Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-28930 |
|
Vulnerability in apple (CVE-2026-28930)
vulnerability in apple (CVE-2026-28930). Confidential information can be exposed externally.
|
| CVE-2026-28925 |
|
Vulnerability in apple (CVE-2026-28925)
vulnerability in apple (CVE-2026-28925). Confidential information can be exposed externally.
|
| CVE-2026-28915 |
|
Path Traversal in apple (CVE-2026-28915)
path traversal in apple (CVE-2026-28915). Successful exploitation can lead to full system takeover.
|
| CVE-2026-28936 |
|
Vulnerability in apple (CVE-2026-28936)
vulnerability in apple (CVE-2026-28936). Confidential information can be exposed externally.
|
| CVE-2026-28923 |
|
Vulnerability in apple (CVE-2026-28923)
vulnerability in apple (CVE-2026-28923). Successful exploitation can lead to full system takeover.
|
| CVE-2026-28941 |
|
Buffer Overflow in apple (CVE-2026-28941)
vulnerability in apple (CVE-2026-28941). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28940 |
|
Buffer Overflow in apple (CVE-2026-28940)
vulnerability in apple (CVE-2026-28940). Confidential information can be exposed externally.
|
| CVE-2026-28943 |
|
Vulnerability in apple (CVE-2026-28943)
vulnerability in apple (CVE-2026-28943). Confidential information can be exposed externally.
|
| CVE-2026-28924 |
|
Vulnerability in apple (CVE-2026-28924)
vulnerability in apple (CVE-2026-28924). Confidential information can be exposed externally.
|
| CVE-2026-28944 |
|
Buffer Overflow in apple (CVE-2026-28944)
vulnerability in apple (CVE-2026-28944). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28919 |
|
Privilege Escalation in apple (CVE-2026-28919)
vulnerability in apple (CVE-2026-28919). Successful exploitation can lead to full system takeover.
|
| CVE-2026-28929 |
|
Vulnerability in apple (CVE-2026-28929)
vulnerability in apple (CVE-2026-28929). Confidential information can be exposed externally.
|
| CVE-2026-28947 |
|
Use-After-Free in apple (CVE-2026-28947)
vulnerability in apple (CVE-2026-28947). Successful exploitation can lead to full system takeover.
|
| CVE-2026-28953 |
|
Buffer Overflow in apple (CVE-2026-28953)
vulnerability in apple (CVE-2026-28953). Confidential information can be exposed externally.
|
| CVE-2026-28848 |
|
Vulnerability in apple (CVE-2026-28848)
vulnerability in apple (CVE-2026-28848). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28883 |
|
Use-After-Free in apple (CVE-2026-28883)
vulnerability in apple (CVE-2026-28883). Confidential information can be exposed externally.
|
| CVE-2026-28847 |
|
Buffer Overflow in apple (CVE-2026-28847)
vulnerability in apple (CVE-2026-28847). Successful exploitation can lead to full system takeover.
|
| CVE-2026-28905 |
|
Buffer Overflow in apple (CVE-2026-28905)
vulnerability in apple (CVE-2026-28905). Confidential information can be exposed externally.
|
| CVE-2026-28907 |
|
Vulnerability in apple (CVE-2026-28907)
vulnerability in apple (CVE-2026-28907). Confidential information can be exposed externally.
|
| CVE-2026-28913 |
|
Buffer Overflow in apple (CVE-2026-28913)
vulnerability in apple (CVE-2026-28913). Confidential information can be exposed externally.
|
| CVE-2026-28840 |
|
Privilege Escalation in apple (CVE-2026-28840)
vulnerability in apple (CVE-2026-28840). Successful exploitation can lead to full system takeover.
|
| CVE-2026-28860 |
|
Vulnerability in apple (CVE-2026-28860)
vulnerability in apple (CVE-2026-28860). Confidential information can be exposed externally.
|
| CVE-2026-28873 |
|
Authorization Flaw in apple (CVE-2026-28873)
vulnerability in apple (CVE-2026-28873). Confidential information can be exposed externally.
|
| CVE-2026-28872 |
|
Vulnerability in apple (CVE-2026-28872)
vulnerability in apple (CVE-2026-28872). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28908 |
|
Vulnerability in dos (CVE-2026-28908)
vulnerability in dos (CVE-2026-28908). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28906 |
|
Vulnerability in apple (CVE-2026-28906)
vulnerability in apple (CVE-2026-28906). Confidential information can be exposed externally.
|
| CVE-2026-28904 |
|
Buffer Overflow in apple (CVE-2026-28904)
vulnerability in apple (CVE-2026-28904). Confidential information can be exposed externally.
|
| CVE-2026-28846 |
|
Vulnerability in apple (CVE-2026-28846)
vulnerability in apple (CVE-2026-28846). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43874 |
|
Code Injection in wwbn/avideo (CVE-2026-43874)
code injection in wwbn/avideo (CVE-2026-43874). Risk of unauthorized operations or information disclosure. Exploitable via ``autoEvalCodeOnHTML``.
|
| CVE-2026-41489 |
|
Vulnerability in privilege-escalation (CVE-2026-41489)
vulnerability in privilege-escalation (CVE-2026-41489). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8321 |
|
A vulnerability was detected in inkeep agents 0.58.14. This vulnerability affects the function...
A vulnerability was detected in inkeep agents 0.58.14. This vulnerability affects the function...
|
| CVE-2026-2614 |
|
MLflow allows an unauthenticated remote attacker to read arbitrary files from the server's filesystem
MLflow allows an unauthenticated remote attacker to read arbitrary files from the server's filesystem
|
| CVE-2026-36734 |
|
Command Injection in CVE-2026-36734 (CVE-2026-36734)
command injection in CVE-2026-36734 (CVE-2026-36734). Successful exploitation can lead to full system takeover.
|
| CVE-2022-4988 |
|
Vulnerability in CVE-2022-4988 (CVE-2022-4988)
vulnerability in CVE-2022-4988 (CVE-2022-4988). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44635 |
|
Vulnerability in kysely (CVE-2026-44635)
vulnerability in kysely (CVE-2026-44635). Confidential information can be exposed externally. Exploitable via ``DefaultQueryCompiler.visitJSONPathLeg``. Mitigation: upgrade to `0.28.17` or later.
|
| CVE-2026-39850 |
|
Vulnerability in yiisoft/yii2 (CVE-2026-39850)
vulnerability in yiisoft/yii2 (CVE-2026-39850). Confidential information can be exposed externally. Exploitable via ``require``. Mitigation: upgrade to `2.0.55` or later.
|
| CVE-2026-45223 |
|
Crabbox before 0.9.0 contains an authentication bypass vulnerability in the coordinator user...
Crabbox before 0.9.0 contains an authentication bypass vulnerability in the coordinator user...
|
| CVE-2026-45224 |
|
Crabbox contains a path traversal vulnerability in the Islo provider's workspace path resolution
Crabbox contains a path traversal vulnerability in the Islo provider's workspace path resolution
|
| CVE-2026-4892 |
|
Vulnerability in CVE-2026-4892 (CVE-2026-4892)
vulnerability in CVE-2026-4892 (CVE-2026-4892). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8305 |
|
Authentication Bypass in openclaw (CVE-2026-8305)
authentication bypass in openclaw (CVE-2026-8305). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4890 |
|
Vulnerability in dos (CVE-2026-4890)
vulnerability in dos (CVE-2026-4890). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45001 |
|
Vulnerability in ssrf (CVE-2026-45001)
vulnerability in ssrf (CVE-2026-45001). Data can be tampered with by attackers.
|
| CVE-2026-45006 |
|
Vulnerability in openclaw (CVE-2026-45006)
vulnerability in openclaw (CVE-2026-45006). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45004 |
|
Code Injection in openclaw (CVE-2026-45004)
code injection in openclaw (CVE-2026-45004). Successful exploitation can lead to full system takeover. Exploitable via ``openclaw``. Mitigation: upgrade to `2026.4.23` or later.
|
| CVE-2026-7210 |
|
Vulnerability in libpython (CVE-2026-7210)
vulnerability in libpython (CVE-2026-7210). Risk of unauthorized operations or information disclosure. Exploitable via ``xml.parsers.expat``.
|
| CVE-2026-5172 |
|
Out-of-Bounds Read in CVE-2026-5172 (CVE-2026-5172)
vulnerability in CVE-2026-5172 (CVE-2026-5172). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44413 |
|
Vulnerability in jetbrains (CVE-2026-44413)
vulnerability in jetbrains (CVE-2026-44413). Confidential information can be exposed externally.
|
| CVE-2026-43639 |
|
Vulnerability in bitwarden (CVE-2026-43639)
vulnerability in bitwarden (CVE-2026-43639). Successful exploitation can lead to full system takeover. Exploitable via `POST /providers/{providerId}/clients/existing`.
|
| CVE-2026-44995 |
|
Vulnerability in openclaw (CVE-2026-44995)
vulnerability in openclaw (CVE-2026-44995). Successful exploitation can lead to full system takeover. Exploitable via ``openclaw``. Mitigation: upgrade to `2026.4.20` or later.
|
| CVE-2026-43640 |
|
Vulnerability in bitwarden (CVE-2026-43640)
vulnerability in bitwarden (CVE-2026-43640). Confidential information can be exposed externally.
|