Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-14702 |
|
Vulnerability in CVE-2026-14702 (CVE-2026-14702)
vulnerability in CVE-2026-14702 (CVE-2026-14702). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-14570 |
|
Vulnerability in CVE-2026-14570 (CVE-2026-14570)
vulnerability in CVE-2026-14570 (CVE-2026-14570). Confidential information can be exposed externally.
|
| CVE-2026-57082 |
|
Vulnerability in CVE-2026-57082 (CVE-2026-57082)
vulnerability in CVE-2026-57082 (CVE-2026-57082). Confidential information can be exposed externally.
|
| CVE-2026-11374 |
|
Authentication Bypass in CVE-2026-11374 (CVE-2026-11374)
authentication bypass in CVE-2026-11374 (CVE-2026-11374). Successful exploitation can lead to full system takeover.
|
| CVE-2026-50009 |
|
Information Disclosure in io.netty:netty-codec-classes-quic (CVE-2026-50009)
vulnerability in io.netty:netty-codec-classes-quic (CVE-2026-50009). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.2.15.Final` or later.
|
| CVE-2026-41701 |
|
Vulnerability in CVE-2026-41701 (CVE-2026-41701)
vulnerability in CVE-2026-41701 (CVE-2026-41701). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41838 |
|
Vulnerability in spring (CVE-2026-41838)
vulnerability in spring (CVE-2026-41838). Confidential information can be exposed externally.
|
| CVE-2026-45673 |
|
Vulnerability in io.netty:netty-resolver-dns (CVE-2026-45673)
vulnerability in io.netty:netty-resolver-dns (CVE-2026-45673). Data can be tampered with by attackers. Exploitable via ``DnsQueryIdSpace``. Mitigation: upgrade to `4.1.135.Final` or later.
|
| CVE-2026-50208 |
|
Vulnerability in acer (CVE-2026-50208)
vulnerability in acer (CVE-2026-50208). Confidential information can be exposed externally.
|
| CVE-2026-41207 |
|
Vulnerability in io.netty.incubator:netty-incubator-codec-ohttp (CVE-2026-41207)
vulnerability in io.netty.incubator:netty-incubator-codec-ohttp (CVE-2026-41207). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.0.21.Final` or later.
|
| CVE-2026-44054 |
|
Vulnerability in dos (CVE-2026-44054)
vulnerability in dos (CVE-2026-44054). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42155 |
|
Vulnerability in openmage/magento-lts (CVE-2026-42155)
vulnerability in openmage/magento-lts (CVE-2026-42155). Risk of unauthorized operations or information disclosure. Exploitable via `POST /api/xmlrpc/`. Mitigation: upgrade to `20.18.0` or later.
|
| CVE-2026-40975 |
|
Vulnerability in spring (CVE-2026-40975)
vulnerability in spring (CVE-2026-40975). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-13955 |
|
Vulnerability in CVE-2025-13955 (CVE-2025-13955)
vulnerability in CVE-2025-13955 (CVE-2025-13955). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-52615 |
|
Vulnerability in CVE-2024-52615 (CVE-2024-52615)
vulnerability in CVE-2024-52615 (CVE-2024-52615). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-48056 |
|
Vulnerability in pypinksign (CVE-2023-48056)
vulnerability in pypinksign (CVE-2023-48056). Confidential information can be exposed externally.
|
| CVE-2023-2884 |
|
Vulnerability in cbot (CVE-2023-2884)
vulnerability in cbot (CVE-2023-2884). Successful exploitation can lead to full system takeover.
|
| CVE-2022-36536 |
|
Vulnerability in syncovery (CVE-2022-36536)
vulnerability in syncovery (CVE-2022-36536). Successful exploitation can lead to full system takeover.
|
| CVE-2022-29330 |
|
Vulnerability in vitalpbx (CVE-2022-29330)
vulnerability in vitalpbx (CVE-2022-29330). Confidential information can be exposed externally.
|
| CVE-2021-46010 |
|
Vulnerability in totolink (CVE-2021-46010)
vulnerability in totolink (CVE-2021-46010). Successful exploitation can lead to full system takeover.
|
| CVE-2020-1472 KEV |
|
[KEV] Vulnerability in Microsoft netlogon (CVE-2020-1472)
vulnerability in Microsoft netlogon (CVE-2020-1472). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-11840 |
|
Vulnerability in c (CVE-2019-11840)
vulnerability in c (CVE-2019-11840). Confidential information can be exposed externally.
|
| CVE-2017-17704 |
|
Vulnerability in swhouse (CVE-2017-17704)
vulnerability in swhouse (CVE-2017-17704). Data can be tampered with by attackers.
|
| CVE-2017-17910 |
|
Vulnerability in hoermann (CVE-2017-17910)
vulnerability in hoermann (CVE-2017-17910). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-17091 |
|
Vulnerability in wordpress (CVE-2017-17091)
vulnerability in wordpress (CVE-2017-17091). Successful exploitation can lead to full system takeover.
|
| CVE-2017-10874 |
|
Vulnerability in ntt-east (CVE-2017-10874)
vulnerability in ntt-east (CVE-2017-10874). Data can be tampered with by attackers.
|
| CVE-2017-12361 |
|
Information Disclosure in cisco (CVE-2017-12361)
vulnerability in cisco (CVE-2017-12361). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000246 |
|
Vulnerability in pysaml2-project (CVE-2017-1000246)
vulnerability in pysaml2-project (CVE-2017-1000246). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13079 |
|
Vulnerability in canonical (CVE-2017-13079)
vulnerability in canonical (CVE-2017-13079). Data can be tampered with by attackers.
|
| CVE-2017-13078 |
|
Vulnerability in canonical (CVE-2017-13078)
vulnerability in canonical (CVE-2017-13078). Data can be tampered with by attackers.
|
| CVE-2017-13080 |
|
Vulnerability in canonical (CVE-2017-13080)
vulnerability in canonical (CVE-2017-13080). Data can be tampered with by attackers.
|
| CVE-2017-13081 |
|
Vulnerability in canonical (CVE-2017-13081)
vulnerability in canonical (CVE-2017-13081). Data can be tampered with by attackers.
|
| CVE-2017-13082 |
|
Vulnerability in canonical (CVE-2017-13082)
vulnerability in canonical (CVE-2017-13082). Confidential information can be exposed externally.
|
| CVE-2017-13084 |
|
Vulnerability in canonical (CVE-2017-13084)
vulnerability in canonical (CVE-2017-13084). Confidential information can be exposed externally.
|
| CVE-2017-13086 |
|
Vulnerability in canonical (CVE-2017-13086)
vulnerability in canonical (CVE-2017-13086). Confidential information can be exposed externally.
|
| CVE-2017-13087 |
|
Vulnerability in canonical (CVE-2017-13087)
vulnerability in canonical (CVE-2017-13087). Data can be tampered with by attackers.
|
| CVE-2017-13088 |
|
Vulnerability in canonical (CVE-2017-13088)
vulnerability in canonical (CVE-2017-13088). Data can be tampered with by attackers.
|
| CVE-2017-13077 |
|
Vulnerability in canonical (CVE-2017-13077)
vulnerability in canonical (CVE-2017-13077). Confidential information can be exposed externally.
|
| CVE-2017-7905 |
|
Vulnerability in ge (CVE-2017-7905)
vulnerability in ge (CVE-2017-7905). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7902 |
|
Vulnerability in rockwellautomation (CVE-2017-7902)
vulnerability in rockwellautomation (CVE-2017-7902). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7901 |
|
Vulnerability in dos (CVE-2017-7901)
vulnerability in dos (CVE-2017-7901). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6026 |
|
Vulnerability in schneider-electric (CVE-2017-6026)
vulnerability in schneider-electric (CVE-2017-6026). Confidential information can be exposed externally.
|
| CVE-2017-0897 |
|
Vulnerability in expressionengine (CVE-2017-0897)
vulnerability in expressionengine (CVE-2017-0897). Confidential information can be exposed externally.
|
| CVE-2013-7463 |
|
Vulnerability in aescrypt-project (CVE-2013-7463)
vulnerability in aescrypt-project (CVE-2013-7463). Confidential information can be exposed externally.
|
| CVE-2015-9019 |
|
Vulnerability in xmlsoft (CVE-2015-9019)
vulnerability in xmlsoft (CVE-2015-9019). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-5100 |
|
Vulnerability in froxlor (CVE-2016-5100)
vulnerability in froxlor (CVE-2016-5100). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10180 |
|
Vulnerability in dlink (CVE-2016-10180)
vulnerability in dlink (CVE-2016-10180). Confidential information can be exposed externally.
|
| CVE-2013-4734 |
|
Vulnerability in digital-alert-systems (CVE-2013-4734)
vulnerability in digital-alert-systems (CVE-2013-4734). Risk of unauthorized operations or information disclosure.
|