Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-47965 |
|
Out-of-Bounds Write in adobe (CVE-2026-47965)
out-of-bounds write in adobe (CVE-2026-47965). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6961 |
|
Path Traversal in path-traversal (CVE-2026-6961)
path traversal in path-traversal (CVE-2026-6961). Data can be tampered with by attackers.
|
| CVE-2026-3840 |
|
Path Traversal in path-traversal (CVE-2026-3840)
path traversal in path-traversal (CVE-2026-3840). Confidential information can be exposed externally.
|
| CVE-2026-6739 |
|
Authorization Flaw in mattermost (CVE-2026-6739)
vulnerability in mattermost (CVE-2026-6739). Confidential information can be exposed externally.
|
| CVE-2026-7387 |
|
Authorization Flaw in mattermost (CVE-2026-7387)
vulnerability in mattermost (CVE-2026-7387). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6689 |
|
Vulnerability in mattermost (CVE-2026-6689)
vulnerability in mattermost (CVE-2026-6689). Risk of unauthorized operations or information disclosure. Exploitable via `POST /api/v4/teams`.
|
| CVE-2026-6046 |
|
Information Disclosure in mattermost (CVE-2026-6046)
vulnerability in mattermost (CVE-2026-6046). Confidential information can be exposed externally.
|
| CVE-2026-3433 |
|
Information Disclosure in mattermost (CVE-2026-3433)
vulnerability in mattermost (CVE-2026-3433). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-58175 |
|
Vulnerability in org.geoserver.web:gs-web-app (CVE-2025-58175)
vulnerability in org.geoserver.web:gs-web-app (CVE-2025-58175). Confidential information can be exposed externally. Exploitable via ``ENTITY_RESOLUTION_ALLOWLIST``. Mitigation: upgrade to `2.27.3` or later.
|
| CVE-2025-52465 |
|
Vulnerability in org.geoserver.web:gs-web-app (CVE-2025-52465)
vulnerability in org.geoserver.web:gs-web-app (CVE-2025-52465). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.26.4` or later.
|
| CVE-2026-48165 |
|
OS Command Injection in mariadb (CVE-2026-48165)
OS command injection in mariadb (CVE-2026-48165). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48163 |
|
OS Command Injection in mariadb (CVE-2026-48163)
OS command injection in mariadb (CVE-2026-48163). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44172 |
|
SQL Injection in mariadb (CVE-2026-44172)
SQL injection in mariadb (CVE-2026-44172). Successful exploitation can lead to full system takeover.
|
| CVE-2026-47223 |
|
Out-of-Bounds Read in CVE-2026-47223 (CVE-2026-47223)
vulnerability in CVE-2026-47223 (CVE-2026-47223). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47225 |
|
Vulnerability in CVE-2026-47225 (CVE-2026-47225)
vulnerability in CVE-2026-47225 (CVE-2026-47225). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47216 |
|
Vulnerability in CVE-2026-47216 (CVE-2026-47216)
vulnerability in CVE-2026-47216 (CVE-2026-47216). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44173 |
|
Authorization Flaw in mariadb (CVE-2026-44173)
vulnerability in mariadb (CVE-2026-44173). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44171 |
|
Path Traversal in mariadb (CVE-2026-44171)
path traversal in mariadb (CVE-2026-44171). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44169 |
|
Authorization Flaw in mariadb (CVE-2026-44169)
vulnerability in mariadb (CVE-2026-44169). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44170 |
|
OS Command Injection in mariadb (CVE-2026-44170)
OS command injection in mariadb (CVE-2026-44170). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44168 |
|
OS Command Injection in mariadb (CVE-2026-44168)
OS command injection in mariadb (CVE-2026-44168). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53982 |
|
Vulnerability in CVE-2026-53982 (CVE-2026-53982)
vulnerability in CVE-2026-53982 (CVE-2026-53982). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53981 |
|
Vulnerability in CVE-2026-53981 (CVE-2026-53981)
vulnerability in CVE-2026-53981 (CVE-2026-53981). Confidential information can be exposed externally.
|
| CVE-2026-47224 |
|
Out-of-Bounds Read in CVE-2026-47224 (CVE-2026-47224)
vulnerability in CVE-2026-47224 (CVE-2026-47224). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47222 |
|
Out-of-Bounds Read in dos (CVE-2026-47222)
vulnerability in dos (CVE-2026-47222). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-5792 |
|
Vulnerability in CVE-2026-5792 (CVE-2026-5792)
vulnerability in CVE-2026-5792 (CVE-2026-5792). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53568 |
|
Cross-Site Scripting (XSS) in CVE-2026-53568 (CVE-2026-53568)
cross-site scripting in CVE-2026-53568 (CVE-2026-53568). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50089 |
|
Open Redirect in c (CVE-2026-50089)
vulnerability in c (CVE-2026-50089). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50085 |
|
Vulnerability in c (CVE-2026-50085)
vulnerability in c (CVE-2026-50085). Data can be tampered with by attackers.
|
| CVE-2026-50091 |
|
Vulnerability in c (CVE-2026-50091)
vulnerability in c (CVE-2026-50091). Confidential information can be exposed externally.
|
| CVE-2026-50560 |
|
Vulnerability in io.netty:netty-codec-http2 (CVE-2026-50560)
vulnerability in io.netty:netty-codec-http2 (CVE-2026-50560). Risk of unauthorized operations or information disclosure. Exploitable via ``SETTINGS_MAX_HEADER_LIST_SIZE``. Mitigation: upgrade to `4.1.135.Final` or later.
|
| CVE-2026-50011 |
|
Vulnerability in io.netty:netty-codec-redis (CVE-2026-50011)
vulnerability in io.netty:netty-codec-redis (CVE-2026-50011). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.1.135.Final` or later.
|
| CVE-2026-50084 |
|
Vulnerability in c (CVE-2026-50084)
vulnerability in c (CVE-2026-50084). Confidential information can be exposed externally.
|
| CVE-2026-50026 |
|
Vulnerability in CVE-2026-50026 (CVE-2026-50026)
vulnerability in CVE-2026-50026 (CVE-2026-50026). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50010 |
|
Vulnerability in io.netty:netty-handler (CVE-2026-50010)
vulnerability in io.netty:netty-handler (CVE-2026-50010). Confidential information can be exposed externally. Mitigation: upgrade to `4.1.135.Final` or later.
|
| CVE-2026-50009 |
|
Information Disclosure in io.netty:netty-codec-classes-quic (CVE-2026-50009)
vulnerability in io.netty:netty-codec-classes-quic (CVE-2026-50009). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.2.15.Final` or later.
|
| CVE-2026-50082 |
|
Vulnerability in c (CVE-2026-50082)
vulnerability in c (CVE-2026-50082). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50083 |
|
Vulnerability in c (CVE-2026-50083)
vulnerability in c (CVE-2026-50083). Confidential information can be exposed externally.
|
| CVE-2026-50020 |
|
Vulnerability in io.netty:netty-codec-http (CVE-2026-50020)
vulnerability in io.netty:netty-codec-http (CVE-2026-50020). Risk of unauthorized operations or information disclosure. Exploitable via ``HttpObjectDecoder``. Mitigation: upgrade to `4.1.135.Final` or later.
|
| CVE-2026-48748 |
|
Vulnerability in io.netty:netty-codec-http3 (CVE-2026-48748)
vulnerability in io.netty:netty-codec-http3 (CVE-2026-48748). Risk of unauthorized operations or information disclosure. Exploitable via ``HTTP3_SETTINGS_QPACK_MAX_TABLE_CAPACITY``. Mitigation: upgrade to `4.2.15.Final` or later.
|
| CVE-2026-47182 |
|
Vulnerability in CVE-2026-47182 (CVE-2026-47182)
vulnerability in CVE-2026-47182 (CVE-2026-47182). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45833 |
|
Code Injection in trychroma (CVE-2026-45833)
code injection in trychroma (CVE-2026-45833). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44976 |
|
Vulnerability in CVE-2026-44976 (CVE-2026-44976)
vulnerability in CVE-2026-44976 (CVE-2026-44976). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45831 |
|
Authorization Flaw in trychroma (CVE-2026-45831)
vulnerability in trychroma (CVE-2026-45831). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44975 |
|
Vulnerability in CVE-2026-44975 (CVE-2026-44975)
vulnerability in CVE-2026-44975 (CVE-2026-44975). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44208 |
|
Vulnerability in CVE-2026-44208 (CVE-2026-44208)
vulnerability in CVE-2026-44208 (CVE-2026-44208). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44206 |
|
Information Disclosure in CVE-2026-44206 (CVE-2026-44206)
vulnerability in CVE-2026-44206 (CVE-2026-44206). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8694 |
|
Vulnerability in ironmansoftware (CVE-2026-8694)
vulnerability in ironmansoftware (CVE-2026-8694). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7368 |
|
Vulnerability in CVE-2026-7368 (CVE-2026-7368)
vulnerability in CVE-2026-7368 (CVE-2026-7368). Confidential information can be exposed externally.
|
| CVE-2026-6211 |
|
Unrestricted File Upload in CVE-2026-6211 (CVE-2026-6211)
vulnerability in CVE-2026-6211 (CVE-2026-6211). Confidential information can be exposed externally.
|