VIR Vulnerability Intelligence Relay

Search

Found 613 results in 60ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-45700 critical 9.8 9.8 FIX debian debian sles freerdp 7d ago FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, FreeRDP's planar bitmap decoder has an out-of-bounds heap write when decoding RLE planar data. In libfreerdp/codec/pl…
CVE-2026-45372 critical 9.9 9.9 debian debian sles yhirose 7d ago cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.44.0, when cpp-httplib's server parses an incoming request, it applies percent-decoding to every header va…
CVE-2026-45151 unknown 7d ago NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. In 0.24.8 and earlier, quic_stream_recv can dereference a null substream pointer when a substream is in reopen state. The code fi…
CVE-2026-47183 unknown 7d ago zeroconf: Unbounded exception-dedup state retains packet buffers via traceback frame locals, enabling LAN-local memory exhaustion
CVE-2026-47180 unknown 7d ago zeroconf has unbounded recursion in DNS compression-pointer decoder that allows LAN-local denial of service
CVE-2026-47260 unknown 7d ago Koel Vulnerable to SSRF via Podcast Episode Enclosure URLs
CVE-2026-46705 unknown 7d ago russh server userauth state is not reset when authentication principal changes
CVE-2026-46702 unknown 7d ago russh: Post-decompression SSH packet size was not bounded, allowing remote oversized compressed packets
CVE-2026-47255 unknown 7d ago AgenticMail API/storage and outbound relay hardening fixes
CVE-2026-47248 unknown 7d ago Parse Server's GraphQL "Did you mean ...?" validation suggestions disclose schema to unauthenticated callers
CVE-2026-9051 critical 9.1 9.1 7d ago There is an authentication bypass vulnerability in the NI SystemLink Enterprise Dashboard application that may allow an unauthenticated remote attacker to bypass authentication controls leading to pr…
CVE-2026-49383 low 3.3 3.3 jetbrains 7d ago In JetBrains IntelliJ IDEA before 2026.1 xXE in the UI Designer form parser was possible
CVE-2026-47744 critical 9.9 9.9 7d ago Shopper is a Headless e-commerce Admin Panel. Prior to 2.8.0, two distinct authorization defects in the team settings allowed any authenticated panel user to take over the RBAC system. Settings/Team/…