Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-13696 |
|
Vulnerability in CVE-2026-13696 (CVE-2026-13696)
vulnerability in CVE-2026-13696 (CVE-2026-13696). Successful exploitation can lead to full system takeover.
|
| CVE-2026-57288 |
|
Vulnerability in jenkins (CVE-2026-57288)
vulnerability in jenkins (CVE-2026-57288). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11748 |
|
Vulnerability in CVE-2026-11748 (CVE-2026-11748)
vulnerability in CVE-2026-11748 (CVE-2026-11748). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49268 |
|
Vulnerability in org.apache.shiro:shiro-core (CVE-2026-49268)
vulnerability in org.apache.shiro:shiro-core (CVE-2026-49268). Confidential information can be exposed externally. Mitigation: upgrade to `3.0.0-alpha-2` or later.
|
| CVE-2026-45559 |
|
Vulnerability in nginx (CVE-2026-45559)
vulnerability in nginx (CVE-2026-45559). Confidential information can be exposed externally.
|
| CVE-2026-42568 |
|
Vulnerability in org.yamcs:yamcs-core (CVE-2026-42568)
vulnerability in org.yamcs:yamcs-core (CVE-2026-42568). Risk of unauthorized operations or information disclosure. Exploitable via ``org.yamcs.security.LdapAuthModule``. Mitigation: upgrade to `5.12.7` or later.
|
| CVE-2026-46745 |
|
Vulnerability in apache-airflow-providers-fab (CVE-2026-46745)
vulnerability in apache-airflow-providers-fab (CVE-2026-46745). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.6.4` or later.
|
| CVE-2026-44930 |
|
Vulnerability in org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap (CVE-2026-44930)
vulnerability in org.apache.cxf.services.xkms:cxf-services-xkms-x509-repo-ldap (CVE-2026-44930). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.6.11` or later.
|
| CVE-2026-44063 |
|
Vulnerability in CVE-2026-44063 (CVE-2026-44063)
vulnerability in CVE-2026-44063 (CVE-2026-44063). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41919 |
|
Vulnerability in apache (CVE-2026-41919)
vulnerability in apache (CVE-2026-41919). Confidential information can be exposed externally.
|
| CVE-2026-44304 |
|
Vulnerability in lemur (CVE-2026-44304)
vulnerability in lemur (CVE-2026-44304). Confidential information can be exposed externally. Exploitable via `POST /auth/login`. Mitigation: upgrade to `1.9.0` or later.
|
| CVE-2026-44671 |
|
Vulnerability in github.com/zitadel/zitadel (CVE-2026-44671)
vulnerability in github.com/zitadel/zitadel (CVE-2026-44671). Confidential information can be exposed externally. Mitigation: upgrade to `3.4.10` or later.
|
| CVE-2026-0636 |
|
Vulnerability in CVE-2026-0636 (CVE-2026-0636)
vulnerability in CVE-2026-0636 (CVE-2026-0636). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-39962 |
|
Vulnerability in misp-project (CVE-2026-39962)
vulnerability in misp-project (CVE-2026-39962). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.5.36` or later.
|
| CVE-2017-4927 |
|
Vulnerability in dos (CVE-2017-4927)
vulnerability in dos (CVE-2017-4927). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14596 |
|
Vulnerability in joomla (CVE-2017-14596)
vulnerability in joomla (CVE-2017-14596). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7294 |
|
Vulnerability in ldapauth-fork-project (CVE-2015-7294)
vulnerability in ldapauth-fork-project (CVE-2015-7294). Confidential information can be exposed externally.
|
| CVE-2017-8790 |
|
Vulnerability in accellion (CVE-2017-8790)
vulnerability in accellion (CVE-2017-8790). Successful exploitation can lead to full system takeover.
|
| CVE-2016-9870 |
|
Vulnerability in emc (CVE-2016-9870)
vulnerability in emc (CVE-2016-9870). Successful exploitation can lead to full system takeover.
|
| CVE-2016-9299 |
|
Vulnerability in jenkins (CVE-2016-9299)
vulnerability in jenkins (CVE-2016-9299). Successful exploitation can lead to full system takeover.
|