Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2026-28693 Out-of-Bounds Read in imagemagick (CVE-2026-28693)
vulnerability in imagemagick (CVE-2026-28693). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `7.1.2-16` or later.
CVE-2024-14027 Vulnerability in Kernel (CVE-2024-14027)
vulnerability in Kernel (CVE-2024-14027). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.12.77` or later.
CVE-2026-25604 Vulnerability in apache (CVE-2026-25604)
vulnerability in apache (CVE-2026-25604). Risk of unauthorized operations or information disclosure.
CVE-2026-1603 KEV [KEV] Vulnerability in Ivanti endpoint-manager-epm (CVE-2026-1603)
vulnerability in Ivanti endpoint-manager-epm (CVE-2026-1603). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-22054 KEV [KEV] SSRF (Server-Side Request Forgery) in Omnissa workspace-one-uem (CVE-2021-22054)
SSRF in Omnissa workspace-one-uem (CVE-2021-22054). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-26399 KEV [KEV] Unsafe Deserialization in Solarwinds web-help-desk (CVE-2025-26399)
vulnerability in Solarwinds web-help-desk (CVE-2025-26399). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2026-24281 Vulnerability in apache (CVE-2026-24281)
vulnerability in apache (CVE-2026-24281). Confidential information can be exposed externally.
CVE-2026-24308 Vulnerability in apache (CVE-2026-24308)
vulnerability in apache (CVE-2026-24308). Confidential information can be exposed externally.
CVE-2026-23925 Authorization Flaw in zabbix (CVE-2026-23925)
vulnerability in zabbix (CVE-2026-23925). Confidential information can be exposed externally.
CVE-2026-29062 Vulnerability in dos (CVE-2026-29062)
vulnerability in dos (CVE-2026-29062). Risk of unauthorized operations or information disclosure.
CVE-2026-28395 Vulnerability in openclaw (CVE-2026-28395)
vulnerability in openclaw (CVE-2026-28395). Risk of unauthorized operations or information disclosure.
CVE-2026-56272 Vulnerability in flowise (CVE-2026-56272)
vulnerability in flowise (CVE-2026-56272). Confidential information can be exposed externally. Mitigation: upgrade to `3.0.13` or later.
CVE-2026-30789 Vulnerability in rustdesk (CVE-2026-30789)
vulnerability in rustdesk (CVE-2026-30789). Successful exploitation can lead to full system takeover.
CVE-2026-30798 Vulnerability in rustdesk (CVE-2026-30798)
vulnerability in rustdesk (CVE-2026-30798). Risk of unauthorized operations or information disclosure.
CVE-2026-30796 Vulnerability in rustdesk (CVE-2026-30796)
vulnerability in rustdesk (CVE-2026-30796). Confidential information can be exposed externally.
CVE-2026-30794 Vulnerability in rustdesk (CVE-2026-30794)
vulnerability in rustdesk (CVE-2026-30794). Successful exploitation can lead to full system takeover.
CVE-2026-30792 Vulnerability in rustdesk (CVE-2026-30792)
vulnerability in rustdesk (CVE-2026-30792). Successful exploitation can lead to full system takeover.
CVE-2026-30790 Vulnerability in rustdesk (CVE-2026-30790)
vulnerability in rustdesk (CVE-2026-30790). Successful exploitation can lead to full system takeover.
CVE-2026-30783 Vulnerability in rustdesk (CVE-2026-30783)
vulnerability in rustdesk (CVE-2026-30783). Successful exploitation can lead to full system takeover.
CVE-2023-43000 KEV [KEV] Use-After-Free in Apple multiple-products (CVE-2023-43000)
vulnerability in Apple multiple-products (CVE-2023-43000). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30952 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2021-30952)
vulnerability in Apple multiple-products (CVE-2021-30952). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-41974 KEV [KEV] Use-After-Free in Apple ios-and-ipados (CVE-2023-41974)
vulnerability in Apple ios-and-ipados (CVE-2023-41974). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-7921 KEV [KEV] Authentication Bypass in Hikvision multiple-products (CVE-2017-7921)
authentication bypass in Hikvision multiple-products (CVE-2017-7921). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-22681 KEV [KEV] Vulnerability in Rockwell multiple-products (CVE-2021-22681)
vulnerability in Rockwell multiple-products (CVE-2021-22681). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2026-20025 Vulnerability in dos (CVE-2026-20025)
vulnerability in dos (CVE-2026-20025). Risk of unauthorized operations or information disclosure.
CVE-2026-20016 Vulnerability in cisco (CVE-2026-20016)
vulnerability in cisco (CVE-2026-20016). Confidential information can be exposed externally.
CVE-2026-20069 Vulnerability in cisco (CVE-2026-20069)
vulnerability in cisco (CVE-2026-20069). Risk of unauthorized operations or information disclosure.
CVE-2025-15558 Vulnerability in c (CVE-2025-15558)
vulnerability in c (CVE-2025-15558). Successful exploitation can lead to full system takeover.
CVE-2026-23238 Vulnerability in c (CVE-2026-23238)
vulnerability in c (CVE-2026-23238). Risk of unauthorized operations or information disclosure.
CVE-2026-23236 Vulnerability in linux (CVE-2026-23236)
vulnerability in linux (CVE-2026-23236). Data can be tampered with by attackers.
CVE-2026-23231 Use-After-Free in linux (CVE-2026-23231)
vulnerability in linux (CVE-2026-23231). Successful exploitation can lead to full system takeover.
CVE-2026-27446 Vulnerability in org.apache.activemq:artemis-server (CVE-2026-27446)
vulnerability in org.apache.activemq:artemis-server (CVE-2026-27446). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.52.0` or later.
CVE-2026-22719 KEV [KEV] Command Injection in Broadcom vmware-aria-operations (CVE-2026-22719)
command injection in Broadcom vmware-aria-operations (CVE-2026-22719). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2026-21385 KEV [KEV] Vulnerability in Qualcomm multiple-chipsets (CVE-2026-21385)
vulnerability in Qualcomm multiple-chipsets (CVE-2026-21385). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2026-29049 Vulnerability in chainguard.dev/melange (CVE-2026-29049)
vulnerability in chainguard.dev/melange (CVE-2026-29049). Risk of unauthorized operations or information disclosure. Exploitable via ``io.Copy``. Mitigation: upgrade to `0.43.4` or later.
CVE-2026-28517 OS Command Injection in opendcim (CVE-2026-28517)
OS command injection in opendcim (CVE-2026-28517). Successful exploitation can lead to full system takeover.
CVE-2026-28406 Path Traversal in chainguard (CVE-2026-28406)
path traversal in chainguard (CVE-2026-28406). Data can be tampered with by attackers. Exploitable via ``dest``.
CVE-2026-56357 Vulnerability in n8n (CVE-2026-56357)
vulnerability in n8n (CVE-2026-56357). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.5.0` or later.
CVE-2026-56351 SQL Injection in n8n (CVE-2026-56351)
SQL injection in n8n (CVE-2026-56351). Confidential information can be exposed externally. Exploitable via ``NODES_EXCLUDE``. Mitigation: upgrade to `2.4.0` or later.
CVE-2026-27830 Code Injection in deserialization (CVE-2026-27830)
code injection in deserialization (CVE-2026-27830). Successful exploitation can lead to full system takeover. Exploitable via ``javax.naming.Reference``.
CVE-2026-56368 Vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-56368)
vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-56368). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.10.3` or later.
CVE-2026-27727 Vulnerability in mchange (CVE-2026-27727)
vulnerability in mchange (CVE-2026-27727). Successful exploitation can lead to full system takeover. Exploitable via ``factoryClassLocation``.
CVE-2022-20775 KEV [KEV] Vulnerability in Cisco sd-wan (CVE-2022-20775)
vulnerability in Cisco sd-wan (CVE-2022-20775). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2026-20127 KEV [KEV] Authentication Bypass in Cisco catalyst-sd-wan-controller-and-manager (CVE-2026-20127)
authentication bypass in Cisco catalyst-sd-wan-controller-and-manager (CVE-2026-20127). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2026-26351 Cross-Site Scripting (XSS) in getsimple-ce (CVE-2026-26351)
cross-site scripting in getsimple-ce (CVE-2026-26351). Risk of unauthorized operations or information disclosure.
CVE-2026-2807 Out-of-Bounds Write in mozilla (CVE-2026-2807)
out-of-bounds write in mozilla (CVE-2026-2807). Successful exploitation can lead to full system takeover.
CVE-2026-2773 Buffer Overflow in mozilla (CVE-2026-2773)
vulnerability in mozilla (CVE-2026-2773). Successful exploitation can lead to full system takeover.
CVE-2026-2777 Privilege Escalation in privilege-escalation (CVE-2026-2777)
vulnerability in privilege-escalation (CVE-2026-2777). Successful exploitation can lead to full system takeover.
CVE-2026-2792 Out-of-Bounds Write in mozilla (CVE-2026-2792)
out-of-bounds write in mozilla (CVE-2026-2792). Successful exploitation can lead to full system takeover.
CVE-2026-2794 Vulnerability in mozilla (CVE-2026-2794)
vulnerability in mozilla (CVE-2026-2794). Confidential information can be exposed externally.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →