Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-23299 |
|
Vulnerability in linux (CVE-2026-23299)
vulnerability in linux (CVE-2026-23299). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23295 |
|
Vulnerability in linux (CVE-2026-23295)
vulnerability in linux (CVE-2026-23295). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23294 |
|
Vulnerability in linux (CVE-2026-23294)
vulnerability in linux (CVE-2026-23294). Successful exploitation can lead to full system takeover.
|
| CVE-2026-23286 |
|
Vulnerability in linux (CVE-2026-23286)
vulnerability in linux (CVE-2026-23286). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23279 |
|
Vulnerability in Kernel (CVE-2026-23279)
vulnerability in Kernel (CVE-2026-23279). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.77, 6.18.17, 6.19.7` or later.
|
| CVE-2026-23281 |
|
Use-After-Free in linux (CVE-2026-23281)
vulnerability in linux (CVE-2026-23281). Successful exploitation can lead to full system takeover.
|
| CVE-2026-23392 |
|
Use-After-Free in Kernel (CVE-2026-23392)
vulnerability in Kernel (CVE-2026-23392). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.78, 6.18.20, 6.19.10` or later.
|
| CVE-2026-23378 |
|
Out-of-Bounds Write in Kernel (CVE-2026-23378)
out-of-bounds write in Kernel (CVE-2026-23378). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.77, 6.18.17, 6.19.7` or later.
|
| CVE-2026-23368 |
|
Vulnerability in Kernel (CVE-2026-23368)
vulnerability in Kernel (CVE-2026-23368). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.78, 6.18.17, 6.19.7` or later.
|
| CVE-2026-23359 |
|
Out-of-Bounds Write in Kernel (CVE-2026-23359)
out-of-bounds write in Kernel (CVE-2026-23359). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.77, 6.18.17, 6.19.7` or later.
|
| CVE-2026-23351 |
|
Use-After-Free in Kernel (CVE-2026-23351)
vulnerability in Kernel (CVE-2026-23351). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.77, 6.18.17, 6.19.7` or later.
|
| CVE-2026-23343 |
|
Out-of-Bounds Write in Kernel (CVE-2026-23343)
out-of-bounds write in Kernel (CVE-2026-23343). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.77, 6.18.17, 6.19.7` or later.
|
| CVE-2026-23340 |
|
Use-After-Free in Kernel (CVE-2026-23340)
vulnerability in Kernel (CVE-2026-23340). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.77, 6.18.17, 6.19.7` or later.
|
| CVE-2026-23335 |
|
Vulnerability in Kernel (CVE-2026-23335)
vulnerability in Kernel (CVE-2026-23335). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.77, 6.18.17, 6.19.7` or later.
|
| CVE-2026-23293 |
|
Vulnerability in Kernel (CVE-2026-23293)
vulnerability in Kernel (CVE-2026-23293). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.77, 6.18.17, 6.19.7` or later.
|
| CVE-2026-28857 |
|
Out-of-Bounds Read in apple (CVE-2026-28857)
vulnerability in apple (CVE-2026-28857). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28859 |
|
Out-of-Bounds Read in apple (CVE-2026-28859)
vulnerability in apple (CVE-2026-28859). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28877 |
|
Information Disclosure in apple (CVE-2026-28877)
vulnerability in apple (CVE-2026-28877). Confidential information can be exposed externally.
|
| CVE-2026-28878 |
|
Information Disclosure in apple (CVE-2026-28878)
vulnerability in apple (CVE-2026-28878). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20664 |
|
Out-of-Bounds Write in apple (CVE-2026-20664)
out-of-bounds write in apple (CVE-2026-20664). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20657 |
|
Buffer Overflow in apple (CVE-2026-20657)
vulnerability in apple (CVE-2026-20657). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28861 |
|
Cross-Site Scripting (XSS) in apple (CVE-2026-28861)
cross-site scripting in apple (CVE-2026-28861). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28863 |
|
Vulnerability in apple (CVE-2026-28863)
vulnerability in apple (CVE-2026-28863). Confidential information can be exposed externally.
|
| CVE-2026-28833 |
|
Vulnerability in apple (CVE-2026-28833)
vulnerability in apple (CVE-2026-28833). Confidential information can be exposed externally.
