Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-44224 |
|
Privilege Escalation in requarks (CVE-2026-44224)
vulnerability in requarks (CVE-2026-44224). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.5.313` or later.
|
| CVE-2026-35504 |
|
Vulnerability in CVE-2026-35504 (CVE-2026-35504)
vulnerability in CVE-2026-35504 (CVE-2026-35504). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44010 |
|
Vulnerability in craftcms/cms (CVE-2026-44010)
vulnerability in craftcms/cms (CVE-2026-44010). Risk of unauthorized operations or information disclosure. Exploitable via ``true``. Mitigation: upgrade to `4.17.12` or later.
|
| CVE-2025-65086 |
|
Out-of-Bounds Write in ashlar (CVE-2025-65086)
out-of-bounds write in ashlar (CVE-2025-65086). Successful exploitation can lead to full system takeover.
|
| CVE-2025-65087 |
|
Out-of-Bounds Read in ashlar (CVE-2025-65087)
vulnerability in ashlar (CVE-2025-65087). Successful exploitation can lead to full system takeover.
|
| CVE-2025-65088 |
|
Out-of-Bounds Read in ashlar (CVE-2025-65088)
vulnerability in ashlar (CVE-2025-65088). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45185 |
|
Use-After-Free in exim (CVE-2026-45185)
vulnerability in exim (CVE-2026-45185). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6959 |
|
Vulnerability in github.com/hashicorp/nomad (CVE-2026-6959)
vulnerability in github.com/hashicorp/nomad (CVE-2026-6959). Data can be tampered with by attackers. Mitigation: upgrade to `1.11.0-rc.1.0.20260512123500-2a09fd62c238` or later.
|
| CVE-2026-8052 |
|
Vulnerability in github.com/hashicorp/nomad-driver-exec2 (CVE-2026-8052)
vulnerability in github.com/hashicorp/nomad-driver-exec2 (CVE-2026-8052). Data can be tampered with by attackers. Mitigation: upgrade to `0.1.2` or later.
|
| CVE-2026-7474 |
|
Path Traversal in github.com/hashicorp/nomad (CVE-2026-7474)
path traversal in github.com/hashicorp/nomad (CVE-2026-7474). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.11.0-rc.1.0.20260511152149-cd7240c4099a` or later.
|
| CVE-2026-44874 |
|
Vulnerability in arubanetworks (CVE-2026-44874)
vulnerability in arubanetworks (CVE-2026-44874). Confidential information can be exposed externally.
|
| CVE-2026-44864 |
|
SQL Injection in sqli (CVE-2026-44864)
SQL injection in sqli (CVE-2026-44864). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44865 |
|
Command Injection in arubanetworks (CVE-2026-44865)
command injection in arubanetworks (CVE-2026-44865). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44866 |
|
Command Injection in arubanetworks (CVE-2026-44866)
command injection in arubanetworks (CVE-2026-44866). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44867 |
|
Command Injection in arubanetworks (CVE-2026-44867)
command injection in arubanetworks (CVE-2026-44867). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44868 |
|
Command Injection in arubanetworks (CVE-2026-44868)
command injection in arubanetworks (CVE-2026-44868). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44869 |
|
Command Injection in arubanetworks (CVE-2026-44869)
command injection in arubanetworks (CVE-2026-44869). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44870 |
|
Command Injection in arubanetworks (CVE-2026-44870)
command injection in arubanetworks (CVE-2026-44870). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44872 |
|
Command Injection in arubanetworks (CVE-2026-44872)
command injection in arubanetworks (CVE-2026-44872). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44860 |
|
SQL Injection in sqli (CVE-2026-44860)
SQL injection in sqli (CVE-2026-44860). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44861 |
|
SQL Injection in sqli (CVE-2026-44861)
SQL injection in sqli (CVE-2026-44861). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44862 |
|
SQL Injection in sqli (CVE-2026-44862)
SQL injection in sqli (CVE-2026-44862). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44863 |
|
SQL Injection in sqli (CVE-2026-44863)
SQL injection in sqli (CVE-2026-44863). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44854 |
|
Command Injection in arubanetworks (CVE-2026-44854)
command injection in arubanetworks (CVE-2026-44854). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44855 |
|
Vulnerability in arubanetworks (CVE-2026-44855)
vulnerability in arubanetworks (CVE-2026-44855). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44856 |
|
Vulnerability in arubanetworks (CVE-2026-44856)
vulnerability in arubanetworks (CVE-2026-44856). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44857 |
|
Vulnerability in arubanetworks (CVE-2026-44857)
vulnerability in arubanetworks (CVE-2026-44857). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44858 |
|
Vulnerability in arubanetworks (CVE-2026-44858)
vulnerability in arubanetworks (CVE-2026-44858). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44859 |
|
Vulnerability in arubanetworks (CVE-2026-44859)
vulnerability in arubanetworks (CVE-2026-44859). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44221 |
|
Authorization Flaw in com.arcadedb:arcadedb-server (CVE-2026-44221)
vulnerability in com.arcadedb:arcadedb-server (CVE-2026-44221). Successful exploitation can lead to full system takeover. Exploitable via `POST /api/v1/server`. Mitigation: upgrade to `26.4.2` or later.
