Skip to main content
Threat Radar animated logo
DashboardThreatsMapFeedsPricingView Plans & Pricing
reconnecting
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.

Threat Intelligence Database

Comprehensive database of the latest cyber threats affecting organizations worldwide. Filter and search to find specific threat intelligence relevant to your organization.

Pro Console Lifetime

Stop chasing alerts. Route them.

Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.

Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)

View Plans & Pricing

API access activates after upgrading in Console -> Billing.

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now

Filter Threats

Narrow down the results by type, severity, or affected countries

Search threats by title, CVE ID, or description. Maximum 100 characters.

Threat Intelligence

Click on any threat for detailed analysis and mitigation recommendations

CVE-2026-50107: CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in F5 NGINX Gateway FabricCVE-2026-50107
0

CVE-2026-50107 is an injection vulnerability in the NGINX configuration generator component of F5's NGINX Gateway Fabric version 2.3.0. It arises when user-supplied string values from the NginxProxy Custom Resource Definition (CRD) access log format setting are inserted into NGINX configuration templates without proper sanitization or escaping. An authenticated attacker with permission to create or modify these CRDs can inject arbitrary NGINX configuration directives. This vulnerability affects the control plane only and does not expose the data plane directly.

HighVulnerability#cve#cve-2026-50107#cwe-74
Join the discussion
CVE-2026-32682: CWE-129 Improper Validation of Array Index in F5 NGINX Gateway FabricCVE-2026-32682
0

CVE-2026-32682 is a medium severity vulnerability in F5 NGINX Gateway Fabric version 1.3.0. It involves improper validation of array indexes (CWE-129) when the product is configured with GRPCRoutes. An authenticated remote attacker with permissions to create or modify GRPCRoute resources can cause the control plane to terminate by submitting crafted GRPCRoute configurations containing backendRef filters. This results in a denial of service condition. No patch or official remediation guidance is currently provided by the vendor.

MediumVulnerability#cve#cve-2026-32682#cwe-129
Join the discussion

Showing 1 to 2 of 2 results

Page 1 of 1
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses