VIR Vulnerability Intelligence Relay

Search

Found 38,331 results in 4605ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-42472 critical 9.8 9.8 1mo ago Unsafe deserialization vulnerability in MixPHP Framework 2.x thru 2.2.17. The session and cache handlers use unserialize() on data from Redis in the RedisHandler object.
CVE-2026-43039 critical 9.8 9.8 FIX slesdebian debian linux-kernel 1mo ago In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix missing data copy and wrong recycle in ZC RX dispatch emac_dispatch_skb_zc() allocates a new skb via n…
CVE-2026-43038 critical 9.8 9.8 FIX slesdebian debian linux-kernel google 1mo ago In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach() Sashiko AI-review observed: In ip6_err_gen_icmpv6_unreach(), the …
CVE-2026-43037 critical 9.8 9.8 FIX slesdebian debian linux-kernel google 1mo ago In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: clear skb2->cb[] in ip4ip6_err() Oskar Kjos reported the following problem. ip4ip6_err() calls icmp_send() on a clon…
CVE-2026-43011 critical 9.8 9.8 FIX slesdebian debian linux-kernel 1mo ago In the Linux kernel, the following vulnerability has been resolved: net/x25: Fix potential double free of skb When alloc_skb fails in x25_queue_rx_frame it calls kfree_skb(skb) at line 48 and retur…
CVE-2026-42484 critical 9.8 9.8 debian debian hashcat 1mo ago A heap-based buffer overflow in hex_to_binary in the PKZIP hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted PKZIP hash fi…
CVE-2026-42483 critical 9.8 9.8 debian debian hashcat 1mo ago A heap-based buffer overflow in the Kerberos hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted Kerberos hash file. The iss…
CVE-2026-42482 critical 9.8 9.8 debian debian sles hashcat 1mo ago A stack-based buffer overflow in mangle_to_hex_lower() and mangle_to_hex_upper() in src/rp_cpu.c in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code v…
CVE-2026-31718 critical 9.8 9.8 FIX slesdebian debian linux-kernel 1mo ago In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in __ksmbd_close_fd() via durable scavenger When a durable file handle survives session disconnect (TCP…
CVE-2026-31705 critical 9.8 9.8 FIX slesdebian debian linux-kernel 1mo ago In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out-of-bounds write in smb2_get_ea() EA alignment smb2_get_ea() applies 4-byte alignment padding via memset() after wr…
CVE-2026-42779 critical 9.8 9.8 apache 1mo ago Apache MINA vulnerable to Deserialization of Untrusted Data (CVE-2026-41635 Incomplete Fix)
CVE-2026-42778 critical 9.8 9.8 apache 1mo ago Apache MINA vulnerable to Deserialization of Untrusted Data (CVE-2026-41409 Incomplete Fix)
CVE-2026-7567 critical 9.8 10.0 EXP 1mo ago The Temporary Login plugin for WordPress is vulnerable to Authentication Bypass in versions up to and including 1.0.0. This is due to improper input validation in the maybe_login_temporary_user() fun…
CVE-2026-42994 critical 9.8 9.8 bitwarden 1mo ago Bitwarden CLI 2026.4.0 from 2026-04-22T21:57Z to 2026-04-22T23:30Z, when obtained from npm, had embedded malicious code. This is related to a Checkmarx supply chain incident.
CVE-2026-7546 critical 9.8 9.8 1mo ago A security vulnerability has been detected in Totolink NR1800X 9.1.0u.6279_B20210910. The impacted element is the function find_host_ip of the component lighttpd. Such manipulation of the argument Ho…
CVE-2026-7538 critical 9.8 9.8 1mo ago A vulnerability was identified in Totolink A8000RU 7.1cu.643_b20200521. This issue affects the function Vulnerability of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation o…
CVE-2026-40687 critical 9.1 9.1 FIX debian debian exim 1mo ago In Exim before 4.99.2, when the SPA authentication driver is used with an adversarial SPA resource, there can be an out-of-bounds write that crashes the connection instance, or erroneous data process…
CVE-2026-40685 critical 9.8 9.8 FIX debian debian exim 1mo ago In Exim before 4.99.2, when JSON lookup is enabled, an out-of-bounds heap write can occur when a JSON operator encounters malformed JSON in an untrusted header, because of an incorrect implementation…
CVE-2026-2311 critical 9.8 9.8 1mo ago IBM i 7.6, 7.5, 7.4, 7.3, and 7.2 s vulnerable to privilege escalation caused by an invalid IBM i Web Administration GUI authorization check.  A malicious actor could cause user-controlled code to ru…
CVE-2026-7501 low 3.5 3.5 1mo ago A weakness has been identified in LinkStackOrg LinkStack up to 4.8.6. Impacted is the function editPage of the file app/Http/Controllers/UserController.php. Executing a manipulation of the argument p…
CVE-2026-41263 low 3.7 3.7 traefik 1mo ago Traefik: A timing side-channel vulnerability allows for valid username enumeration via BasicAuth middleware
CVE-2026-39858 critical 10.0 10.0 traefik 1mo ago Traefik: Pre-authentication decision bypass due to forwarded alias spoofing
CVE-2026-35051 critical 10.0 10.0 traefik 1mo ago Traefik's ForwardAuth trustForwardHeader=false allows spoofed X-Forwarded-Prefix to bypass authentication
CVE-2026-33448 low 3.3 3.3 macos macos absolute 1mo ago CVE-2026-33448 is a format string vulnerability in the logging subsystem of Secure Access client for MacOS prior to 14.50. Attackers with control of a modified server can force the client to dump t…
CVE-2026-33447 critical 9.8 9.8 absolute 1mo ago CVE-2026-33447 is a buffer overflow in a message parsing function of the Secure Access client prior to 14.50. Attackers with control of a modified server can send a special packet that can overwrit…
CVE-2026-33446 critical 9.8 9.8 absolute 1mo ago CVE-2026-33446 is a buffer overflow in the authentication sub-system of the Secure Access client prior to 14.50. Attackers with control of a modified server can send a special packet that can overw…
CVE-2026-3832 low 3.7 3.7 FIX debian debian rhel gnuredhat 1mo ago A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificate Status Protocol (OCSP) response during a TLS handshake. Due to a lo…
CVE-2026-36767 critical 10.0 10.0 1mo ago Shopizer has a path traversal issue
CVE-2026-36760 critical 9.6 9.6 1mo ago An issue in the fileMd5 parameter in the /a/file/upload endpoint of JeeSite v5.15.1 allows authenticated attackers with file upload permissions to execute a path traversal and write arbitrary files w…
CVE-2025-71284 critical 9.8 9.8 synway 1mo ago Synway SMG Gateway Management Software contains an OS command injection vulnerability in the RADIUS configuration endpoint at /en/9-2radius.php where the radius_address POST parameter is split and in…
CVE-2022-50993 critical 9.8 9.8 1mo ago Weaver (Fanwei) E-office versions prior to 10.0_20221201 contain an unauthenticated arbitrary file upload vulnerability in the OfficeServer.php endpoint that allows remote attackers to upload malicio…
CVE-2026-4670 critical 9.8 9.8 progress 1mo ago Authentication bypass by primary weakness vulnerability in Progress Software MOVEit Automation allows Authentication Bypass. This issue affects MOVEit Automation: from 2025.0.0 before 2025.0.9, from…
CVE-2025-14543 critical 9.1 9.1 rti 1mo ago Improper Restriction of XML External Entity Reference vulnerability in Connext Professional (Core Libraries) allows Serialized Data External Linking.This issue affects Connext Professional: from 7.4.…
CVE-2026-42799 critical 9.8 9.8 1mo ago Out-of-bounds read vulnerability in ASR Kestrel (nr_fw modules) allows Overflow Buffers. This vulnerability is associated with program files Code/Nr/nr_fw/RA/src/NrPwrCtrl.C. This issue affects …
CVE-2026-22070 critical 9.8 9.8 oppo 1mo ago ColorOS Assistant has an unauthenticated start-download channel, leading to file path traversal.
CVE-2025-13030 critical 9.8 9.8 pylixm 1mo ago django-mdeditor is Missing Authentication for Critical Function
CVE-2026-7381 critical 9.1 9.1 debian debian miyagawa 1mo ago Plack::Middleware::XSendfile versions through 1.0053 for Perl can allow client-controlled path rewriting. Plack::Middleware::XSendfile allows the variation setting (sendfile type) to be set by the c…
CVE-2026-41663 low 3.5 3.5 1mo ago Admidio has CSRF on Admin Preferences that Triggers Unauthorized Backup, .htaccess Write, and Email Send
CVE-2026-41659 low 2.7 2.7 1mo ago Admidio Leaks Hidden Profile Field Values via Blind Search Oracle in Member Assignment
CVE-2026-34084 critical 9.8 9.8 phpoffice 1mo ago PhpSpreadsheet has SSRF/RCE in IOFactory::load when $filename is user controlled
CVE-2018-25318 critical 9.8 9.8 1mo ago Tenda FH303/A300 firmware V5.07.68_EN contains a session weakness vulnerability that allows unauthenticated attackers to modify DNS settings by exploiting insufficient cookie validation. Attackers ca…
CVE-2018-25317 critical 9.8 9.8 1mo ago Tenda W3002R/A302/W309R wireless routers version V5.07.64_en contain a cookie session weakness vulnerability that allows unauthenticated attackers to modify DNS settings by exploiting insufficient se…
CVE-2018-25316 critical 9.8 9.8 1mo ago Tenda W308R v2 V5.07.48 contains a cookie session weakness vulnerability that allows unauthenticated attackers to modify DNS settings by exploiting insufficient session validation. Attackers can send…
CVE-2026-30893 critical 9.9 9.9 wazuh 1mo ago Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.4.0 to before version 4.14.4, a path traversal vulnerability in Wazuh's cluster synchroniz…
CVE-2026-26015 critical 9.8 9.8 arc53 1mo ago DocsGPT is a GPT-powered chat for documentation. From version 0.15.0 to before version 0.16.0, an attacker accessing both the official DocsGPT website or any local and public deployment, can craft a …
CVE-2026-7390 low 3.5 3.5 1mo ago A vulnerability was detected in SourceCodester Pharmacy Sales and Inventory System 1.0. The impacted element is the function Customer of the file /index.php?page=customer. The manipulation of the arg…
CVE-2026-5166 critical 9.6 9.6 1mo ago Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Software Center allows Path Traversal. …
CVE-2026-41940 critical 9.8 10.0 KEVEXP cpanel 1mo ago WebPros cPanel & WHM (WebHost Manager) and WP2 (WordPress Squared) contain an authentication bypass vulnerability in the login flow that allows unauthenticated remote attackers to gain unauthorized a…
CVE-2026-38992 critical 9.8 9.8 1mo ago Cockpit is vulnerable to arbitrary code execution
CVE-2026-36841 critical 9.8 9.8 1mo ago TOTOLINK N200RE V5 was discovered to contain a command injection vulnerability via the macstr and bandstr parameters in the formMapDelDevice function.
CVE-2026-42523 critical 9.0 9.0 jenkins 1mo ago Jenkins GitHub Plugin has an XSS vulnerability
CVE-2026-42249 critical 9.8 9.8 ollama 1mo ago Ollama for Windows contains a Remote Code Execution vulnerability in its update mechanism due to improper handling of attacker‑controlled HTTP response headers. When downloading updates, the applicat…
CVE-2026-42248 critical 9.8 9.8 ollama 1mo ago Ollama for Windows does not perform integrity or authenticity verification of downloaded update executables. Unlike other platforms, the Windows implementation of the update verification routine unco…
CVE-2026-22741 low 3.1 3.1 debian debian vmware 1mo ago Spring MVC and WebFlux applications are vulnerable to cache poisoning when resolving static resources.
