Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-42953 |
|
Out-of-Bounds Write in cisa (CVE-2026-42953)
out-of-bounds write in cisa (CVE-2026-42953). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12352 |
|
Authorization Flaw in cisa (CVE-2026-12352)
vulnerability in cisa (CVE-2026-12352). Confidential information can be exposed externally.
|
| CVE-2026-13743 |
|
Vulnerability in cisa (CVE-2026-13743)
vulnerability in cisa (CVE-2026-13743). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12819 |
|
Vulnerability in cisa (CVE-2026-12819)
vulnerability in cisa (CVE-2026-12819). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12578 |
|
Unsafe Deserialization in cisa (CVE-2026-12578)
vulnerability in cisa (CVE-2026-12578). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-55975 |
|
OS Command Injection in cisa (CVE-2026-55975)
OS command injection in cisa (CVE-2026-55975). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40702 |
|
Vulnerability in cisa (CVE-2026-40702)
vulnerability in cisa (CVE-2026-40702). Confidential information can be exposed externally.
|
| CVE-2026-1840 |
|
Vulnerability in cisa (CVE-2026-1840)
vulnerability in cisa (CVE-2026-1840). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40624 |
|
Vulnerability in cisa (CVE-2026-40624)
vulnerability in cisa (CVE-2026-40624). Successful exploitation can lead to full system takeover.
|
| CVE-2025-13036 |
|
Vulnerability in cisa (CVE-2025-13036)
vulnerability in cisa (CVE-2025-13036). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0646 |
|
Vulnerability in cisa (CVE-2026-0646)
vulnerability in cisa (CVE-2026-0646). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10557 |
|
Vulnerability in cisa (CVE-2026-10557)
vulnerability in cisa (CVE-2026-10557). Successful exploitation can lead to full system takeover.
|
| CVE-2026-50245 |
|
Vulnerability in cisa (CVE-2026-50245)
vulnerability in cisa (CVE-2026-50245). Confidential information can be exposed externally.
|
| CVE-2026-21404 |
|
Vulnerability in cisa (CVE-2026-21404)
vulnerability in cisa (CVE-2026-21404). Data can be tampered with by attackers.
|
| CVE-2026-7786 |
|
Vulnerability in cisa (CVE-2026-7786)
vulnerability in cisa (CVE-2026-7786). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6824 |
|
Cross-Site Scripting (XSS) in cisa (CVE-2026-6824)
cross-site scripting in cisa (CVE-2026-6824). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9037 |
|
Vulnerability in cisa (CVE-2026-9037)
vulnerability in cisa (CVE-2026-9037). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8598 |
|
Vulnerability in cisa (CVE-2026-8598)
vulnerability in cisa (CVE-2026-8598). Confidential information can be exposed externally.
|
| CVE-2026-8602 |
|
Vulnerability in cisa (CVE-2026-8602)
vulnerability in cisa (CVE-2026-8602). Data can be tampered with by attackers.
|
| CVE-2026-46333 |
|
Privilege Escalation in cisa (CVE-2026-46333)
vulnerability in cisa (CVE-2026-46333). Confidential information can be exposed externally.
|
| CVE-2026-42945 |
|
Vulnerability in nginx (CVE-2026-42945)
vulnerability in nginx (CVE-2026-42945). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.30.1` or later.
|
| CVE-2026-8108 |
|
Vulnerability in cisa (CVE-2026-8108)
vulnerability in cisa (CVE-2026-8108). Successful exploitation can lead to full system takeover.
|
| CVE-2025-40833 |
|
Vulnerability in dos (CVE-2025-40833)
vulnerability in dos (CVE-2025-40833). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65856 |
|
Vulnerability in cisa (CVE-2025-65856)
vulnerability in cisa (CVE-2025-65856). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6074 |
|
Vulnerability in cisa (CVE-2026-6074)
vulnerability in cisa (CVE-2026-6074). Successful exploitation can lead to full system takeover.
|
| CVE-2025-13777 |
|
Vulnerability in cisa (CVE-2025-13777)
vulnerability in cisa (CVE-2025-13777). Confidential information can be exposed externally.
|
| CVE-2026-0300 KEV |
|
[KEV] Out-of-Bounds Write in Palo alto networks palo-alto-networks (CVE-2026-0300)
out-of-bounds write in Palo alto networks palo-alto-networks (CVE-2026-0300). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-27446 |
|
Vulnerability in org.apache.activemq:artemis-server (CVE-2026-27446)
vulnerability in org.apache.activemq:artemis-server (CVE-2026-27446). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.52.0` or later.
|
| CVE-2025-15467 |
|
Out-of-Bounds Write in cisa (CVE-2025-15467)
out-of-bounds write in cisa (CVE-2025-15467). Successful exploitation can lead to full system takeover.
|