VIR Vulnerability Intelligence Relay

Search

Found 38,276 results in 4634ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-43198 critical 9.8 9.8 FIX slesdebian debian linux-kernel 1mo ago In the Linux kernel, the following vulnerability has been resolved: tcp: fix potential race in tcp_v6_syn_recv_sock() Code in tcp_v6_syn_recv_sock() after the call to tcp_v4_syn_recv_sock() is done…
CVE-2026-43197 critical 9.1 9.1 FIX slesdebian debian linux-kernel 1mo ago In the Linux kernel, the following vulnerability has been resolved: netconsole: avoid OOB reads, msg is not nul-terminated msg passed to netconsole from the console subsystem is not guaranteed to b…
CVE-2026-43186 critical 9.8 9.8 FIX slesdebian debian linux-kernel 1mo ago In the Linux kernel, the following vulnerability has been resolved: ipv6: ioam: fix heap buffer overflow in __ioam6_fill_trace_data() On the receive path, __ioam6_fill_trace_data() uses trace->node…
CVE-2026-43185 critical 9.8 9.8 FIX slesdebian debian linux-kernel 1mo ago In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix signededness bug in smb_direct_prepare_negotiation() smb_direct_prepare_negotiation() casts an unsigned __u32 value fr…
CVE-2026-43125 critical 9.8 9.8 FIX slesdebian debian linux-kernel 1mo ago In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlm_search_rsb_tree The len parameter in dlm_dump_rsb_name() is not validated and comes from network mess…
CVE-2025-62345 low 2.7 2.7 1mo ago HCL BigFix RunBookAI is affected by a Continued availability of Less-Secure “Input Text” Vulnerability . A component contains a security weakness in its input handling implementation, increasing the …
CVE-2025-59852 critical 9.1 9.1 hcltech 1mo ago HCL DFXAnalytics is affected by an Insufficient Transport Layer Protection vulnerability where data is transmitted over the network without encryption, which could allow an attacker to compromise t…
CVE-2025-59851 critical 9.8 9.8 hcltech 1mo ago HCL DFXAnalytics is affected by a Using Components with Known Vulnerabilities flaw where the application utilizes unpatched libraries or sub-components, which could allow an attacker to identify and …
CVE-2026-43117 critical 9.1 9.1 FIX slesdebian debian linux-kernel google 1mo ago In the Linux kernel, the following vulnerability has been resolved: btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file() If overlay is used on top of btrfs, dentry->d_s…
CVE-2026-43114 critical 9.4 9.4 FIX slesdebian debian linux-kernel google 1mo ago In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry New test case fails unexpectedly when avx2 matching fun…
CVE-2026-43083 critical 9.1 9.1 FIX slesdebian debianwindows windows 1mo ago In the Linux kernel, the following vulnerability has been resolved: net: ioam6: fix OOB and missing lock When trace->type.bit6 is set: if (trace->type.bit6) { ... queue = skb_g…
CVE-2026-40010 critical 9.1 9.1 apache 1mo ago Apache Wicket has a Session Fixation issue
CVE-2026-44405 low 3.4 3.4 slesdebian debian 1mo ago Paramiko rsakey.py allows the SHA-1 algorithm
CVE-2026-28780 critical 9.8 9.8 FIX debian debian rhel sles apache 1mo ago Important: httpd security update
CVE-2026-42608 critical 9.1 9.1 getgrav 1mo ago Grav has Unauthenticated Path Traversal & Arbitrary File Write in its FormFlash component
CVE-2026-42613 critical 9.4 9.4 1mo ago Grav Vulnerable to Privilege Escalation via Missing Server-Side Validation of groups/access
CVE-2026-42607 critical 9.1 10.0 EXP 1mo ago Grav Vulnerable to Remote Code Execution (RCE) via Malicious Plugin ZIP Upload in Direct Install Feature
CVE-2026-35579 critical 9.8 9.8 windows windows coredns.io 1mo ago CoreDNS has TSIG authentication bypass on gRPC and QUIC transports
CVE-2026-42196 critical 9.5 1mo ago django-s3file is vulnerable to relative path traversal
CVE-2026-42155 critical 9.5 1mo ago Magento LTS has Weak API Session ID — Predictable MD5 of Time-Derived Inputs
CVE-2026-7854 critical 9.8 9.8 1mo ago A security vulnerability has been detected in D-Link DI-8100 16.07.26A1. Affected by this vulnerability is the function url_rule_asp of the file /url_rule.asp of the component POST Parameter Handler.…
CVE-2026-38428 critical 9.8 9.8 kestra 1mo ago Kestra v1.3.3 and before is vulnerable to SQL Injection. The vulnerability occurs because user-controlled input from a GET parameter is directly concatenated into an SQL query without proper sanitiza…
CVE-2026-27960 critical 9.8 9.8 citeum 1mo ago OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. In versions 6.6.0 through 6.9.12, there is a privilege escalation vulnerability that can be exploi…
CVE-2026-7853 critical 9.8 9.8 1mo ago A weakness has been identified in D-Link DI-8100 16.07.26A1. Affected is the function sprintf of the file /auto_reboot.asp of the component HTTP Handler. This manipulation of the argument enable/time…
CVE-2026-25660 critical 9.5 1mo ago Codechecker has an authentication bypass for certain API calls
CVE-2026-7847 low 2.6 2.6 1mo ago Langchain-Chatchat Uses Insufficiently Random Values
CVE-2026-38431 critical 9.8 9.8 frappe 1mo ago ERPNext v15.103.1 and before is vulnerable to Server-Side Template Injection (SSTI). An attacker with permission to create or edit email templates can inject template expressions that are executed on…
CVE-2026-38429 critical 9.8 9.8 1mo ago OpenCMS v20 and before is vulnerable to XML External Entity (XXE) in the Admin Import DB feature due to insecure XML parsing of user supplied .zip files containing a manifest.xml.
CVE-2026-7846 low 2.6 2.6 1mo ago Langchain-Chatchat has a Race Condition in its OpenAI-Compatible File Upload API
CVE-2026-7845 low 2.6 2.6 1mo ago Langchain-Chatchat Uses a Broken or Risky Cryptographic Algorithm
CVE-2026-7411 critical 10.0 10.0 1mo ago Eclipse BaSyx Java Server SDK vulnerable to Path Traversal
CVE-2026-43071 critical 9.1 9.1 FIX slesdebian debian linux-kernel google 1mo ago In the Linux kernel, the following vulnerability has been resolved: dcache: Limit the minimal number of bucket to two There is an OOB read problem on dentry_hashtable when user sets 'dhash_entries=…
CVE-2026-43067 critical 9.8 9.8 FIX slesdebian debian linux-kernel google 1mo ago In the Linux kernel, the following vulnerability has been resolved: ext4: handle wraparound when searching for blocks for indirect mapped blocks Commit 4865c768b563 ("ext4: always allocate blocks o…
CVE-2026-7834 critical 9.8 9.8 1mo ago A security vulnerability has been detected in EFM ipTIME NAS1dual 1.5.24. This issue affects the function get_csrf_whites of the file /cgi/advanced/misc_main.cgi. Such manipulation leads to stack-bas…
CVE-2026-36356 critical 9.1 10.0 EXP 1mo ago The GoAhead web server on MeiG Smart FORGE_SLT711 devices (firmware MDM9607.LE.1.0-00110-STD.PROD-1) allows unauthenticated OS command injection via the /action/SetRemoteAccessCfg endpoint.
CVE-2026-34408 critical 9.1 9.1 1mo ago An issue was discovered in Gambio 4.9.2.0 (patched in 2024-02 v1.0.0 for GX4 v4.0.0.0 to v4.9.2.0). The password reset function can be bypassed to set arbitrary passwords for arbitrary accounts if th…
CVE-2026-43566 critical 9.8 9.8 openclaw 1mo ago OpenClaw: Heartbeat owner downgrade missed untrusted webhook wake events
CVE-2026-43534 critical 9.8 9.8 openclaw 1mo ago OpenClaw: Agent hook events could enqueue trusted system events from unsanitized external input
CVE-2026-43529 low 2.5 2.5 openclaw 1mo ago OpenClaw: TOCTOU read in exec script preflight
CVE-2026-43526 critical 9.3 9.3 openclaw 1mo ago OpenClaw: QQBot reply media URL handling could trigger SSRF and re-upload fetched bytes
CVE-2023-54344 critical 9.8 9.8 1mo ago Eclipse Equinox OSGi 3.7.2 and earlier contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary commands by sending payloads to the console interface.…
CVE-2023-54342 critical 9.8 9.8 1mo ago Eclipse Equinox OSGi versions 3.8 through 3.18 contain a remote code execution vulnerability in the console interface that allows unauthenticated attackers to execute arbitrary code by exploiting the…
CVE-2026-40797 critical 9.3 9.3 1mo ago Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saleswonder LLC WebinarIgnition allows Blind SQL Injection. This issue affects WebinarIgnition: …
CVE-2026-7823 critical 9.8 9.8 1mo ago A security flaw has been discovered in Totolink A8000RU 7.1cu.643_b20200521. Affected is the function setAppFilterCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument enable results…
CVE-2026-5294 critical 9.8 9.8 1mo ago The Geeky Bot plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 1.2.2. This is due to a nopriv AJAX route allowing attacker-controlled model/function dispa…
CVE-2025-13618 critical 9.8 9.8 1mo ago The Mentoring plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.2.8. This is due to the plugin not properly restricting the roles that users can regis…
CVE-2026-5722 critical 9.8 9.8 1mo ago The MoreConvert Pro plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.9.14. This is due to the guest waitlist verification flow not invalidating or r…
CVE-2026-42601 critical 9.8 9.8 archivebox 1mo ago ArchiveBox Vulnerable to RCE via unvalidated per-crawl config overrides in AddView
CVE-2026-42569 critical 9.4 9.4 1mo ago phpVMS has an /importer authorization bypass causing full database wipe
CVE-2026-42238 critical 9.8 9.8 nginxui 1mo ago Nginx-UI is Vulnerable to Unauthenticated Remote Code Execution via Backup Restore
CVE-2026-42222 critical 9.8 9.8 nginxui 1mo ago Nginx-UI: Unauthenticated first-boot instance claim via POST /api/install allows remote bootstrap takeover
CVE-2026-42221 critical 9.8 9.8 nginxui 1mo ago Nginx-UI: Unauthenticated First-Run Installer Allows Remote Initial Admin Claim
CVE-2026-42235 critical 9.6 9.6 n8n 1mo ago n8n Vulnerable to XSS via MCP OAuth client
CVE-2026-42233 critical 9.8 9.8 n8n 1mo ago n8n has SQL Injection in Oracle Database Node via Limit Field
CVE-2026-42796 critical 9.8 9.8 workiva 1mo ago Arelle before 2.39.10 contains an unauthenticated remote code execution vulnerability in the /rest/configure REST endpoint that accepts a plugins query parameter and forwards it to the plugin manager…
CVE-2026-41571 critical 9.4 9.4 1mo ago Note Mark: OIDC-registered users authenticated by submitting password "null"
CVE-2026-42812 critical 9.9 9.9 apache 1mo ago Apache Polaris has an Improper Input Validation issue
CVE-2026-42811 critical 9.9 9.9 apache 1mo ago Apache Polaris has an Improper Input Validation issue
CVE-2026-42810 critical 9.9 9.9 apache 1mo ago Apache Polaris has an Improper Input Validation Issue
CVE-2026-42809 critical 9.9 9.9 apache 1mo ago Apache Polaris has an Improper Input Validation Issue
CVE-2026-42376 critical 9.8 9.8 1mo ago D-Link DIR-456U Hardware Revision A1 (End-of-Life, EOL) contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /etc/init0.d/S80telnetd.sh with the username "Alphanetworks…
CVE-2026-42090 critical 9.6 9.6 streetwriters 1mo ago Notesnook is a note-taking app focused on user privacy & ease of use. Prior to Notesnook Web/Desktop version 3.3.15 and prior to Notesnook iOS/Android version 3.3.20, a stored XSS vulnerability in th…
CVE-2026-42076 critical 9.8 9.8 1mo ago Evolver: Command Injection via `execSync` in `_extractLLM()` function allows Remote Code Execution
CVE-2026-42027 critical 9.8 9.8 FIX debian debian apache 1mo ago Arbitrary Class Instantiation via Model Manifest in Apache OpenNLP ExtensionLoader Versions Affected: before 2.5.9, before 3.0.0-M3 Description:  The ExtensionLoader.instantiateExtension(C…
CVE-2026-40682 critical 9.1 9.1 FIX debian debian apache 1mo ago XML External Entity (XXE) via Unsanitized Dictionary Parsing in Apache OpenNLP DictionaryEntryPersistor Versions Affected: before 2.5.9, before 3.0.0-M3 Description: The DictionaryEntryPersistor …
CVE-2026-26956 critical 9.8 9.8 vm2_project 1mo ago VM2 Has a WASM Sandbox Escape (Node 25 only)
CVE-2026-26332 critical 10.0 10.0 vm2_project 1mo ago VM2 Has a Sandbox Escape Issue via SuppressedError
CVE-2026-25293 critical 9.8 9.8 1mo ago Buffer overflow due to incorrect authorization in PLC FW
CVE-2026-24781 critical 9.8 9.8 vm2_project 1mo ago VM2 Has Sandbox Breakout Through Inspect Function
CVE-2026-24120 critical 9.8 9.8 vm2_project 1mo ago VM2 Has Sandbox Breakout Through Promise Species
CVE-2026-24118 critical 9.8 9.8 vm2_project 1mo ago VM2 Sandbox Breakout Through __lookupGetter__
CVE-2025-70067 critical 9.8 9.8 debian debian sles 1mo ago Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file…
CVE-2026-7482 critical 9.1 9.1 ollama 1mo ago Ollama contains a heap out-of-bounds read vulnerability in the GGUF model loader
CVE-2026-7747 critical 9.8 9.8 1mo ago A security flaw has been discovered in Totolink N300RH 3.2.4-B20220812. Affected by this vulnerability is the function loginauth of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. P…
CVE-2025-14320 critical 9.8 9.8 1mo ago Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Tegsoft Management and Information Services Trade Limited Company Online Support Application allo…
CVE-2026-7740 low 3.3 3.3 1mo ago A security vulnerability has been detected in justdan96 tsMuxer up to 2.7.0. This issue affects the function VvcVpsUnit::setFPS of the file tsMuxer/vvc.cpp. Such manipulation of the argument track_id…
CVE-2026-7739 low 3.3 3.3 1mo ago A weakness has been identified in justdan96 tsMuxer up to 2.7.0. This vulnerability affects the function HevcVpsUnit::setFPS of the file /AFLplusplus/tsMuxer_prev/tsMuxer/hevc.cpp. This manipulation …
CVE-2026-43864 low 2.5 2.5 slesdebian debian 1mo ago mutt before 2.3.2 has a show_sig_summary NULL pointer dereference.
CVE-2026-43863 low 3.7 3.7 slesdebian debian 1mo ago mutt before 2.3.2 has an infinite loop in data_object_to_stream in crypt-gpgme.c.
CVE-2026-43862 low 3.7 3.7 slesdebian debian 1mo ago In mutt before 2.3.2, the imap_auth_gss security level is mishandled.
CVE-2026-43861 low 3.7 3.7 slesdebian debian 1mo ago mutt before 2.3.2 does not check for '\0' in url_pct_decode.