CVE-2026-7360 low 3.1 3.1 FIX debian debian linux-kernelmacos macos google 1mo ago Insufficient validation of untrusted input. in Compositing in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a c…
CVE-2026-7351 low 3.1 3.1 FIX debian debian linux-kernelmacos macos google 1mo ago Race in MHTML in Google Chrome prior to 147.0.7727.138 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium se…
CVE-2026-7333 critical 9.6 9.6 FIX debian debian linux-kernelmacos macos google 1mo ago Use after free in GPU in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-7303 low 3.7 3.7 1mo ago xxl-job has a Resource Injection issue
CVE-2026-7297 low 2.4 2.4 1mo ago A vulnerability was determined in SourceCodester Pizzafy Ecommerce System 1.0. This vulnerability affects the function save_user of the file /admin/ajax.php?action=save_user. Executing a manipulation…
CVE-2026-7296 low 2.4 2.4 1mo ago A vulnerability was found in SourceCodester Pizzafy Ecommerce System 1.0. This affects the function save_order of the file /admin/ajax.php?action=save_order. Performing a manipulation of the argument…
CVE-2026-41446 critical 9.8 9.8 1mo ago Snap One WattBox 800 and 820 series firmware versions prior to 2.10.0.0 contain undisclosed diagnostic HTTP endpoints that require only the device MAC address and service tag for authentication, both…
CVE-2026-7295 low 2.4 2.4 1mo ago A vulnerability has been found in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this issue is the function save_menu of the file /admin/ajax.php?action=save_menu. Such manipulation of the …
CVE-2026-7294 low 2.4 2.4 1mo ago A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. Affected by this vulnerability is the function save_settings of the file /admin/index.php?page=save_settings. This manipulation o…
CVE-2026-41913 low 3.7 3.7 openclaw 1mo ago OpenClaw: Concurrent async auth attempts can bypass the intended shared-secret rate-limit budget on Tailscale-capable paths
CVE-2026-41397 critical 9.6 9.6 openclaw 1mo ago OpenClaw: OpenShell Mirror Sync — Sandbox Escape via Unrestricted File Sync + Symlink Traversal
CVE-2026-41386 critical 9.8 9.8 openclaw 1mo ago OpenClaw: Unbound bootstrap setup codes allow privilege escalation during pairing
CVE-2026-3893 critical 9.4 9.4 1mo ago The Carlson VASCO-B GNSS Receiver lacks an authentication mechanism, allowing an attacker with network access to directly access and modify its configuration and operational functions without needi…
CVE-2026-24178 critical 9.8 9.8 linux-kernelmacos macos nvidia 1mo ago NVIDIA NVFlare Dashboard contains a vulnerability in the user management and authentication system where an unauthenticated attacker may cause authorization bypass through user-controlled key. A succ…
CVE-2026-41873 critical 9.8 9.8 apache 1mo ago ** UNSUPPORTED WHEN ASSIGNED ** Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') vulnerability in Pony Mail leading to admin account takeover. This issue affects all …
CVE-2025-60889 critical 9.8 9.8 stellar-group 1mo ago Insecure deserialization of untrusted input in StellarGroup HPX 1.11.0 under certain conditions may allow attackers to execute arbitrary code or other unspecified impacts.
CVE-2026-7281 low 2.4 2.4 1mo ago A vulnerability was determined in SourceCodester Pharmacy Sales and Inventory System 1.0. The impacted element is the function supplier of the file /index.php?page=supplier. Executing a manipulation …
CVE-2026-7269 low 2.4 2.4 1mo ago A vulnerability was found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected is an unknown function of the file /index.php?page=product. Performing a manipulation of the argument ID …
CVE-2026-7248 critical 9.4 9.4 1mo ago A vulnerability was found in D-Link DI-8100 16.07.26A1. This affects the function tgfile_htm of the file tgfile.htm of the component CGI Endpoint. The manipulation of the argument fn results in buffe…
CVE-2026-7244 critical 9.8 9.8 1mo ago A security flaw has been discovered in Totolink A8000RU 7.1cu.643_b20200521. The impacted element is the function setWiFiEasyGuestCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Th…
CVE-2026-7243 critical 9.8 9.8 1mo ago A vulnerability was identified in Totolink A8000RU 7.1cu.643_b20200521. The affected element is the function setRadvdCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulatio…
CVE-2026-7242 critical 9.8 9.8 1mo ago A vulnerability was determined in Totolink A8000RU 7.1cu.643_b20200521. Impacted is the function setOpenVpnClientCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipul…
CVE-2026-7241 critical 9.8 9.8 1mo ago A vulnerability was found in Totolink A8000RU 7.1cu.643_b20200521. This issue affects the function setWiFiBasicCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipula…
CVE-2026-7240 critical 9.8 9.8 1mo ago A vulnerability has been found in Totolink A8000RU 7.1cu.643_b20200521. This vulnerability affects the function setVpnAccountCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such ma…
CVE-2026-7222 low 3.5 3.5 1mo ago A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the compo…
CVE-2026-7204 critical 9.8 9.8 1mo ago A vulnerability was determined in Totolink A8000RU 7.1cu.643_b20200521. This issue affects the function setPptpServerCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulati…
CVE-2026-7203 critical 9.8 9.8 1mo ago A vulnerability was found in Totolink A8000RU 7.1cu.643_b20200521. This vulnerability affects the function setUrlFilterRules of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipul…
CVE-2026-7202 critical 9.8 9.8 1mo ago A vulnerability has been found in Totolink A8000RU 7.1cu.643_b20200521. This affects the function setWiFiWpsStart of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of th…
CVE-2026-32644 critical 9.8 9.8 1mo ago Specific firmware versions of Milesight AIOT cameras use SSL certificates with default private keys.
CVE-2026-40976 critical 9.1 9.1 vmware 1mo ago Spring Boot's default security filter chain has no authorization rule with Actuator but without Health
CVE-2026-40974 critical 9.8 9.8 vmware 1mo ago Spring Boot's Cassandra SSL auto-configuration disables TLS hostname verification
CVE-2026-40971 critical 9.1 9.1 vmware 1mo ago Spring Boot's RabbitMQ auto-configuration doesn't perform hostname verification when connecting to the RabbitMQ broker
CVE-2026-7156 critical 9.8 9.8 1mo ago A vulnerability was detected in Totolink A8000RU 7.1cu.643_b20200521. Affected is the function CsteSystem of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argume…
CVE-2026-7155 critical 9.8 9.8 1mo ago A security vulnerability has been detected in Totolink A8000RU 7.1cu.643_b20200521. This impacts the function setLoginPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The ma…
CVE-2026-7154 critical 9.8 9.8 1mo ago A weakness has been identified in Totolink A8000RU 7.1cu.643_b20200521. This affects the function setAdvancedInfoShow of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipu…
CVE-2024-46636 critical 9.4 9.4 1mo ago NASA Earth Observing System Data and Information System (EOSDIS) MODAPS v8.1 was discovered to contain a SQL injection vulnerability in the category parameter
CVE-2026-7153 critical 9.8 9.8 1mo ago A security flaw has been discovered in Totolink A8000RU 7.1cu.643_b20200521. The impacted element is the function setMiniuiHomeInfoShow of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. …
CVE-2026-7152 critical 9.8 9.8 1mo ago A vulnerability was identified in Totolink A8000RU 7.1cu.643_b20200521. The affected element is the function setTelnetCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulat…
CVE-2026-35903 critical 9.8 9.8 1mo ago MERCURY MIPC252W IP camera 1.0.5 Build 230306 Rel.79931n contains an improper authentication vulnerability in the RTSP service. After successful Digest authentication in an initial DESCRIBE request, …
CVE-2026-31255 critical 9.8 9.8 1mo ago A command injection vulnerability exists in Tenda AC18 V15.03.05.05_multi. The vulnerability is located in the /goform/SetSambaCfg interface, where improper handling of the guestuser parameter allows…
CVE-2026-40514 critical 9.1 9.1 smartertools 1mo ago SmarterTools SmarterMail builds prior to 9610 contain a cryptographic weakness in the file and email sharing endpoints that use DES-CBC encryption with keys and initialization vectors derived from Sy…
CVE-2026-33453 critical 10.0 10.0 apache 1mo ago Apache camel-coap allows header injection that can lead to remote code execution
CVE-2026-7110 low 3.5 3.5 1mo ago A flaw has been found in code-projects Invoice System in Laravel 1.0. Affected is an unknown function of the file /item. Executing a manipulation of the argument item name/description can lead to cro…
CVE-2026-41409 critical 9.8 9.8 FIX debian debian apache 1mo ago Apache MINA Vulnerable to Deserialization of Untrusted Data (CVE-2024-52046 Incomplete Fix)
CVE-2026-33454 critical 9.4 9.4 apache 1mo ago Apache Camel's Camel-Mail component is vulnerable to Camel message header injection
CVE-2026-7103 low 3.7 3.7 1mo ago A vulnerability was determined in code-projects Chat System 1.0. Affected is an unknown function of the file update_user.php of the component MD5 Hash Handler. This manipulation of the argument Passw…