Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-46432 |
|
Code Injection in lmdeploy (CVE-2026-46432)
code injection in lmdeploy (CVE-2026-46432). Successful exploitation can lead to full system takeover. Exploitable via ``model_path``. Mitigation: upgrade to `0.13.0` or later.
|
| CVE-2026-46490 |
|
Vulnerability in samlify (CVE-2026-46490)
vulnerability in samlify (CVE-2026-46490). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.13.0` or later.
|
| CVE-2026-46481 |
|
Vulnerability in org.open-metadata:openmetadata-service (CVE-2026-46481)
vulnerability in org.open-metadata:openmetadata-service (CVE-2026-46481). Confidential information can be exposed externally. Exploitable via `POST /api/v1/automations/workflows`. Mitigation: upgrade to `1.12.4` or later.
|
| CVE-2026-9089 |
|
Vulnerability in CVE-2026-9089 (CVE-2026-9089)
vulnerability in CVE-2026-9089 (CVE-2026-9089). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45208 |
|
A time-of-check time-of-use vulnerability in the Apex One/SEP agent could allow a local attacker...
A time-of-check time-of-use vulnerability in the Apex One/SEP agent could allow a local attacker...
|
| CVE-2026-45207 |
|
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to...
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to...
|
| CVE-2026-45206 |
|
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to...
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to...
|
| CVE-2026-34929 |
|
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to...
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to...
|
| CVE-2026-34928 |
|
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to...
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to...
|
| CVE-2026-34930 |
|
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to...
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to...
|
| CVE-2026-34927 |
|
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to...
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to...
|
| CVE-2026-2740 |
|
Zohocorp ManageEngine ADSelfService Plus version before 6525, DataSecurity Plus before 6264 and...
Zohocorp ManageEngine ADSelfService Plus version before 6525, DataSecurity Plus before 6264 and...
|
| CVE-2025-71217 |
|
Vulnerability in trendmicro (CVE-2025-71217)
vulnerability in trendmicro (CVE-2025-71217). Successful exploitation can lead to full system takeover.
|
| CVE-2025-71214 |
|
Vulnerability in trendmicro (CVE-2025-71214)
vulnerability in trendmicro (CVE-2025-71214). Successful exploitation can lead to full system takeover.
|
| CVE-2025-71216 |
|
Vulnerability in trendmicro (CVE-2025-71216)
vulnerability in trendmicro (CVE-2025-71216). Successful exploitation can lead to full system takeover.
|
| CVE-2025-71215 |
|
Vulnerability in trendmicro (CVE-2025-71215)
vulnerability in trendmicro (CVE-2025-71215). Successful exploitation can lead to full system takeover.
|
| CVE-2025-71212 |
|
Vulnerability in CVE-2025-71212 (CVE-2025-71212)
vulnerability in CVE-2025-71212 (CVE-2025-71212). Successful exploitation can lead to full system takeover.
|
| CVE-2025-71213 |
|
Vulnerability in CVE-2025-71213 (CVE-2025-71213)
vulnerability in CVE-2025-71213 (CVE-2025-71213). Successful exploitation can lead to full system takeover.
|
| CVE-2025-13479 |
|
Vulnerability in CVE-2025-13479 (CVE-2025-13479)
vulnerability in CVE-2025-13479 (CVE-2025-13479). Confidential information can be exposed externally.
|
| CVE-2025-13477 |
|
Vulnerability in CVE-2025-13477 (CVE-2025-13477)
vulnerability in CVE-2025-13477 (CVE-2025-13477). Confidential information can be exposed externally.
|
| CVE-2026-43502 |
|
Vulnerability in linux (CVE-2026-43502)
vulnerability in linux (CVE-2026-43502). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43497 |
|
Use-After-Free in linux (CVE-2026-43497)
vulnerability in linux (CVE-2026-43497). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43499 |
|
Use-After-Free in linux (CVE-2026-43499)
vulnerability in linux (CVE-2026-43499). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43498 |
|
Out-of-Bounds Write in linux (CVE-2026-43498)
out-of-bounds write in linux (CVE-2026-43498). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43495 |
|
Out-of-Bounds Read in linux (CVE-2026-43495)
vulnerability in linux (CVE-2026-43495). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43494 |
|
Vulnerability in linux (CVE-2026-43494)
vulnerability in linux (CVE-2026-43494). Successful exploitation can lead to full system takeover.
|
| CVE-2026-47261 |
|
Vulnerability in wasmtime-wasi (CVE-2026-47261)
vulnerability in wasmtime-wasi (CVE-2026-47261). Data can be tampered with by attackers. Exploitable via ``path_open``. Mitigation: upgrade to `24.0.9` or later.
|
| CVE-2026-45251 |
|
Use-After-Free in freebsd (CVE-2026-45251)
vulnerability in freebsd (CVE-2026-45251). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45253 |
|
Out-of-Bounds Write in freebsd (CVE-2026-45253)
out-of-bounds write in freebsd (CVE-2026-45253). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45255 |
|
OS Command Injection in freebsd (CVE-2026-45255)
OS command injection in freebsd (CVE-2026-45255). Successful exploitation can lead to full system takeover.
|
| CVE-2026-28764 |
|
MediaArea MediaInfoLib LXF element parsing heap-based buffer overflow vulnerability
MediaArea MediaInfoLib LXF element parsing heap-based buffer overflow vulnerability
|
| CVE-2026-39461 |
|
Vulnerability in freebsd (CVE-2026-39461)
vulnerability in freebsd (CVE-2026-39461). Successful exploitation can lead to full system takeover.
|
| CVE-2026-42001 |
|
Insufficient Validation of Autoprimary SOA Queries
Insufficient Validation of Autoprimary SOA Queries
|
| CVE-2026-9157 |
|
Vulnerability in CVE-2026-9157 (CVE-2026-9157)
vulnerability in CVE-2026-9157 (CVE-2026-9157). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4858 |
|
Path Traversal in github.com/mattermost/mattermost-server (CVE-2026-4858)
path traversal in github.com/mattermost/mattermost-server (CVE-2026-4858). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `10.11.15` or later.
|
| CVE-2026-45250 |
|
Vulnerability in freebsd (CVE-2026-45250)
vulnerability in freebsd (CVE-2026-45250). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44066 |
|
Out-of-Bounds Read in CVE-2026-44066 (CVE-2026-44066)
vulnerability in CVE-2026-44066 (CVE-2026-44066). Confidential information can be exposed externally.
|
| CVE-2026-44068 |
|
Path Traversal in path-traversal (CVE-2026-44068)
path traversal in path-traversal (CVE-2026-44068). Data can be tampered with by attackers.
|
| CVE-2026-44064 |
|
Out-of-Bounds Read in dos (CVE-2026-44064)
vulnerability in dos (CVE-2026-44064). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44062 |
|
Out-of-Bounds Write in c (CVE-2026-44062)
out-of-bounds write in c (CVE-2026-44062). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44060 |
|
Vulnerability in dos (CVE-2026-44060)
vulnerability in dos (CVE-2026-44060). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44058 |
|
Authentication Bypass in CVE-2026-44058 (CVE-2026-44058)
authentication bypass in CVE-2026-44058 (CVE-2026-44058). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44055 |
|
OS Command Injection in CVE-2026-44055 (CVE-2026-44055)
OS command injection in CVE-2026-44055 (CVE-2026-44055). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44051 |
|
Vulnerability in CVE-2026-44051 (CVE-2026-44051)
vulnerability in CVE-2026-44051 (CVE-2026-44051). Confidential information can be exposed externally.
|
| CVE-2026-44049 |
|
Out-of-Bounds Write in dos (CVE-2026-44049)
out-of-bounds write in dos (CVE-2026-44049). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44048 |
|
Vulnerability in dos (CVE-2026-44048)
vulnerability in dos (CVE-2026-44048). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44047 |
|
SQL Injection in sqli (CVE-2026-44047)
SQL injection in sqli (CVE-2026-44047). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44053 |
|
Vulnerability in CVE-2026-44053 (CVE-2026-44053)
vulnerability in CVE-2026-44053 (CVE-2026-44053). Confidential information can be exposed externally.
|
| CVE-2026-44052 |
|
Vulnerability in CVE-2026-44052 (CVE-2026-44052)
vulnerability in CVE-2026-44052 (CVE-2026-44052). Confidential information can be exposed externally.
|
| CVE-2026-40165 |
|
Vulnerability in authentik (CVE-2026-40165)
vulnerability in authentik (CVE-2026-40165). Confidential information can be exposed externally. Mitigation: upgrade to `2025.12.5, 2026.2.3` or later.
|