Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-59890 |
|
Vulnerability in CVE-2026-59890 (CVE-2026-59890)
vulnerability in CVE-2026-59890 (CVE-2026-59890). Confidential information can be exposed externally.
|
| CVE-2026-14687 |
|
Vulnerability in CVE-2026-14687 (CVE-2026-14687)
vulnerability in CVE-2026-14687 (CVE-2026-14687). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-14686 |
|
Vulnerability in CVE-2026-14686 (CVE-2026-14686)
vulnerability in CVE-2026-14686 (CVE-2026-14686). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-14617 |
|
Vulnerability in CVE-2026-14617 (CVE-2026-14617)
vulnerability in CVE-2026-14617 (CVE-2026-14617). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10097 |
|
Vulnerability in wolfssl (CVE-2026-10097)
vulnerability in wolfssl (CVE-2026-10097). Confidential information can be exposed externally.
|
| CVE-2026-49340 |
|
Path Traversal in go.senan.xyz/gonic (CVE-2026-49340)
path traversal in go.senan.xyz/gonic (CVE-2026-49340). Data can be tampered with by attackers. Exploitable via ``ServeCreateOrUpdatePlaylist``. Mitigation: upgrade to `0.21.0` or later.
|
| CVE-2026-45569 |
|
Path Traversal in c (CVE-2026-45569)
path traversal in c (CVE-2026-45569). Confidential information can be exposed externally.
|
| CVE-2026-45567 |
|
Authentication Bypass in nginx (CVE-2026-45567)
authentication bypass in nginx (CVE-2026-45567). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44249 |
|
Vulnerability in io.netty:netty-handler (CVE-2026-44249)
vulnerability in io.netty:netty-handler (CVE-2026-44249). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `4.1.135.Final` or later.
|
| CVE-2026-47202 |
|
Authentication Bypass in CVE-2026-47202 (CVE-2026-47202)
authentication bypass in CVE-2026-47202 (CVE-2026-47202). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.9.0.2` or later.
|
| CVE-2026-9369 |
|
Vulnerability in hermes-agent (CVE-2026-9369)
vulnerability in hermes-agent (CVE-2026-9369). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.15.0` or later.
|
| CVE-2026-44196 |
|
Authentication Bypass in CVE-2026-44196 (CVE-2026-44196)
authentication bypass in CVE-2026-44196 (CVE-2026-44196). Confidential information can be exposed externally. Mitigation: upgrade to `1.16.3` or later.
|
| CVE-2023-40271 |
|
Vulnerability in trustedfirmware (CVE-2023-40271)
vulnerability in trustedfirmware (CVE-2023-40271). Data can be tampered with by attackers.
|
| CVE-2021-44971 |
|
Vulnerability in tenda (CVE-2021-44971)
vulnerability in tenda (CVE-2021-44971). Successful exploitation can lead to full system takeover.
|
| CVE-2020-5849 KEV |
|
[KEV] Authentication Bypass in unraid (CVE-2020-5849)
authentication bypass in unraid (CVE-2020-5849). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-10003 |
|
Vulnerability in squid-cache (CVE-2016-10003)
vulnerability in squid-cache (CVE-2016-10003). Confidential information can be exposed externally.
|