Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-23533 |
|
Vulnerability in dos (CVE-2026-23533)
vulnerability in dos (CVE-2026-23533). Successful exploitation can lead to full system takeover.
|
| CVE-2026-23534 |
|
Vulnerability in dos (CVE-2026-23534)
vulnerability in dos (CVE-2026-23534). Successful exploitation can lead to full system takeover.
|
| CVE-2026-23532 |
|
Vulnerability in dos (CVE-2026-23532)
vulnerability in dos (CVE-2026-23532). Successful exploitation can lead to full system takeover. Exploitable via ``gdi_SurfaceToSurface``.
|
| CVE-2026-23530 |
|
Vulnerability in dos (CVE-2026-23530)
vulnerability in dos (CVE-2026-23530). Successful exploitation can lead to full system takeover. Exploitable via ``freerdp_bitmap_decompress_planar``.
|
| CVE-2026-23531 |
|
Vulnerability in dos (CVE-2026-23531)
vulnerability in dos (CVE-2026-23531). Successful exploitation can lead to full system takeover. Exploitable via ``glyphData``.
|
| CVE-2025-68616 |
|
Open Redirect in weasyprint (CVE-2025-68616)
vulnerability in weasyprint (CVE-2025-68616). Confidential information can be exposed externally. Exploitable via ``default_url_fetcher``. Mitigation: upgrade to `68.0` or later.
|
| CVE-2026-23745 |
|
Path Traversal in isaacs (CVE-2026-23745)
path traversal in isaacs (CVE-2026-23745). Confidential information can be exposed externally. Mitigation: upgrade to `7.5.3` or later.
|
| CVE-2021-47839 |
|
Cross-Site Scripting (XSS) in CVE-2021-47839 (CVE-2021-47839)
cross-site scripting in CVE-2021-47839 (CVE-2021-47839). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-47836 |
|
Cross-Site Scripting (XSS) in CVE-2021-47836 (CVE-2021-47836)
cross-site scripting in CVE-2021-47836 (CVE-2021-47836). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23490 |
|
Vulnerability in pyasn1 (CVE-2026-23490)
vulnerability in pyasn1 (CVE-2026-23490). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.6.2` or later.
|
| CVE-2025-62581 |
|
Delta Electronics DIAView has multiple vulnerabilities.
Delta Electronics DIAView has multiple vulnerabilities.
|
| CVE-2025-62582 |
|
Delta Electronics DIAView has multiple vulnerabilities.
Delta Electronics DIAView has multiple vulnerabilities.
|
| CVE-2021-47814 |
|
Vulnerability in dos (CVE-2021-47814)
vulnerability in dos (CVE-2021-47814). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-67246 |
|
Privilege Escalation in privilege-escalation (CVE-2025-67246)
vulnerability in privilege-escalation (CVE-2025-67246). Confidential information can be exposed externally.
|
| CVE-2026-0992 |
|
Vulnerability in redhat (CVE-2026-0992)
vulnerability in redhat (CVE-2026-0992). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0897 |
|
Vulnerability in keras (CVE-2026-0897)
vulnerability in keras (CVE-2026-0897). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.13.1` or later.
|
| CVE-2026-22855 |
|
Out-of-Bounds Read in freerdp (CVE-2026-22855)
vulnerability in freerdp (CVE-2026-22855). Confidential information can be exposed externally. Mitigation: upgrade to `3.20.1` or later.
|
| CVE-2026-22858 |
|
Out-of-Bounds Read in c (CVE-2026-22858)
vulnerability in c (CVE-2026-22858). Confidential information can be exposed externally. Mitigation: upgrade to `3.20.1` or later.
|
| CVE-2026-22859 |
|
Out-of-Bounds Read in freerdp (CVE-2026-22859)
vulnerability in freerdp (CVE-2026-22859). Confidential information can be exposed externally. Mitigation: upgrade to `3.20.1` or later.
|
| CVE-2026-22853 |
|
Out-of-Bounds Write in freerdp (CVE-2026-22853)
out-of-bounds write in freerdp (CVE-2026-22853). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.20.1` or later.
|
| CVE-2025-65397 |
|
Vulnerability in blurams (CVE-2025-65397)
vulnerability in blurams (CVE-2025-65397). Successful exploitation can lead to full system takeover.
|
| CVE-2025-65396 |
|
Buffer Overflow in blurams (CVE-2025-65396)
vulnerability in blurams (CVE-2025-65396). Confidential information can be exposed externally.
|
| CVE-2026-22211 |
|
Out-of-Bounds Write in dos (CVE-2026-22211)
out-of-bounds write in dos (CVE-2026-22211). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-67399 |
|
Information Disclosure in airth (CVE-2025-67399)
vulnerability in airth (CVE-2025-67399). Confidential information can be exposed externally.
|
| CVE-2025-14242 |
|
Vulnerability in dos (CVE-2025-14242)
vulnerability in dos (CVE-2025-14242). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71120 |
|
Vulnerability in linux (CVE-2025-71120)
vulnerability in linux (CVE-2025-71120). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71114 |
|
Vulnerability in linux (CVE-2025-71114)
vulnerability in linux (CVE-2025-71114). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71113 |
|
Vulnerability in c (CVE-2025-71113)
vulnerability in c (CVE-2025-71113). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71112 |
|
Out-of-Bounds Read in linux (CVE-2025-71112)
vulnerability in linux (CVE-2025-71112). Confidential information can be exposed externally.
|
| CVE-2025-71104 |
|
Vulnerability in linux (CVE-2025-71104)
vulnerability in linux (CVE-2025-71104). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0532 |
|
SSRF (Server-Side Request Forgery) in CVE-2026-0532 (CVE-2026-0532)
SSRF in CVE-2026-0532 (CVE-2026-0532). Confidential information can be exposed externally.
|
| CVE-2026-20931 |
|
Vulnerability in microsoft (CVE-2026-20931)
vulnerability in microsoft (CVE-2026-20931). Successful exploitation can lead to full system takeover.
|
| CVE-2026-20864 |
|
Vulnerability in microsoft (CVE-2026-20864)
vulnerability in microsoft (CVE-2026-20864). Successful exploitation can lead to full system takeover.
|
| CVE-2026-20921 |
|
Vulnerability in microsoft (CVE-2026-20921)
vulnerability in microsoft (CVE-2026-20921). Successful exploitation can lead to full system takeover.
|
| CVE-2026-20817 |
|
Vulnerability in microsoft (CVE-2026-20817)
vulnerability in microsoft (CVE-2026-20817). Successful exploitation can lead to full system takeover.
|
| CVE-2025-65784 |
|
SSRF (Server-Side Request Forgery) in hubert (CVE-2025-65784)
SSRF in hubert (CVE-2025-65784). Confidential information can be exposed externally.
|
| CVE-2025-25249 |
|
Vulnerability in fortinet (CVE-2025-25249)
vulnerability in fortinet (CVE-2025-25249). Successful exploitation can lead to full system takeover.
|
| CVE-2025-71098 |
|
Vulnerability in c (CVE-2025-71098)
vulnerability in c (CVE-2025-71098). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71079 |
|
Vulnerability in linux (CVE-2025-71079)
vulnerability in linux (CVE-2025-71079). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71075 |
|
Use-After-Free in linux (CVE-2025-71075)
vulnerability in linux (CVE-2025-71075). Successful exploitation can lead to full system takeover.
|
| CVE-2025-68823 |
|
Vulnerability in linux (CVE-2025-68823)
vulnerability in linux (CVE-2025-68823). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-66698 |
|
Authentication Bypass in semantic-machines (CVE-2025-66698)
authentication bypass in semantic-machines (CVE-2025-66698). Confidential information can be exposed externally.
|
| CVE-2025-65783 |
|
Unrestricted File Upload in hubert (CVE-2025-65783)
vulnerability in hubert (CVE-2025-65783). Successful exploitation can lead to full system takeover.
|
| CVE-2024-54855 |
|
Vulnerability in fabricators (CVE-2024-54855)
vulnerability in fabricators (CVE-2024-54855). Confidential information can be exposed externally.
|
| CVE-2026-0891 |
|
Buffer Overflow in mozilla (CVE-2026-0891)
vulnerability in mozilla (CVE-2026-0891). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0879 |
|
Buffer Overflow in mozilla (CVE-2026-0879)
vulnerability in mozilla (CVE-2026-0879). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0882 |
|
Use-After-Free in mozilla (CVE-2026-0882)
vulnerability in mozilla (CVE-2026-0882). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0881 |
|
Sandbox escape in the Messaging System component. This vulnerability affects Firefox < 147.
Sandbox escape in the Messaging System component. This vulnerability affects Firefox < 147.
|
| CVE-2026-0877 |
|
Vulnerability in mozilla (CVE-2026-0877)
vulnerability in mozilla (CVE-2026-0877). Confidential information can be exposed externally.
|
| CVE-2026-0878 |
|
Vulnerability in mozilla (CVE-2026-0878)
vulnerability in mozilla (CVE-2026-0878). Confidential information can be exposed externally.
|