Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-33112 |
|
Unsafe Deserialization in deserialization (CVE-2026-33112)
vulnerability in deserialization (CVE-2026-33112). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34333 |
|
Vulnerability in microsoft (CVE-2026-34333)
vulnerability in microsoft (CVE-2026-34333). Successful exploitation can lead to full system takeover.
|
| CVE-2026-33841 |
|
Vulnerability in microsoft (CVE-2026-33841)
vulnerability in microsoft (CVE-2026-33841). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34330 |
|
Vulnerability in microsoft (CVE-2026-34330)
vulnerability in microsoft (CVE-2026-34330). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34337 |
|
Vulnerability in microsoft (CVE-2026-34337)
vulnerability in microsoft (CVE-2026-34337). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34341 |
|
Vulnerability in microsoft (CVE-2026-34341)
vulnerability in microsoft (CVE-2026-34341). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34344 |
|
Vulnerability in microsoft (CVE-2026-34344)
vulnerability in microsoft (CVE-2026-34344). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34334 |
|
Vulnerability in microsoft (CVE-2026-34334)
vulnerability in microsoft (CVE-2026-34334). Successful exploitation can lead to full system takeover.
|
| CVE-2026-32170 |
|
Vulnerability in microsoft (CVE-2026-32170)
vulnerability in microsoft (CVE-2026-32170). Successful exploitation can lead to full system takeover.
|
| CVE-2026-32185 |
|
Vulnerability in microsoft (CVE-2026-32185)
vulnerability in microsoft (CVE-2026-32185). Confidential information can be exposed externally.
|
| CVE-2026-32161 |
|
Vulnerability in microsoft (CVE-2026-32161)
vulnerability in microsoft (CVE-2026-32161). Successful exploitation can lead to full system takeover.
|
| CVE-2026-29204 |
|
Vulnerability in CVE-2026-29204 (CVE-2026-29204)
vulnerability in CVE-2026-29204 (CVE-2026-29204). Confidential information can be exposed externally. Exploitable via ``clientarea.php``.
|
| CVE-2025-43524 |
|
Vulnerability in apple (CVE-2025-43524)
vulnerability in apple (CVE-2025-43524). Successful exploitation can lead to full system takeover.
|
| CVE-2025-46311 |
|
Vulnerability in apple (CVE-2025-46311)
vulnerability in apple (CVE-2025-46311). Confidential information can be exposed externally.
|
| CVE-2026-21530 |
|
Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.
Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.
|
| CVE-2026-25690 |
|
Vulnerability in fortinet (CVE-2026-25690)
vulnerability in fortinet (CVE-2026-25690). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-53681 |
|
SQL Injection in sqli (CVE-2025-53681)
SQL injection in sqli (CVE-2025-53681). Successful exploitation can lead to full system takeover.
|
| CVE-2025-53680 |
|
OS Command Injection in fortinet (CVE-2025-53680)
OS command injection in fortinet (CVE-2025-53680). Successful exploitation can lead to full system takeover.
|
| CVE-2025-67604 |
|
Vulnerability in fortinet (CVE-2025-67604)
vulnerability in fortinet (CVE-2025-67604). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-53844 |
|
Out-of-Bounds Write in fortinet (CVE-2025-53844)
out-of-bounds write in fortinet (CVE-2025-53844). Successful exploitation can lead to full system takeover.
|
| CVE-2025-53870 |
|
OS Command Injection in fortinet (CVE-2025-53870)
OS command injection in fortinet (CVE-2025-53870). Successful exploitation can lead to full system takeover.
|
| CVE-2026-26083 |
|
Vulnerability in fortinet (CVE-2026-26083)
vulnerability in fortinet (CVE-2026-26083). Successful exploitation can lead to full system takeover.
|
| CVE-2026-25088 |
|
SQL Injection in sqli (CVE-2026-25088)
SQL injection in sqli (CVE-2026-25088). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20714 |
|
Out-of-Bounds Write in intel (CVE-2026-20714)
out-of-bounds write in intel (CVE-2026-20714). Successful exploitation can lead to full system takeover.
|
| CVE-2026-20767 |
|
Vulnerability in intel (CVE-2026-20767)
vulnerability in intel (CVE-2026-20767). Successful exploitation can lead to full system takeover.
|
| CVE-2026-42899 |
|
Vulnerability in dotnet (CVE-2026-42899)
vulnerability in dotnet (CVE-2026-42899). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.0.27, 9.0.16, 10.0.8` or later.
