Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cwe-295 Clear
ID Title
CVE-2026-39828 Vulnerability in golang.org/x/crypto (CVE-2026-39828)
vulnerability in golang.org/x/crypto (CVE-2026-39828). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.52.0` or later.
CVE-2026-48246 Vulnerability in CVE-2026-48246 (CVE-2026-48246)
vulnerability in CVE-2026-48246 (CVE-2026-48246). Confidential information can be exposed externally.
CVE-2026-48247 Vulnerability in CVE-2026-48247 (CVE-2026-48247)
vulnerability in CVE-2026-48247 (CVE-2026-48247). Confidential information can be exposed externally.
CVE-2026-48248 Vulnerability in CVE-2026-48248 (CVE-2026-48248)
vulnerability in CVE-2026-48248 (CVE-2026-48248). Confidential information can be exposed externally.
CVE-2026-48249 Vulnerability in CVE-2026-48249 (CVE-2026-48249)
vulnerability in CVE-2026-48249 (CVE-2026-48249). Confidential information can be exposed externally.
CVE-2026-45389 Vulnerability in tls (CVE-2026-45389)
vulnerability in tls (CVE-2026-45389). Confidential information can be exposed externally. Mitigation: upgrade to `2.1.0, b1a598ef9be83a4f8b0f73a4e2d9730d50906049` or later.
CVE-2026-45388 Vulnerability in tls (CVE-2026-45388)
vulnerability in tls (CVE-2026-45388). Confidential information can be exposed externally. Mitigation: upgrade to `2.1.0, 6a12247b3fbd747972ad2d35b74d9a89f6404952` or later.
CVE-2026-41119 Vulnerability in CVE-2026-41119 (CVE-2026-41119)
vulnerability in CVE-2026-41119 (CVE-2026-41119). Confidential information can be exposed externally.
CVE-2026-45574 Vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-45574)
vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-45574). Confidential information can be exposed externally. Mitigation: upgrade to `1.2.2` or later.
CVE-2026-23998 Vulnerability in github.com/fleetdm/fleet/v4 (CVE-2026-23998)
vulnerability in github.com/fleetdm/fleet/v4 (CVE-2026-23998). Confidential information can be exposed externally. Mitigation: upgrade to `4.81.0` or later.
CVE-2026-32992 Vulnerability in CVE-2026-32992 (CVE-2026-32992)
vulnerability in CVE-2026-32992 (CVE-2026-32992). Confidential information can be exposed externally.
CVE-2026-44363 Vulnerability in misp-modules (CVE-2026-44363)
vulnerability in misp-modules (CVE-2026-44363). Risk of unauthorized operations or information disclosure.
CVE-2026-41132 Vulnerability in ckan (CVE-2026-41132)
vulnerability in ckan (CVE-2026-41132). Confidential information can be exposed externally. Mitigation: upgrade to `2.10.10` or later.
CVE-2026-0249 Vulnerability in CVE-2026-0249 (CVE-2026-0249)
vulnerability in CVE-2026-0249 (CVE-2026-0249). Risk of unauthorized operations or information disclosure.
CVE-2026-0244 Vulnerability in CVE-2026-0244 (CVE-2026-0244)
vulnerability in CVE-2026-0244 (CVE-2026-0244). Risk of unauthorized operations or information disclosure.
CVE-2026-0248 Vulnerability in CVE-2026-0248 (CVE-2026-0248)
vulnerability in CVE-2026-0248 (CVE-2026-0248). Risk of unauthorized operations or information disclosure.
CVE-2026-8367 Vulnerability in CVE-2026-8367 (CVE-2026-8367)
vulnerability in CVE-2026-8367 (CVE-2026-8367). Risk of unauthorized operations or information disclosure.
CVE-2026-7009 Vulnerability in haxx (CVE-2026-7009)
vulnerability in haxx (CVE-2026-7009). Risk of unauthorized operations or information disclosure.
CVE-2026-4873 Vulnerability in haxx (CVE-2026-4873)
vulnerability in haxx (CVE-2026-4873). Confidential information can be exposed externally.
CVE-2026-44305 Vulnerability in lemur (CVE-2026-44305)
vulnerability in lemur (CVE-2026-44305). Confidential information can be exposed externally. Exploitable via ``ldap``. Mitigation: upgrade to `1.9.0` or later.
CVE-2026-42312 Vulnerability in pyload-ng (CVE-2026-42312)
vulnerability in pyload-ng (CVE-2026-42312). Confidential information can be exposed externally. Exploitable via ``ADMIN_ONLY_CORE_OPTIONS``. Mitigation: upgrade to `0.5.0b3.dev100` or later.
CVE-2026-41872 Vulnerability in jvn (CVE-2026-41872)
vulnerability in jvn (CVE-2026-41872). Confidential information can be exposed externally.
CVE-2026-3336 Vulnerability in Amazon aws (CVE-2026-3336)
vulnerability in Amazon aws (CVE-2026-3336). Data can be tampered with by attackers.
CVE-2026-20042 Vulnerability in Cisco nexus-dashboard (CVE-2026-20042)
vulnerability in Cisco nexus-dashboard (CVE-2026-20042). Confidential information can be exposed externally.
CVE-2026-6860 Vulnerability in io.vertx:vertx-core (CVE-2026-6860)
vulnerability in io.vertx:vertx-core (CVE-2026-6860). Risk of unauthorized operations or information disclosure. Exploitable via ``SslContext``. Mitigation: upgrade to `5.0.12` or later.
CVE-2026-44900 Vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-44900)
vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-44900). Confidential information can be exposed externally. Mitigation: upgrade to `1.2.1` or later.
CVE-2026-44309 Vulnerability in github.com/sigstore/gitsign (CVE-2026-44309)
vulnerability in github.com/sigstore/gitsign (CVE-2026-44309). Data can be tampered with by attackers. Exploitable via ``EncodeWithoutSignature``. Mitigation: upgrade to `0.16.0` or later.
CVE-2026-42213 Path Traversal in CVE-2026-42213 (CVE-2026-42213)
path traversal in CVE-2026-42213 (CVE-2026-42213). Risk of unauthorized operations or information disclosure.
CVE-2026-44213 Vulnerability in OpenTelemetry.Exporter.Instana (CVE-2026-44213)
vulnerability in OpenTelemetry.Exporter.Instana (CVE-2026-44213). Confidential information can be exposed externally. Exploitable via ``OpenTelemetry.Exporter.Instana``. Mitigation: upgrade to `1.1.0` or later.
CVE-2026-44700 Vulnerability in ex_webrtc (CVE-2026-44700)
vulnerability in ex_webrtc (CVE-2026-44700). Risk of unauthorized operations or information disclosure. Exploitable via ``ex_webrtc``. Mitigation: upgrade to `0.16.1` or later.
CVE-2026-42225 Vulnerability in c (CVE-2026-42225)
vulnerability in c (CVE-2026-42225). Data can be tampered with by attackers.
CVE-2026-42011 Vulnerability in CVE-2026-42011 (CVE-2026-42011)
vulnerability in CVE-2026-42011 (CVE-2026-42011). Confidential information can be exposed externally.
CVE-2026-44312 Vulnerability in css_parser (CVE-2026-44312)
vulnerability in css_parser (CVE-2026-44312). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.22.0` or later.
CVE-2026-40243 Authentication Bypass in github.com/lxc/incus/v6/cmd/incusd (CVE-2026-40243)
authentication bypass in github.com/lxc/incus/v6/cmd/incusd (CVE-2026-40243). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `7.0.0` or later.
CVE-2026-21945 Vulnerability in java (CVE-2026-21945)
vulnerability in java (CVE-2026-21945). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.481, 11.0.30, 17.0.18, 21.0.10, 25.0.2` or later.
CVE-2026-43869 Vulnerability in org.apache.thrift:libthrift (CVE-2026-43869)
vulnerability in org.apache.thrift:libthrift (CVE-2026-43869). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.23.0` or later.
CVE-2026-41603 Vulnerability in apache (CVE-2026-41603)
vulnerability in apache (CVE-2026-41603). Confidential information can be exposed externally.
CVE-2025-10539 Vulnerability in draugiemgroup (CVE-2025-10539)
vulnerability in draugiemgroup (CVE-2025-10539). Risk of unauthorized operations or information disclosure.
CVE-2026-40974 Vulnerability in spring (CVE-2026-40974)
vulnerability in spring (CVE-2026-40974). Risk of unauthorized operations or information disclosure.
CVE-2026-40971 Vulnerability in spring (CVE-2026-40971)
vulnerability in spring (CVE-2026-40971). Risk of unauthorized operations or information disclosure.
CVE-2026-40970 Vulnerability in spring (CVE-2026-40970)
vulnerability in spring (CVE-2026-40970). Risk of unauthorized operations or information disclosure.
CVE-2026-22747 Vulnerability in vmware (CVE-2026-22747)
vulnerability in vmware (CVE-2026-22747). Confidential information can be exposed externally.
CVE-2025-40745 Vulnerability in siemens (CVE-2025-40745)
vulnerability in siemens (CVE-2025-40745). Risk of unauthorized operations or information disclosure.
CVE-2026-0233 Vulnerability in paloaltonetworks (CVE-2026-0233)
vulnerability in paloaltonetworks (CVE-2026-0233). Successful exploitation can lead to full system takeover.
CVE-2026-5263 Vulnerability in c (CVE-2026-5263)
vulnerability in c (CVE-2026-5263). Confidential information can be exposed externally.
CVE-2026-5194 Vulnerability in wolfssl (CVE-2026-5194)
vulnerability in wolfssl (CVE-2026-5194). Confidential information can be exposed externally.
CVE-2026-33810 Vulnerability in stdlib (CVE-2026-33810)
vulnerability in stdlib (CVE-2026-33810). Confidential information can be exposed externally. Mitigation: upgrade to `1.26.2` or later.
CVE-2026-34580 Vulnerability in c (CVE-2026-34580)
vulnerability in c (CVE-2026-34580). Data can be tampered with by attackers. Mitigation: upgrade to `3.11.1` or later.
CVE-2026-4740 Vulnerability in privilege-escalation (CVE-2026-4740)
vulnerability in privilege-escalation (CVE-2026-4740). Successful exploitation can lead to full system takeover.
CVE-2026-32144 Vulnerability in erlang (CVE-2026-32144)
vulnerability in erlang (CVE-2026-32144). Confidential information can be exposed externally.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →