Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-42072 |
|
Vulnerability in graph (CVE-2026-42072)
vulnerability in graph (CVE-2026-42072). Successful exploitation can lead to full system takeover. Exploitable via ``NORNICDB_ADDRESS``.
|
| CVE-2026-42208 KEV |
|
[KEV] SQL Injection in Berriai litellm (CVE-2026-42208)
SQL injection in Berriai litellm (CVE-2026-42208). Successful exploitation can lead to full system takeover. Exploitable via `POST /chat/completions`. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `>=1.83.7` or later.
|
| CVE-2026-33844 |
|
Vulnerability in apache (CVE-2026-33844)
vulnerability in apache (CVE-2026-33844). Successful exploitation can lead to full system takeover.
|
| CVE-2026-36458 |
|
Code Injection in sqli (CVE-2026-36458)
code injection in sqli (CVE-2026-36458). Successful exploitation can lead to full system takeover.
|
| CVE-2026-38428 |
|
SQL Injection in sqli (CVE-2026-38428)
SQL injection in sqli (CVE-2026-38428). Successful exploitation can lead to full system takeover. Exploitable via `GET /api/v1/main/flows/search`.
|
| CVE-2026-42087 |
|
SQL Injection in sqli (CVE-2026-42087)
SQL injection in sqli (CVE-2026-42087). Confidential information can be exposed externally. Exploitable via ``tsdb_lookup``.
|
| CVE-2017-10321 |
|
Vulnerability in c (CVE-2017-10321)
vulnerability in c (CVE-2017-10321). Successful exploitation can lead to full system takeover.
|
| CVE-2017-10292 |
|
Privilege Escalation in c (CVE-2017-10292)
vulnerability in c (CVE-2017-10292). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10190 |
|
Vulnerability in c (CVE-2017-10190)
vulnerability in c (CVE-2017-10190). Successful exploitation can lead to full system takeover.
|
| CVE-2017-10261 |
|
Information Disclosure in c (CVE-2017-10261)
vulnerability in c (CVE-2017-10261). Confidential information can be exposed externally.
|
| CVE-2017-10202 |
|
Vulnerability in c (CVE-2017-10202)
vulnerability in c (CVE-2017-10202). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3567 |
|
Vulnerability in c (CVE-2017-3567)
vulnerability in c (CVE-2017-3567). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-3310 |
|
Vulnerability in oracle (CVE-2017-3310)
vulnerability in oracle (CVE-2017-3310). Successful exploitation can lead to full system takeover.
|
| CVE-2016-2183 |
|
Information Disclosure in redhat (CVE-2016-2183)
vulnerability in redhat (CVE-2016-2183). Confidential information can be exposed externally.
|
| CVE-2014-3566 |
|
Vulnerability in redhat (CVE-2014-3566)
vulnerability in redhat (CVE-2014-3566). Risk of unauthorized operations or information disclosure.
|