VIR Vulnerability Intelligence Relay

Search

Found 41,696 results in 3500ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-43654 high 7.5 7.5 FIX iosmacos macos tvos 27d ago visionOS 26.5
CVE-2026-43652 high 7.5 7.5 FIX macos macos 27d ago A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.5. An app may be able to access protected user data.
CVE-2026-39871 high 7.5 7.5 FIX macos macos 27d ago A path handling issue was addressed with improved logic. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to observe unprotected user data.
CVE-2026-39870 high 7.5 7.5 FIX macos macos 27d ago The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. Processing a maliciously crafted image may corrupt process m…
CVE-2026-28995 high 8.8 8.8 FIX iosmacos macos tvos 27d ago visionOS 26.5
CVE-2026-28991 high 7.5 7.5 FIX iosmacos macos tvos 27d ago visionOS 26.5
CVE-2026-28990 high 7.5 7.5 FIX iosmacos macos tvos 27d ago visionOS 26.5
CVE-2026-28987 high 7.5 7.5 FIX iosmacos macos tvos 27d ago watchOS 26.5
CVE-2026-28986 high 7.5 7.5 FIX iosmacos macos tvos 27d ago watchOS 26.5
CVE-2026-28983 high 7.5 7.5 FIX iosmacos macos tvos 27d ago visionOS 26.5
CVE-2026-28978 high 8.8 8.8 FIX macos macos 27d ago A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. A malicious app may be able to break out of its san…
CVE-2026-28976 high 7.5 7.5 FIX macos macos 27d ago An information leakage was addressed with additional validation. This issue is fixed in macOS Tahoe 26.5. An app may be able to gain root privileges.
CVE-2026-28974 high 7.5 7.5 FIX iosmacos macos tvos 27d ago visionOS 26.5
CVE-2026-28969 high 7.5 7.5 FIX iosmacos macos tvos 27d ago visionOS 26.5
CVE-2026-28965 high 7.5 7.5 FIX iosmacos macos 27d ago A privacy issue was addressed with improved checks. This issue is fixed in iOS 26.5 and iPadOS 26.5. A user may be able to view restricted content from the lock screen.
CVE-2026-28964 high 7.5 7.5 FIX iosmacos macos apple 27d ago visionOS 26.5
CVE-2026-28959 high 7.5 7.5 FIX iosmacos macos tvos 27d ago visionOS 26.5
CVE-2026-28954 high 7.5 7.5 FIX iosmacos macos 27d ago A file quarantine bypass was addressed with additional checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. A maliciously crafted …
CVE-2026-28952 high 7.5 7.5 FIX iosmacos macos 27d ago An integer overflow was addressed with improved input validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able …
CVE-2026-28951 high 7.8 7.8 FIX iosmacos macos 27d ago An authorization issue was addressed with improved state management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Ta…
CVE-2026-28943 high 7.5 7.5 FIX iosmacos macos tvos 27d ago watchOS 26.5
CVE-2026-28941 high 7.1 7.1 FIX iosmacos macos 27d ago The issue was addressed with improved checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Tahoe 26.5. Processing a maliciously crafted file may lead to a denial-o…
CVE-2026-28940 high 8.8 8.8 FIX iosmacos macos tvos 27d ago visionOS 26.5
CVE-2026-28936 high 7.5 7.5 FIX iosmacos macos apple 27d ago visionOS 26.5
CVE-2026-28930 high 7.5 7.5 FIX macos macos 27d ago A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.5. An app may be able to access protected user data.
CVE-2026-28929 high 7.5 7.5 FIX iosmacos macos 27d ago A logic issue was addressed with improved checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. Replying to an email could display …
CVE-2026-28925 high 7.5 7.5 FIX macos macos 27d ago A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to cause unexpected system termin…
CVE-2026-28924 high 7.5 7.5 FIX macos macos 27d ago A race condition was addressed with improved handling of symbolic links. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to access Contacts with…
CVE-2026-28923 high 8.8 8.8 FIX macos macos 27d ago A logging issue was addressed with improved data redaction. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. A malicious app may be able to break out of its sandbox.
CVE-2026-28919 high 7.8 7.8 FIX macos macos 27d ago A consistency issue was addressed with improved state handling. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to gain root privileges.
CVE-2026-28915 high 7.8 7.8 FIX macos macos 27d ago A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able …
CVE-2026-28908 high 7.5 7.5 FIX macos macos 27d ago A denial of service issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to modify protected par…
CVE-2026-28906 high 7.5 7.5 FIX iosmacos macos apple 27d ago visionOS 26.5
CVE-2026-28873 high 7.5 7.5 FIX iosmacos macos 27d ago iOS 26.4 and iPadOS 26.4
CVE-2026-28872 high 7.5 7.5 FIX iosmacos macos 27d ago iOS 26.4 and iPadOS 26.4
CVE-2026-28848 high 7.5 7.5 FIX macos macos 27d ago A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.7.7, macOS Tahoe 26.5. A remote attacker may be able to cause unexpected system termination.
