Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-24155 |
|
Code Injection in nvidia (CVE-2026-24155)
code injection in nvidia (CVE-2026-24155). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12003 |
|
Vulnerability in CVE-2026-12003 (CVE-2026-12003)
vulnerability in CVE-2026-12003 (CVE-2026-12003). Risk of unauthorized operations or information disclosure. Exploitable via ``Lib``.
|
| CVE-2025-71261 |
|
Vulnerability in github.com/harvester/harvester (CVE-2025-71261)
vulnerability in github.com/harvester/harvester (CVE-2025-71261). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0` or later.
|
| CVE-2026-10649 |
|
Vulnerability in dos (CVE-2026-10649)
vulnerability in dos (CVE-2026-10649). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-24909 |
|
Command Injection in CVE-2024-24909 (CVE-2024-24909)
command injection in CVE-2024-24909 (CVE-2024-24909). Successful exploitation can lead to full system takeover.
|
| CVE-2024-30476 |
|
Cross-Site Scripting (XSS) in CVE-2024-30476 (CVE-2024-30476)
cross-site scripting in CVE-2024-30476 (CVE-2024-30476). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-38487 |
|
Privilege Escalation in CVE-2024-38487 (CVE-2024-38487)
vulnerability in CVE-2024-38487 (CVE-2024-38487). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-22451 |
|
Vulnerability in dell (CVE-2024-22451)
vulnerability in dell (CVE-2024-22451). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0646 |
|
Vulnerability in cisa (CVE-2026-0646)
vulnerability in cisa (CVE-2026-0646). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-13036 |
|
Vulnerability in cisa (CVE-2025-13036)
vulnerability in cisa (CVE-2025-13036). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10831 |
|
Vulnerability in CVE-2026-10831 (CVE-2026-10831)
vulnerability in CVE-2026-10831 (CVE-2026-10831). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-14272 |
|
Vulnerability in CVE-2025-14272 (CVE-2025-14272)
vulnerability in CVE-2025-14272 (CVE-2025-14272). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10638 |
|
Use-After-Free in c (CVE-2026-10638)
vulnerability in c (CVE-2026-10638). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12398 |
|
OS Command Injection in galaxy-ng (CVE-2026-12398)
OS command injection in galaxy-ng (CVE-2026-12398). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9307 |
|
Vulnerability in CVE-2026-9307 (CVE-2026-9307)
vulnerability in CVE-2026-9307 (CVE-2026-9307). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0647 |
|
Vulnerability in CVE-2026-0647 (CVE-2026-0647)
vulnerability in CVE-2026-0647 (CVE-2026-0647). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11317 |
|
Vulnerability in dos (CVE-2026-11317)
vulnerability in dos (CVE-2026-11317). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-22447 |
|
Vulnerability in dell (CVE-2024-22447)
vulnerability in dell (CVE-2024-22447). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48780 |
|
Authentication Bypass in CVE-2026-48780 (CVE-2026-48780)
authentication bypass in CVE-2026-48780 (CVE-2026-48780). Confidential information can be exposed externally. Exploitable via ``a2ab6d4``.
|
| CVE-2026-10640 |
|
Use-After-Free in c (CVE-2026-10640)
vulnerability in c (CVE-2026-10640). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10639 |
|
Use-After-Free in c (CVE-2026-10639)
vulnerability in c (CVE-2026-10639). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10637 |
|
Use-After-Free in c (CVE-2026-10637)
vulnerability in c (CVE-2026-10637). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10636 |
|
Use-After-Free in c (CVE-2026-10636)
vulnerability in c (CVE-2026-10636). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-54298 |
|
Cross-Site Scripting (XSS) in astro (CVE-2026-54298)
cross-site scripting in astro (CVE-2026-54298). Risk of unauthorized operations or information disclosure. Exploitable via ``spreadAttributes``. Mitigation: upgrade to `6.4.6` or later.
|
| CVE-2026-54299 |
|
Vulnerability in astro (CVE-2026-54299)
vulnerability in astro (CVE-2026-54299). Confidential information can be exposed externally. Exploitable via ``request.url``. Mitigation: upgrade to `6.4.6` or later.
|
| CVE-2026-54300 |
|
SSRF (Server-Side Request Forgery) in @astrojs/netlify (CVE-2026-54300)
SSRF in @astrojs/netlify (CVE-2026-54300). Risk of unauthorized operations or information disclosure. Exploitable via ``image.remotePatterns``. Mitigation: upgrade to `7.0.13` or later.
|
| CVE-2026-54293 |
|
Path Traversal in nltk (CVE-2026-54293)
path traversal in nltk (CVE-2026-54293). Confidential information can be exposed externally.
|
| CVE-2026-54286 |
|
Path Traversal in hono (CVE-2026-54286)
path traversal in hono (CVE-2026-54286). Confidential information can be exposed externally. Mitigation: upgrade to `4.12.25` or later.
|
| CVE-2026-54287 |
|
Vulnerability in hono (CVE-2026-54287)
vulnerability in hono (CVE-2026-54287). Risk of unauthorized operations or information disclosure. Exploitable via ``Expires``. Mitigation: upgrade to `4.12.25` or later.
|
| CVE-2026-54531 |
|
Vulnerability in pypdf (CVE-2026-54531)
vulnerability in pypdf (CVE-2026-54531). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.13.0` or later.
|
| CVE-2026-54530 |
|
Vulnerability in pypdf (CVE-2026-54530)
vulnerability in pypdf (CVE-2026-54530). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.13.0` or later.
|
| CVE-2026-50146 |
|
Vulnerability in astro (CVE-2026-50146)
vulnerability in astro (CVE-2026-50146). Data can be tampered with by attackers. Exploitable via ``astro.config.mjs``. Mitigation: upgrade to `6.3.3` or later.
|
| CVE-2026-56326 |
|
Open Redirect in nuxt (CVE-2026-56326)
vulnerability in nuxt (CVE-2026-56326). Risk of unauthorized operations or information disclosure. Exploitable via ``navigateTo``. Mitigation: upgrade to `3.21.7` or later.
|
| CVE-2026-49461 |
|
Vulnerability in pypdf (CVE-2026-49461)
vulnerability in pypdf (CVE-2026-49461). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.12.2` or later.
|
| CVE-2026-12330 |
|
Buffer Overflow in mozilla (CVE-2026-12330)
vulnerability in mozilla (CVE-2026-12330). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12327 |
|
Buffer Overflow in mozilla (CVE-2026-12327)
vulnerability in mozilla (CVE-2026-12327). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12326 |
|
Buffer Overflow in mozilla (CVE-2026-12326)
vulnerability in mozilla (CVE-2026-12326). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12325 |
|
Vulnerability in mozilla (CVE-2026-12325)
vulnerability in mozilla (CVE-2026-12325). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12328 |
|
Vulnerability in mozilla (CVE-2026-12328)
vulnerability in mozilla (CVE-2026-12328). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12324 |
|
Vulnerability in mozilla (CVE-2026-12324)
vulnerability in mozilla (CVE-2026-12324). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12329 |
|
Memory safety bug fixed in Firefox ESR 140.12. This vulnerability was fixed in Firefox ESR 140.12.
Memory safety bug fixed in Firefox ESR 140.12. This vulnerability was fixed in Firefox ESR 140.12.
|
| CVE-2026-12314 |
|
Buffer Overflow in mozilla (CVE-2026-12314)
vulnerability in mozilla (CVE-2026-12314). Confidential information can be exposed externally.
|
| CVE-2026-12318 |
|
Buffer Overflow in mozilla (CVE-2026-12318)
vulnerability in mozilla (CVE-2026-12318). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12317 |
|
Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152.
Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152.
|
| CVE-2026-12315 |
|
Vulnerability in mozilla (CVE-2026-12315)
vulnerability in mozilla (CVE-2026-12315). Confidential information can be exposed externally.
|
| CVE-2026-12316 |
|
Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 152.
Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 152.
|
| CVE-2026-12319 |
|
Vulnerability in mozilla (CVE-2026-12319)
vulnerability in mozilla (CVE-2026-12319). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12320 |
|
Information Disclosure in mozilla (CVE-2026-12320)
vulnerability in mozilla (CVE-2026-12320). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12321 |
|
Vulnerability in mozilla (CVE-2026-12321)
vulnerability in mozilla (CVE-2026-12321). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12311 |
|
Information Disclosure in mozilla (CVE-2026-12311)
vulnerability in mozilla (CVE-2026-12311). Risk of unauthorized operations or information disclosure.
|