Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cwe-20 Clear
ID Title
CVE-2026-43725 Vulnerability in apple (CVE-2026-43725)
vulnerability in apple (CVE-2026-43725). Risk of unauthorized operations or information disclosure.
CVE-2026-43708 Vulnerability in apple (CVE-2026-43708)
vulnerability in apple (CVE-2026-43708). Risk of unauthorized operations or information disclosure.
CVE-2026-39868 Vulnerability in apple (CVE-2026-39868)
vulnerability in apple (CVE-2026-39868). Data can be tampered with by attackers.
CVE-2026-38639 Vulnerability in dos (CVE-2026-38639)
vulnerability in dos (CVE-2026-38639). Risk of unauthorized operations or information disclosure.
CVE-2026-52780 Vulnerability in CVE-2026-52780 (CVE-2026-52780)
vulnerability in CVE-2026-52780 (CVE-2026-52780). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `17.3.3` or later.
CVE-2026-13434 Vulnerability in kubevirt (CVE-2026-13434)
vulnerability in kubevirt (CVE-2026-13434). Risk of unauthorized operations or information disclosure.
CVE-2026-42388 Incomplete validation of the SOA record present in a catalog zone might lead to a crash.
Incomplete validation of the SOA record present in a catalog zone might lead to a crash.
CVE-2026-42387 Vulnerability in CVE-2026-42387 (CVE-2026-42387)
vulnerability in CVE-2026-42387 (CVE-2026-42387). Risk of unauthorized operations or information disclosure.
CVE-2026-42390 Vulnerability in CVE-2026-42390 (CVE-2026-42390)
vulnerability in CVE-2026-42390 (CVE-2026-42390). Risk of unauthorized operations or information disclosure.
CVE-2026-42389 Vulnerability in CVE-2026-42389 (CVE-2026-42389)
vulnerability in CVE-2026-42389 (CVE-2026-42389). Risk of unauthorized operations or information disclosure.
CVE-2026-12246 Vulnerability in nlnetlabs (CVE-2026-12246)
vulnerability in nlnetlabs (CVE-2026-12246). Data can be tampered with by attackers.
CVE-2026-13025 Vulnerability in google (CVE-2026-13025)
vulnerability in google (CVE-2026-13025). Successful exploitation can lead to full system takeover.
CVE-2026-13024 Vulnerability in google (CVE-2026-13024)
vulnerability in google (CVE-2026-13024). Risk of unauthorized operations or information disclosure.
CVE-2026-48720 Vulnerability in CVE-2026-48720 (CVE-2026-48720)
vulnerability in CVE-2026-48720 (CVE-2026-48720). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
CVE-2026-48704 Vulnerability in CVE-2026-48704 (CVE-2026-48704)
vulnerability in CVE-2026-48704 (CVE-2026-48704). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
CVE-2026-12537 Vulnerability in google (CVE-2026-12537)
vulnerability in google (CVE-2026-12537). Successful exploitation can lead to full system takeover.
CVE-2026-13006 Vulnerability in CVE-2026-13006 (CVE-2026-13006)
vulnerability in CVE-2026-13006 (CVE-2026-13006). Risk of unauthorized operations or information disclosure.
CVE-2026-54588 Vulnerability in CVE-2026-54588 (CVE-2026-54588)
vulnerability in CVE-2026-54588 (CVE-2026-54588). Confidential information can be exposed externally. Exploitable via ``HTTP_HOST``.
CVE-2026-56762 Vulnerability in CVE-2026-56762 (CVE-2026-56762)
vulnerability in CVE-2026-56762 (CVE-2026-56762). Risk of unauthorized operations or information disclosure. Exploitable via `Cookie header`.
CVE-2026-10651 Vulnerability in c (CVE-2026-10651)
vulnerability in c (CVE-2026-10651). Risk of unauthorized operations or information disclosure.
CVE-2026-52801 Vulnerability in gogs.io/gogs (CVE-2026-52801)
vulnerability in gogs.io/gogs (CVE-2026-52801). Confidential information can be exposed externally. Mitigation: upgrade to `0.14.3` or later.
CVE-2026-56306 Vulnerability in CVE-2026-56306 (CVE-2026-56306)
vulnerability in CVE-2026-56306 (CVE-2026-56306). Risk of unauthorized operations or information disclosure.
CVE-2025-64719 Vulnerability in gogs.io/gogs (CVE-2025-64719)
vulnerability in gogs.io/gogs (CVE-2025-64719). Risk of unauthorized operations or information disclosure. Exploitable via ``view.go``. Mitigation: upgrade to `0.14.3` or later.
CVE-2026-7165 Vulnerability in dos (CVE-2026-7165)
vulnerability in dos (CVE-2026-7165). Risk of unauthorized operations or information disclosure.
CVE-2026-12787 Vulnerability in deserialization (CVE-2026-12787)
vulnerability in deserialization (CVE-2026-12787). Risk of unauthorized operations or information disclosure.
CVE-2026-56340 Vulnerability in dos (CVE-2026-56340)
vulnerability in dos (CVE-2026-56340). Successful exploitation can lead to full system takeover.
CVE-2026-56325 Vulnerability in CVE-2026-56325 (CVE-2026-56325)
vulnerability in CVE-2026-56325 (CVE-2026-56325). Risk of unauthorized operations or information disclosure.
