Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-42583 |
|
Vulnerability in io.netty:netty-codec-compression (CVE-2026-42583)
vulnerability in io.netty:netty-codec-compression (CVE-2026-42583). Risk of unauthorized operations or information disclosure. Exploitable via ``decompressedLength``. Mitigation: upgrade to `4.2.13.Final` or later.
|
| CVE-2026-44456 |
|
Vulnerability in hono (CVE-2026-44456)
vulnerability in hono (CVE-2026-44456). Risk of unauthorized operations or information disclosure. Exploitable via ``maxSize``. Mitigation: upgrade to `4.12.16` or later.
|
| CVE-2026-44796 |
|
Vulnerability in nautobot (CVE-2026-44796)
vulnerability in nautobot (CVE-2026-44796). Risk of unauthorized operations or information disclosure. Exploitable via ``find``. Mitigation: upgrade to `2.4.33` or later.
|
| CVE-2026-44296 |
|
Vulnerability in dos (CVE-2026-44296)
vulnerability in dos (CVE-2026-44296). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.26.0.167` or later.
|
| CVE-2026-44241 |
|
Vulnerability in io.micronaut:micronaut-context (CVE-2026-44241)
vulnerability in io.micronaut:micronaut-context (CVE-2026-44241). Risk of unauthorized operations or information disclosure. Exploitable via ``TimeConverterRegistrar``. Mitigation: upgrade to `4.10.22` or later.
|
| CVE-2026-44242 |
|
Vulnerability in io.micronaut:micronaut-inject (CVE-2026-44242)
vulnerability in io.micronaut:micronaut-inject (CVE-2026-44242). Risk of unauthorized operations or information disclosure. Exploitable via ``ResourceBundleMessageSource``. Mitigation: upgrade to `3.8.14` or later.
|
| CVE-2026-42544 |
|
Vulnerability in granian (CVE-2026-42544)
vulnerability in granian (CVE-2026-42544). Risk of unauthorized operations or information disclosure. Exploitable via ``Err``. Mitigation: upgrade to `2.7.4` or later.
|
| CVE-2026-34677 |
|
Vulnerability in adobe (CVE-2026-34677)
vulnerability in adobe (CVE-2026-34677). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34678 |
|
Vulnerability in adobe (CVE-2026-34678)
vulnerability in adobe (CVE-2026-34678). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34665 |
|
Vulnerability in adobe (CVE-2026-34665)
vulnerability in adobe (CVE-2026-34665). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34673 |
|
Vulnerability in adobe (CVE-2026-34673)
vulnerability in adobe (CVE-2026-34673). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34650 |
|
Vulnerability in adobe (CVE-2026-34650)
vulnerability in adobe (CVE-2026-34650). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34651 |
|
Vulnerability in adobe (CVE-2026-34651)
vulnerability in adobe (CVE-2026-34651). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34648 |
|
Vulnerability in adobe (CVE-2026-34648)
vulnerability in adobe (CVE-2026-34648). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34649 |
|
Vulnerability in adobe (CVE-2026-34649)
vulnerability in adobe (CVE-2026-34649). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23824 |
|
Vulnerability in arubanetworks (CVE-2026-23824)
vulnerability in arubanetworks (CVE-2026-23824). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42073 |
|
Cross-Site Request Forgery (CSRF) in @gitlawb/openclaude (CVE-2026-42073)
vulnerability in @gitlawb/openclaude (CVE-2026-42073). Risk of unauthorized operations or information disclosure. Exploitable via ``error``. Mitigation: upgrade to `0.5.1` or later.
|
| CVE-2026-42006 |
|
Vulnerability in dovecot (CVE-2026-42006)
vulnerability in dovecot (CVE-2026-42006). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40016 |
|
Vulnerability in dovecot (CVE-2026-40016)
vulnerability in dovecot (CVE-2026-40016). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43653 |
|
Vulnerability in apple (CVE-2026-43653)
vulnerability in apple (CVE-2026-43653). Confidential information can be exposed externally.
|
| CVE-2026-28967 |
|
Vulnerability in apple (CVE-2026-28967)
vulnerability in apple (CVE-2026-28967). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28872 |
|
Vulnerability in apple (CVE-2026-28872)
vulnerability in apple (CVE-2026-28872). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28908 |
|
Vulnerability in dos (CVE-2026-28908)
vulnerability in dos (CVE-2026-28908). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8319 |
|
Vulnerability in ai-agents (CVE-2026-8319)
vulnerability in ai-agents (CVE-2026-8319). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7790 |
|
Vulnerability in cowlib (CVE-2026-7790)
vulnerability in cowlib (CVE-2026-7790). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.16.1` or later.
