Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-2795 |
|
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
|
| CVE-2026-2793 |
|
Out-of-Bounds Write in mozilla (CVE-2026-2793)
out-of-bounds write in mozilla (CVE-2026-2793). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2799 |
|
Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148.
Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148.
|
| CVE-2026-2796 |
|
Vulnerability in mozilla (CVE-2026-2796)
vulnerability in mozilla (CVE-2026-2796). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2798 |
|
Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148.
Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148.
|
| CVE-2026-2778 |
|
Buffer Overflow in mozilla (CVE-2026-2778)
vulnerability in mozilla (CVE-2026-2778). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2797 |
|
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
|
| CVE-2026-2757 |
|
Vulnerability in mozilla (CVE-2026-2757)
vulnerability in mozilla (CVE-2026-2757). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2760 |
|
Vulnerability in mozilla (CVE-2026-2760)
vulnerability in mozilla (CVE-2026-2760). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2766 |
|
Use-After-Free in mozilla (CVE-2026-2766)
vulnerability in mozilla (CVE-2026-2766). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2769 |
|
Use-After-Free in mozilla (CVE-2026-2769)
vulnerability in mozilla (CVE-2026-2769). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2762 |
|
Vulnerability in mozilla (CVE-2026-2762)
vulnerability in mozilla (CVE-2026-2762). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2764 |
|
Use-After-Free in mozilla (CVE-2026-2764)
vulnerability in mozilla (CVE-2026-2764). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2763 |
|
Use-After-Free in mozilla (CVE-2026-2763)
vulnerability in mozilla (CVE-2026-2763). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2765 |
|
Use-After-Free in mozilla (CVE-2026-2765)
vulnerability in mozilla (CVE-2026-2765). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2767 |
|
Use-After-Free in mozilla (CVE-2026-2767)
vulnerability in mozilla (CVE-2026-2767). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2768 |
|
Vulnerability in mozilla (CVE-2026-2768)
vulnerability in mozilla (CVE-2026-2768). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2771 |
|
Out-of-Bounds Read in mozilla (CVE-2026-2771)
vulnerability in mozilla (CVE-2026-2771). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2772 |
|
Use-After-Free in mozilla (CVE-2026-2772)
vulnerability in mozilla (CVE-2026-2772). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2770 |
|
Use-After-Free in mozilla (CVE-2026-2770)
vulnerability in mozilla (CVE-2026-2770). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2776 |
|
Buffer Overflow in mozilla (CVE-2026-2776)
vulnerability in mozilla (CVE-2026-2776). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2775 |
|
Vulnerability in mozilla (CVE-2026-2775)
vulnerability in mozilla (CVE-2026-2775). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2774 |
|
Vulnerability in mozilla (CVE-2026-2774)
vulnerability in mozilla (CVE-2026-2774). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2758 |
|
Use-After-Free in mozilla (CVE-2026-2758)
vulnerability in mozilla (CVE-2026-2758). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2761 |
|
Vulnerability in mozilla (CVE-2026-2761)
vulnerability in mozilla (CVE-2026-2761). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2759 |
|
Vulnerability in mozilla (CVE-2026-2759)
vulnerability in mozilla (CVE-2026-2759). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2786 |
|
Use-After-Free in mozilla (CVE-2026-2786)
vulnerability in mozilla (CVE-2026-2786). Successful exploitation can lead to full system takeover.
|
| CVE-2026-25985 |
|
Vulnerability in imagemagick (CVE-2026-25985)
vulnerability in imagemagick (CVE-2026-25985). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-25968 |
|
Vulnerability in c (CVE-2026-25968)
vulnerability in c (CVE-2026-25968). Confidential information can be exposed externally.
|
| CVE-2026-25969 |
|
Vulnerability in c (CVE-2026-25969)
vulnerability in c (CVE-2026-25969). Risk of unauthorized operations or information disclosure. Exploitable via ``WriteASHLARImage``.
|
| CVE-2026-25965 |
|
Path Traversal in path-traversal (CVE-2026-25965)
path traversal in path-traversal (CVE-2026-25965). Confidential information can be exposed externally.
|
| CVE-2026-25794 |
|
Vulnerability in c (CVE-2026-25794)
vulnerability in c (CVE-2026-25794). Risk of unauthorized operations or information disclosure. Exploitable via ``WriteUHDRImage``.
|
| CVE-2026-25108 KEV |
|
[KEV] OS Command Injection in Soliton systems k.k soliton-systems-kk (CVE-2026-25108)
OS command injection in Soliton systems k.k soliton-systems-kk (CVE-2026-25108). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-27623 |
|
Vulnerability in lfprojects (CVE-2026-27623)
vulnerability in lfprojects (CVE-2026-27623). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-21863 |
|
Out-of-Bounds Read in lfprojects (CVE-2026-21863)
vulnerability in lfprojects (CVE-2026-21863). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-67733 |
|
Vulnerability in lfprojects (CVE-2025-67733)
vulnerability in lfprojects (CVE-2025-67733). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-25747 |
|
Unsafe Deserialization in apache (CVE-2026-25747)
vulnerability in apache (CVE-2026-25747). Successful exploitation can lead to full system takeover.
|
| CVE-2026-27134 |
|
Authentication Bypass in apache (CVE-2026-27134)
authentication bypass in apache (CVE-2026-27134). Successful exploitation can lead to full system takeover.
|
| CVE-2025-49113 KEV |
|
[KEV] Unsafe Deserialization in Roundcube webmail (CVE-2025-49113)
vulnerability in Roundcube webmail (CVE-2025-49113). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-68461 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Roundcube webmail (CVE-2025-68461)
cross-site scripting in Roundcube webmail (CVE-2025-68461). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-13590 |
|
Unrestricted File Upload in wso2 (CVE-2025-13590)
vulnerability in wso2 (CVE-2025-13590). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0974 |
|
Vulnerability in wordpress (CVE-2026-0974)
vulnerability in wordpress (CVE-2026-0974). Successful exploitation can lead to full system takeover.
|
| CVE-2026-23228 |
|
Vulnerability in linux (CVE-2026-23228)
vulnerability in linux (CVE-2026-23228). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23229 |
|
Vulnerability in linux (CVE-2026-23229)
vulnerability in linux (CVE-2026-23229). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23230 |
|
In the Linux kernel, the following vulnerability has been resolved:
smb: client: split...
In the Linux kernel, the following vulnerability has been resolved:
smb: client: split...
|
| CVE-2026-23220 |
|
Vulnerability in linux (CVE-2026-23220)
vulnerability in linux (CVE-2026-23220). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23222 |
|
Vulnerability in linux (CVE-2026-23222)
vulnerability in linux (CVE-2026-23222). Successful exploitation can lead to full system takeover.
|
| CVE-2026-22769 KEV |
|
[KEV] Vulnerability in Dell recoverpoint-for-virtual-machines-rp4vms (CVE-2026-22769)
vulnerability in Dell recoverpoint-for-virtual-machines-rp4vms (CVE-2026-22769). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-22175 KEV |
|
[KEV] SSRF (Server-Side Request Forgery) in gitlab (CVE-2021-22175)
SSRF in gitlab (CVE-2021-22175). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-24734 |
|
Vulnerability in apache (CVE-2026-24734)
vulnerability in apache (CVE-2026-24734). Data can be tampered with by attackers.
|