CVE-2026-56228 Vulnerability in dos (CVE-2026-56228)
vulnerability in dos (CVE-2026-56228). Risk of unauthorized operations or information disclosure.
CVE-2026-54911 Vulnerability in ujson (CVE-2026-54911)
vulnerability in ujson (CVE-2026-54911). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `5.13.0` or later.
CVE-2026-48774 Vulnerability in CVE-2026-48774 (CVE-2026-48774)
vulnerability in CVE-2026-48774 (CVE-2026-48774). Data can be tampered with by attackers. Exploitable via ``run_sql_readonly``.
CVE-2026-53492 Vulnerability in github.com/containerd/containerd/v2 (CVE-2026-53492)
vulnerability in github.com/containerd/containerd/v2 (CVE-2026-53492). Confidential information can be exposed externally. Mitigation: upgrade to `2.3.2` or later.
CVE-2026-53488 Vulnerability in github.com/containerd/containerd (CVE-2026-53488)
vulnerability in github.com/containerd/containerd (CVE-2026-53488). Successful exploitation can lead to full system takeover. Exploitable via ``LABEL``. Mitigation: upgrade to `1.7.33` or later.
CVE-2026-21768 Vulnerability in CVE-2026-21768 (CVE-2026-21768)
vulnerability in CVE-2026-21768 (CVE-2026-21768). Confidential information can be exposed externally.
CVE-2026-39998 Vulnerability in apache (CVE-2026-39998)
vulnerability in apache (CVE-2026-39998). Successful exploitation can lead to full system takeover.
CVE-2026-55602 Vulnerability in http-proxy-middleware (CVE-2026-55602)
vulnerability in http-proxy-middleware (CVE-2026-55602). Data can be tampered with by attackers. Exploitable via ``router``. Mitigation: upgrade to `2.0.10` or later.
CVE-2026-12569 KEV [KEV] Vulnerability in Ptc deserialization (CVE-2026-12569)
vulnerability in Ptc deserialization (CVE-2026-12569). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2026-50196 Vulnerability in Steeltoe.Discovery.Eureka (CVE-2026-50196)
vulnerability in Steeltoe.Discovery.Eureka (CVE-2026-50196). Risk of unauthorized operations or information disclosure. Exploitable via ``DataCenterInfo.FromJson``. Mitigation: upgrade to `3.4.0` or later.
CVE-2026-12456 Vulnerability in google (CVE-2026-12456)
vulnerability in google (CVE-2026-12456). Risk of unauthorized operations or information disclosure.
CVE-2026-12453 Vulnerability in google (CVE-2026-12453)
vulnerability in google (CVE-2026-12453). Risk of unauthorized operations or information disclosure.
CVE-2026-12465 Vulnerability in google (CVE-2026-12465)
vulnerability in google (CVE-2026-12465). Successful exploitation can lead to full system takeover.
CVE-2025-48643 Vulnerability in google (CVE-2025-48643)
vulnerability in google (CVE-2025-48643). Successful exploitation can lead to full system takeover.
CVE-2026-46910 Vulnerability in c (CVE-2026-46910)
vulnerability in c (CVE-2026-46910). Confidential information can be exposed externally.
CVE-2026-48055 Vulnerability in path-traversal (CVE-2026-48055)
vulnerability in path-traversal (CVE-2026-48055). Data can be tampered with by attackers.
CVE-2026-0142 Vulnerability in c (CVE-2026-0142)
vulnerability in c (CVE-2026-0142). Risk of unauthorized operations or information disclosure.
CVE-2026-49444 Vulnerability in n8n (CVE-2026-49444)
vulnerability in n8n (CVE-2026-49444). Confidential information can be exposed externally. Exploitable via ``NODES_EXCLUDE``. Mitigation: upgrade to `2.21.8` or later.
CVE-2026-54299 Vulnerability in astro (CVE-2026-54299)
vulnerability in astro (CVE-2026-54299). Confidential information can be exposed externally. Exploitable via ``request.url``. Mitigation: upgrade to `6.4.6` or later.
CVE-2026-53537 Vulnerability in python-multipart (CVE-2026-53537)
vulnerability in python-multipart (CVE-2026-53537). Risk of unauthorized operations or information disclosure. Exploitable via ``parse_options_header``. Mitigation: upgrade to `0.0.30` or later.
CVE-2026-12191 Vulnerability in deserialization (CVE-2026-12191)
vulnerability in deserialization (CVE-2026-12191). Successful exploitation can lead to full system takeover.
CVE-2025-58175 Vulnerability in org.geoserver.web:gs-web-app (CVE-2025-58175)
vulnerability in org.geoserver.web:gs-web-app (CVE-2025-58175). Confidential information can be exposed externally. Exploitable via ``ENTITY_RESOLUTION_ALLOWLIST``. Mitigation: upgrade to `2.27.3` or later.
CVE-2026-54133 Vulnerability in jmespath (CVE-2026-54133)
vulnerability in jmespath (CVE-2026-54133). Successful exploitation can lead to full system takeover. Exploitable via ``JP_PHP_COMPILE``. Mitigation: upgrade to `2.9.1` or later.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →