Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-39828 |
|
Vulnerability in golang.org/x/crypto (CVE-2026-39828)
vulnerability in golang.org/x/crypto (CVE-2026-39828). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.52.0` or later.
|
| CVE-2026-48246 |
|
Vulnerability in CVE-2026-48246 (CVE-2026-48246)
vulnerability in CVE-2026-48246 (CVE-2026-48246). Confidential information can be exposed externally.
|
| CVE-2026-48247 |
|
Vulnerability in CVE-2026-48247 (CVE-2026-48247)
vulnerability in CVE-2026-48247 (CVE-2026-48247). Confidential information can be exposed externally.
|
| CVE-2026-48248 |
|
Vulnerability in CVE-2026-48248 (CVE-2026-48248)
vulnerability in CVE-2026-48248 (CVE-2026-48248). Confidential information can be exposed externally.
|
| CVE-2026-48249 |
|
Vulnerability in CVE-2026-48249 (CVE-2026-48249)
vulnerability in CVE-2026-48249 (CVE-2026-48249). Confidential information can be exposed externally.
|
| CVE-2026-45389 |
|
Vulnerability in tls (CVE-2026-45389)
vulnerability in tls (CVE-2026-45389). Confidential information can be exposed externally. Mitigation: upgrade to `2.1.0, b1a598ef9be83a4f8b0f73a4e2d9730d50906049` or later.
|
| CVE-2026-45388 |
|
Vulnerability in tls (CVE-2026-45388)
vulnerability in tls (CVE-2026-45388). Confidential information can be exposed externally. Mitigation: upgrade to `2.1.0, 6a12247b3fbd747972ad2d35b74d9a89f6404952` or later.
|
| CVE-2026-41119 |
|
Vulnerability in CVE-2026-41119 (CVE-2026-41119)
vulnerability in CVE-2026-41119 (CVE-2026-41119). Confidential information can be exposed externally.
|
| CVE-2026-45574 |
|
Vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-45574)
vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-45574). Confidential information can be exposed externally. Mitigation: upgrade to `1.2.2` or later.
|
| CVE-2026-23998 |
|
Vulnerability in github.com/fleetdm/fleet/v4 (CVE-2026-23998)
vulnerability in github.com/fleetdm/fleet/v4 (CVE-2026-23998). Confidential information can be exposed externally. Mitigation: upgrade to `4.81.0` or later.
|
| CVE-2026-32992 |
|
Vulnerability in CVE-2026-32992 (CVE-2026-32992)
vulnerability in CVE-2026-32992 (CVE-2026-32992). Confidential information can be exposed externally.
|
| CVE-2026-44363 |
|
Vulnerability in misp-modules (CVE-2026-44363)
vulnerability in misp-modules (CVE-2026-44363). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41132 |
|
Vulnerability in ckan (CVE-2026-41132)
vulnerability in ckan (CVE-2026-41132). Confidential information can be exposed externally. Mitigation: upgrade to `2.10.10` or later.
|
| CVE-2026-0249 |
|
Vulnerability in CVE-2026-0249 (CVE-2026-0249)
vulnerability in CVE-2026-0249 (CVE-2026-0249). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0244 |
|
Vulnerability in CVE-2026-0244 (CVE-2026-0244)
vulnerability in CVE-2026-0244 (CVE-2026-0244). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0248 |
|
Vulnerability in CVE-2026-0248 (CVE-2026-0248)
vulnerability in CVE-2026-0248 (CVE-2026-0248). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8367 |
|
Vulnerability in CVE-2026-8367 (CVE-2026-8367)
vulnerability in CVE-2026-8367 (CVE-2026-8367). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7009 |
|
Vulnerability in haxx (CVE-2026-7009)
vulnerability in haxx (CVE-2026-7009). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4873 |
|
Vulnerability in haxx (CVE-2026-4873)
vulnerability in haxx (CVE-2026-4873). Confidential information can be exposed externally.
|
| CVE-2026-44305 |
|
Vulnerability in lemur (CVE-2026-44305)
vulnerability in lemur (CVE-2026-44305). Confidential information can be exposed externally. Exploitable via ``ldap``. Mitigation: upgrade to `1.9.0` or later.
|
| CVE-2026-42312 |
|
Vulnerability in pyload-ng (CVE-2026-42312)
vulnerability in pyload-ng (CVE-2026-42312). Confidential information can be exposed externally. Exploitable via ``ADMIN_ONLY_CORE_OPTIONS``. Mitigation: upgrade to `0.5.0b3.dev100` or later.
|
| CVE-2026-41872 |
|
Vulnerability in jvn (CVE-2026-41872)
vulnerability in jvn (CVE-2026-41872). Confidential information can be exposed externally.
|
| CVE-2026-3336 |
|
Vulnerability in Amazon aws (CVE-2026-3336)
vulnerability in Amazon aws (CVE-2026-3336). Data can be tampered with by attackers.
|
| CVE-2026-20042 |
|
Vulnerability in Cisco nexus-dashboard (CVE-2026-20042)
vulnerability in Cisco nexus-dashboard (CVE-2026-20042). Confidential information can be exposed externally.
|
| CVE-2026-6860 |
|
Vulnerability in io.vertx:vertx-core (CVE-2026-6860)
vulnerability in io.vertx:vertx-core (CVE-2026-6860). Risk of unauthorized operations or information disclosure. Exploitable via ``SslContext``. Mitigation: upgrade to `5.0.12` or later.
|
| CVE-2026-44900 |
|
Vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-44900)
vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-44900). Confidential information can be exposed externally. Mitigation: upgrade to `1.2.1` or later.
|
| CVE-2026-44309 |
|
Vulnerability in github.com/sigstore/gitsign (CVE-2026-44309)
vulnerability in github.com/sigstore/gitsign (CVE-2026-44309). Data can be tampered with by attackers. Exploitable via ``EncodeWithoutSignature``. Mitigation: upgrade to `0.16.0` or later.
|
| CVE-2026-42213 |
|
Path Traversal in CVE-2026-42213 (CVE-2026-42213)
path traversal in CVE-2026-42213 (CVE-2026-42213). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44213 |
|
Vulnerability in OpenTelemetry.Exporter.Instana (CVE-2026-44213)
vulnerability in OpenTelemetry.Exporter.Instana (CVE-2026-44213). Confidential information can be exposed externally. Exploitable via ``OpenTelemetry.Exporter.Instana``. Mitigation: upgrade to `1.1.0` or later.
|
| CVE-2026-44700 |
|
Vulnerability in ex_webrtc (CVE-2026-44700)
vulnerability in ex_webrtc (CVE-2026-44700). Risk of unauthorized operations or information disclosure. Exploitable via ``ex_webrtc``. Mitigation: upgrade to `0.16.1` or later.
|
| CVE-2026-42225 |
|
Vulnerability in c (CVE-2026-42225)
vulnerability in c (CVE-2026-42225). Data can be tampered with by attackers.
|
| CVE-2026-42011 |
|
Vulnerability in CVE-2026-42011 (CVE-2026-42011)
vulnerability in CVE-2026-42011 (CVE-2026-42011). Confidential information can be exposed externally.
|
| CVE-2026-44312 |
|
Vulnerability in css_parser (CVE-2026-44312)
vulnerability in css_parser (CVE-2026-44312). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.22.0` or later.
|
| CVE-2026-40243 |
|
Authentication Bypass in github.com/lxc/incus/v6/cmd/incusd (CVE-2026-40243)
authentication bypass in github.com/lxc/incus/v6/cmd/incusd (CVE-2026-40243). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `7.0.0` or later.
|
| CVE-2026-21945 |
|
Vulnerability in java (CVE-2026-21945)
vulnerability in java (CVE-2026-21945). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.481, 11.0.30, 17.0.18, 21.0.10, 25.0.2` or later.
|
| CVE-2026-43869 |
|
Vulnerability in org.apache.thrift:libthrift (CVE-2026-43869)
vulnerability in org.apache.thrift:libthrift (CVE-2026-43869). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.23.0` or later.
|
| CVE-2026-41603 |
|
Vulnerability in apache (CVE-2026-41603)
vulnerability in apache (CVE-2026-41603). Confidential information can be exposed externally.
|
| CVE-2025-10539 |
|
Vulnerability in draugiemgroup (CVE-2025-10539)
vulnerability in draugiemgroup (CVE-2025-10539). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40974 |
|
Vulnerability in spring (CVE-2026-40974)
vulnerability in spring (CVE-2026-40974). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40971 |
|
Vulnerability in spring (CVE-2026-40971)
vulnerability in spring (CVE-2026-40971). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40970 |
|
Vulnerability in spring (CVE-2026-40970)
vulnerability in spring (CVE-2026-40970). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-22747 |
|
Vulnerability in vmware (CVE-2026-22747)
vulnerability in vmware (CVE-2026-22747). Confidential information can be exposed externally.
|
| CVE-2025-40745 |
|
Vulnerability in siemens (CVE-2025-40745)
vulnerability in siemens (CVE-2025-40745). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0233 |
|
Vulnerability in paloaltonetworks (CVE-2026-0233)
vulnerability in paloaltonetworks (CVE-2026-0233). Successful exploitation can lead to full system takeover.
|
| CVE-2026-5263 |
|
Vulnerability in c (CVE-2026-5263)
vulnerability in c (CVE-2026-5263). Confidential information can be exposed externally.
|
| CVE-2026-5194 |
|
Vulnerability in wolfssl (CVE-2026-5194)
vulnerability in wolfssl (CVE-2026-5194). Confidential information can be exposed externally.
|
| CVE-2026-33810 |
|
Vulnerability in stdlib (CVE-2026-33810)
vulnerability in stdlib (CVE-2026-33810). Confidential information can be exposed externally. Mitigation: upgrade to `1.26.2` or later.
|
| CVE-2026-34580 |
|
Vulnerability in c (CVE-2026-34580)
vulnerability in c (CVE-2026-34580). Data can be tampered with by attackers. Mitigation: upgrade to `3.11.1` or later.
|
| CVE-2026-4740 |
|
Vulnerability in privilege-escalation (CVE-2026-4740)
vulnerability in privilege-escalation (CVE-2026-4740). Successful exploitation can lead to full system takeover.
|
| CVE-2026-32144 |
|
Vulnerability in erlang (CVE-2026-32144)
vulnerability in erlang (CVE-2026-32144). Confidential information can be exposed externally.
|