CVE-2026-28846 high 7.5 7.5 FIX iosmacos macos tvos 27d ago visionOS 26.5
CVE-2026-28840 high 7.8 7.8 FIX macos macos 27d ago macOS Tahoe 26.4
CVE-2025-43524 high 8.8 8.8 FIX macos macos 27d ago An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.2. An app may be able to break out of its sandbox.
CVE-2026-8177 high 7.5 7.5 FIX debian debian sleswindows windows 28d ago XML::LibXML versions through 2.0210 for Perl read out-of-bounds heap memory when parsing XML node names containing truncated UTF-8 byte sequences. A node name ending in the middle of a multi byte UT…
CVE-2026-45180 high 7.5 7.5 28d ago Catalyst::Plugin::Statsd versions through 0.10.0 for Perl may leak session ids. If the communication channel to the statsd daemon is not secured (for example, by sending UDP packets to a host on ano…
CVE-2022-50944 high 8.8 8.8 28d ago Aero CMS 0.0.1 contains a PHP code injection vulnerability that allows authenticated attackers to execute arbitrary PHP code by uploading malicious files through the image parameter. Attackers can up…
CVE-2021-47949 high 8.8 8.8 28d ago CyberPanel 2.1 contains a command execution vulnerability that allows authenticated attackers to read arbitrary files and execute remote code by exploiting symlink attacks through the filemanager con…
CVE-2021-47945 high 7.8 7.8 28d ago Argus Surveillance DVR 4.0 contains an unquoted service path vulnerability in the DVRWatchdog service that allows local attackers to escalate privileges by exploiting the service binary path. Attacke…
CVE-2021-47944 high 7.5 7.5 28d ago memono Notepad 4.2 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character buffers into note fields. Attackers can generate a p…
CVE-2021-47943 high 8.8 8.8 28d ago TextPattern CMS 4.8.7 contains a remote code execution vulnerability that allows authenticated attackers to execute arbitrary commands by uploading malicious PHP files through the file upload functio…
CVE-2021-47941 high 8.2 8.2 28d ago WordPress Plugin Survey & Poll 1.5.7.3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the wp_sap co…
CVE-2021-47940 critical 9.8 9.8 28d ago WordPress Plugin Download From Files version 1.48 and earlier contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by exploiting the AJAX fi…
CVE-2021-47939 high 8.8 8.8 28d ago Evolution CMS 3.1.6 contains a remote code execution vulnerability that allows authenticated users with module creation permissions to execute arbitrary system commands by injecting PHP code into mod…
CVE-2021-47938 high 8.8 8.8 28d ago ImpressCMS 1.4.2 contains a remote code execution vulnerability in the autotasks administrative interface that allows authenticated attackers to execute arbitrary PHP code by injecting malicious code…
CVE-2021-47937 high 8.8 8.8 28d ago e107 CMS 2.3.0 contains a remote code execution vulnerability that allows authenticated users with theme installation permissions to execute arbitrary commands by uploading malicious theme files. Att…
CVE-2021-47936 critical 9.8 9.8 28d ago OpenCATS 0.9.4 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary commands by uploading malicious PHP files disguised as resume attachments. Att…
CVE-2021-47935 high 8.8 8.8 sentry 28d ago Sentry 8.2.0 contains a remote code execution vulnerability that allows authenticated superusers to execute arbitrary commands by injecting malicious pickle-serialized objects through the audit log e…
CVE-2021-47933 critical 9.8 9.8 28d ago WordPress MStore API 2.0.6 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by sending POST requests to the REST API endpoint. Attackers…
CVE-2021-47932 critical 9.8 9.8 28d ago WordPress TheCartPress 1.5.3.6 contains an unauthenticated privilege escalation vulnerability that allows attackers to create administrator accounts by submitting crafted requests to the AJAX handler…
CVE-2021-47930 high 8.2 8.2 28d ago Balbooa Joomla Forms Builder 2.0.6 contains an unauthenticated SQL injection vulnerability in the form submission handler that allows remote attackers to execute arbitrary SQL queries. Attackers can …
CVE-2021-47928 high 8.2 8.2 28d ago Opencart TMD Vendor System 3.x contains a blind SQL injection vulnerability that allows unauthenticated attackers to extract database information by injecting SQL code through the product_id paramete…
CVE-2021-47923 critical 9.8 9.8 28d ago OpenCart 3.0.3.8 contains a session fixation vulnerability that allows attackers to hijack user sessions by injecting arbitrary values into the OCSESSID cookie. Attackers can set malicious OCSESSID c…
CVE-2026-8234 high 8.8 8.8 28d ago A security vulnerability has been detected in EFM ipTIME A8004T 14.18.2. This vulnerability affects the function formWifiBasicSet of the file /goform/WifiBasicSet. The manipulation of the argument se…
CVE-2026-45186 high 7.5 7.5 FIX debian debian sleswindows windows libexpat_project 28d ago RHSA-2026:23230: expat security update (Important)
CVE-2026-7263 high 7.5 7.5 FIX slesdebian debian php 28d ago In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, DOMNode::C14N() method may process the XML data incorrectly, causing a circular linked list in the data structure representing the XML docu…
CVE-2026-6104 critical 9.1 9.1 FIX slesdebian debian php 28d ago In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, when an encoding name containing an embedded NUL byte is passed to mb_convert_encoding() or related mbstring functions, the code incorrectl…
CVE-2026-8230 high 8.8 8.8 28d ago A flaw has been found in Wavlink NU516U1 240425. The impacted element is the function sys_login1 of the file /cgi-bin/login.cgi. Executing a manipulation of the argument ipaddr can lead to os command…
CVE-2026-8229 high 8.8 8.8 28d ago A vulnerability was detected in Wavlink NU516U1 240425. The affected element is the function WifiBasic of the file /cgi-bin/wireless.cgi. Performing a manipulation of the argument AuthMethod/EncrypTy…
CVE-2026-8228 high 8.8 8.8 28d ago A security vulnerability has been detected in Wavlink NU516U1 240425. Impacted is the function advance of the file /cgi-bin/wireless.cgi. Such manipulation of the argument wlan_conf/Channel/skiplist/…
CVE-2026-8227 high 8.8 8.8 28d ago A weakness has been identified in Wavlink NU516U1 240425. This issue affects the function wzdapMesh of the file /cgi-bin/adm.cgi. This manipulation causes os command injection. The attack may be init…
CVE-2026-8226 high 7.5 7.5 open5gs 28d ago A security flaw has been discovered in Open5GS up to 2.7.7. This vulnerability affects the function ogs_pcc_rule_install_flow_from_media in the library /lib/proto/types.c. The manipulation results in…
CVE-2026-8225 high 7.5 7.5 open5gs 28d ago A vulnerability was identified in Open5GS up to 2.7.7. This affects the function pcf_npcf_smpolicycontrol_handle_delete of the file src/pcf/sm-sm.c of the component delete Endpoint. The manipulation …
CVE-2026-7568 high 7.5 7.5 FIX slesdebian debianwindows windows php 28d ago In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the metaphone() function in ext/standard/metaphone.c uses a signed int variable to track the cur…
CVE-2026-7262 high 7.5 7.5 FIX slesdebian debianwindows windows php 28d ago In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when a SOAP server has a typemap configured, the decoding process contains a mistake which check…
CVE-2026-7261 critical 9.8 9.8 FIX slesdebian debianwindows windows php 28d ago In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, when SoapServer is configured with SOAP_PERSISTENCE_SESSION, the handler object is persisted acr…
CVE-2026-7258 high 7.5 7.5 FIX slesdebian debianwindows windows php 28d ago In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, some functions, including urldecode(), pass signed char to ctype functions (like isxdigit()). On…
CVE-2026-6722 critical 9.8 9.8 FIX slesdebian debianwindows windows php 28d ago In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the SOAP extension's object deduplication mechanism stores pointers to PHP objects in a global m…
CVE-2025-14179 critical 9.8 9.8 FIX slesdebian debianwindows windows php 28d ago In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the PDO Firebird driver improperly handles NUL bytes when preparing SQL queries. During token-by…
CVE-2026-8224 high 7.5 7.5 open5gs 28d ago A vulnerability was determined in Open5GS up to 2.7.7. Affected by this issue is the function pcf_sess_set_ipv6prefix of the file /src/pcf/context.c of the component PCF. Executing a manipulation of …
CVE-2026-8223 high 7.5 7.5 open5gs 28d ago A vulnerability was found in Open5GS up to 2.7.7. Affected by this vulnerability is the function pcf_sess_sbi_discover_and_send of the component sm-policies Endpoint. Performing a manipulation result…
CVE-2026-8222 high 7.5 7.5 open5gs 28d ago A vulnerability has been found in Open5GS up to 2.7.7. Affected is the function pcf_nbsf_management_handle_register of the file src/pcf/nbsf-handler.c of the component sm-policies Endpoint. Such mani…