|
| CVE-2026-41612 |
|
Path Traversal in path-traversal (CVE-2026-41612)
path traversal in path-traversal (CVE-2026-41612). Confidential information can be exposed externally.
|
| CVE-2026-41613 |
|
OS Command Injection in microsoft (CVE-2026-41613)
OS command injection in microsoft (CVE-2026-41613). Successful exploitation can lead to full system takeover.
|
| CVE-2026-42048 |
|
Path Traversal in langflow (CVE-2026-42048)
path traversal in langflow (CVE-2026-42048). Data can be tampered with by attackers. Exploitable via `DELETE /api/v1/knowledge_bases`. Mitigation: upgrade to `1.9.0` or later.
|
| CVE-2026-41109 |
|
Vulnerability in microsoft (CVE-2026-41109)
vulnerability in microsoft (CVE-2026-41109). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41610 |
|
Vulnerability in microsoft (CVE-2026-41610)
vulnerability in microsoft (CVE-2026-41610). Confidential information can be exposed externally.
|
| CVE-2026-41611 |
|
Command Injection in microsoft (CVE-2026-41611)
command injection in microsoft (CVE-2026-41611). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35433 |
|
Vulnerability in Microsoft.WindowsDesktop.App.Runtime.win-arm64 (CVE-2026-35433)
vulnerability in Microsoft.WindowsDesktop.App.Runtime.win-arm64 (CVE-2026-35433). Confidential information can be exposed externally. Mitigation: upgrade to `10.0.8` or later.
|
| CVE-2026-32175 |
|
Vulnerability in Microsoft.NetCore.App.Runtime.win-arm (CVE-2026-32175)
vulnerability in Microsoft.NetCore.App.Runtime.win-arm (CVE-2026-32175). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `10.0.8` or later.
|
| CVE-2026-32177 |
|
Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally.
Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally.
|
| CVE-2026-20881 |
|
Vulnerability in dos (CVE-2026-20881)
vulnerability in dos (CVE-2026-20881). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20905 |
|
Vulnerability in dos (CVE-2026-20905)
vulnerability in dos (CVE-2026-20905). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20914 |
|
Vulnerability in dos (CVE-2026-20914)
vulnerability in dos (CVE-2026-20914). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20771 |
|
Vulnerability in dos (CVE-2026-20771)
vulnerability in dos (CVE-2026-20771). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20782 |
|
Vulnerability in dos (CVE-2026-20782)
vulnerability in dos (CVE-2026-20782). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20793 |
|
Vulnerability in dos (CVE-2026-20793)
vulnerability in dos (CVE-2026-20793). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20717 |
|
Vulnerability in dos (CVE-2026-20717)
vulnerability in dos (CVE-2026-20717). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43513 |
|
Vulnerability in tomcat (CVE-2026-43513)
vulnerability in tomcat (CVE-2026-43513). Confidential information can be exposed externally. Mitigation: upgrade to `10.1.55, 11.0.22, 9.0.118` or later.
|
| CVE-2026-43514 |
|
Vulnerability in tomcat (CVE-2026-43514)
vulnerability in tomcat (CVE-2026-43514). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `10.1.55, 11.0.22, 9.0.118` or later.
|
| CVE-2026-43515 |
|
Vulnerability in tomcat (CVE-2026-43515)
vulnerability in tomcat (CVE-2026-43515). Confidential information can be exposed externally. Mitigation: upgrade to `10.1.55, 11.0.22, 9.0.118` or later.
|
| CVE-2026-41293 |
|
Vulnerability in tomcat (CVE-2026-41293)
vulnerability in tomcat (CVE-2026-41293). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `10.1.55, 11.0.22, 9.0.118` or later.
|
| CVE-2026-42498 |
|
Information Disclosure in tomcat (CVE-2026-42498)
vulnerability in tomcat (CVE-2026-42498). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `10.1.55, 11.0.22, 9.0.118` or later.
|
| CVE-2026-43512 |
|
Authentication Bypass in tomcat (CVE-2026-43512)
authentication bypass in tomcat (CVE-2026-43512). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `10.1.55, 11.0.22, 9.0.118` or later.
|
| CVE-2026-41284 |
|
Vulnerability in tomcat (CVE-2026-41284)
vulnerability in tomcat (CVE-2026-41284). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `10.1.55, 11.0.22, 9.0.118` or later.
|
| CVE-2023-27753 |
|
Unrestricted File Upload in CVE-2023-27753 (CVE-2023-27753)
vulnerability in CVE-2023-27753 (CVE-2023-27753). Successful exploitation can lead to full system takeover.
|