13 vulnerabilities across 3 products scored HIGH or above on June 17, 2026.

  • HIGH: 13

[HIGH] google/android

11 CVEs | CVSS 4.0: 10.0 | AAS 10.4

  • cpe:2.3:a:google:android:*:*:*:*:*:*:*:*

Google has released 11 vulnerabilities for Android 17, including multiple HIGH-severity issues with CVSS scores up to 10.0. The lead vulnerability is a use-after-free race condition in NFC’s eventCallback() that allows local privilege escalation without requiring user interaction, affecting Android 17 devices. Users and administrators should apply patches from the vendor advisory immediately.

Vendor Advisory

[HIGH] dassault_systèmes/solidworks_visualize

1 CVE | CVSS 3.1: 9.8 | AAS 10.1

  • cpe:2.3:a:dassault_syst_mes:solidworks_visualize:*:*:*:*:*:*:*:* (>= 2024)

Dassault Systèmes has released a security update for a HIGH-severity path traversal vulnerability in SOLIDWORKS Visualize affecting versions 2024 through 2026, with a CVSS score of 9.8. The vulnerability allows attackers to write arbitrary files to the server, potentially compromising affected systems. Organizations using SOLIDWORKS Visualize should apply the security update immediately.

Vendor Advisory

[HIGH] android/android

1 CVE | CVSS 4.0: 10.0 | AAS 9.9

  • cpe:2.3:a:android:android:*:*:*:*:*:*:*:*

Android has released a security update for a HIGH-severity SQL injection vulnerability in the Contacts Provider affecting Android 17, with a CVSS score of 10.0. The vulnerability allows local access to the contacts database without requiring user interaction or additional privileges, enabling information disclosure. Android users and administrators should apply patches from the vendor advisory immediately.

Vendor Advisory