CVE-2026-8216 high 7.3 7.3 28d ago A vulnerability was identified in Industrial Application Software IAS Canias ERP 8.03. This issue affects the function iasServerRemoteInterface.doAction of the component Java RMI Session Management. …
CVE-2026-42575 high 7.5 7.5 29d ago apko doesn't verify downloaded apk packages against APKINDEX checksum (package substitution possible)
CVE-2026-42574 high 7.5 7.5 29d ago apko dirFS has a symlink-following path traversal that allows multiple entry points to escape the build root
CVE-2026-42571 critical 9.5 29d ago Pelican Web UI Affected by a Privilege Escalation Attack
CVE-2026-42562 high 8.3 8.3 29d ago Plainpad is a self hosted note taking app. Prior to version 1.1.1, Plainpad allows a low-privilege authenticated user to self-escalate to administrator by submitting admin=true in PUT /api.php/v1/use…
CVE-2026-41893 high 7.5 7.5 signalk 29d ago Signal K Server's WebSocket Login Endpoint Lacks Rate Limiting (Credential Brute-Force)
CVE-2026-8192 high 8.8 8.8 29d ago A security flaw has been discovered in Wavlink NU516U1 M16U1_V240425. This vulnerability affects the function wzdap of the file /cgi-bin/adm.cgi. Performing a manipulation of the argument EncrypType/…
CVE-2026-8191 high 8.8 8.8 29d ago A vulnerability was identified in Wavlink NU516U1 M16U1_V240425. This affects the function wifi_region of the file /cgi-bin/adm.cgi. Such manipulation of the argument skiplist1/skiplist2 leads to os …
CVE-2026-8190 high 8.8 8.8 29d ago A vulnerability was determined in Wavlink NU516U1 M16U1_V240425. Affected by this issue is the function wan of the file /cgi-bin/adm.cgi. This manipulation of the argument ppp_username/ppp_passwd/rwa…
CVE-2026-8189 high 8.8 8.8 29d ago A vulnerability was found in Wavlink NU516U1 M16U1_V240425. Affected by this vulnerability is the function wzdrepeater of the file /cgi-bin/adm.cgi. The manipulation of the argument wlan_bssid/sel_Au…
CVE-2026-8188 high 8.8 8.8 29d ago A vulnerability has been found in Wavlink NU516U1 M16U1_V240425. Affected is the function change_wifi_password of the file /cgi-bin/adm.cgi. The manipulation of the argument wl_channel/wl_Pass/Encryp…
CVE-2026-8186 high 7.5 7.5 open5gs 29d ago A vulnerability was detected in Open5GS up to 2.7.7. This affects the function ogs_sbi_client_send_via_scp_or_sepp in the library lib/sbi/client.c of the component NF. Performing a manipulation resul…
CVE-2026-8187 high 7.5 7.5 open5gs 29d ago A flaw has been found in Open5GS up to 2.7.7. This impacts the function _gtpv1_u_recv_cb of the file src/upf/gtp-path.c of the component UPF. Executing a manipulation can lead to resource consumption…
CVE-2026-3828 high 7.2 7.2 29d ago Some Hikvision switch products (discontinued since December 2023) are vulnerable to authenticated remote command execution due to insufficient input validation. Attackers with valid credentials can e…
CVE-2026-42560 critical 9.1 9.1 29d ago auth: Patreon provider assigns the same local user ID to every authenticated Patreon account, enabling cross‑user impersonation
CVE-2026-42311 high 7.8 7.8 FIX debian debian python 29d ago Pillow has an OOB Write with Invalid PSD Tile Extents (Integer Overflow)
CVE-2026-42461 high 7.5 7.5 getarcane 29d ago Arcane Vulnerable to Unauthenticated Disclosure of Custom Compose Template Content (incl. `.env` secrets)
CVE-2026-42301 high 7.8 7.8 29d ago pyp2spec is Vulnerable to Code Injection
CVE-2026-42297 high 8.3 8.3 argoproj 29d ago Argo has Missing Authorization in its Sync ConfigMap Provider
CVE-2026-42296 high 8.1 8.1 argoproj 29d ago Argo has incomplete fix for CVE-2026-31892: hostNetwork, securityContext, serviceAccountName bypass templateReferencing Strict/Secure
CVE-2026-42294 high 7.5 7.5 argoproj 29d ago Argo Vulnerable to Unauthenticated Memory Exhaustion (DoS) in Webhook Interceptor
CVE-2026-6666 high 7.5 7.5 FIX debian debianwindows windows pgbouncer 29d ago A possible null pointer reference in PgBouncer before 1.25.2 could lead to a crash, if a server sends an error response without SQLSTATE field.
CVE-2026-6665 critical 9.8 9.8 FIX debian debianwindows windows pgbouncer 29d ago The SCRAM code in PgBouncer before 1.25.2 did not check the return value of strlcat() correctly when building the contents of the SCRAM client-final-message. A malicious backend that sends a SCRAM se…