Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-47692 |
|
Vulnerability in envoyproxy (CVE-2026-47692)
vulnerability in envoyproxy (CVE-2026-47692). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.35.13` or later.
|
| CVE-2026-6432 |
|
Vulnerability in CVE-2026-6432 (CVE-2026-6432)
vulnerability in CVE-2026-6432 (CVE-2026-6432). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45615 |
|
Vulnerability in c (CVE-2026-45615)
vulnerability in c (CVE-2026-45615). Risk of unauthorized operations or information disclosure. Exploitable via ``INTEGER_decode_oer``.
|
| CVE-2026-48685 |
|
Vulnerability in pavel-odintsov (CVE-2026-48685)
vulnerability in pavel-odintsov (CVE-2026-48685). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45681 |
|
Out-of-Bounds Read in go.opentelemetry.io/obi (CVE-2026-45681)
vulnerability in go.opentelemetry.io/obi (CVE-2026-45681). Confidential information can be exposed externally. Exploitable via ``k_kprobes_http2_buf_size``. Mitigation: upgrade to `0.9.0` or later.
|
| CVE-2026-42216 |
|
Out-of-Bounds Read in openexr (CVE-2026-42216)
vulnerability in openexr (CVE-2026-42216). Confidential information can be exposed externally. Exploitable via ``c13e0e1320a6652e02c5c90c6dbd984d532efe44``.
|
| CVE-2026-43125 |
|
Out-of-Bounds Write in linux (CVE-2026-43125)
out-of-bounds write in linux (CVE-2026-43125). Successful exploitation can lead to full system takeover.
|
| CVE-2026-33846 |
|
A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of...
A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of...
|
| CVE-2026-31635 |
|
Vulnerability in c (CVE-2026-31635)
vulnerability in c (CVE-2026-31635). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-5265 |
|
Vulnerability in CVE-2026-5265 (CVE-2026-5265)
vulnerability in CVE-2026-5265 (CVE-2026-5265). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-5367 |
|
Vulnerability in CVE-2026-5367 (CVE-2026-5367)
vulnerability in CVE-2026-5367 (CVE-2026-5367). Confidential information can be exposed externally.
|
| CVE-2026-41035 |
|
In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort...
In rsync 3.0.1 through 3.4.1, receive_xattr relies on an untrusted length value during a qsort...
|
| CVE-2026-33555 |
|
Vulnerability in haproxy (CVE-2026-33555)
vulnerability in haproxy (CVE-2026-33555). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4371 |
|
Vulnerability in mozilla (CVE-2026-4371)
vulnerability in mozilla (CVE-2026-4371). Confidential information can be exposed externally.
|
| CVE-2026-23230 |
|
In the Linux kernel, the following vulnerability has been resolved:
smb: client: split...
In the Linux kernel, the following vulnerability has been resolved:
smb: client: split...
|
| CVE-2025-14847 KEV |
|
[KEV] Vulnerability in mongodb (CVE-2025-14847)
vulnerability in mongodb (CVE-2025-14847). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|