Findings - Bugflation

bugflation Submit finding

ID Title System Disclosed Severity

CVE-2026-5448 + 8 more Anthropic CVD dashboard reveals fixed Mythos Preview open-source findings Project Glasswing CVD cluster: path traversal, broken access control, SSRF, heap overflow, SQL injection, RCE, and privilege escalation - Multiple open-source projects - direct Claude Mythos Preview May 20, 2026 critical CVE-2026-42945 + 3 more DepthFirst autonomously finds NGINX Rift and three companion CVEs NGINX memory-corruption cluster led by rewrite-module heap overflow RCE - NGINX Open Source and NGINX Plus - self-reported DepthFirst May 13, 2026 critical CVE-2026-46300 Fragnesia: V12-assisted Linux kernel page-cache LPE CVE-2026-46300 Shared page-fragment marker loss leading to page-cache corruption and local privilege escalation - Linux kernel XFRM ESP-in-TCP / skbuff - direct V12 May 13, 2026 high CVE-2026-0235 + 25 more Palo Alto Networks reports 26-CVE frontier-AI scan wave Vendor-scale frontier-AI vulnerability-discovery wave across PAN-OS, GlobalProtect, Prisma, Cortex, WildFire, Browser, and related products - Palo Alto Networks products - self-reported Palo Alto frontier AI scan May 13, 2026 high CVE-2026-33827 + 15 more Microsoft MDASH publishes 16 Windows networking and authentication CVEs Windows network-stack and authentication vulnerability-discovery cluster - Windows TCP/IP, IKEEXT, Netlogon, DNS, HTTP.sys, Telnet - direct Microsoft MDASH May 12, 2026 critical CVE-2026-31532 Bynario AI assists Linux CAN raw socket UAF fix RCU teardown race causing use-after-free of per-CPU CAN raw socket state - Linux kernel CAN raw sockets - direct BynarIO AI May 7, 2026 high CVE-2026-39816 ZeroPath finds Apache NiFi Execute Code permission bypass CVE-2026-39816 Authorization bypass leading to server-side code execution - Apache NiFi - self-reported ZeroPath AI SAST May 7, 2026 high CVE-2026-23918 Striga says its Apache httpd scan surfaced CVE-2026-23918 HTTP/2 double free with possible remote code execution - Apache HTTP Server - self-reported Striga AI May 4, 2026 high CVE-2026-31694 Bynario AI assists Linux FUSE page-cache overflow fix Oversized FUSE dirent copied into a single page-cache page - Linux kernel FUSE readdir cache - direct BynarIO AI May 1, 2026 high CVE-2026-42511, CVE-2026-42512, CVE-2026-39457 AISLE finds FreeBSD dhclient root RCE and two companion core CVEs DHCP client command injection, heap overflow, and libnv stack overflow - FreeBSD dhclient / libnv - direct AISLE Apr 29, 2026 high CVE-2026-31431 CopyFail: Linux kernel page-cache write to root found with Xint Code Incorrect resource transfer -> page-cache corruption -> local privilege escalation - Linux kernel crypto subsystem - direct Xint Code Apr 29, 2026 high CVE-2026-6100 + 6 more Xint public tracker adds seven CVE-backed findings beyond CopyFail Memory-safety and parser vulnerabilities across open-source server and runtime projects - CPython, CUPS, NGINX, mruby, MariaDB, PostgreSQL - self-reported Xint Code Apr 29, 2026 critical CVE-2026-42167 ZeroPath finds ProFTPD mod_sql CVE-2026-42167 SQL injection in FTP SQL logging and authentication paths - ProFTPD - self-reported ZeroPath AI SAST Apr 28, 2026 high CVE-2025-9230 + 19 more AISLE autonomous analyzer finds a 20-CVE OpenSSL run Cryptographic-library vulnerability cluster - OpenSSL - direct AISLE Apr 24, 2026 high CVE-2026-5398, CVE-2026-6386 FreeBSD April kernel follow-ups credited to Nicholas Carlini using Claude Kernel use-after-free and memory-protection logic flaws - FreeBSD kernel - direct Claude / Anthropic Research Apr 21, 2026 high CVE-2026-6746, CVE-2026-6757, CVE-2026-6758 Firefox 150 ships fixes for 271 Mythos-identified vulnerabilities Browser vulnerability cluster - Mozilla Firefox - direct Claude Mythos Preview Apr 21, 2026 high CVE-2026-32604, CVE-2026-32613 ZeroPath discloses two critical Spinnaker RCE CVEs Command injection and Spring Expression Language code injection in deployment services - Spinnaker - self-reported ZeroPath AI SAST Apr 20, 2026 critical CVE-2026-27654 + 8 more Calif.io MADBugs credits Claude on NGINX and wolfSSL findings Web server and cryptographic-library vulnerability cluster - NGINX / wolfSSL - direct Claude / Anthropic Research Apr 10, 2026 high CVE-2026-4747 FreeBSD NFS remote kernel RCE identified and exploited by Claude Mythos Preview Remote kernel memory corruption -> root code execution - FreeBSD NFS / RPCSEC_GSS - direct Claude Mythos Preview Apr 7, 2026 critical CVE-2026-34197 Claude-assisted review finds Apache ActiveMQ Jolokia RCE CVE-2026-34197 Jolokia/JMX code execution through network connector configuration - Apache ActiveMQ - direct Claude / Anthropic Research Apr 6, 2026 high CVE-2026-2763 + 27 more Mozilla Firefox 148 and 149 advisories credit Claude-assisted research Browser memory-safety and sandbox-relevant vulnerability cluster - Mozilla Firefox - direct Claude / Anthropic Research Mar 24, 2026 high CVE-2026-32191 Microsoft Bing Images OS command injection credited by XBOW OS command injection -> remote code execution - Microsoft Bing Images - self-reported XBOW Mar 19, 2026 critical CVE-2026-32194 Microsoft Bing Images command injection credited by XBOW Command injection -> remote code execution - Microsoft Bing Images - self-reported XBOW Mar 19, 2026 critical CVE-2025-32988 + 13 more OpenAI Codex Security publishes OSS CVE examples Open-source vulnerability discovery and validation cluster - GnuTLS, Gogs, Thorium, GnuPG - direct OpenAI Aardvark / Codex Security Mar 6, 2026 high CVE-2026-21536 Microsoft Devices Pricing Program critical RCE credited by XBOW Remote code execution - Microsoft Devices Pricing Program - self-reported XBOW Mar 5, 2026 critical CVE-2025-43535, CVE-2025-46299 Apple WebKit 26.2 follow-up issues credited to Google Big Sleep WebKit memory handling / internal-state disclosure - Apple WebKit / iOS and iPadOS - direct Google Big Sleep Jan 9, 2026 medium No CVE ZeroPath AI SAST reports seven FFmpeg memory-safety fixes Memory-safety and protocol logic vulnerability cluster - FFmpeg - self-reported ZeroPath AI SAST Dec 2, 2025 high No CVE ZeroPath AI Security Engineer credited on sudo exec_mailer fix Incomplete privilege drop in sudo mailer execution - sudo - direct ZeroPath AI SAST Nov 8, 2025 high CVE-2025-43429 + 4 more Apple WebKit 26.1 security cluster credited to Google Big Sleep WebKit memory-safety cluster - Apple WebKit / Safari - direct Google Big Sleep Nov 3, 2025 high CVE-2025-43377 Apple credits BynarIO AI on Model I/O CVE-2025-43377 Out-of-bounds read in Model I/O media parsing - Apple Model I/O / USD library - direct BynarIO AI Nov 3, 2025 medium CVE-2025-61928 ZeroPath scanner finds better-auth API key takeover CVE-2025-61928 Authentication bypass in API key creation and update routes - better-auth - self-reported ZeroPath AI SAST Oct 19, 2025 high CVE-2025-9478 Chrome ANGLE use-after-free reported by Google Big Sleep Use-after-free -> heap corruption - Google Chrome ANGLE - direct Google Big Sleep Aug 26, 2025 critical CVE-2025-9132 Chrome V8 out-of-bounds write reported by Google Big Sleep Out-of-bounds write -> heap corruption - Google Chrome V8 - direct Google Big Sleep Aug 19, 2025 high CVE-2025-6965 SQLite aggregate-term memory corruption found by Big Sleep Aggregate-term accounting -> memory corruption - SQLite - direct Google Big Sleep Jul 15, 2025 high CVE-2024-56737 + 19 more Microsoft Security Copilot accelerates GRUB2, U-Boot, and Barebox findings Bootloader memory corruption and Secure Boot bypass-relevant flaws - GRUB2, U-Boot, Barebox - direct Microsoft Security Copilot Mar 31, 2025 high CVE-2024-9143 Google OSS-Fuzz AI finds OpenSSL CVE-2024-9143 AI-generated fuzz target vulnerability discovery - OpenSSL / OSS-Fuzz projects - direct Google OSS-Fuzz AI Nov 20, 2024 medium No CVE Big Sleep finds an exploitable SQLite stack buffer underflow before release Stack buffer underflow - SQLite - direct Google Big Sleep Nov 1, 2024 high