|
| CVE-2026-44225 |
|
Path Traversal in CVE-2026-44225 (CVE-2026-44225)
path traversal in CVE-2026-44225 (CVE-2026-44225). Confidential information can be exposed externally. Mitigation: upgrade to `0.1.1` or later.
|
| CVE-2026-44853 |
|
Command Injection in arubanetworks (CVE-2026-44853)
command injection in arubanetworks (CVE-2026-44853). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44218 |
|
Privilege Escalation in ciguard (CVE-2026-44218)
vulnerability in ciguard (CVE-2026-44218). Risk of unauthorized operations or information disclosure. Exploitable via ``Dockerfile``. Mitigation: upgrade to `0.8.2` or later.
|
| CVE-2026-44220 |
|
Vulnerability in ciguard (CVE-2026-44220)
vulnerability in ciguard (CVE-2026-44220). Risk of unauthorized operations or information disclosure. Exploitable via ``scan_repo``. Mitigation: upgrade to `0.8.2` or later.
|
| CVE-2026-44217 |
|
Vulnerability in sse-channel (CVE-2026-44217)
vulnerability in sse-channel (CVE-2026-44217). Risk of unauthorized operations or information disclosure. Exploitable via ``event``. Mitigation: upgrade to `4.0.1` or later.
|
| CVE-2026-44215 |
|
Out-of-Bounds Write in m2team (CVE-2026-44215)
out-of-bounds write in m2team (CVE-2026-44215). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.0.1698.0` or later.
|
| CVE-2026-44219 |
|
Vulnerability in ciguard (CVE-2026-44219)
vulnerability in ciguard (CVE-2026-44219). Risk of unauthorized operations or information disclosure. Exploitable via ``None``. Mitigation: upgrade to `0.8.2` or later.
|
| CVE-2026-42889 |
|
Vulnerability in CVE-2026-42889 (CVE-2026-42889)
vulnerability in CVE-2026-42889 (CVE-2026-42889). Confidential information can be exposed externally. Mitigation: upgrade to `0.9.7` or later.
|
| CVE-2026-42442 |
|
Vulnerability in m2team (CVE-2026-42442)
vulnerability in m2team (CVE-2026-42442). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.0.1698.0` or later.
|
| CVE-2026-42444 |
|
Vulnerability in m2team (CVE-2026-42444)
vulnerability in m2team (CVE-2026-42444). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.0.1698.0` or later.
|
| CVE-2026-42338 |
|
Cross-Site Scripting (XSS) in ip-address (CVE-2026-42338)
cross-site scripting in ip-address (CVE-2026-42338). Risk of unauthorized operations or information disclosure. Exploitable via ``AddressError.parseMessage``. Mitigation: upgrade to `10.1.1` or later.
|
| CVE-2026-42446 |
|
Out-of-Bounds Read in m2team (CVE-2026-42446)
vulnerability in m2team (CVE-2026-42446). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.0.1698.0` or later.
|
| CVE-2026-34679 |
|
Vulnerability in adobe (CVE-2026-34679)
vulnerability in adobe (CVE-2026-34679). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34685 |
|
Vulnerability in adobe (CVE-2026-34685)
vulnerability in adobe (CVE-2026-34685). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34688 |
|
Vulnerability in adobe (CVE-2026-34688)
vulnerability in adobe (CVE-2026-34688). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34686 |
|
Cross-Site Scripting (XSS) in adobe (CVE-2026-34686)
cross-site scripting in adobe (CVE-2026-34686). Confidential information can be exposed externally.
|
| CVE-2026-34680 |
|
Vulnerability in adobe (CVE-2026-34680)
vulnerability in adobe (CVE-2026-34680). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34677 |
|
Vulnerability in adobe (CVE-2026-34677)
vulnerability in adobe (CVE-2026-34677). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34678 |
|
Vulnerability in adobe (CVE-2026-34678)
vulnerability in adobe (CVE-2026-34678). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34690 |
|
Vulnerability in adobe (CVE-2026-34690)
vulnerability in adobe (CVE-2026-34690). Successful exploitation can lead to full system takeover.
|