Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-29009 |
|
Vulnerability in c (CVE-2026-29009)
vulnerability in c (CVE-2026-29009). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-57246 |
|
Vulnerability in CVE-2026-57246 (CVE-2026-57246)
vulnerability in CVE-2026-57246 (CVE-2026-57246). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6688 |
|
Vulnerability in c (CVE-2026-6688)
vulnerability in c (CVE-2026-6688). Successful exploitation can lead to full system takeover.
|
| CVE-2026-42450 |
|
Vulnerability in cpp (CVE-2026-42450)
vulnerability in cpp (CVE-2026-42450). Risk of unauthorized operations or information disclosure. Exploitable via ``sscanf``.
|
| CVE-2025-26240 |
|
Vulnerability in pdfkit (CVE-2025-26240)
vulnerability in pdfkit (CVE-2025-26240). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0144 |
|
Vulnerability in cpp (CVE-2026-0144)
vulnerability in cpp (CVE-2026-0144). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0160 |
|
Vulnerability in cpp (CVE-2026-0160)
vulnerability in cpp (CVE-2026-0160). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0146 |
|
Vulnerability in c (CVE-2026-0146)
vulnerability in c (CVE-2026-0146). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0147 |
|
Vulnerability in c (CVE-2026-0147)
vulnerability in c (CVE-2026-0147). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0141 |
|
Vulnerability in cpp (CVE-2026-0141)
vulnerability in cpp (CVE-2026-0141). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0138 |
|
Vulnerability in c (CVE-2026-0138)
vulnerability in c (CVE-2026-0138). Successful exploitation can lead to full system takeover.
|
| CVE-2026-54257 |
|
Vulnerability in electron (CVE-2026-54257)
vulnerability in electron (CVE-2026-54257). Risk of unauthorized operations or information disclosure. Exploitable via ``Buffer``. Mitigation: upgrade to `42.3.3` or later.
|
| CVE-2026-49759 |
|
Vulnerability in c (CVE-2026-49759)
vulnerability in c (CVE-2026-49759). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9698 |
|
Out-of-Bounds Write in perl (CVE-2026-9698)
out-of-bounds write in perl (CVE-2026-9698). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0056 |
|
Vulnerability in cpp (CVE-2026-0056)
vulnerability in cpp (CVE-2026-0056). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10275 |
|
Buffer Overflow in c (CVE-2026-10275)
vulnerability in c (CVE-2026-10275). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48686 |
|
Vulnerability in cpp (CVE-2026-48686)
vulnerability in cpp (CVE-2026-48686). Successful exploitation can lead to full system takeover.
|
| CVE-2018-25356 |
|
Vulnerability in cpp (CVE-2018-25356)
vulnerability in cpp (CVE-2018-25356). Successful exploitation can lead to full system takeover.
|
| CVE-2026-36189 |
|
Vulnerability in cpp (CVE-2026-36189)
vulnerability in cpp (CVE-2026-36189). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-48519 |
|
Vulnerability in cpp (CVE-2024-48519)
vulnerability in cpp (CVE-2024-48519). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-55045 |
|
Vulnerability in c (CVE-2024-55045)
vulnerability in c (CVE-2024-55045). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42859 |
|
Vulnerability in c (CVE-2026-42859)
vulnerability in c (CVE-2026-42859). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.9.6` or later.
|
| CVE-2026-8093 |
|
Buffer Overflow in mozilla (CVE-2026-8093)
vulnerability in mozilla (CVE-2026-8093). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6691 |
|
Vulnerability in c (CVE-2026-6691)
vulnerability in c (CVE-2026-6691). Successful exploitation can lead to full system takeover.
|
| CVE-2026-20652 |
|
Vulnerability in java (CVE-2026-20652)
vulnerability in java (CVE-2026-20652). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
|
| CVE-2026-20644 |
|
Buffer Overflow in java (CVE-2026-20644)
vulnerability in java (CVE-2026-20644). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
|
| CVE-2026-20636 |
|
Buffer Overflow in java (CVE-2026-20636)
vulnerability in java (CVE-2026-20636). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
|
| CVE-2026-20635 |
|
Buffer Overflow in java (CVE-2026-20635)
vulnerability in java (CVE-2026-20635). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
|
| CVE-2026-20608 |
|
Vulnerability in java (CVE-2026-20608)
vulnerability in java (CVE-2026-20608). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
|
| CVE-2026-40170 |
|
ngtcp2 is a C implementation of the IETF QUIC protocol. In versions prior to 1.22.1, ngtcp2_qlog_parameters_set_transport_params() serializes peer transport parameters into a fixed 1024-byte stack buf...
ngtcp2 is a C implementation of the IETF QUIC protocol. In versions prior to 1.22.1, ngtcp2_qlog_parameters_set_transport_params() serializes peer transport parameters into a fixed 1024-byte stack buffer without bounds checking. When qlog is enabled, a remote peer can send sufficiently large transpo...
|
| CVE-2026-27820 |
|
Vulnerability in zlib (CVE-2026-27820)
vulnerability in zlib (CVE-2026-27820). Successful exploitation can lead to full system takeover. Exploitable via ``zstream_buffer_ungets``. Mitigation: upgrade to `3.0.1` or later.
|
| CVE-2025-31277 KEV |
|
[KEV] Buffer Overflow in Apple multiple-products (CVE-2025-31277)
vulnerability in Apple multiple-products (CVE-2025-31277). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2025-69720 |
|
Vulnerability in c (CVE-2025-69720)
vulnerability in c (CVE-2025-69720). Confidential information can be exposed externally.
|
| CVE-2026-27459 |
|
Vulnerability in pyopenssl (CVE-2026-27459)
vulnerability in pyopenssl (CVE-2026-27459). Successful exploitation can lead to full system takeover. Exploitable via ``set_cookie_generate_callback``. Mitigation: upgrade to `26.0.0` or later.
|
| CVE-2025-55131 |
|
Vulnerability in CVE-2025-55131 (CVE-2025-55131)
vulnerability in CVE-2025-55131 (CVE-2025-55131). Confidential information can be exposed externally. Exploitable via ``Buffer.alloc``.
|
| CVE-2025-43213 |
|
Buffer Overflow in c (CVE-2025-43213)
vulnerability in c (CVE-2025-43213). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-43214 |
|
Buffer Overflow in c (CVE-2025-43214)
vulnerability in c (CVE-2025-43214). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-7345 |
|
Vulnerability in c (CVE-2025-7345)
vulnerability in c (CVE-2025-7345). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-57482 |
|
Vulnerability in c (CVE-2024-57482)
vulnerability in c (CVE-2024-57482). Successful exploitation can lead to full system takeover.
|
| CVE-2024-23077 |
|
Vulnerability in jfree (CVE-2024-23077)
vulnerability in jfree (CVE-2024-23077). Confidential information can be exposed externally.
|
| CVE-2021-47107 |
|
Vulnerability in c (CVE-2021-47107)
vulnerability in c (CVE-2021-47107). Successful exploitation can lead to full system takeover.
|
| CVE-2023-38559 |
|
Out-of-Bounds Read in c (CVE-2023-38559)
vulnerability in c (CVE-2023-38559). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-44283 |
|
Vulnerability in cpp (CVE-2021-44283)
vulnerability in cpp (CVE-2021-44283). Confidential information can be exposed externally.
|
| CVE-2023-26769 |
|
Vulnerability in c (CVE-2023-26769)
vulnerability in c (CVE-2023-26769). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-11043 KEV |
|
[KEV] Vulnerability in Php fastcgi-process-manager-fpm (CVE-2019-11043)
vulnerability in Php fastcgi-process-manager-fpm (CVE-2019-11043). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-12137 |
|
Vulnerability in c (CVE-2017-12137)
vulnerability in c (CVE-2017-12137). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12601 |
|
Vulnerability in cpp (CVE-2017-12601)
vulnerability in cpp (CVE-2017-12601). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11473 |
|
Vulnerability in c (CVE-2017-11473)
vulnerability in c (CVE-2017-11473). Successful exploitation can lead to full system takeover.
|
| CVE-2017-0594 |
|
Vulnerability in cpp (CVE-2017-0594)
vulnerability in cpp (CVE-2017-0594). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6058 |
|
Vulnerability in c (CVE-2017-6058)
vulnerability in c (CVE-2017-6058). Risk of unauthorized operations or information disclosure.
|