Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cwe-502 Clear
ID Title
CVE-2026-33264 Unsafe Deserialization in apache (CVE-2026-33264)
vulnerability in apache (CVE-2026-33264). Successful exploitation can lead to full system takeover.
CVE-2026-43825 Unsafe Deserialization in apache (CVE-2026-43825)
vulnerability in apache (CVE-2026-43825). Risk of unauthorized operations or information disclosure.
CVE-2026-46590 Unsafe Deserialization in apache (CVE-2026-46590)
vulnerability in apache (CVE-2026-46590). Successful exploitation can lead to full system takeover.
CVE-2026-43866 Unsafe Deserialization in apache (CVE-2026-43866)
vulnerability in apache (CVE-2026-43866). Risk of unauthorized operations or information disclosure.
CVE-2026-40859 Unsafe Deserialization in apache (CVE-2026-40859)
vulnerability in apache (CVE-2026-40859). Successful exploitation can lead to full system takeover.
CVE-2026-43867 Unsafe Deserialization in apache (CVE-2026-43867)
vulnerability in apache (CVE-2026-43867). Successful exploitation can lead to full system takeover.
CVE-2026-43865 Unsafe Deserialization in csharp (CVE-2026-43865)
vulnerability in csharp (CVE-2026-43865). Successful exploitation can lead to full system takeover.
CVE-2026-42527 Unsafe Deserialization in csharp (CVE-2026-42527)
vulnerability in csharp (CVE-2026-42527). Successful exploitation can lead to full system takeover.
CVE-2026-14723 Vulnerability in deserialization (CVE-2026-14723)
vulnerability in deserialization (CVE-2026-14723). Risk of unauthorized operations or information disclosure.
CVE-2026-14637 Vulnerability in deserialization (CVE-2026-14637)
vulnerability in deserialization (CVE-2026-14637). Risk of unauthorized operations or information disclosure.
CVE-2026-14534 Vulnerability in c (CVE-2026-14534)
vulnerability in c (CVE-2026-14534). Successful exploitation can lead to full system takeover.
CVE-2025-71372 Unsafe Deserialization in CVE-2025-71372 (CVE-2025-71372)
vulnerability in CVE-2025-71372 (CVE-2025-71372). Confidential information can be exposed externally.
CVE-2025-71375 Unsafe Deserialization in CVE-2025-71375 (CVE-2025-71375)
vulnerability in CVE-2025-71375 (CVE-2025-71375). Confidential information can be exposed externally.
CVE-2025-71367 Unsafe Deserialization in CVE-2025-71367 (CVE-2025-71367)
vulnerability in CVE-2025-71367 (CVE-2025-71367). Confidential information can be exposed externally.
CVE-2025-71359 Unsafe Deserialization in deserialization (CVE-2025-71359)
vulnerability in deserialization (CVE-2025-71359). Confidential information can be exposed externally.
CVE-2025-71366 Unsafe Deserialization in CVE-2025-71366 (CVE-2025-71366)
vulnerability in CVE-2025-71366 (CVE-2025-71366). Confidential information can be exposed externally.
CVE-2025-71364 Unsafe Deserialization in CVE-2025-71364 (CVE-2025-71364)
vulnerability in CVE-2025-71364 (CVE-2025-71364). Confidential information can be exposed externally.
CVE-2025-71360 Unsafe Deserialization in CVE-2025-71360 (CVE-2025-71360)
vulnerability in CVE-2025-71360 (CVE-2025-71360). Confidential information can be exposed externally.
CVE-2025-71362 Unsafe Deserialization in deserialization (CVE-2025-71362)
vulnerability in deserialization (CVE-2025-71362). Confidential information can be exposed externally.
CVE-2025-71356 Unsafe Deserialization in CVE-2025-71356 (CVE-2025-71356)
vulnerability in CVE-2025-71356 (CVE-2025-71356). Confidential information can be exposed externally.
CVE-2025-71369 Unsafe Deserialization in deserialization (CVE-2025-71369)
vulnerability in deserialization (CVE-2025-71369). Confidential information can be exposed externally.
CVE-2025-71347 Unsafe Deserialization in deserialization (CVE-2025-71347)
vulnerability in deserialization (CVE-2025-71347). Confidential information can be exposed externally.
CVE-2025-71343 Unsafe Deserialization in CVE-2025-71343 (CVE-2025-71343)
vulnerability in CVE-2025-71343 (CVE-2025-71343). Confidential information can be exposed externally.
CVE-2025-71342 Unsafe Deserialization in CVE-2025-71342 (CVE-2025-71342)
vulnerability in CVE-2025-71342 (CVE-2025-71342). Confidential information can be exposed externally.
CVE-2025-71353 Unsafe Deserialization in CVE-2025-71353 (CVE-2025-71353)
vulnerability in CVE-2025-71353 (CVE-2025-71353). Confidential information can be exposed externally.
CVE-2025-71345 Unsafe Deserialization in deserialization (CVE-2025-71345)
vulnerability in deserialization (CVE-2025-71345). Confidential information can be exposed externally.
CVE-2026-12481 Unsafe Deserialization in deserialization (CVE-2026-12481)
vulnerability in deserialization (CVE-2026-12481). Successful exploitation can lead to full system takeover. Exploitable via ``Lambda``.
CVE-2026-13371 Unsafe Deserialization in deserialization (CVE-2026-13371)
vulnerability in deserialization (CVE-2026-13371). Risk of unauthorized operations or information disclosure.
CVE-2026-57677 Unsafe Deserialization in CVE-2026-57677 (CVE-2026-57677)
vulnerability in CVE-2026-57677 (CVE-2026-57677). Successful exploitation can lead to full system takeover.
CVE-2026-57621 Unauthenticated PHP Object Injection in Booktics <= 1.0.21 versions.
Unauthenticated PHP Object Injection in Booktics <= 1.0.21 versions.
CVE-2026-27060 Contributor PHP Object Injection in ARMember Premium <= 7.0 versions.
Contributor PHP Object Injection in ARMember Premium <= 7.0 versions.
CVE-2026-56037 Unsafe Deserialization in deserialization (CVE-2026-56037)
vulnerability in deserialization (CVE-2026-56037). Successful exploitation can lead to full system takeover.
CVE-2026-27414 Contributor PHP Object Injection in Werkstatt <= 4.8.3 versions.
Contributor PHP Object Injection in Werkstatt <= 4.8.3 versions.
CVE-2026-51947 Unsafe Deserialization in CVE-2026-51947 (CVE-2026-51947)
vulnerability in CVE-2026-51947 (CVE-2026-51947). Successful exploitation can lead to full system takeover.
CVE-2026-55153 Vulnerability in deserialization (CVE-2026-55153)
vulnerability in deserialization (CVE-2026-55153). Successful exploitation can lead to full system takeover.
CVE-2026-14265 Unsafe Deserialization in Amazon aws (CVE-2026-14265)
vulnerability in Amazon aws (CVE-2026-14265). Successful exploitation can lead to full system takeover.
CVE-2026-58127 Vulnerability in csharp (CVE-2026-58127)
vulnerability in csharp (CVE-2026-58127). Successful exploitation can lead to full system takeover.
CVE-2026-58126 Vulnerability in csharp (CVE-2026-58126)
vulnerability in csharp (CVE-2026-58126). Successful exploitation can lead to full system takeover.
CVE-2026-58025 Code Injection in deserialization (CVE-2026-58025)
code injection in deserialization (CVE-2026-58025). Risk of unauthorized operations or information disclosure.
CVE-2026-24251 Unsafe Deserialization in nvidia (CVE-2026-24251)
vulnerability in nvidia (CVE-2026-24251). Successful exploitation can lead to full system takeover.
CVE-2026-24250 Unsafe Deserialization in nvidia (CVE-2026-24250)
vulnerability in nvidia (CVE-2026-24250). Successful exploitation can lead to full system takeover.
CVE-2026-24240 Unsafe Deserialization in deserialization (CVE-2026-24240)
vulnerability in deserialization (CVE-2026-24240). Successful exploitation can lead to full system takeover.
CVE-2026-24244 Unsafe Deserialization in deserialization (CVE-2026-24244)
vulnerability in deserialization (CVE-2026-24244). Successful exploitation can lead to full system takeover.
CVE-2026-24243 Unsafe Deserialization in deserialization (CVE-2026-24243)
vulnerability in deserialization (CVE-2026-24243). Successful exploitation can lead to full system takeover.
CVE-2026-24245 Unsafe Deserialization in deserialization (CVE-2026-24245)
vulnerability in deserialization (CVE-2026-24245). Successful exploitation can lead to full system takeover.
CVE-2026-24247 Unsafe Deserialization in deserialization (CVE-2026-24247)
vulnerability in deserialization (CVE-2026-24247). Successful exploitation can lead to full system takeover.
CVE-2026-57516 Unsafe Deserialization in deserialization (CVE-2026-57516)
vulnerability in deserialization (CVE-2026-57516). Successful exploitation can lead to full system takeover.
CVE-2026-10538 Unsafe Deserialization in deserialization (CVE-2026-10538)
vulnerability in deserialization (CVE-2026-10538). Successful exploitation can lead to full system takeover.
CVE-2026-56700 OS Command Injection in CVE-2026-56700 (CVE-2026-56700)
OS command injection in CVE-2026-56700 (CVE-2026-56700). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.0.0-beta.2` or later.
CVE-2025-71374 Unsafe Deserialization in deserialization (CVE-2025-71374)
vulnerability in deserialization (CVE-2025-71374). Confidential information can be exposed externally.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →