Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-58016 |
|
Vulnerability in c (CVE-2026-58016)
vulnerability in c (CVE-2026-58016). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58011 |
|
Out-of-Bounds Read in c (CVE-2026-58011)
vulnerability in c (CVE-2026-58011). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58013 |
|
Vulnerability in c (CVE-2026-58013)
vulnerability in c (CVE-2026-58013). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58014 |
|
Vulnerability in c (CVE-2026-58014)
vulnerability in c (CVE-2026-58014). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58010 |
|
Vulnerability in c (CVE-2026-58010)
vulnerability in c (CVE-2026-58010). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12856 |
|
Vulnerability in redhat (CVE-2026-12856)
vulnerability in redhat (CVE-2026-12856). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9086 |
|
Cross-Site Scripting (XSS) in redhat (CVE-2026-9086)
cross-site scripting in redhat (CVE-2026-9086). Confidential information can be exposed externally.
|
| CVE-2026-11819 |
|
Vulnerability in c (CVE-2026-11819)
vulnerability in c (CVE-2026-11819). Confidential information can be exposed externally.
|
| CVE-2026-11820 |
|
Vulnerability in c (CVE-2026-11820)
vulnerability in c (CVE-2026-11820). Confidential information can be exposed externally.
|
| CVE-2026-12969 |
|
Out-of-Bounds Read in c (CVE-2026-12969)
vulnerability in c (CVE-2026-12969). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12528 |
|
Out-of-Bounds Write in c (CVE-2026-12528)
out-of-bounds write in c (CVE-2026-12528). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11793 |
|
Vulnerability in c (CVE-2026-11793)
vulnerability in c (CVE-2026-11793). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-0492 KEV |
|
[KEV] Authentication Bypass in Linux c (CVE-2022-0492)
authentication bypass in Linux c (CVE-2022-0492). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2026-9801 |
|
Vulnerability in org.keycloak:keycloak-ldap-federation (CVE-2026-9801)
vulnerability in org.keycloak:keycloak-ldap-federation (CVE-2026-9801). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `26.6.3` or later.
|
| CVE-2026-7307 |
|
Vulnerability in org.keycloak:keycloak-saml-core (CVE-2026-7307)
vulnerability in org.keycloak:keycloak-saml-core (CVE-2026-7307). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `26.6.2` or later.
|
| CVE-2026-7504 |
|
Open Redirect in org.keycloak:keycloak-services (CVE-2026-7504)
vulnerability in org.keycloak:keycloak-services (CVE-2026-7504). Confidential information can be exposed externally. Mitigation: upgrade to `26.6.2` or later.
|
| CVE-2026-8830 |
|
Vulnerability in org.keycloak:keycloak-services (CVE-2026-8830)
vulnerability in org.keycloak:keycloak-services (CVE-2026-8830). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `26.6.3` or later.
|
| CVE-2025-7424 |
|
Vulnerability in java (CVE-2025-7424)
vulnerability in java (CVE-2025-7424). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.481` or later.
|
| CVE-2026-6859 |
|
Vulnerability in redhat (CVE-2026-6859)
vulnerability in redhat (CVE-2026-6859). Successful exploitation can lead to full system takeover. Exploitable via ``linux_train.py``.
|
| CVE-2026-37980 |
|
Cross-Site Scripting (XSS) in redhat (CVE-2026-37980)
cross-site scripting in redhat (CVE-2026-37980). Confidential information can be exposed externally. Exploitable via ``organization.alias``.
|
| CVE-2026-5483 |
|
Vulnerability in redhat (CVE-2026-5483)
vulnerability in redhat (CVE-2026-5483). Successful exploitation can lead to full system takeover.
|
| CVE-2025-14821 |
|
Vulnerability in c (CVE-2025-14821)
vulnerability in c (CVE-2025-14821). Successful exploitation can lead to full system takeover.
|
| CVE-2025-31277 KEV |
|
[KEV] Buffer Overflow in Apple multiple-products (CVE-2025-31277)
vulnerability in Apple multiple-products (CVE-2025-31277). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2025-12543 |
|
Vulnerability in redhat (CVE-2025-12543)
vulnerability in redhat (CVE-2025-12543). Confidential information can be exposed externally. Exploitable via `Host header`.
|
| CVE-2024-45777 |
|
Out-of-Bounds Write in c (CVE-2024-45777)
out-of-bounds write in c (CVE-2024-45777). Successful exploitation can lead to full system takeover.
|
| CVE-2023-48795 |
|
Vulnerability in russh (CVE-2023-48795)
vulnerability in russh (CVE-2023-48795). Data can be tampered with by attackers. Mitigation: upgrade to `0.40.2` or later.
|
| CVE-2023-4911 KEV |
|
[KEV] Vulnerability in Gnu c (CVE-2023-4911)
vulnerability in Gnu c (CVE-2023-4911). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2023-5367 |
|
Out-of-Bounds Write in c (CVE-2023-5367)
out-of-bounds write in c (CVE-2023-5367). Successful exploitation can lead to full system takeover.
|
| CVE-2023-44487 KEV |
|
[KEV] Vulnerability in Ietf golang.org/x/net (CVE-2023-44487)
vulnerability in Ietf golang.org/x/net (CVE-2023-44487). Risk of unauthorized operations or information disclosure. Exploitable via ``Channel``. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `0.17.0` or later.
|
| CVE-2023-38559 |
|
Out-of-Bounds Read in c (CVE-2023-38559)
vulnerability in c (CVE-2023-38559). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-3640 |
|
Vulnerability in c (CVE-2023-3640)
vulnerability in c (CVE-2023-3640). Successful exploitation can lead to full system takeover.
|
| CVE-2023-1652 |
|
Use-After-Free in c (CVE-2023-1652)
vulnerability in c (CVE-2023-1652). Confidential information can be exposed externally.
|
| CVE-2018-13785 |
|
Vulnerability in c (CVE-2018-13785)
vulnerability in c (CVE-2018-13785). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-7317 |
|
Use-After-Free in c (CVE-2019-7317)
vulnerability in c (CVE-2019-7317). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-6109 |
|
Vulnerability in c (CVE-2019-6109)
vulnerability in c (CVE-2019-6109). Confidential information can be exposed externally.
|
| CVE-2018-10902 |
|
Vulnerability in c (CVE-2018-10902)
vulnerability in c (CVE-2018-10902). Successful exploitation can lead to full system takeover.
|
| CVE-2016-3695 |
|
Vulnerability in c (CVE-2016-3695)
vulnerability in c (CVE-2016-3695). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15103 |
|
OS Command Injection in c (CVE-2017-15103)
OS command injection in c (CVE-2017-15103). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16997 |
|
Vulnerability in c (CVE-2017-16997)
vulnerability in c (CVE-2017-16997). Successful exploitation can lead to full system takeover.
|
| CVE-2017-17405 |
|
OS Command Injection in ruby-lang (CVE-2017-17405)
OS command injection in ruby-lang (CVE-2017-17405). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15116 |
|
Vulnerability in c (CVE-2017-15116)
vulnerability in c (CVE-2017-15116). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15102 |
|
Vulnerability in c (CVE-2017-15102)
vulnerability in c (CVE-2017-15102). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7501 |
|
Unsafe Deserialization in apache (CVE-2015-7501)
vulnerability in apache (CVE-2015-7501). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5118 |
|
Vulnerability in google (CVE-2017-5118)
vulnerability in google (CVE-2017-5118). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5094 |
|
Vulnerability in c (CVE-2017-5094)
vulnerability in c (CVE-2017-5094). Data can be tampered with by attackers.
|
| CVE-2017-5078 |
|
Vulnerability in c (CVE-2017-5078)
vulnerability in c (CVE-2017-5078). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15906 |
|
Vulnerability in c (CVE-2017-15906)
vulnerability in c (CVE-2017-15906). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10384 |
|
Vulnerability in c (CVE-2017-10384)
vulnerability in c (CVE-2017-10384). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10388 |
|
Vulnerability in c (CVE-2017-10388)
vulnerability in c (CVE-2017-10388). Successful exploitation can lead to full system takeover.
|
| CVE-2017-10378 |
|
Vulnerability in c (CVE-2017-10378)
vulnerability in c (CVE-2017-10378). Risk of unauthorized operations or information disclosure.
|