Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
CVE-2026-54518 Authorization Flaw in com.fasterxml.jackson.core:jackson-databind (CVE-2026-54518)
vulnerability in com.fasterxml.jackson.core:jackson-databind (CVE-2026-54518). Risk of unauthorized operations or information disclosure. Exploitable via ``d633bc0``. Mitigation: upgrade to `2.21.4` or later.
CVE-2026-41862 Unsafe Deserialization in CVE-2026-41862 (CVE-2026-41862)
vulnerability in CVE-2026-41862 (CVE-2026-41862). Successful exploitation can lead to full system takeover.
CVE-2026-23513 Authorization Flaw in CVE-2026-23513 (CVE-2026-23513)
vulnerability in CVE-2026-23513 (CVE-2026-23513). Risk of unauthorized operations or information disclosure.
CVE-2026-12892 Out-of-Bounds Read in gstreamer (CVE-2026-12892)
vulnerability in gstreamer (CVE-2026-12892). Risk of unauthorized operations or information disclosure.
CVE-2026-12891 Out-of-Bounds Read in gstreamer (CVE-2026-12891)
vulnerability in gstreamer (CVE-2026-12891). Risk of unauthorized operations or information disclosure.
CVE-2026-12112 Authentication Bypass in privilege-escalation (CVE-2026-12112)
authentication bypass in privilege-escalation (CVE-2026-12112). Successful exploitation can lead to full system takeover.
CVE-2026-11820 Vulnerability in c (CVE-2026-11820)
vulnerability in c (CVE-2026-11820). Confidential information can be exposed externally.
CVE-2026-11819 Vulnerability in c (CVE-2026-11819)
vulnerability in c (CVE-2026-11819). Confidential information can be exposed externally.
CVE-2026-11807 Vulnerability in CVE-2026-11807 (CVE-2026-11807)
vulnerability in CVE-2026-11807 (CVE-2026-11807). Confidential information can be exposed externally.
CVE-2025-64105 Vulnerability in CVE-2025-64105 (CVE-2025-64105)
vulnerability in CVE-2025-64105 (CVE-2025-64105). Risk of unauthorized operations or information disclosure.
CVE-2026-54555 Authorization Flaw in CVE-2026-54555 (CVE-2026-54555)
vulnerability in CVE-2026-54555 (CVE-2026-54555). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.42.2` or later.
CVE-2026-39253 Unsafe Deserialization in CVE-2026-39253 (CVE-2026-39253)
vulnerability in CVE-2026-39253 (CVE-2026-39253). Successful exploitation can lead to full system takeover.
CVE-2026-55736 Vulnerability in privilege-escalation (CVE-2026-55736)
vulnerability in privilege-escalation (CVE-2026-55736). Risk of unauthorized operations or information disclosure.
CVE-2026-55249 OS Command Injection in c (CVE-2026-55249)
OS command injection in c (CVE-2026-55249). Confidential information can be exposed externally.
CVE-2026-54320 Authentication Bypass in CVE-2026-54320 (CVE-2026-54320)
authentication bypass in CVE-2026-54320 (CVE-2026-54320). Confidential information can be exposed externally. Mitigation: upgrade to `0.184.0` or later.
GHSA-7cqp-7cfv-6c3q Cross-Site Scripting (XSS) in wwbn/avideo (GHSA-7cqp-7cfv-6c3q)
cross-site scripting in wwbn/avideo (GHSA-7cqp-7cfv-6c3q). Risk of unauthorized operations or information disclosure. Exploitable via ``meet_join_log.user_agent``.
GHSA-phv5-334h-mxcw Vulnerability in motioneye (GHSA-phv5-334h-mxcw)
vulnerability in motioneye (GHSA-phv5-334h-mxcw). Risk of unauthorized operations or information disclosure. Exploitable via `GET /movie/`. Mitigation: upgrade to `0.44.0` or later.
GHSA-qxvg-h7q2-hcxh Path Traversal in motioneye (GHSA-qxvg-h7q2-hcxh)
path traversal in motioneye (GHSA-qxvg-h7q2-hcxh). Risk of unauthorized operations or information disclosure. Exploitable via ``CONF_PATH``. Mitigation: upgrade to `0.44.0` or later.
CVE-2026-55863 Vulnerability in motioneye (CVE-2026-55863)
vulnerability in motioneye (CVE-2026-55863). Risk of unauthorized operations or information disclosure. Exploitable via `POST /action/1/snapshot`. Mitigation: upgrade to `0.44.0` or later.
CVE-2026-55488 Path Traversal in motioneye (CVE-2026-55488)
path traversal in motioneye (CVE-2026-55488). Risk of unauthorized operations or information disclosure. Exploitable via `GET /movie/`. Mitigation: upgrade to `0.44.0` or later.
CVE-2026-57062 Vulnerability in CVE-2026-57062 (CVE-2026-57062)
vulnerability in CVE-2026-57062 (CVE-2026-57062). Risk of unauthorized operations or information disclosure.
CVE-2026-57053 Vulnerability in gnu (CVE-2026-57053)
vulnerability in gnu (CVE-2026-57053). Risk of unauthorized operations or information disclosure.
CVE-2026-50221 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-50221)
SSRF in ssrf (CVE-2026-50221). Risk of unauthorized operations or information disclosure.
CVE-2025-71382 Vulnerability in c (CVE-2025-71382)
vulnerability in c (CVE-2025-71382). Risk of unauthorized operations or information disclosure.
CVE-2026-0864 Vulnerability in CVE-2026-0864 (CVE-2026-0864)
vulnerability in CVE-2026-0864 (CVE-2026-0864). Risk of unauthorized operations or information disclosure.
CVE-2025-61029 SQL Injection in dos (CVE-2025-61029)
SQL injection in dos (CVE-2025-61029). Risk of unauthorized operations or information disclosure.
CVE-2020-9711 Out-of-Bounds Read in adobe (CVE-2020-9711)
vulnerability in adobe (CVE-2020-9711). Confidential information can be exposed externally.
CVE-2025-61024 SQL Injection in dos (CVE-2025-61024)
SQL injection in dos (CVE-2025-61024). Risk of unauthorized operations or information disclosure.
CVE-2020-9713 Out-of-Bounds Read in adobe (CVE-2020-9713)
vulnerability in adobe (CVE-2020-9713). Confidential information can be exposed externally.
CVE-2020-9695 Out-of-Bounds Write in adobe (CVE-2020-9695)
out-of-bounds write in adobe (CVE-2020-9695). Successful exploitation can lead to full system takeover.
CVE-2026-55448 OS Command Injection in mise (CVE-2026-55448)
OS command injection in mise (CVE-2026-55448). Confidential information can be exposed externally. Exploitable via ``mise``. Mitigation: upgrade to `2026.6.4` or later.
CVE-2026-55441 OS Command Injection in mise (CVE-2026-55441)
OS command injection in mise (CVE-2026-55441). Successful exploitation can lead to full system takeover. Exploitable via ``mise.toml``. Mitigation: upgrade to `2026.6.4` or later.
CVE-2026-54323 Vulnerability in CVE-2026-54323 (CVE-2026-54323)
vulnerability in CVE-2026-54323 (CVE-2026-54323). Confidential information can be exposed externally. Exploitable via `Authorization header`. Mitigation: upgrade to `0.185.0` or later.
CVE-2026-54318 Vulnerability in home-assistant (CVE-2026-54318)
vulnerability in home-assistant (CVE-2026-54318). Data can be tampered with by attackers. Mitigation: upgrade to `2026.5.3` or later.
CVE-2026-53662 Cross-Site Scripting (XSS) in CVE-2026-53662 (CVE-2026-53662)
cross-site scripting in CVE-2026-53662 (CVE-2026-53662). Successful exploitation can lead to full system takeover.
CVE-2026-54557 Path Traversal in mise (CVE-2026-54557)
path traversal in mise (CVE-2026-54557). Data can be tampered with by attackers. Exploitable via ``bin_path``. Mitigation: upgrade to `2026.6.1` or later.
CVE-2026-54134 Vulnerability in OctoPrint (CVE-2026-54134)
vulnerability in OctoPrint (CVE-2026-54134). Risk of unauthorized operations or information disclosure. Exploitable via ``FILE_UPLOAD``. Mitigation: upgrade to `2.0.0rc3` or later.
CVE-2026-53925 Path Traversal in glances (CVE-2026-53925)
path traversal in glances (CVE-2026-53925). Successful exploitation can lead to full system takeover. Exploitable via ``command``. Mitigation: upgrade to `4.5.5` or later.
CVE-2026-54350 SQL Injection in @budibase/server (CVE-2026-54350)
SQL injection in @budibase/server (CVE-2026-54350). Confidential information can be exposed externally. Exploitable via `POST /api/v2/queries/`. Mitigation: upgrade to `3.39.12` or later.
CVE-2026-55173 OS Command Injection in wwbn/avideo (CVE-2026-55173)
OS command injection in wwbn/avideo (CVE-2026-55173). Risk of unauthorized operations or information disclosure. Exploitable via ``sanitizeFFmpegCommand``.
CVE-2026-52816 Vulnerability in gogs.io/gogs (CVE-2026-52816)
vulnerability in gogs.io/gogs (CVE-2026-52816). Risk of unauthorized operations or information disclosure. Exploitable via `POST /-/api/sanitize_ipynb`. Mitigation: upgrade to `0.14.3` or later.
CVE-2026-45049 Vulnerability in org.openidentityplatform.openam:openam-federation (CVE-2026-45049)
vulnerability in org.openidentityplatform.openam:openam-federation (CVE-2026-45049). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `16.1.1` or later.
CVE-2026-45048 Information Disclosure in org.openidentityplatform.openam:openam-core (CVE-2026-45048)
vulnerability in org.openidentityplatform.openam:openam-core (CVE-2026-45048). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `16.1.1` or later.
CVE-2026-56968 Vulnerability in gnu (CVE-2026-56968)
vulnerability in gnu (CVE-2026-56968). Risk of unauthorized operations or information disclosure.
CVE-2026-56117 Use-After-Free in c (CVE-2026-56117)
vulnerability in c (CVE-2026-56117). Risk of unauthorized operations or information disclosure.
CVE-2026-56116 Vulnerability in dos (CVE-2026-56116)
vulnerability in dos (CVE-2026-56116). Risk of unauthorized operations or information disclosure.
CVE-2026-56115 Vulnerability in c (CVE-2026-56115)
vulnerability in c (CVE-2026-56115). Successful exploitation can lead to full system takeover.
CVE-2026-56114 Out-of-Bounds Write in c (CVE-2026-56114)
out-of-bounds write in c (CVE-2026-56114). Risk of unauthorized operations or information disclosure.
CVE-2026-56113 Use-After-Free in dhcpcd-project (CVE-2026-56113)
vulnerability in dhcpcd-project (CVE-2026-56113). Risk of unauthorized operations or information disclosure.
CVE-2026-44961 Authentication Bypass in CVE-2026-44961 (CVE-2026-44961)
authentication bypass in CVE-2026-44961 (CVE-2026-44961). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →