47,"isKev":48},"CVE-2026-39868","CRITICAL",9.1,"This issue was addressed with improved input validation. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination or corrupt kernel memory.","2026-06-29T20:17:33.93+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-39868","https:\u002F\u002Fcdn.simpleicons.org\u002Fapple","13",false,[50,58,63,67,73,79,85],{"cveId":51,"severity":52,"cvssScore":53,"description":54,"publishedAt":55,"url":56,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43715","HIGH",8.8,"A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to memory corruption.","2026-06-29T20:17:36.173+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43715","26",{"cveId":59,"severity":52,"cvssScore":53,"description":60,"publishedAt":61,"url":62,"productSlug":19,"productName":18,"productLogo":46,"cycle":47,"isKev":48},"CVE-2026-43705","A type confusion issue was addressed with improved checks. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to memory corruption.","2026-06-29T20:17:35.467+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43705",{"cveId":64,"severity":52,"cvssScore":53,"description":54,"publishedAt":65,"url":66,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43731","2026-06-29T20:17:37.22+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43731",{"cveId":68,"severity":52,"cvssScore":69,"description":70,"publishedAt":71,"url":72,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43735",8.1,"The issue was addressed with improved checks. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious website may exfiltrate data cross-origin.","2026-06-29T20:17:37.507+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43735",{"cveId":74,"severity":52,"cvssScore":75,"description":76,"publishedAt":77,"url":78,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43724",7.8,"The issue was addressed with improved input sanitization. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination or write kernel memory.","2026-06-29T20:17:36.837+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43724",{"cveId":80,"severity":52,"cvssScore":81,"description":82,"publishedAt":83,"url":84,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43701",7.1,"The issue was addressed with improved checks. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious website may be able to process restricted web content outside the sandbox.","2026-06-29T20:17:35.173+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43701",{"cveId":86,"severity":52,"cvssScore":81,"description":87,"publishedAt":88,"url":89,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43725","The issue was addressed with improved input validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious website may be able to process restricted web content outside the sandbox.","2026-06-29T20:17:36.937+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43725",[91,98,104,111,117,122,127,132,137,141,146,150,154,159,163,168,172,177,182,186,191,196,201,206,210,215,220,225,233,241,246,253,260,267,273],{"cveId":92,"severity":93,"cvssScore":94,"description":95,"publishedAt":96,"url":97,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43706","MEDIUM",6.5,"A double free issue was addressed with improved memory management. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected process crash.","2026-06-29T20:17:35.57+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43706",{"cveId":99,"severity":93,"cvssScore":94,"description":100,"publishedAt":101,"url":102,"productSlug":19,"productName":18,"productLogo":46,"cycle":103,"isKev":48},"CVE-2026-43663","The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected process crash.","2026-06-29T20:17:34.773+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43663","10.8",{"cveId":105,"severity":93,"cvssScore":94,"description":106,"publishedAt":107,"url":108,"productSlug":23,"productName":22,"productLogo":109,"cycle":110,"isKev":48},"CVE-2026-49090","Uncontrolled Resource Consumption (CWE-400) in Elasticsearch can lead to a denial of service via Excessive Allocation (CAPEC-130). An authenticated user can submit a specially crafted bulk request that causes sustained high CPU consumption, which can render the affected node unable to process requests.","2026-07-01T18:16:33.54+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-49090","https:\u002F\u002Fcdn.simpleicons.org\u002Felasticsearch","7",{"cveId":112,"severity":93,"cvssScore":94,"description":113,"publishedAt":114,"url":115,"productSlug":23,"productName":22,"productLogo":109,"cycle":116,"isKev":48},"CVE-2026-56148","Uncontrolled Recursion (CWE-674) in Elasticsearch can lead to a denial of service via Excessive Allocation (CAPEC-130). An authenticated user can submit a specially crafted query that causes excessive resource consumption while the request is processed, which may render the affected node unavailable.","2026-07-01T17:16:36.84+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-56148","9.4",{"cveId":118,"severity":93,"cvssScore":94,"description":119,"publishedAt":120,"url":121,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43746","A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected Safari crash.","2026-06-29T20:17:37.973+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43746",{"cveId":123,"severity":93,"cvssScore":94,"description":124,"publishedAt":125,"url":126,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43745","An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected Safari crash.","2026-06-29T20:17:37.88+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43745",{"cveId":128,"severity":93,"cvssScore":94,"description":129,"publishedAt":130,"url":131,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43742","A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected process crash.","2026-06-29T20:17:37.69+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43742",{"cveId":133,"severity":93,"cvssScore":94,"description":134,"publishedAt":135,"url":136,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43740","The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may result in the disclosure of process memory.","2026-06-29T20:17:37.6+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43740",{"cveId":138,"severity":93,"cvssScore":94,"description":129,"publishedAt":139,"url":140,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43734","2026-06-29T20:17:37.413+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43734",{"cveId":142,"severity":93,"cvssScore":94,"description":143,"publishedAt":144,"url":145,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43732","A path handling issue was addressed with improved validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may disclose sensitive user information.","2026-06-29T20:17:37.317+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43732",{"cveId":147,"severity":93,"cvssScore":94,"description":119,"publishedAt":148,"url":149,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43727","2026-06-29T20:17:37.133+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43727",{"cveId":151,"severity":93,"cvssScore":94,"description":129,"publishedAt":152,"url":153,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43726","2026-06-29T20:17:37.03+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43726",{"cveId":155,"severity":93,"cvssScore":94,"description":156,"publishedAt":157,"url":158,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43721","This issue was addressed through improved state management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious website may be able to silently hijack clipboard data.","2026-06-29T20:17:36.647+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43721",{"cveId":160,"severity":93,"cvssScore":94,"description":119,"publishedAt":161,"url":162,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43720","2026-06-29T20:17:36.553+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43720",{"cveId":164,"severity":93,"cvssScore":94,"description":165,"publishedAt":166,"url":167,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43718","A stack overflow was addressed with improved input validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected Safari crash.","2026-06-29T20:17:36.457+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43718",{"cveId":169,"severity":93,"cvssScore":94,"description":119,"publishedAt":170,"url":171,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43717","2026-06-29T20:17:36.363+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43717",{"cveId":173,"severity":93,"cvssScore":94,"description":174,"publishedAt":175,"url":176,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43716","The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected Safari crash.","2026-06-29T20:17:36.27+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43716",{"cveId":178,"severity":93,"cvssScore":94,"description":179,"publishedAt":180,"url":181,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43713","A permissions issue was addressed with additional restrictions. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Visiting a website may leak sensitive data.","2026-06-29T20:17:36.08+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43713",{"cveId":183,"severity":93,"cvssScore":94,"description":100,"publishedAt":184,"url":185,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43712","2026-06-29T20:17:35.977+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43712",{"cveId":187,"severity":93,"cvssScore":94,"description":129,"publishedAt":188,"url":189,"productSlug":19,"productName":18,"productLogo":46,"cycle":190,"isKev":48},"CVE-2026-43709","2026-06-29T20:17:35.887+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43709","10.7",{"cveId":192,"severity":93,"cvssScore":94,"description":193,"publishedAt":194,"url":195,"productSlug":19,"productName":18,"productLogo":46,"cycle":190,"isKev":48},"CVE-2026-43707","A memory corruption issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected process crash.","2026-06-29T20:17:35.667+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43707",{"cveId":197,"severity":93,"cvssScore":94,"description":129,"publishedAt":198,"url":199,"productSlug":19,"productName":18,"productLogo":46,"cycle":200,"isKev":48},"CVE-2026-43699","2026-06-29T20:17:34.97+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43699","10.12",{"cveId":202,"severity":93,"cvssScore":94,"description":203,"publishedAt":204,"url":205,"productSlug":19,"productName":18,"productLogo":46,"cycle":190,"isKev":48},"CVE-2026-43676","An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected Safari crash.","2026-06-29T20:17:34.873+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43676",{"cveId":207,"severity":93,"cvssScore":94,"description":100,"publishedAt":208,"url":209,"productSlug":19,"productName":18,"productLogo":46,"cycle":190,"isKev":48},"CVE-2026-39872","2026-06-29T20:17:34.04+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-39872",{"cveId":211,"severity":93,"cvssScore":94,"description":212,"publishedAt":213,"url":214,"productSlug":19,"productName":18,"productLogo":46,"cycle":200,"isKev":48},"CVE-2026-28979","An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected process crash.","2026-06-29T20:17:33.417+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-28979",{"cveId":216,"severity":93,"cvssScore":94,"description":217,"publishedAt":218,"url":219,"productSlug":19,"productName":18,"productLogo":46,"cycle":190,"isKev":48},"CVE-2026-43703","The issue was addressed with improved memory handling. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unexpected process crash.","2026-06-29T20:17:35.27+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43703",{"cveId":221,"severity":93,"cvssScore":94,"description":222,"publishedAt":223,"url":224,"productSlug":19,"productName":18,"productLogo":46,"cycle":190,"isKev":48},"CVE-2026-43700","A cross-origin issue was addressed with improved tracking of security origins. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may disclose sensitive user information.","2026-06-29T20:17:35.08+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43700",{"cveId":226,"severity":93,"cvssScore":227,"description":228,"publishedAt":229,"url":230,"productSlug":27,"productName":26,"productLogo":231,"cycle":232,"isKev":48},"CVE-2026-14355",5.6,"In PHP versions 8.2.* before 8.2.32, 8.3.* before 8.3.32, 8.4.* before 8.4.23, 8.5.* before 8.5.8, the AES-WRAP-PAD algorithm implementation in OpenSSL extension contains a buffer allocation flaw. The output buffer for the AES key-wrap-with-padding operation is sized from the plaintext length without accounting for RFC 5649 expansion. This may cause OpenSSL to write beyond allocated memory, corrupting heap metadata and triggering application abort.","2026-07-03T21:16:55.783+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-14355","https:\u002F\u002Fcdn.simpleicons.org\u002Fphp","8.4",{"cveId":234,"severity":93,"cvssScore":235,"description":236,"publishedAt":237,"url":238,"productSlug":33,"productName":32,"productLogo":239,"cycle":240,"isKev":48},"CVE-2026-53325",5.5,"In the Linux kernel, the following vulnerability has been resolved:\n\nagp\u002Famd64: Fix broken error propagation in agp_amd64_probe()\n\nA NULL pointer dereference was observed in the AMD64 AGP driver when\nrunning in a virtualized environment (e.g. qemu\u002Fkvm) without a physical\nAMD northbridge. The crash occurs in amd64_fetch_size() when attempting\nto dereference the pointer returned by node_to_amd_nb(0).\n\nThe root cause of this crash is broken error propagation in\nagp_amd64_probe(): When no AMD northb","2026-06-29T06:16:33.167+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-53325","https:\u002F\u002Fcdn.simpleicons.org\u002Flinux","6.15",{"cveId":242,"severity":93,"cvssScore":235,"description":243,"publishedAt":244,"url":245,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43722","The issue was addressed with improved input sanitization. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to leak sensitive kernel state.","2026-06-29T20:17:36.747+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43722",{"cveId":247,"severity":93,"cvssScore":248,"description":249,"publishedAt":250,"url":251,"productSlug":19,"productName":18,"productLogo":46,"cycle":252,"isKev":48},"CVE-2026-43704",5.3,"A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious web extension may be able to cause an unexpected process crash.","2026-06-29T20:17:35.367+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43704","10.9",{"cveId":254,"severity":93,"cvssScore":248,"description":255,"publishedAt":256,"url":257,"productSlug":30,"productName":29,"productLogo":258,"cycle":259,"isKev":48},"CVE-2026-4360","In the Tarfile.extract() function, the filter parameter is not passed properly when extracting hardlinks. An affected system that extracts content from untrusted tar files could end up writing files with an unexpected uid\u002Fgid despite the user passing filter='data' to the extract() function.","2026-06-30T15:16:57.193+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-4360","https:\u002F\u002Fcdn.simpleicons.org\u002Fpython","3.0",{"cveId":261,"severity":93,"cvssScore":262,"description":263,"publishedAt":264,"url":265,"productSlug":23,"productName":22,"productLogo":109,"cycle":266,"isKev":48},"CVE-2026-56149",4.9,"Allocation of Resources Without Limits or Throttling (CWE-770) in Elasticsearch can lead to a denial of service via Excessive Allocation (CAPEC-130). A user with elevated privileges can submit a specially crafted machine learning request that causes excessive memory consumption, which may render the affected node unavailable.","2026-07-01T17:16:36.957+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-56149","8.17",{"cveId":268,"severity":93,"cvssScore":269,"description":270,"publishedAt":271,"url":272,"productSlug":19,"productName":18,"productLogo":46,"cycle":57,"isKev":48},"CVE-2026-43743",4.7,"A race condition was addressed with improved state handling. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination.","2026-06-29T20:17:37.783+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43743",{"cveId":274,"severity":93,"cvssScore":275,"description":276,"publishedAt":277,"url":278,"productSlug":19,"productName":18,"productLogo":46,"cycle":279,"isKev":48},"CVE-2026-43708",4.3,"The issue was addressed with improved input validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. A malicious website may exfiltrate data cross-origin.","2026-06-29T20:17:35.783+00:00","https:\u002F\u002Fnvd.nist.gov\u002Fvuln\u002Fdetail\u002FCVE-2026-43708","10.2",[],[],{"prev":34,"next":34}]