Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2021-35559 |
|
Vulnerability in java (CVE-2021-35559)
vulnerability in java (CVE-2021-35559). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.321, 8.0.311, 11.0.13, 17.0.1` or later.
|
| CVE-2021-35556 |
|
Vulnerability in java (CVE-2021-35556)
vulnerability in java (CVE-2021-35556). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.321, 8.0.311, 11.0.13, 17.0.1` or later.
|
| CVE-2021-2432 |
|
Vulnerability in java (CVE-2021-2432)
vulnerability in java (CVE-2021-2432). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 7.0.311` or later.
|
| CVE-2020-2830 |
|
Vulnerability in java (CVE-2020-2830)
vulnerability in java (CVE-2020-2830). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.261, 8.0.251, 11.0.7, 14.0.1` or later.
|
| CVE-2020-2781 |
|
Vulnerability in java (CVE-2020-2781)
vulnerability in java (CVE-2020-2781). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.261, 8.0.251, 11.0.7, 14.0.1` or later.
|
| CVE-2020-2773 |
|
Vulnerability in java (CVE-2020-2773)
vulnerability in java (CVE-2020-2773). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.261, 8.0.251, 11.0.7, 14.0.1` or later.
|
| CVE-2020-2757 |
|
Vulnerability in java (CVE-2020-2757)
vulnerability in java (CVE-2020-2757). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.261, 8.0.251, 11.0.7, 14.0.1` or later.
|
| CVE-2020-2756 |
|
Vulnerability in java (CVE-2020-2756)
vulnerability in java (CVE-2020-2756). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.261, 8.0.251, 11.0.7, 14.0.1` or later.
|
| CVE-2020-2755 |
|
Vulnerability in java (CVE-2020-2755)
vulnerability in java (CVE-2020-2755). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.251, 11.0.7, 14.0.1` or later.
|
| CVE-2020-2754 |
|
Vulnerability in java (CVE-2020-2754)
vulnerability in java (CVE-2020-2754). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.251, 11.0.7, 14.0.1` or later.
|
| CVE-2020-2659 |
|
Vulnerability in java (CVE-2020-2659)
vulnerability in java (CVE-2020-2659). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.251, 8.0.241` or later.
|
| CVE-2020-2583 |
|
Vulnerability in java (CVE-2020-2583)
vulnerability in java (CVE-2020-2583). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.251, 8.0.241, 11.0.6, 13.0.2` or later.
|
| CVE-2020-14779 |
|
Vulnerability in java (CVE-2020-14779)
vulnerability in java (CVE-2020-14779). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.281, 8.0.271, 11.0.9, 15.0.1` or later.
|
| CVE-2020-14579 |
|
Vulnerability in java (CVE-2020-14579)
vulnerability in java (CVE-2020-14579). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.271, 8.0.261` or later.
|
| CVE-2020-14578 |
|
Vulnerability in java (CVE-2020-14578)
vulnerability in java (CVE-2020-14578). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.271, 8.0.261` or later.
|
| CVE-2020-14562 |
|
Vulnerability in java (CVE-2020-14562)
vulnerability in java (CVE-2020-14562). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.0.8, 14.0.2` or later.
|
| CVE-2026-36358 |
|
Cross-Site Scripting (XSS) in CVE-2026-36358 (CVE-2026-36358)
cross-site scripting in CVE-2026-36358 (CVE-2026-36358). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43208 |
|
Vulnerability in linux (CVE-2026-43208)
vulnerability in linux (CVE-2026-43208). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43205 |
|
In the Linux kernel, the following vulnerability has been resolved:
dpaa2-switch: validate...
In the Linux kernel, the following vulnerability has been resolved:
dpaa2-switch: validate...
|
| CVE-2026-43206 |
|
Out-of-Bounds Write in privilege-escalation (CVE-2026-43206)
out-of-bounds write in privilege-escalation (CVE-2026-43206). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43197 |
|
Vulnerability in linux (CVE-2026-43197)
vulnerability in linux (CVE-2026-43197). Confidential information can be exposed externally.
|
| CVE-2026-43198 |
|
Vulnerability in linux (CVE-2026-43198)
vulnerability in linux (CVE-2026-43198). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43196 |
|
In the Linux kernel, the following vulnerability has been resolved:
soc: ti: pruss: Fix double...
In the Linux kernel, the following vulnerability has been resolved:
soc: ti: pruss: Fix double...
|
| CVE-2026-43186 |
|
Vulnerability in c (CVE-2026-43186)
vulnerability in c (CVE-2026-43186). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43185 |
|
Vulnerability in linux (CVE-2026-43185)
vulnerability in linux (CVE-2026-43185). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43125 |
|
Out-of-Bounds Write in linux (CVE-2026-43125)
out-of-bounds write in linux (CVE-2026-43125). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43114 |
|
Vulnerability in c (CVE-2026-43114)
vulnerability in c (CVE-2026-43114). Confidential information can be exposed externally.
|
| CVE-2026-43117 |
|
Vulnerability in linux (CVE-2026-43117)
vulnerability in linux (CVE-2026-43117). Confidential information can be exposed externally.
|
| CVE-2026-43096 |
|
Vulnerability in dos (CVE-2026-43096)
vulnerability in dos (CVE-2026-43096). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43083 |
|
Vulnerability in linux (CVE-2026-43083)
vulnerability in linux (CVE-2026-43083). Confidential information can be exposed externally.
|
| CVE-2026-7841 |
|
Code Injection in CVE-2026-7841 (CVE-2026-7841)
code injection in CVE-2026-7841 (CVE-2026-7841). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7572 |
|
Vulnerability in www.velocidex.com/golang/velociraptor (CVE-2026-7572)
vulnerability in www.velocidex.com/golang/velociraptor (CVE-2026-7572). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.76.5` or later.
|
| CVE-2025-71256 |
|
Vulnerability in dos (CVE-2025-71256)
vulnerability in dos (CVE-2025-71256). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71255 |
|
Vulnerability in dos (CVE-2025-71255)
vulnerability in dos (CVE-2025-71255). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71254 |
|
Vulnerability in dos (CVE-2025-71254)
vulnerability in dos (CVE-2025-71254). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71253 |
|
Vulnerability in dos (CVE-2025-71253)
vulnerability in dos (CVE-2025-71253). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71252 |
|
Vulnerability in dos (CVE-2025-71252)
vulnerability in dos (CVE-2025-71252). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71251 |
|
Vulnerability in dos (CVE-2025-71251)
vulnerability in dos (CVE-2025-71251). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0300 KEV |
|
[KEV] Out-of-Bounds Write in Palo alto networks palo-alto-networks (CVE-2026-0300)
out-of-bounds write in Palo alto networks palo-alto-networks (CVE-2026-0300). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-35579 |
|
Authentication Bypass in github.com/coredns/coredns (CVE-2026-35579)
authentication bypass in github.com/coredns/coredns (CVE-2026-35579). Successful exploitation can lead to full system takeover. Exploitable via ``tsigStatus``. Mitigation: upgrade to `1.14.3` or later.
|
| CVE-2026-39402 |
|
Authorization Flaw in dos (CVE-2026-39402)
vulnerability in dos (CVE-2026-39402). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-39383 |
|
SSRF (Server-Side Request Forgery) in github.com/gotenberg/gotenberg/v8 (CVE-2026-39383)
SSRF in github.com/gotenberg/gotenberg/v8 (CVE-2026-39383). Confidential information can be exposed externally. Exploitable via ``FilterDeadline``. Mitigation: upgrade to `8.31.0` or later.
|
| CVE-2026-35397 |
|
Path Traversal in jupyter-server (CVE-2026-35397)
path traversal in jupyter-server (CVE-2026-35397). Successful exploitation can lead to full system takeover. Exploitable via ``root_dir``. Mitigation: upgrade to `2.18.0` or later.
|
| CVE-2026-35453 |
|
Cross-Site Scripting (XSS) in phpoffice/phpspreadsheet (CVE-2026-35453)
cross-site scripting in phpoffice/phpspreadsheet (CVE-2026-35453). Risk of unauthorized operations or information disclosure. Exploitable via ``formatColor``. Mitigation: upgrade to `1.30.4` or later.
|
| CVE-2026-34084 |
|
Unsafe Deserialization in phpoffice/phpspreadsheet (CVE-2026-34084)
vulnerability in phpoffice/phpspreadsheet (CVE-2026-34084). Successful exploitation can lead to full system takeover. Exploitable via ``is_file``. Mitigation: upgrade to `1.30.3` or later.
|
| CVE-2026-33190 |
|
Authentication Bypass in github.com/coredns/coredns (CVE-2026-33190)
authentication bypass in github.com/coredns/coredns (CVE-2026-33190). Confidential information can be exposed externally. Mitigation: upgrade to `1.14.3` or later.
|
| CVE-2026-32936 |
|
Vulnerability in github.com/coredns/coredns (CVE-2026-32936)
vulnerability in github.com/coredns/coredns (CVE-2026-32936). Risk of unauthorized operations or information disclosure. Exploitable via ``dns``. Mitigation: upgrade to `1.14.3` or later.
|
| CVE-2026-33324 |
|
SQL Injection in fit2cloud (CVE-2026-33324)
SQL injection in fit2cloud (CVE-2026-33324). Successful exploitation can lead to full system takeover.
|
| CVE-2026-32934 |
|
Vulnerability in github.com/coredns/coredns (CVE-2026-32934)
vulnerability in github.com/coredns/coredns (CVE-2026-32934). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.14.3` or later.
|
| CVE-2026-38428 |
|
SQL Injection in sqli (CVE-2026-38428)
SQL injection in sqli (CVE-2026-38428). Successful exploitation can lead to full system takeover. Exploitable via `GET /api/v1/main/flows/search`.
|