Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-42557 |
|
Cross-Site Scripting (XSS) in jupyterlab (CVE-2026-42557)
cross-site scripting in jupyterlab (CVE-2026-42557). Successful exploitation can lead to full system takeover. Exploitable via ``button``. Mitigation: upgrade to `4.5.7` or later.
|
| CVE-2026-42781 |
|
Vulnerability in f5 (CVE-2026-42781)
vulnerability in f5 (CVE-2026-42781). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42780 |
|
Path Traversal in path-traversal (CVE-2026-42780)
path traversal in path-traversal (CVE-2026-42780). Data can be tampered with by attackers.
|
| CVE-2026-42409 |
|
Vulnerability in f5 (CVE-2026-42409)
vulnerability in f5 (CVE-2026-42409). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42266 |
|
Vulnerability in jupyterlab (CVE-2026-42266)
vulnerability in jupyterlab (CVE-2026-42266). Successful exploitation can lead to full system takeover. Exploitable via ``allowed_extensions_uris``. Mitigation: upgrade to `4.5.7` or later.
|
| CVE-2026-42408 |
|
Vulnerability in f5 (CVE-2026-42408)
vulnerability in f5 (CVE-2026-42408). Confidential information can be exposed externally.
|
| CVE-2026-42406 |
|
Vulnerability in f5 (CVE-2026-42406)
vulnerability in f5 (CVE-2026-42406). Confidential information can be exposed externally.
|
| CVE-2026-41959 |
|
Vulnerability in f5 (CVE-2026-41959)
vulnerability in f5 (CVE-2026-41959). Confidential information can be exposed externally.
|
| CVE-2026-42058 |
|
Vulnerability in f5 (CVE-2026-42058)
vulnerability in f5 (CVE-2026-42058). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42063 |
|
Vulnerability in f5 (CVE-2026-42063)
vulnerability in f5 (CVE-2026-42063). Confidential information can be exposed externally.
|
| CVE-2026-41954 |
|
Information Disclosure in f5 (CVE-2026-41954)
vulnerability in f5 (CVE-2026-41954). Confidential information can be exposed externally.
|
| CVE-2026-41956 |
|
Vulnerability in f5 (CVE-2026-41956)
vulnerability in f5 (CVE-2026-41956). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41957 |
|
Unsafe Deserialization in f5 (CVE-2026-41957)
vulnerability in f5 (CVE-2026-41957). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41953 |
|
Command Injection in privilege-escalation (CVE-2026-41953)
command injection in privilege-escalation (CVE-2026-41953). Confidential information can be exposed externally.
|
| CVE-2026-41218 |
|
Use-After-Free in f5 (CVE-2026-41218)
vulnerability in f5 (CVE-2026-41218). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41217 |
|
Vulnerability in f5 (CVE-2026-41217)
vulnerability in f5 (CVE-2026-41217). Confidential information can be exposed externally.
|
| CVE-2026-41219 |
|
Vulnerability in f5 (CVE-2026-41219)
vulnerability in f5 (CVE-2026-41219). Confidential information can be exposed externally.
|
| CVE-2026-40703 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-40703)
vulnerability in csrf (CVE-2026-40703). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41225 |
|
Vulnerability in f5 (CVE-2026-41225)
vulnerability in f5 (CVE-2026-41225). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41227 |
|
Vulnerability in dos (CVE-2026-41227)
vulnerability in dos (CVE-2026-41227). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40629 |
|
Vulnerability in f5 (CVE-2026-40629)
vulnerability in f5 (CVE-2026-40629). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40698 |
|
Command Injection in privilege-escalation (CVE-2026-40698)
command injection in privilege-escalation (CVE-2026-40698). Confidential information can be exposed externally.
|
| CVE-2026-40701 |
|
Use-After-Free in nginx (CVE-2026-40701)
vulnerability in nginx (CVE-2026-40701). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.30.1` or later.
|
| CVE-2026-40631 |
|
Vulnerability in privilege-escalation (CVE-2026-40631)
vulnerability in privilege-escalation (CVE-2026-40631). Confidential information can be exposed externally.
