Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Tag: cwe-130 Clear
ID Title
CVE-2026-47692 Vulnerability in envoyproxy (CVE-2026-47692)
vulnerability in envoyproxy (CVE-2026-47692). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.35.13` or later.
CVE-2026-6432 Vulnerability in CVE-2026-6432 (CVE-2026-6432)
vulnerability in CVE-2026-6432 (CVE-2026-6432). Risk of unauthorized operations or information disclosure.
CVE-2026-45615 Vulnerability in c (CVE-2026-45615)
vulnerability in c (CVE-2026-45615). Risk of unauthorized operations or information disclosure. Exploitable via ``INTEGER_decode_oer``.
CVE-2026-48685 Vulnerability in pavel-odintsov (CVE-2026-48685)
vulnerability in pavel-odintsov (CVE-2026-48685). Risk of unauthorized operations or information disclosure.
CVE-2026-45681 Out-of-Bounds Read in go.opentelemetry.io/obi (CVE-2026-45681)
vulnerability in go.opentelemetry.io/obi (CVE-2026-45681). Confidential information can be exposed externally. Exploitable via ``k_kprobes_http2_buf_size``. Mitigation: upgrade to `0.9.0` or later.
CVE-2026-42216 Out-of-Bounds Read in openexr (CVE-2026-42216)
vulnerability in openexr (CVE-2026-42216). Confidential information can be exposed externally. Exploitable via ``c13e0e1320a6652e02c5c90c6dbd984d532efe44``.
CVE-2026-43125 Out-of-Bounds Write in linux (CVE-2026-43125)
out-of-bounds write in linux (CVE-2026-43125). Successful exploitation can lead to full system takeover.
CVE-2026-33846 A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of...
A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of...
CVE-2026-31635 Vulnerability in c (CVE-2026-31635)
vulnerability in c (CVE-2026-31635). Risk of unauthorized operations or information disclosure.
CVE-2026-5265 Vulnerability in CVE-2026-5265 (CVE-2026-5265)
vulnerability in CVE-2026-5265 (CVE-2026-5265). Risk of unauthorized operations or information disclosure.
CVE-2026-5367 Vulnerability in CVE-2026-5367 (CVE-2026-5367)
vulnerability in CVE-2026-5367 (CVE-2026-5367). Confidential information can be exposed externally.
CVE-2026-41035 In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort...
In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort...
CVE-2026-33555 Vulnerability in haproxy (CVE-2026-33555)
vulnerability in haproxy (CVE-2026-33555). Risk of unauthorized operations or information disclosure.
CVE-2026-4371 Vulnerability in mozilla (CVE-2026-4371)
vulnerability in mozilla (CVE-2026-4371). Confidential information can be exposed externally.
CVE-2026-23230 In the Linux kernel, the following vulnerability has been resolved: smb: client: split...
In the Linux kernel, the following vulnerability has been resolved: smb: client: split...
CVE-2025-14847 KEV [KEV] Vulnerability in mongodb (CVE-2025-14847)
vulnerability in mongodb (CVE-2025-14847). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →