Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-1603 KEV |
|
[KEV] Vulnerability in Ivanti endpoint-manager-epm (CVE-2026-1603)
vulnerability in Ivanti endpoint-manager-epm (CVE-2026-1603). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-24308 |
|
Vulnerability in apache (CVE-2026-24308)
vulnerability in apache (CVE-2026-24308). Confidential information can be exposed externally.
|
| CVE-2026-24281 |
|
Vulnerability in apache (CVE-2026-24281)
vulnerability in apache (CVE-2026-24281). Confidential information can be exposed externally.
|
| CVE-2026-30789 |
|
Vulnerability in rustdesk (CVE-2026-30789)
vulnerability in rustdesk (CVE-2026-30789). Successful exploitation can lead to full system takeover.
|
| CVE-2026-30796 |
|
Vulnerability in rustdesk (CVE-2026-30796)
vulnerability in rustdesk (CVE-2026-30796). Confidential information can be exposed externally.
|
| CVE-2026-30798 |
|
Vulnerability in rustdesk (CVE-2026-30798)
vulnerability in rustdesk (CVE-2026-30798). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-30794 |
|
Vulnerability in rustdesk (CVE-2026-30794)
vulnerability in rustdesk (CVE-2026-30794). Successful exploitation can lead to full system takeover.
|
| CVE-2026-30790 |
|
Vulnerability in rustdesk (CVE-2026-30790)
vulnerability in rustdesk (CVE-2026-30790). Successful exploitation can lead to full system takeover.
|
| CVE-2026-30792 |
|
Vulnerability in rustdesk (CVE-2026-30792)
vulnerability in rustdesk (CVE-2026-30792). Successful exploitation can lead to full system takeover.
|
| CVE-2026-30783 |
|
Vulnerability in rustdesk (CVE-2026-30783)
vulnerability in rustdesk (CVE-2026-30783). Successful exploitation can lead to full system takeover.
|
| CVE-2023-41974 KEV |
|
[KEV] Use-After-Free in Apple ios-and-ipados (CVE-2023-41974)
vulnerability in Apple ios-and-ipados (CVE-2023-41974). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-7921 KEV |
|
[KEV] Authentication Bypass in Hikvision multiple-products (CVE-2017-7921)
authentication bypass in Hikvision multiple-products (CVE-2017-7921). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-22681 KEV |
|
[KEV] Vulnerability in Rockwell multiple-products (CVE-2021-22681)
vulnerability in Rockwell multiple-products (CVE-2021-22681). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-43000 KEV |
|
[KEV] Use-After-Free in Apple multiple-products (CVE-2023-43000)
vulnerability in Apple multiple-products (CVE-2023-43000). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-30952 KEV |
|
[KEV] Vulnerability in Apple multiple-products (CVE-2021-30952)
vulnerability in Apple multiple-products (CVE-2021-30952). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-15558 |
|
Vulnerability in c (CVE-2025-15558)
vulnerability in c (CVE-2025-15558). Successful exploitation can lead to full system takeover.
|
| CVE-2026-27446 |
|
Vulnerability in org.apache.activemq:artemis-server (CVE-2026-27446)
vulnerability in org.apache.activemq:artemis-server (CVE-2026-27446). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.52.0` or later.
|
| CVE-2026-21385 KEV |
|
[KEV] Vulnerability in Qualcomm multiple-chipsets (CVE-2026-21385)
vulnerability in Qualcomm multiple-chipsets (CVE-2026-21385). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-22719 KEV |
|
[KEV] Command Injection in Broadcom vmware-aria-operations (CVE-2026-22719)
command injection in Broadcom vmware-aria-operations (CVE-2026-22719). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-28517 |
|
OS Command Injection in opendcim (CVE-2026-28517)
OS command injection in opendcim (CVE-2026-28517). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56357 |
|
Vulnerability in n8n (CVE-2026-56357)
vulnerability in n8n (CVE-2026-56357). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.5.0` or later.
