Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2025-69534 Vulnerability in markdown (CVE-2025-69534)
vulnerability in markdown (CVE-2025-69534). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.8.1` or later.
CVE-2026-1605 Vulnerability in eclipse (CVE-2026-1605)
vulnerability in eclipse (CVE-2026-1605). Risk of unauthorized operations or information disclosure.
CVE-2026-2743 Path Traversal in path-traversal (CVE-2026-2743)
path traversal in path-traversal (CVE-2026-2743). Successful exploitation can lead to full system takeover.
CVE-2017-7921 KEV [KEV] Authentication Bypass in Hikvision multiple-products (CVE-2017-7921)
authentication bypass in Hikvision multiple-products (CVE-2017-7921). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30952 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2021-30952)
vulnerability in Apple multiple-products (CVE-2021-30952). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-43000 KEV [KEV] Use-After-Free in Apple multiple-products (CVE-2023-43000)
vulnerability in Apple multiple-products (CVE-2023-43000). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-41974 KEV [KEV] Use-After-Free in Apple ios-and-ipados (CVE-2023-41974)
vulnerability in Apple ios-and-ipados (CVE-2023-41974). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-22681 KEV [KEV] Vulnerability in Rockwell multiple-products (CVE-2021-22681)
vulnerability in Rockwell multiple-products (CVE-2021-22681). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2026-29000 Vulnerability in CVE-2026-29000 (CVE-2026-29000)
vulnerability in CVE-2026-29000 (CVE-2026-29000). Confidential information can be exposed externally.
CVE-2026-0847 Path Traversal in nltk (CVE-2026-0847)
path traversal in nltk (CVE-2026-0847). Confidential information can be exposed externally. Mitigation: upgrade to `3.9.3` or later.
CVE-2026-20024 Buffer Overflow in dos (CVE-2026-20024)
vulnerability in dos (CVE-2026-20024). Risk of unauthorized operations or information disclosure.
CVE-2026-20025 Vulnerability in dos (CVE-2026-20025)
vulnerability in dos (CVE-2026-20025). Risk of unauthorized operations or information disclosure.
CVE-2026-20016 Vulnerability in cisco (CVE-2026-20016)
vulnerability in cisco (CVE-2026-20016). Confidential information can be exposed externally.
CVE-2026-20069 Vulnerability in cisco (CVE-2026-20069)
vulnerability in cisco (CVE-2026-20069). Risk of unauthorized operations or information disclosure.
CVE-2026-3520 Vulnerability in dos (CVE-2026-3520)
vulnerability in dos (CVE-2026-3520). Risk of unauthorized operations or information disclosure.
CVE-2025-15558 Vulnerability in c (CVE-2025-15558)
vulnerability in c (CVE-2025-15558). Successful exploitation can lead to full system takeover.
CVE-2025-12801 Vulnerability in redhat (CVE-2025-12801)
vulnerability in redhat (CVE-2025-12801). Confidential information can be exposed externally.
CVE-2026-23231 Use-After-Free in linux (CVE-2026-23231)
vulnerability in linux (CVE-2026-23231). Successful exploitation can lead to full system takeover.
CVE-2026-27446 Vulnerability in org.apache.activemq:artemis-server (CVE-2026-27446)
vulnerability in org.apache.activemq:artemis-server (CVE-2026-27446). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.52.0` or later.
CVE-2026-27622 Out-of-Bounds Write in openexr (CVE-2026-27622)
out-of-bounds write in openexr (CVE-2026-27622). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.2.6` or later.
CVE-2026-2590 Vulnerability in devolutions (CVE-2026-2590)
vulnerability in devolutions (CVE-2026-2590). Successful exploitation can lead to full system takeover.
CVE-2026-29022 Vulnerability in mackron (CVE-2026-29022)
vulnerability in mackron (CVE-2026-29022). Data can be tampered with by attackers.
CVE-2026-3437 Buffer Overflow in portwell (CVE-2026-3437)
vulnerability in portwell (CVE-2026-3437). Successful exploitation can lead to full system takeover.
CVE-2026-28518 Path Traversal in path-traversal (CVE-2026-28518)
path traversal in path-traversal (CVE-2026-28518). Successful exploitation can lead to full system takeover.
CVE-2026-25673 Vulnerability in django (CVE-2026-25673)
vulnerability in django (CVE-2026-25673). Risk of unauthorized operations or information disclosure.
CVE-2026-22719 KEV [KEV] Command Injection in Broadcom vmware-aria-operations (CVE-2026-22719)
command injection in Broadcom vmware-aria-operations (CVE-2026-22719). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2026-21385 KEV [KEV] Vulnerability in Qualcomm multiple-chipsets (CVE-2026-21385)
vulnerability in Qualcomm multiple-chipsets (CVE-2026-21385). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2026-3338 Vulnerability in amazon (CVE-2026-3338)
vulnerability in amazon (CVE-2026-3338). Data can be tampered with by attackers.
CVE-2026-29049 Vulnerability in chainguard.dev/melange (CVE-2026-29049)
vulnerability in chainguard.dev/melange (CVE-2026-29049). Risk of unauthorized operations or information disclosure. Exploitable via ``io.Copy``. Mitigation: upgrade to `0.43.4` or later.
CVE-2026-0689 Vulnerability in extremenetworks (CVE-2026-0689)
vulnerability in extremenetworks (CVE-2026-0689). Confidential information can be exposed externally.
CVE-2026-2584 SQL Injection in sqli (CVE-2026-2584)
SQL injection in sqli (CVE-2026-2584). Risk of unauthorized operations or information disclosure.
CVE-2026-28516 SQL Injection in sqli (CVE-2026-28516)
SQL injection in sqli (CVE-2026-28516). Successful exploitation can lead to full system takeover.
CVE-2026-28517 OS Command Injection in opendcim (CVE-2026-28517)
OS command injection in opendcim (CVE-2026-28517). Successful exploitation can lead to full system takeover.
CVE-2026-28515 Vulnerability in opendcim (CVE-2026-28515)
vulnerability in opendcim (CVE-2026-28515). Successful exploitation can lead to full system takeover.
CVE-2026-28406 Path Traversal in chainguard (CVE-2026-28406)
path traversal in chainguard (CVE-2026-28406). Data can be tampered with by attackers. Exploitable via ``dest``.
CVE-2026-2880 Vulnerability in fastify (CVE-2026-2880)
vulnerability in fastify (CVE-2026-2880). Confidential information can be exposed externally.
CVE-2026-2293 Authorization Flaw in nestjs (CVE-2026-2293)
vulnerability in nestjs (CVE-2026-2293). Successful exploitation can lead to full system takeover.
CVE-2026-3304 Vulnerability in dos (CVE-2026-3304)
vulnerability in dos (CVE-2026-3304). Risk of unauthorized operations or information disclosure.
CVE-2026-2359 Vulnerability in dos (CVE-2026-2359)
vulnerability in dos (CVE-2026-2359). Risk of unauthorized operations or information disclosure.
CVE-2025-11252 SQL Injection in sqli (CVE-2025-11252)
SQL injection in sqli (CVE-2025-11252). Successful exploitation can lead to full system takeover.
CVE-2025-11950 Cross-Site Scripting (XSS) in eduasist (CVE-2025-11950)
cross-site scripting in eduasist (CVE-2025-11950). Risk of unauthorized operations or information disclosure.
CVE-2026-24351 Cross-Site Scripting (XSS) in pluxml (CVE-2026-24351)
cross-site scripting in pluxml (CVE-2026-24351). Risk of unauthorized operations or information disclosure.
CVE-2026-24350 Cross-Site Scripting (XSS) in pluxml (CVE-2026-24350)
cross-site scripting in pluxml (CVE-2026-24350). Risk of unauthorized operations or information disclosure.
CVE-2025-11251 SQL Injection in sqli (CVE-2025-11251)
SQL injection in sqli (CVE-2025-11251). Successful exploitation can lead to full system takeover.
CVE-2026-28364 Vulnerability in c (CVE-2026-28364)
vulnerability in c (CVE-2026-28364). Confidential information can be exposed externally.
CVE-2026-20797 Vulnerability in copeland (CVE-2026-20797)
vulnerability in copeland (CVE-2026-20797). Risk of unauthorized operations or information disclosure.
CVE-2026-25109 OS Command Injection in copeland (CVE-2026-25109)
OS command injection in copeland (CVE-2026-25109). Successful exploitation can lead to full system takeover.
CVE-2026-20910 OS Command Injection in copeland (CVE-2026-20910)
OS command injection in copeland (CVE-2026-20910). Successful exploitation can lead to full system takeover.
CVE-2026-27509 Vulnerability in unitree (CVE-2026-27509)
vulnerability in unitree (CVE-2026-27509). Successful exploitation can lead to full system takeover.
CVE-2026-23750 Vulnerability in CVE-2026-23750 (CVE-2026-23750)
vulnerability in CVE-2026-23750 (CVE-2026-23750). Data can be tampered with by attackers.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →