Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-31715 |
|
Use-After-Free in linux (CVE-2026-31715)
vulnerability in linux (CVE-2026-31715). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31718 |
|
Use-After-Free in linux (CVE-2026-31718)
vulnerability in linux (CVE-2026-31718). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31711 |
|
Vulnerability in linux (CVE-2026-31711)
vulnerability in linux (CVE-2026-31711). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31716 |
|
Out-of-Bounds Write in linux (CVE-2026-31716)
out-of-bounds write in linux (CVE-2026-31716). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31717 |
|
Vulnerability in linux (CVE-2026-31717)
vulnerability in linux (CVE-2026-31717). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31709 |
|
Vulnerability in linux (CVE-2026-31709)
vulnerability in linux (CVE-2026-31709). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31707 |
|
Out-of-Bounds Write in c (CVE-2026-31707)
out-of-bounds write in c (CVE-2026-31707). Confidential information can be exposed externally.
|
| CVE-2026-31701 |
|
Vulnerability in linux (CVE-2026-31701)
vulnerability in linux (CVE-2026-31701). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31702 |
|
Use-After-Free in c (CVE-2026-31702)
vulnerability in c (CVE-2026-31702). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31704 |
|
Vulnerability in c (CVE-2026-31704)
vulnerability in c (CVE-2026-31704). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31705 |
|
Out-of-Bounds Write in linux (CVE-2026-31705)
out-of-bounds write in linux (CVE-2026-31705). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31708 |
|
Out-of-Bounds Read in linux (CVE-2026-31708)
vulnerability in linux (CVE-2026-31708). Confidential information can be exposed externally.
|
| CVE-2026-31703 |
|
Use-After-Free in linux (CVE-2026-31703)
vulnerability in linux (CVE-2026-31703). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31694 |
|
Vulnerability in linux (CVE-2026-31694)
vulnerability in linux (CVE-2026-31694). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31696 |
|
Out-of-Bounds Write in c (CVE-2026-31696)
out-of-bounds write in c (CVE-2026-31696). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31697 |
|
Out-of-Bounds Write in c (CVE-2026-31697)
out-of-bounds write in c (CVE-2026-31697). Confidential information can be exposed externally.
|
| CVE-2026-31698 |
|
Out-of-Bounds Write in c (CVE-2026-31698)
out-of-bounds write in c (CVE-2026-31698). Confidential information can be exposed externally.
|
| CVE-2026-31699 |
|
Out-of-Bounds Write in c (CVE-2026-31699)
out-of-bounds write in c (CVE-2026-31699). Confidential information can be exposed externally.
|
| CVE-2026-31700 |
|
Vulnerability in c (CVE-2026-31700)
vulnerability in c (CVE-2026-31700). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31431 KEV |
|
[KEV] Vulnerability in Linux redhat (CVE-2026-31431)
vulnerability in Linux redhat (CVE-2026-31431). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2026-6543 |
|
Code Injection in langflow (CVE-2026-6543)
code injection in langflow (CVE-2026-6543). Successful exploitation can lead to full system takeover.
|
| CVE-2026-3345 |
|
Path Traversal in langflow (CVE-2026-3345)
path traversal in langflow (CVE-2026-3345). Confidential information can be exposed externally.
|
| CVE-2026-1577 |
|
Vulnerability in dos (CVE-2026-1577)
vulnerability in dos (CVE-2026-1577). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-36180 |
|
Vulnerability in ibm (CVE-2025-36180)
vulnerability in ibm (CVE-2025-36180). Data can be tampered with by attackers.
|
| CVE-2025-36335 |
|
Vulnerability in ibm (CVE-2025-36335)
vulnerability in ibm (CVE-2025-36335). Confidential information can be exposed externally.
|
| CVE-2026-4502 |
|
Path Traversal in langflow (CVE-2026-4502)
path traversal in langflow (CVE-2026-4502). Data can be tampered with by attackers.
|
| CVE-2026-4503 |
|
Vulnerability in langflow (CVE-2026-4503)
vulnerability in langflow (CVE-2026-4503). Confidential information can be exposed externally.
|
| CVE-2026-3340 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-3340)
SSRF in ssrf (CVE-2026-3340). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3346 |
|
SQL Injection in langflow (CVE-2026-3346)
SQL injection in langflow (CVE-2026-3346). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3832 |
|
Vulnerability in gnu (CVE-2026-3832)
vulnerability in gnu (CVE-2026-3832). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3833 |
|
Vulnerability in gnu (CVE-2026-3833)
vulnerability in gnu (CVE-2026-3833). Risk of unauthorized operations or information disclosure. Exploitable via ``nameConstraints``.
|
| CVE-2026-33845 |
|
A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero...
A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero...
|
| CVE-2026-41940 KEV |
|
[KEV] Vulnerability in Webpros cpanel-whm-and-wp2-wordpress-squared (CVE-2026-41940)
vulnerability in Webpros cpanel-whm-and-wp2-wordpress-squared (CVE-2026-41940). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-44015 |
|
SSRF (Server-Side Request Forgery) in github.com/0xJacky/Nginx-UI (CVE-2026-44015)
SSRF in github.com/0xJacky/Nginx-UI (CVE-2026-44015). Confidential information can be exposed externally. Exploitable via `GET /api/settings`.
|
| CVE-2026-5141 |
|
Improper Privilege Management, Improper Access Control, Incorrect privilege assignment...
Improper Privilege Management, Improper Access Control, Incorrect privilege assignment...
|
| CVE-2026-42249 |
|
Path Traversal in path-traversal (CVE-2026-42249)
path traversal in path-traversal (CVE-2026-42249). Successful exploitation can lead to full system takeover.
|
| CVE-2026-42248 |
|
Vulnerability in ollama (CVE-2026-42248)
vulnerability in ollama (CVE-2026-42248). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40296 |
|
Cross-Site Scripting (XSS) in phpoffice/phpspreadsheet (CVE-2026-40296)
cross-site scripting in phpoffice/phpspreadsheet (CVE-2026-40296). Risk of unauthorized operations or information disclosure. Exploitable via ``General``. Mitigation: upgrade to `1.30.4` or later.
|
| CVE-2026-30246 |
|
Vulnerability in github.com/gofiber/fiber/v3 (CVE-2026-30246)
vulnerability in github.com/gofiber/fiber/v3 (CVE-2026-30246). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.2.0` or later.
|
| CVE-2026-6238 |
|
Vulnerability in c (CVE-2026-6238)
vulnerability in c (CVE-2026-6238). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42432 |
|
Vulnerability in openclaw (CVE-2026-42432)
vulnerability in openclaw (CVE-2026-42432). Successful exploitation can lead to full system takeover. Exploitable via ``openclaw``. Mitigation: upgrade to `2026.4.8` or later.
|
| CVE-2026-42429 |
|
Privilege Escalation in openclaw (CVE-2026-42429)
vulnerability in openclaw (CVE-2026-42429). Data can be tampered with by attackers. Exploitable via ``operator.read``. Mitigation: upgrade to `2026.4.8` or later.
|
| CVE-2026-7324 |
|
Buffer Overflow in mozilla (CVE-2026-7324)
vulnerability in mozilla (CVE-2026-7324). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7320 |
|
Buffer Overflow in mozilla (CVE-2026-7320)
vulnerability in mozilla (CVE-2026-7320). Confidential information can be exposed externally.
|
| CVE-2026-7322 |
|
Buffer Overflow in mozilla (CVE-2026-7322)
vulnerability in mozilla (CVE-2026-7322). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7323 |
|
Buffer Overflow in mozilla (CVE-2026-7323)
vulnerability in mozilla (CVE-2026-7323). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-5944 |
|
Vulnerability in cisco (CVE-2026-5944)
vulnerability in cisco (CVE-2026-5944). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41603 |
|
Vulnerability in apache (CVE-2026-41603)
vulnerability in apache (CVE-2026-41603). Confidential information can be exposed externally.
|
| CVE-2026-41604 |
|
Out-of-Bounds Read in apache (CVE-2026-41604)
vulnerability in apache (CVE-2026-41604). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41607 |
|
Out-of-Bounds Read in apache (CVE-2026-41607)
vulnerability in apache (CVE-2026-41607). Risk of unauthorized operations or information disclosure.
|