NVD disclosure day

Published threat advisories for June 23, 2026

CVE advisoryCRITICAL

CVE-2026-54588

Poweradmin Authentication Bypass Via HTTP Host Header Vulnerability.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

Poweradmin, a DNS administration tool, contains a vulnerability where it improperly handles the HTTP Host header during authentication flows. This allows an unauthenticated attacker to manipulate redirects, potentially leading to full account takeover without credentials. Confirm if Poweradmin is in use to assess risk.

CVE advisoryCRITICAL

CVE-2026-11807

Event-Driven Ansible Websocket API Missing Authorization Exposes Credentials.

Halo Surface Signal: 3 out of 5 — possibly public-facing.

A vulnerability in the Event-Driven Ansible websocket API allows authenticated users to expose sensitive credentials like OAuth tokens and vault passwords due to a missing authorization check. This could enable unauthorized access to protected resources. Confirmation of relevance and exposure within your environment is

CVE advisoryCRITICAL

CVE-2026-53753

Crawl4AI Computed Fields Sandbox Escape Arbitrary Code Execution

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

Crawl4AI, an open-source web crawler, has a critical vulnerability that allows unauthenticated attackers to execute arbitrary code. This is achieved by sending a specially crafted POST request to the `/crawl` endpoint, exploiting a sandbox escape in the computed fields feature. Given the tool's function, this could imp

CVE advisoryCRITICAL

CVE-2026-54257

Electron Buffer Calculation Vulnerability.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A vulnerability in the Electron framework may cause desktop applications to crash or mismanage memory due to incorrect byte length calculations. If reachable, this could lead to unexpected data truncation or allocation failures, impacting application stability. Teams responsible for Electron-based applications should i

CVE advisoryCRITICAL

CVE-2026-54157

LobeHub Proxy Endpoint Server-Side Request Forgery and Cookie Injection

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

LobeHub's proxy endpoint improperly handles URLs, enabling unauthenticated outbound requests from its infrastructure. This could expose sensitive details like Vercel deployment information and allow cookie injection onto the lobehub.com domain.

CVE advisoryCRITICAL

CVE-2026-53662

Immich Account Takeover via Reflected XSS

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A vulnerability exists in Immich, a self-hosted photo and video management solution, which could allow an attacker to compromise any authenticated user's account. The flaw on the login page enables an attacker to execute JavaScript within the user's browser via a crafted link, potentially leading to persistent account

CVE advisoryCRITICAL

CVE-2026-44726

Deno TLS Compatibility Flaw Transmits Application Data in Plaintext

Halo Surface Signal: 3 out of 5 — possibly public-facing.

A flaw in Deno's Node.js TLS compatibility layer can cause application data to be transmitted in plaintext if an initial connection attempt fails and the connection retries. This could allow a network attacker to view or tamper with data that the application believes is securely transmitted.

CVE advisoryCRITICAL

CVE-2026-55255

Langflow Insecure Direct Object Reference Vulnerability Allows Flow Execution

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

An Insecure Direct Object Reference vulnerability in Langflow allows an authenticated attacker to execute any AI flow belonging to another user by manipulating an API request. This could lead to unauthorized access and modification of AI agent functionality.

CVE advisoryCRITICAL

CVE-2026-50574

yt-dlp Arbitrary File Write Leading to Code Execution

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

yt-dlp, a command-line downloader, has a vulnerability where insufficiently sanitized input to an external downloader like aria2c can lead to arbitrary file writes and potential code execution. This occurs when downloading fragmented manifest formats, with Windows systems being immediately vulnerable and other platform

CVE advisoryCRITICAL

CVE-2026-48519

Langflow Shareable Playground RCE Vulnerability

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

Langflow's "Shareable Playground" feature has a critical vulnerability allowing unauthenticated remote code execution via public links. This means a user could be tricked into running arbitrary Python code by visiting a malicious link, potentially compromising the affected system. Organizations using Langflow should as

CVE advisoryCRITICAL

CVE-2026-44791

n8n Workflow Automation RCE via XML Node Bypass

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

An authenticated user with workflow creation or modification permissions in the n8n workflow automation platform can bypass a previous security fix in the XML node. This bypass, when combined with other nodes, could allow for remote code execution on the n8n host. This is a concern because n8n is often used as a centra

CVE advisoryCRITICAL

CVE-2026-44790

n8n Authenticated User Arbitrary File Read Leading to Server Compromise.

Halo Surface Signal: 3 out of 5 — possibly public-facing.

An authenticated user with workflow modification permissions in n8n, an open-source workflow automation platform, can exploit a vulnerability to read arbitrary files from the server. This could potentially lead to a full system compromise if the affected functionality is reachable.

CVE advisoryCRITICAL

CVE-2026-44789

n8n Prototype Pollution Leading to RCE

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical vulnerability exists in the n8n workflow automation platform. An authenticated user could exploit an unvalidated parameter to achieve global prototype pollution, potentially leading to remote code execution. This could compromise the n8n instance, impacting automated processes and connected systems.

CVE advisoryCRITICAL

CVE-2026-35019

NetComm NF20MESH Authentication Bypass Via Hardcoded AES Key.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A critical authentication bypass vulnerability exists in NetComm NF20MESH routers using older firmware. Attackers can exploit a hardcoded encryption key to forge session cookies, gaining administrative control of the web management interface. This allows unauthorized access and configuration changes. Uncertainty exists

CVE advisoryCRITICAL

CVE-2026-28496

FOSSBilling SSTI Vulnerability Allows Remote Code Execution

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A Server-Side Template Injection vulnerability exists in FOSSBilling's template rendering system, enabling administrators to inject and execute arbitrary code. This could result in the disclosure of sensitive information or remote code execution if reachable. Organizations using FOSSBilling should verify its relevance

CVE advisoryCRITICAL

CVE-2026-27604

FOSSBilling API Authorization Bypass Leading to Unauthenticated Admin Access

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

An authorization bypass in FOSSBilling's API allows unauthenticated access to privileged system endpoints, enabling attackers to execute administrative functions without credentials. This vulnerability could impact system integrity and operations if the affected API endpoints are reachable.

CVE advisoryCRITICAL

CVE-2026-56379

ImageMagick SVG Decoder Command Injection

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

ImageMagick's SVG decoder has a command injection vulnerability that allows attackers to execute arbitrary commands by submitting malicious SVG files. This is a critical concern because ImageMagick is commonly used in web applications to process image uploads, potentially exposing internet-facing services to this threa

CVE advisoryCRITICAL

CVE-2026-56315

Picklescan Remote Code Execution via Unblocked Standard Library Modules

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A vulnerability in picklescan allows attackers to execute arbitrary code by crafting malicious pickle files that import unblocked Python standard library modules. This bypasses the software's safety validation, potentially enabling remote code execution if these files are processed. The issue is relevant because it can

CVE advisoryCRITICAL

CVE-2026-56258

Crawl4AI Arbitrary File Write Via Output Path Symlink and TOCTOU Attack

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

Crawl4AI contains a critical arbitrary file write vulnerability allowing unauthenticated attackers to write files outside intended directories via symlink and TOCTOU attacks on the output path. This could lead to code execution if the runtime user has write access to executable or cron locations.

CVE advisoryCRITICAL

CVE-2026-11374

ManageEngine Products Account Takeover Via Predictable SSO Tickets

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

ManageEngine products have a vulnerability where unauthenticated users can predict SSO tickets, potentially leading to account takeover. This impacts identity and access management systems, and its relevance to our environment needs to be confirmed.

CVE advisoryCRITICAL

CVE-2026-12866

expr-eval toJSFunction API Code Execution Vulnerability

Halo Surface Signal: 3 out of 5 — possibly public-facing.

The expr-eval package has a critical code execution vulnerability in its `toJSFunction()` API. Attackers can supply crafted expressions that are compiled into native code, allowing them to bypass sandbox restrictions and run arbitrary JavaScript within an application's context. This poses a risk to applications that pr