|
| CVE-2026-28838 |
|
Vulnerability in apple (CVE-2026-28838)
vulnerability in apple (CVE-2026-28838). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20684 |
|
Vulnerability in apple (CVE-2026-20684)
vulnerability in apple (CVE-2026-20684). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-33017 KEV |
|
[KEV] Vulnerability in langflow (CVE-2026-33017)
vulnerability in langflow (CVE-2026-33017). Successful exploitation can lead to full system takeover. Exploitable via `POST /api/v1/build_public_tmp/{flow_id}/flow`. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `1.9.0` or later.
|
| CVE-2026-4371 |
|
Vulnerability in mozilla (CVE-2026-4371)
vulnerability in mozilla (CVE-2026-4371). Confidential information can be exposed externally.
|
| CVE-2026-33412 |
|
OS Command Injection in vim (CVE-2026-33412)
OS command injection in vim (CVE-2026-33412). Data can be tampered with by attackers.
|
| CVE-2026-33331 |
|
Cross-Site Scripting (XSS) in orpc (CVE-2026-33331)
cross-site scripting in orpc (CVE-2026-33331). Confidential information can be exposed externally.
|
| CVE-2026-32853 |
|
Out-of-Bounds Read in libvncserver-project (CVE-2026-32853)
vulnerability in libvncserver-project (CVE-2026-32853). Confidential information can be exposed externally.
|
| CVE-2026-32854 |
|
Vulnerability in c (CVE-2026-32854)
vulnerability in c (CVE-2026-32854). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-27651 |
|
Vulnerability in nginx (CVE-2026-27651)
vulnerability in nginx (CVE-2026-27651). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32647 |
|
Out-of-Bounds Read in nginx (CVE-2026-32647)
vulnerability in nginx (CVE-2026-32647). Successful exploitation can lead to full system takeover.
|
| CVE-2026-27784 |
|
Vulnerability in nginx (CVE-2026-27784)
vulnerability in nginx (CVE-2026-27784). Successful exploitation can lead to full system takeover.
|
| CVE-2026-27654 |
|
Vulnerability in nginx (CVE-2026-27654)
vulnerability in nginx (CVE-2026-27654). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4729 |
|
Vulnerability in mozilla (CVE-2026-4729)
vulnerability in mozilla (CVE-2026-4729). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4720 |
|
Vulnerability in mozilla (CVE-2026-4720)
vulnerability in mozilla (CVE-2026-4720). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4721 |
|
Vulnerability in mozilla (CVE-2026-4721)
vulnerability in mozilla (CVE-2026-4721). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4700 |
|
Vulnerability in mozilla (CVE-2026-4700)
vulnerability in mozilla (CVE-2026-4700). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4696 |
|
Use-After-Free in mozilla (CVE-2026-4696)
vulnerability in mozilla (CVE-2026-4696). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4697 |
|
Vulnerability in mozilla (CVE-2026-4697)
vulnerability in mozilla (CVE-2026-4697). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4699 |
|
Vulnerability in mozilla (CVE-2026-4699)
vulnerability in mozilla (CVE-2026-4699). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4695 |
|
Vulnerability in mozilla (CVE-2026-4695)
vulnerability in mozilla (CVE-2026-4695). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4694 |
|
Vulnerability in mozilla (CVE-2026-4694)
vulnerability in mozilla (CVE-2026-4694). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4690 |
|
Vulnerability in mozilla (CVE-2026-4690)
vulnerability in mozilla (CVE-2026-4690). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4689 |
|
Vulnerability in mozilla (CVE-2026-4689)
vulnerability in mozilla (CVE-2026-4689). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4692 |
|
Vulnerability in mozilla (CVE-2026-4692)
vulnerability in mozilla (CVE-2026-4692). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4688 |
|
Use-After-Free in mozilla (CVE-2026-4688)
vulnerability in mozilla (CVE-2026-4688). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4684 |
|
Vulnerability in mozilla (CVE-2026-4684)
vulnerability in mozilla (CVE-2026-4684). Successful exploitation can lead to full system takeover.
|