CVE-2026-43860 low 3.7 3.7 slesdebian debian 1mo ago mutt before 2.3.2 sometimes truncates the hash_passwd by one byte for IMAP auth_cram MD5 digest.
CVE-2026-43859 low 3.7 3.7 slesdebian debian 1mo ago mutt before 2.3.2 sometimes uses strfcpy instead of memcpy for the IMAP auth_cram MD5 digest.
CVE-2026-7719 critical 9.8 9.8 1mo ago A security flaw has been discovered in Totolink WA300 5.2cu.7112_B20190227. The affected element is the function loginauth of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The …
CVE-2026-7372 critical 9.0 9.0 1mo ago A stack overflow vulnerability exists in the WebCam Server Login functionality of GeoVision GV-VMS V20 20.0.2. A specially crafted HTTP request can lead to an arbitrary code execution. An attacker ca…
CVE-2026-7161 critical 9.3 9.3 geovision 1mo ago An insufficient encryption vulnerability exists in the Device Authentication functionality of GeoVision GV-IP Device Utility 9.0.5. Listening to broadcast packets can lead to credentials leak. An att…
CVE-2026-42370 critical 9.8 9.8 1mo ago A stack overflow vulnerability exists in the WebCam Server Login functionality of GeoVision GV-VMS V20 20.0.2. A specially crafted HTTP request can lead to an arbitrary code execution. An attacker ca…
CVE-2026-42369 critical 10.0 10.0 1mo ago GV-VMS V20 is a Video Monitoring Software used to gather the feeds of many surveillance cameras and manage other security devices. It is a native application accessed locally, but it is also possible…
CVE-2026-42368 critical 9.9 9.9 1mo ago A privilege escalation vulnerability exists in the Web Interface functionality of GeoVision LPC2011/LPC2211 1.10. A specially crafted HTTP request can lead to execute priviledged operation. An attack…
CVE-2026-42258 critical 9.8 9.8 debian debianwindows windows ruby-lang 1mo ago net-imap vulnerable to command Injection via unvalidated Symbol inputs
CVE-2026-42257 critical 9.8 9.8 debian debianwindows windows ruby-lang 1mo ago net-imap vulnerable to command Injection via "raw" arguments to multiple commands
CVE-2026-31402 critical 9.8 9.8 FIX rhel sles rocky 1mo ago Important: kernel security update
CVE-2026-7689 low 3.7 3.7 1mo ago Dolibarr has Insufficient Verification of Data Authenticity
CVE-2026-7690 critical 9.8 9.8 1mo ago A weakness has been identified in Wavlink WL-WN570HA1 R70HA1 V1410_221110. This issue affects the function set_sys_adm of the file /cgi-bin/adm.cgi. This manipulation of the argument Username causes …
CVE-2026-7677 low 3.5 3.5 1mo ago A vulnerability was determined in kerwincui FastBee up to 1.2.1. The impacted element is the function Add of the file springboot/fastbee-admin/src/main/java/com/fastbee/web/controller/system/SysNotic…
CVE-2026-7671 low 3.7 3.7 1mo ago A vulnerability has been found in CodeWise Tornet Scooter Mobile App 4.75 on iOS/Android. The impacted element is an unknown function of the file /TwoFactor. Such manipulation leads to improper restr…
CVE-2026-7458 critical 9.8 9.8 1mo ago The User Verification by PickPlugins plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 2.0.46. This is due to the use of a loose PHP comparison operato…
CVE-2026-4882 critical 9.8 9.8 1mo ago The User Registration Advanced Fields plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'URAF_AJAX::method_upload' function in all versions up to…
CVE-2026-37541 critical 10.0 10.0 1mo ago Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_gvret.cpp, the length field in GVRET binary data is not properly validated, allowing remote attackers t…
CVE-2026-37540 critical 9.8 9.8 linaro 1mo ago OpenAMP v2025.10.0 ELF loader contains an integer overflow vulnerability in firmware image parsing. In elf_loader.c, it performs multiplication of two attacker-controlled 16-bit values from the ELF h…