Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-14615 |
|
Vulnerability in CVE-2026-14615 (CVE-2026-14615)
vulnerability in CVE-2026-14615 (CVE-2026-14615). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9088 |
|
Vulnerability in CVE-2026-9088 (CVE-2026-9088)
vulnerability in CVE-2026-9088 (CVE-2026-9088). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-46747 |
|
Vulnerability in CVE-2021-46747 (CVE-2021-46747)
vulnerability in CVE-2021-46747 (CVE-2021-46747). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2651 |
|
Vulnerability in mlflow (CVE-2026-2651)
vulnerability in mlflow (CVE-2026-2651). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.11.1` or later.
|
| CVE-2026-37981 |
|
Vulnerability in org.keycloak:keycloak-services (CVE-2026-37981)
vulnerability in org.keycloak:keycloak-services (CVE-2026-37981). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `26.6.2` or later.
|
| CVE-2025-54518 |
|
Vulnerability in privilege-escalation (CVE-2025-54518)
vulnerability in privilege-escalation (CVE-2025-54518). Successful exploitation can lead to full system takeover.
|
| CVE-2024-21962 |
|
Vulnerability in privilege-escalation (CVE-2024-21962)
vulnerability in privilege-escalation (CVE-2024-21962). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40365 |
|
Vulnerability in microsoft (CVE-2026-40365)
vulnerability in microsoft (CVE-2026-40365). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35436 |
|
Vulnerability in microsoft (CVE-2026-35436)
vulnerability in microsoft (CVE-2026-35436). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40981 |
|
Vulnerability in org.springframework.cloud:spring-cloud-config (CVE-2026-40981)
vulnerability in org.springframework.cloud:spring-cloud-config (CVE-2026-40981). Confidential information can be exposed externally. Mitigation: upgrade to `5.0.3` or later.
|
| CVE-2026-41326 |
|
Vulnerability in github.com/kata-containers/kata-containers (CVE-2026-41326)
vulnerability in github.com/kata-containers/kata-containers (CVE-2026-41326). Confidential information can be exposed externally. Exploitable via ``policy_data.common.cpath``. Mitigation: upgrade to `0.0.0-20260422180503-1b9e49eb2763` or later.
|
| CVE-2026-6356 |
|
Vulnerability in augmentt (CVE-2026-6356)
vulnerability in augmentt (CVE-2026-6356). Confidential information can be exposed externally.
|
| CVE-2026-33825 KEV |
|
[KEV] Vulnerability in Microsoft defender (CVE-2026-33825)
vulnerability in Microsoft defender (CVE-2026-33825). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-6388 |
|
Vulnerability in privilege-escalation (CVE-2026-6388)
vulnerability in privilege-escalation (CVE-2026-6388). Data can be tampered with by attackers.
|
| CVE-2026-39363 |
|
Information Disclosure in vitejs (CVE-2026-39363)
vulnerability in vitejs (CVE-2026-39363). Confidential information can be exposed externally. Mitigation: upgrade to `6.4.2` or later.
|
| CVE-2025-69196 |
|
Authorization Flaw in jlowin (CVE-2025-69196)
vulnerability in jlowin (CVE-2025-69196). Confidential information can be exposed externally.
|
| CVE-2025-35998 |
|
Vulnerability in CVE-2025-35998 (CVE-2025-35998)
vulnerability in CVE-2025-35998 (CVE-2025-35998). Confidential information can be exposed externally.
|
| CVE-2025-4404 |
|
Vulnerability in privilege-escalation (CVE-2025-4404)
vulnerability in privilege-escalation (CVE-2025-4404). Successful exploitation can lead to full system takeover. Exploitable via ``krbCanonicalName``.
|
| CVE-2022-36110 |
|
Vulnerability in netmaker (CVE-2022-36110)
vulnerability in netmaker (CVE-2022-36110). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.15.1` or later.
|
| CVE-2021-36934 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2021-36934)
vulnerability in Microsoft windows (CVE-2021-36934). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|