|
| CVE-2026-40618 |
|
Vulnerability in f5 (CVE-2026-40618)
vulnerability in f5 (CVE-2026-40618). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40067 |
|
Vulnerability in f5 (CVE-2026-40067)
vulnerability in f5 (CVE-2026-40067). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40462 |
|
Vulnerability in f5 (CVE-2026-40462)
vulnerability in f5 (CVE-2026-40462). Confidential information can be exposed externally.
|
| CVE-2026-40460 |
|
Vulnerability in nginx (CVE-2026-40460)
vulnerability in nginx (CVE-2026-40460). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.30.1` or later.
|
| CVE-2026-40435 |
|
Vulnerability in f5 (CVE-2026-40435)
vulnerability in f5 (CVE-2026-40435). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40423 |
|
Vulnerability in f5 (CVE-2026-40423)
vulnerability in f5 (CVE-2026-40423). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40061 |
|
Command Injection in f5 (CVE-2026-40061)
command injection in f5 (CVE-2026-40061). Confidential information can be exposed externally.
|
| CVE-2026-39455 |
|
Vulnerability in f5 (CVE-2026-39455)
vulnerability in f5 (CVE-2026-39455). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-39458 |
|
Vulnerability in f5 (CVE-2026-39458)
vulnerability in f5 (CVE-2026-39458). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-36741 |
|
Command Injection in u-speed (CVE-2026-36741)
command injection in u-speed (CVE-2026-36741). Successful exploitation can lead to full system takeover.
|
| CVE-2026-36742 |
|
Vulnerability in CVE-2026-36742 (CVE-2026-36742)
vulnerability in CVE-2026-36742 (CVE-2026-36742). Successful exploitation can lead to full system takeover.
|
| CVE-2026-36738 |
|
Vulnerability in u-speed (CVE-2026-36738)
vulnerability in u-speed (CVE-2026-36738). Successful exploitation can lead to full system takeover.
|
| CVE-2026-32643 |
|
Vulnerability in f5 (CVE-2026-32643)
vulnerability in f5 (CVE-2026-32643). Confidential information can be exposed externally.
|
| CVE-2026-32673 |
|
Vulnerability in f5 (CVE-2026-32673)
vulnerability in f5 (CVE-2026-32673). Confidential information can be exposed externally.
|
| CVE-2026-34176 |
|
OS Command Injection in f5 (CVE-2026-34176)
OS command injection in f5 (CVE-2026-34176). Confidential information can be exposed externally.
|
| CVE-2026-31156 |
|
Path Traversal in cpp (CVE-2026-31156)
path traversal in cpp (CVE-2026-31156). Confidential information can be exposed externally.
|
| CVE-2026-28758 |
|
Vulnerability in f5 (CVE-2026-28758)
vulnerability in f5 (CVE-2026-28758). Confidential information can be exposed externally.
|
| CVE-2026-24464 |
|
Vulnerability in path-traversal (CVE-2026-24464)
vulnerability in path-traversal (CVE-2026-24464). Data can be tampered with by attackers.
|
| CVE-2026-20916 |
|
Path Traversal in f5 (CVE-2026-20916)
path traversal in f5 (CVE-2026-20916). Data can be tampered with by attackers.
|
| CVE-2025-32425 |
|
Vulnerability in dos (CVE-2025-32425)
vulnerability in dos (CVE-2025-32425). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-29338 |
|
Vulnerability in CVE-2025-29338 (CVE-2025-29338)
vulnerability in CVE-2025-29338 (CVE-2025-29338). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-28344 |
|
striso-control-firmware 54c9722 is vulnerable to Buffer Overflow in function AuxJack.
striso-control-firmware 54c9722 is vulnerable to Buffer Overflow in function AuxJack.
|
| CVE-2024-55045 |
|
Vulnerability in c (CVE-2024-55045)
vulnerability in c (CVE-2024-55045). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-51395 |
|
Vulnerability in cpp (CVE-2024-51395)
vulnerability in cpp (CVE-2024-51395). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-28343 |
|
striso-control-firmware 54c9722 is vulnerable to Buffer Overflow in function ThreadReadButtons.
striso-control-firmware 54c9722 is vulnerable to Buffer Overflow in function ThreadReadButtons.
|
| CVE-2020-37226 |
|
SQL Injection in sqli (CVE-2020-37226)
SQL injection in sqli (CVE-2020-37226). Confidential information can be exposed externally.
|