|
| CVE-2026-56351 |
|
SQL Injection in n8n (CVE-2026-56351)
SQL injection in n8n (CVE-2026-56351). Confidential information can be exposed externally. Exploitable via ``NODES_EXCLUDE``. Mitigation: upgrade to `2.4.0` or later.
|
| CVE-2026-56368 |
|
Vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-56368)
vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-56368). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.10.3` or later.
|
| CVE-2026-21725 |
|
Vulnerability in grafana (CVE-2026-21725)
vulnerability in grafana (CVE-2026-21725). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-20775 KEV |
|
[KEV] Vulnerability in Cisco sd-wan (CVE-2022-20775)
vulnerability in Cisco sd-wan (CVE-2022-20775). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-20127 KEV |
|
[KEV] Authentication Bypass in Cisco catalyst-sd-wan-controller-and-manager (CVE-2026-20127)
authentication bypass in Cisco catalyst-sd-wan-controller-and-manager (CVE-2026-20127). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2026-26351 |
|
Cross-Site Scripting (XSS) in getsimple-ce (CVE-2026-26351)
cross-site scripting in getsimple-ce (CVE-2026-26351). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2807 |
|
Out-of-Bounds Write in mozilla (CVE-2026-2807)
out-of-bounds write in mozilla (CVE-2026-2807). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2797 |
|
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
|
| CVE-2026-2773 |
|
Buffer Overflow in mozilla (CVE-2026-2773)
vulnerability in mozilla (CVE-2026-2773). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2778 |
|
Buffer Overflow in mozilla (CVE-2026-2778)
vulnerability in mozilla (CVE-2026-2778). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2777 |
|
Privilege Escalation in privilege-escalation (CVE-2026-2777)
vulnerability in privilege-escalation (CVE-2026-2777). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2792 |
|
Out-of-Bounds Write in mozilla (CVE-2026-2792)
out-of-bounds write in mozilla (CVE-2026-2792). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2794 |
|
Vulnerability in mozilla (CVE-2026-2794)
vulnerability in mozilla (CVE-2026-2794). Confidential information can be exposed externally.
|
| CVE-2026-2795 |
|
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
|
| CVE-2026-2793 |
|
Out-of-Bounds Write in mozilla (CVE-2026-2793)
out-of-bounds write in mozilla (CVE-2026-2793). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2798 |
|
Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148.
Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148.
|
| CVE-2026-2796 |
|
Vulnerability in mozilla (CVE-2026-2796)
vulnerability in mozilla (CVE-2026-2796). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2799 |
|
Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148.
Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148.
|
| CVE-2026-2758 |
|
Use-After-Free in mozilla (CVE-2026-2758)
vulnerability in mozilla (CVE-2026-2758). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2757 |
|
Vulnerability in mozilla (CVE-2026-2757)
vulnerability in mozilla (CVE-2026-2757). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2759 |
|
Vulnerability in mozilla (CVE-2026-2759)
vulnerability in mozilla (CVE-2026-2759). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2772 |
|
Use-After-Free in mozilla (CVE-2026-2772)
vulnerability in mozilla (CVE-2026-2772). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2775 |
|
Vulnerability in mozilla (CVE-2026-2775)
vulnerability in mozilla (CVE-2026-2775). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2776 |
|
Buffer Overflow in mozilla (CVE-2026-2776)
vulnerability in mozilla (CVE-2026-2776). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2770 |
|
Use-After-Free in mozilla (CVE-2026-2770)
vulnerability in mozilla (CVE-2026-2770). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2768 |
|
Vulnerability in mozilla (CVE-2026-2768)
vulnerability in mozilla (CVE-2026-2768). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2767 |
|
Use-After-Free in mozilla (CVE-2026-2767)
vulnerability in mozilla (CVE-2026-2767). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2774 |
|
Vulnerability in mozilla (CVE-2026-2774)
vulnerability in mozilla (CVE-2026-2774). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2771 |
|
Out-of-Bounds Read in mozilla (CVE-2026-2771)
vulnerability in mozilla (CVE-2026-2771). Successful exploitation can lead to full system takeover.
|