Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-71190 |
|
Vulnerability in linux (CVE-2025-71190)
vulnerability in linux (CVE-2025-71190). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71191 |
|
Vulnerability in linux (CVE-2025-71191)
vulnerability in linux (CVE-2025-71191). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71185 |
|
Vulnerability in linux (CVE-2025-71185)
vulnerability in linux (CVE-2025-71185). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71186 |
|
Vulnerability in linux (CVE-2025-71186)
vulnerability in linux (CVE-2025-71186). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-24293 |
|
Command Injection in CVE-2025-24293 (CVE-2025-24293)
command injection in CVE-2025-24293 (CVE-2025-24293). Successful exploitation can lead to full system takeover.
|
| CGA-7jqj-8457-jm46 |
|
Vulnerability in amazon-ecs-agent-fips (CGA-7jqj-8457-jm46)
vulnerability in amazon-ecs-agent-fips (CGA-7jqj-8457-jm46). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.100.1-r2` or later.
|
| CVE-2026-1281 KEV |
|
[KEV] Code Injection in Ivanti endpoint-manager-mobile-epmm (CVE-2026-1281)
code injection in Ivanti endpoint-manager-mobile-epmm (CVE-2026-1281). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-24869 |
|
Use-After-Free in mozilla (CVE-2026-24869)
vulnerability in mozilla (CVE-2026-24869). Successful exploitation can lead to full system takeover.
|
| CVE-2026-22795 |
|
Vulnerability in dos (CVE-2026-22795)
vulnerability in dos (CVE-2026-22795). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69419 |
|
Out-of-Bounds Write in dos (CVE-2025-69419)
out-of-bounds write in dos (CVE-2025-69419). Confidential information can be exposed externally.
|
| CVE-2025-69420 |
|
Vulnerability in dos (CVE-2025-69420)
vulnerability in dos (CVE-2025-69420). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69421 |
|
Vulnerability in dos (CVE-2025-69421)
vulnerability in dos (CVE-2025-69421). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69418 |
|
Vulnerability in openssl (CVE-2025-69418)
vulnerability in openssl (CVE-2025-69418). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-68160 |
|
Out-of-Bounds Write in dos (CVE-2025-68160)
out-of-bounds write in dos (CVE-2025-68160). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-15467 |
|
Out-of-Bounds Write in cisa (CVE-2025-15467)
out-of-bounds write in cisa (CVE-2025-15467). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24858 KEV |
|
[KEV] Vulnerability in Fortinet multiple-products (CVE-2026-24858)
vulnerability in Fortinet multiple-products (CVE-2026-24858). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2025-52691 KEV |
|
[KEV] Unrestricted File Upload in Smartertools smartermail (CVE-2025-52691)
vulnerability in Smartertools smartermail (CVE-2025-52691). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-23760 KEV |
|
[KEV] Vulnerability in Smartertools smartermail (CVE-2026-23760)
vulnerability in Smartertools smartermail (CVE-2026-23760). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-24061 KEV |
|
[KEV] Vulnerability in Gnu inetutils (CVE-2026-24061)
vulnerability in Gnu inetutils (CVE-2026-24061). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-14634 KEV |
|
[KEV] Vulnerability in Linux kernel (CVE-2018-14634)
vulnerability in Linux kernel (CVE-2018-14634). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-21509 KEV |
|
[KEV] Vulnerability in Microsoft office (CVE-2026-21509)
vulnerability in Microsoft office (CVE-2026-21509). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2025-52023 |
|
Vulnerability in aptsys (CVE-2025-52023)
vulnerability in aptsys (CVE-2025-52023). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-52022 |
|
Vulnerability in aptsys (CVE-2025-52022)
vulnerability in aptsys (CVE-2025-52022). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71161 |
|
Vulnerability in linux (CVE-2025-71161)
vulnerability in linux (CVE-2025-71161). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0994 |
|
Vulnerability in protobuf (CVE-2026-0994)
vulnerability in protobuf (CVE-2026-0994). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `5.29.6` or later.
|
| CVE-2024-37079 KEV |
|
[KEV] Out-of-Bounds Write in Broadcom vmware-vcenter-server (CVE-2024-37079)
out-of-bounds write in Broadcom vmware-vcenter-server (CVE-2024-37079). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-1260 |
|
Buffer Overflow in google (CVE-2026-1260)
vulnerability in google (CVE-2026-1260). Successful exploitation can lead to full system takeover.
|
| CVE-2025-68645 KEV |
|
[KEV] Vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2025-68645)
vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2025-68645). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-34026 KEV |
|
[KEV] Vulnerability in Versa concerto (CVE-2025-34026)
vulnerability in Versa concerto (CVE-2025-34026). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-31125 KEV |
|
[KEV] Information Disclosure in vite (CVE-2025-31125)
vulnerability in vite (CVE-2025-31125). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-54313 KEV |
|
[KEV] Vulnerability in prettier (CVE-2025-54313)
vulnerability in prettier (CVE-2025-54313). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-22977 |
|
Vulnerability in c (CVE-2026-22977)
vulnerability in c (CVE-2026-22977). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-22976 |
|
Vulnerability in c (CVE-2026-22976)
vulnerability in c (CVE-2026-22976). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20045 KEV |
|
[KEV] Code Injection in Cisco unified-communications-manager (CVE-2026-20045)
code injection in Cisco unified-communications-manager (CVE-2026-20045). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-23876 |
|
Vulnerability in imagemagick (CVE-2026-23876)
vulnerability in imagemagick (CVE-2026-23876). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0989 |
|
Vulnerability in xmlsoft (CVE-2026-0989)
vulnerability in xmlsoft (CVE-2026-0989). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0990 |
|
Vulnerability in dos (CVE-2026-0990)
vulnerability in dos (CVE-2026-0990). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0992 |
|
Vulnerability in redhat (CVE-2026-0992)
vulnerability in redhat (CVE-2026-0992). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20931 |
|
Vulnerability in microsoft (CVE-2026-20931)
vulnerability in microsoft (CVE-2026-20931). Successful exploitation can lead to full system takeover.
|
| CVE-2026-20864 |
|
Vulnerability in microsoft (CVE-2026-20864)
vulnerability in microsoft (CVE-2026-20864). Successful exploitation can lead to full system takeover.
|
| CVE-2026-20921 |
|
Vulnerability in microsoft (CVE-2026-20921)
vulnerability in microsoft (CVE-2026-20921). Successful exploitation can lead to full system takeover.
|
| CVE-2026-20817 |
|
Vulnerability in microsoft (CVE-2026-20817)
vulnerability in microsoft (CVE-2026-20817). Successful exploitation can lead to full system takeover.
|
| CVE-2025-25249 |
|
Vulnerability in fortinet (CVE-2025-25249)
vulnerability in fortinet (CVE-2025-25249). Successful exploitation can lead to full system takeover.
|
| CVE-2025-68823 |
|
Vulnerability in linux (CVE-2025-68823)
vulnerability in linux (CVE-2025-68823). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0881 |
|
Sandbox escape in the Messaging System component. This vulnerability affects Firefox < 147.
Sandbox escape in the Messaging System component. This vulnerability affects Firefox < 147.
|
| CVE-2026-0878 |
|
Vulnerability in mozilla (CVE-2026-0878)
vulnerability in mozilla (CVE-2026-0878). Confidential information can be exposed externally.
|
| CVE-2026-0880 |
|
Vulnerability in mozilla (CVE-2026-0880)
vulnerability in mozilla (CVE-2026-0880). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0882 |
|
Use-After-Free in mozilla (CVE-2026-0882)
vulnerability in mozilla (CVE-2026-0882). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0891 |
|
Buffer Overflow in mozilla (CVE-2026-0891)
vulnerability in mozilla (CVE-2026-0891). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0877 |
|
Vulnerability in mozilla (CVE-2026-0877)
vulnerability in mozilla (CVE-2026-0877). Confidential information can be exposed externally.
|