Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-13850 |
|
Vulnerability in c (CVE-2026-13850)
vulnerability in c (CVE-2026-13850). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13828 |
|
Vulnerability in c (CVE-2026-13828)
vulnerability in c (CVE-2026-13828). Confidential information can be exposed externally.
|
| CVE-2026-13782 |
|
Use-After-Free in c (CVE-2026-13782)
vulnerability in c (CVE-2026-13782). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43721 |
|
Vulnerability in c (CVE-2026-43721)
vulnerability in c (CVE-2026-43721). Confidential information can be exposed externally.
|
| CVE-2026-43704 |
|
Use-After-Free in c (CVE-2026-43704)
vulnerability in c (CVE-2026-43704). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49401 |
|
Vulnerability in deno (CVE-2026-49401)
vulnerability in deno (CVE-2026-49401). Data can be tampered with by attackers. Mitigation: upgrade to `2.7.14` or later.
|
| CVE-2026-47906 |
|
Dreamweaver Desktop versions 21.7 and earlier are affected by a Dependency on Vulnerable Third...
Dreamweaver Desktop versions 21.7 and earlier are affected by a Dependency on Vulnerable Third...
|
| CVE-2026-34694 |
|
Cross-Site Scripting (XSS) in adobe (CVE-2026-34694)
cross-site scripting in adobe (CVE-2026-34694). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34691 |
|
Cross-Site Scripting (XSS) in adobe (CVE-2026-34691)
cross-site scripting in adobe (CVE-2026-34691). Confidential information can be exposed externally.
|
| CVE-2026-45591 |
|
Vulnerability in Microsoft.AspNetCore.App.Runtime.linux-x64 (CVE-2026-45591)
vulnerability in Microsoft.AspNetCore.App.Runtime.linux-x64 (CVE-2026-45591). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `10.0.9` or later.
|
| CVE-2026-45491 |
|
Vulnerability in Microsoft.NETCore.App.Runtime.linux-x64 (CVE-2026-45491)
vulnerability in Microsoft.NETCore.App.Runtime.linux-x64 (CVE-2026-45491). Data can be tampered with by attackers. Exploitable via ``TarFile.ExtractToDirectory``. Mitigation: upgrade to `10.0.9` or later.
|
| CVE-2026-11693 |
|
Vulnerability in c (CVE-2026-11693)
vulnerability in c (CVE-2026-11693). Confidential information can be exposed externally.
|
| CVE-2026-11691 |
|
Vulnerability in c (CVE-2026-11691)
vulnerability in c (CVE-2026-11691). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11014 |
|
Vulnerability in c (CVE-2026-11014)
vulnerability in c (CVE-2026-11014). Data can be tampered with by attackers.
|
| CVE-2026-10912 |
|
Vulnerability in c (CVE-2026-10912)
vulnerability in c (CVE-2026-10912). Data can be tampered with by attackers.
|
| CVE-2026-10905 |
|
Use-After-Free in c (CVE-2026-10905)
vulnerability in c (CVE-2026-10905). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9998 |
|
Vulnerability in c (CVE-2026-9998)
vulnerability in c (CVE-2026-9998). Successful exploitation can lead to full system takeover.
|
| CVE-2026-5843 |
|
Vulnerability in docker (CVE-2026-5843)
vulnerability in docker (CVE-2026-5843). Successful exploitation can lead to full system takeover.
|
| CVE-2026-5817 |
|
Vulnerability in docker (CVE-2026-5817)
vulnerability in docker (CVE-2026-5817). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8585 |
|
Vulnerability in c (CVE-2026-8585)
vulnerability in c (CVE-2026-8585). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8528 |
|
Vulnerability in c (CVE-2026-8528)
vulnerability in c (CVE-2026-8528). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42899 |
|
Vulnerability in dotnet (CVE-2026-42899)
vulnerability in dotnet (CVE-2026-42899). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.0.27, 9.0.16, 10.0.8` or later.
|
| CVE-2026-28985 |
|
Vulnerability in c (CVE-2026-28985)
vulnerability in c (CVE-2026-28985). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32178 |
|
Vulnerability in dotnet (CVE-2026-32178)
vulnerability in dotnet (CVE-2026-32178). Confidential information can be exposed externally. Mitigation: upgrade to `8.0.26, 9.0.15, 10.0.6` or later.
|
| CVE-2026-26171 |
|
Vulnerability in dotnet (CVE-2026-26171)
vulnerability in dotnet (CVE-2026-26171). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.0.26, 9.0.15, 10.0.6` or later.
|
| CVE-2026-20652 |
|
Vulnerability in java (CVE-2026-20652)
vulnerability in java (CVE-2026-20652). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
|
| CVE-2026-20644 |
|
Buffer Overflow in java (CVE-2026-20644)
vulnerability in java (CVE-2026-20644). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
|
| CVE-2026-20636 |
|
Buffer Overflow in java (CVE-2026-20636)
vulnerability in java (CVE-2026-20636). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
|
| CVE-2026-20635 |
|
Buffer Overflow in java (CVE-2026-20635)
vulnerability in java (CVE-2026-20635). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
|
| CVE-2026-20608 |
|
Vulnerability in java (CVE-2026-20608)
vulnerability in java (CVE-2026-20608). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
|
| CVE-2025-43457 |
|
Use-After-Free in java (CVE-2025-43457)
vulnerability in java (CVE-2025-43457). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
|
| CVE-2026-33116 |
|
Vulnerability in csharp (CVE-2026-33116)
vulnerability in csharp (CVE-2026-33116). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32203 |
|
Vulnerability in csharp (CVE-2026-32203)
vulnerability in csharp (CVE-2026-32203). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-31277 KEV |
|
[KEV] Buffer Overflow in Apple multiple-products (CVE-2025-31277)
vulnerability in Apple multiple-products (CVE-2025-31277). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2025-43214 |
|
Buffer Overflow in c (CVE-2025-43214)
vulnerability in c (CVE-2025-43214). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-43213 |
|
Buffer Overflow in c (CVE-2025-43213)
vulnerability in c (CVE-2025-43213). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-48795 |
|
Vulnerability in russh (CVE-2023-48795)
vulnerability in russh (CVE-2023-48795). Data can be tampered with by attackers. Mitigation: upgrade to `0.40.2` or later.
|
| CVE-2023-42917 KEV |
|
[KEV] Out-of-Bounds Write in Apple java (CVE-2023-42917)
out-of-bounds write in Apple java (CVE-2023-42917). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `1.8.0, 8.0.411` or later.
|
| CVE-2023-44487 KEV |
|
[KEV] Vulnerability in Ietf golang.org/x/net (CVE-2023-44487)
vulnerability in Ietf golang.org/x/net (CVE-2023-44487). Risk of unauthorized operations or information disclosure. Exploitable via ``Channel``. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `0.17.0` or later.
|
| CVE-2023-41993 KEV |
|
[KEV] Vulnerability in Apple java (CVE-2023-41993)
vulnerability in Apple java (CVE-2023-41993). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `1.8.0, 8.0.411` or later.
|
| CVE-2023-34752 |
|
SQL Injection in sqli (CVE-2023-34752)
SQL injection in sqli (CVE-2023-34752). Successful exploitation can lead to full system takeover.
|
| CVE-2019-13118 |
|
Vulnerability in nokogiri (CVE-2019-13118)
vulnerability in nokogiri (CVE-2019-13118). Confidential information can be exposed externally. Exploitable via ``numbers.c``. Mitigation: upgrade to `1.10.5` or later.
|
| CVE-2017-17821 |
|
Buffer Overflow in cpp (CVE-2017-17821)
vulnerability in cpp (CVE-2017-17821). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13800 |
|
Buffer Overflow in c (CVE-2017-13800)
vulnerability in c (CVE-2017-13800). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5118 |
|
Vulnerability in google (CVE-2017-5118)
vulnerability in google (CVE-2017-5118). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5094 |
|
Vulnerability in c (CVE-2017-5094)
vulnerability in c (CVE-2017-5094). Data can be tampered with by attackers.
|
| CVE-2017-5085 |
|
Cross-Site Scripting (XSS) in google (CVE-2017-5085)
cross-site scripting in google (CVE-2017-5085). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5078 |
|
Vulnerability in c (CVE-2017-5078)
vulnerability in c (CVE-2017-5078). Successful exploitation can lead to full system takeover.
|
| CVE-2015-3206 |
|
Authentication Bypass in pykerberos (CVE-2015-3206)
authentication bypass in pykerberos (CVE-2015-3206). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.1.6` or later.
|
| CVE-2017-3113 |
|
Use-After-Free in adobe (CVE-2017-3113)
vulnerability in adobe (CVE-2017-3113). Successful exploitation can lead to full system takeover.
|