|
| CVE-2026-45047 |
|
Vulnerability in github.com/xddxdd/bird-lg-go (CVE-2026-45047)
vulnerability in github.com/xddxdd/bird-lg-go (CVE-2026-45047). Risk of unauthorized operations or information disclosure. Exploitable via ``apiHandler``. Mitigation: upgrade to `0.0.0-20260507060110-0ff87024cb9e` or later.
|
| CVE-2026-31247 |
|
Vulnerability in docling (CVE-2026-31247)
vulnerability in docling (CVE-2026-31247). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-10470 |
|
Vulnerability in wso2 (CVE-2025-10470)
vulnerability in wso2 (CVE-2025-10470). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20188 |
|
Vulnerability in Cisco dos (CVE-2026-20188)
vulnerability in Cisco dos (CVE-2026-20188). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8187 |
|
Vulnerability in c (CVE-2026-8187)
vulnerability in c (CVE-2026-8187). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42343 |
|
Vulnerability in dos (CVE-2026-42343)
vulnerability in dos (CVE-2026-42343). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42212 |
|
Vulnerability in csharp (CVE-2026-42212)
vulnerability in csharp (CVE-2026-42212). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44247 |
|
Vulnerability in volcano.sh/volcano (CVE-2026-44247)
vulnerability in volcano.sh/volcano (CVE-2026-44247). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.14.2` or later.
|
| CVE-2026-38361 |
|
Vulnerability in dash-uploader (CVE-2026-38361)
vulnerability in dash-uploader (CVE-2026-38361). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.7.0a1` or later.
|
| CVE-2025-13836 |
|
Vulnerability in python (CVE-2025-13836)
vulnerability in python (CVE-2025-13836). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.10.20, 3.11.15, 3.12.13, 3.13.11, 3.14.1` or later.
|
| CVE-2026-26171 |
|
Vulnerability in dotnet (CVE-2026-26171)
vulnerability in dotnet (CVE-2026-26171). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.0.26, 9.0.15, 10.0.6` or later.
|
| CVE-2024-27686 |
|
Vulnerability in dos (CVE-2024-27686)
vulnerability in dos (CVE-2024-27686). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-26523 |
|
Vulnerability in dos (CVE-2022-26523)
vulnerability in dos (CVE-2022-26523). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8124 |
|
Vulnerability in c (CVE-2026-8124)
vulnerability in c (CVE-2026-8124). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32686 |
|
Vulnerability in decimal (CVE-2026-32686)
vulnerability in decimal (CVE-2026-32686). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.0.0` or later.
|
| CVE-2026-44248 |
|
Vulnerability in io.netty:netty-codec-mqtt (CVE-2026-44248)
vulnerability in io.netty:netty-codec-mqtt (CVE-2026-44248). Risk of unauthorized operations or information disclosure. Exploitable via ``MqttDecoder``. Mitigation: upgrade to `4.1.133.Final` or later.
|
| CVE-2026-46689 |
|
Vulnerability in scim_proto (CVE-2026-46689)
vulnerability in scim_proto (CVE-2026-46689). Risk of unauthorized operations or information disclosure. Exploitable via ``GET``. Mitigation: upgrade to `1.9.3` or later.
|
| CVE-2026-44240 |
|
Vulnerability in basic-ftp (CVE-2026-44240)
vulnerability in basic-ftp (CVE-2026-44240). Risk of unauthorized operations or information disclosure. Exploitable via ``FtpContext._partialResponse``. Mitigation: upgrade to `5.3.1` or later.
|
| CVE-2026-34282 |
|
Vulnerability in java (CVE-2026-34282)
vulnerability in java (CVE-2026-34282). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491, 11.0.31, 17.0.19, 21.0.11, 25.0.3, 26.0.1` or later.
|
| CVE-2026-21945 |
|
Vulnerability in java (CVE-2026-21945)
vulnerability in java (CVE-2026-21945). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.481, 11.0.30, 17.0.18, 21.0.10, 25.0.2` or later.
|
| CVE-2026-20652 |
|
Vulnerability in java (CVE-2026-20652)
vulnerability in java (CVE-2026-20652). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
|
| CVE-2022-21366 |
|
Vulnerability in java (CVE-2022-21366)
vulnerability in java (CVE-2022-21366). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.0.14, 17.0.2` or later.
|
| CVE-2022-21360 |
|
Vulnerability in java (CVE-2022-21360)
vulnerability in java (CVE-2022-21360). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.331, 8.0.321, 11.0.14, 17.0.2` or later.
|
| CVE-2022-21340 |
|
Vulnerability in java (CVE-2022-21340)
vulnerability in java (CVE-2022-21340). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.331, 8.0.321, 11.0.14, 17.0.2` or later.
|
| CVE-2022-21299 |
|
Vulnerability in java (CVE-2022-21299)
vulnerability in java (CVE-2022-21299). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.331, 8.0.321, 11.0.14, 17.0.2` or later.
|