CVEs from 2026
Total
14,778
critical
critical 1,334
high
high 5,002
medium
medium 4,823
low
low 503
% Critical
9.0%
% with KEV
0.4%
% with exploit
0.7%
Top vendors
Top products
- chrome 723
- firepower_threat_defense_software 310
- gcp 299
- firepower_threat_defense 298
- openclaw 172
- commerce 104
- netweaver_application_server_abap 102
- commerce_b2b 89
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-6542 | high | 8.1 | 8.1 | 1mo ago | IBM Langflow OSS 1.0.0 through 1.8.4 could allow any user to supply a flow_id to read transaction logs and vertex build data belonging to other users, and to delete persisted vertex build data for an… | |||
| CVE-2026-40904 | high | 8.1 | 8.1 | 1mo ago | Chartbrew is an open-source web application that can connect directly to databases and APIs and use the data to create charts. In version 4.9.0, Chartbrew exposes multiple dataset and dataRequest end… | |||
| CVE-2026-40600 | high | 8.1 | 8.1 | 1mo ago | Chartbrew is an open-source web application that can connect directly to databases and APIs and use the data to create charts. In version 4.9.0, Chartbrew allows authenticated users with access to on… | |||
| CVE-2026-36340 | high | 8.1 | 8.1 | 1mo ago | Krayin CRM allows a remote attacker to execute arbitrary code via compose email function | |||
| CVE-2026-7402 | high | 8.1 | 8.1 | 1mo ago | Improper Control of Interaction Frequency vulnerability in MeWare Software Development Inc. PDKS allows Flooding. This issue affects PDKS: from V16.20200313 before VMYR_3.5.2025117. | |||
| CVE-2026-7399 | high | 8.1 | 8.1 | 1mo ago | Authorization bypass through User-Controlled key vulnerability in MeWare Software Development Inc. PDKS allows Privilege Abuse. This issue affects PDKS: from V16.20200313 before VMYR_3.5.2025117. | |||
| CVE-2026-42512 | high | 8.1 | 8.1 | 1mo ago | As dhclient is building an environment to pass to dhclient-script, it may need to resize the array of string pointers. The code which expands the array incorrectly calculates its new size when reque… | |||
| CVE-2026-35547 | high | 8.1 | 8.1 | 1mo ago | When processing the header of an incoming message, libnv failed to properly validate the message size. The lack of validation allows a malicious program to write outside the bounds of a heap allocat… | |||
| CVE-2026-42511 | high | 8.1 | 8.1 | 1mo ago | The BOOTP file field is written to the lease file without escaping embedded double-quotes, allowing injection of arbitrary dhclient.conf directives. When the lease file is subsequently re-parsed by … | |||
| CVE-2026-7426 | high | 8.1 | 8.1 | 1mo ago | Insufficient validation of the prefix length field in IPv6 Router Advertisement processing in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to cause memory corruption by… | |||
| CVE-2026-7424 | high | 8.1 | 8.1 | 1mo ago | Integer underflow in the DHCPv6 sub-option parser in FreeRTOS-Plus-TCP before V4.4.1 and V4.2.6 allows an adjacent network actor to corrupt the device's IPv6 address assignment, DNS configuration, an… | |||
| CVE-2026-7347 | high | 8.1 | 8.1 | 1mo ago | Use after free in Chromoting in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: High) | |||
| CVE-2026-7346 | high | 8.1 | 8.1 | 1mo ago | Inappropriate implementation in Tint in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Hi… | |||
| CVE-2026-42167 | high | 8.1 | 8.1 | 1mo ago | mod_sql in ProFTPD before 1.3.9a allows remote attackers to execute arbitrary code via a username, in scenarios where there is logging of USER requests with an expansion such as %U, and the SQL backe… | |||
| CVE-2026-42431 | high | 8.1 | 8.1 | 1mo ago | OpenClaw `node.invoke(browser.proxy)` bypasses `browser.request` persistent profile-mutation guard | |||
| CVE-2026-41383 | high | 8.1 | 8.1 | 1mo ago | OpenClaw: OpenShell mirror mode could delete arbitrary remote directories when roots were mis-scoped | |||
| CVE-2026-27760 | high | 8.1 | 8.1 | 1mo ago | OpenCATS prior to commit 3002a29 contains a PHP code injection vulnerability in the installer AJAX endpoint that allows unauthenticated attackers to execute arbitrary code by injecting PHP statements… | |||
| CVE-2026-5780 | high | 8.1 | 8.1 | 1mo ago | An insecure direct object reference (IDOR) vulnerability in MphRx's Minerva V3.6.0, specifically in the endpoint '/minerva/moUser/show/'. If this vulnerability is successfully exploited, an authentic… | |||
| CVE-2026-41364 | high | 8.1 | 8.1 | 1mo ago | OpenClaw: SSH sandbox tar upload follows symlinks, enabling arbitrary file write on remote host | |||
| CVE-2026-31613 | high | 8.1 | 8.1 | 1mo ago | In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB reads parsing symlink error response When a CREATE returns STATUS_STOPPED_ON_SYMLINK, smb2_check_message() r… | |||
| CVE-2026-40623 | high | 8.1 | 8.1 | 1mo ago | A vulnerability in SenseLive X3050's web management interface allows critical system and network configuration parameters to be modified without sufficient validation and safety controls. Due to inad… | |||
| CVE-2026-39462 | high | 8.1 | 8.1 | 1mo ago | A vulnerability exists in SenseLive X3050’s web management interface in which password updates are not reliably applied due to improper handling of credential changes on the backend. After the device… | |||
| CVE-2026-27841 | high | 8.1 | 8.1 | 1mo ago | A vulnerability in SenseLive X3050's web management interface allows state-changing operations to be triggered without proper Cross-Site Request Forgery (CSRF) protections. Because the application do… | |||
| CVE-2026-41353 | high | 8.1 | 8.1 | 1mo ago | OpenClaw before 2026.3.22 contains an access control bypass vulnerability in the allowProfiles feature that allows attackers to circumvent profile restrictions through persistent profile mutation and… | |||
| CVE-2026-41342 | high | 8.1 | 8.1 | 1mo ago | OpenClaw: CLI Remote Onboarding Persists Unauthenticated Discovery Endpoint and Exfiltrates Gateway Credentials | |||
| CVE-2026-41246 | high | 8.1 | 8.1 | 1mo ago | Contour has Lua code injection via Cookie Path Rewrite Policy | |||
| CVE-2026-41175 | high | 8.1 | 8.1 | 2mo ago | Statamic: Unsafe method invocation via query value resolution allows data destruction | |||
| CVE-2026-31513 | high | 8.1 | 8.1 | 2mo ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix stack-out-of-bounds read in l2cap_ecred_conn_req Syzbot reported a KASAN stack-out-of-bounds read in l2cap_… | |||
| CVE-2026-31464 | high | 8.1 | 8.1 | 2mo ago | In the Linux kernel, the following vulnerability has been resolved: scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() A malicious or compromised VIO server can return a num_written val… | |||
| CVE-2026-6848 | high | 8.1 | 8.1 | 2mo ago | A flaw was found in Red Hat Quay. When Red Hat Quay requests password re-verification for sensitive operations, such as token generation or robot account creation, the re-authentication prompt can be… | |||
| CVE-2026-42084 | high | 8.1 | 8.1 | 2mo ago | OpenC3 COSMOS: Hijacked session token can be used to reset password for persistence | |||
| CVE-2026-6832 | high | 8.1 | 8.1 | 2mo ago | Hermes WebUI contains an arbitrary file deletion vulnerability in the /api/session/delete endpoint that allows authenticated attackers to delete files outside the session directory by supplying an ab… | |||
| CVE-2026-40868 | high | 8.1 | 8.1 | 2mo ago | kyverno apicall servicecall implicit bearer token injection leaks kyverno serviceaccount token | |||
| CVE-2026-5966 | high | 8.1 | 8.1 | 2mo ago | ThreatSonar Anti-Ransomware developed by TeamT5 has an Arbitrary File Deletion vulnerability. Authenticated remote attackers with web access can exploit Path Traversal to delete arbitrary files on th… | |||
| CVE-2026-40434 | high | 8.1 | 8.1 | 2mo ago | Anviz CrossChex Standard lacks source verification in the client/server channel, enabling TCP packet injection by an attacker on the same network to alter or disrupt application traffic. | |||
| CVE-2026-5718 | high | 8.1 | 8.1 | 2mo ago | The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to arbitrary file upload in versions up to, and including, 1.3.9.7. This is due to insufficient file type … | |||
| CVE-2026-41113 | high | 8.1 | 8.1 | 2mo ago | sagredo qmail before 2026.04.07 allows tls_quit remote code execution because of popen in notlshosts_auto in qmail-remote.c. | |||
| CVE-2026-40784 | high | 8.1 | 8.1 | 2mo ago | Authorization Bypass Through User-Controlled Key vulnerability in Mahmudul Hasan Arif FluentBoards fluent-boards allows Exploiting Incorrectly Configured Access Control Security Levels.This issue aff… | |||
| CVE-2026-40764 | high | 8.1 | 8.1 | 2mo ago | Cross-Site Request Forgery (CSRF) vulnerability in Syed Balkhi Contact Form by WPForms wpforms-lite allows Cross Site Request Forgery.This issue affects Contact Form by WPForms: from n/a through <= 1… | |||
| CVE-2026-33827 | high | 8.1 | 8.1 | 2mo ago | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an unauthorized attacker to execute code over a network. | |||
| CVE-2026-23708 | high | 8.1 | 8.1 | 2mo ago | A improper authentication vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.3, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR on-premise 7.6.0 through 7.6.3, FortiSOAR on-premise 7.5.0 throug… | |||
| CVE-2026-22828 | high | 8.1 | 8.1 | 2mo ago | A heap-based buffer overflow vulnerability in Fortinet FortiAnalyzer Cloud 7.6.2 through 7.6.4, FortiManager Cloud 7.6.2 through 7.6.4 may allow a remote unauthenticated attacker to execute arbitrary… | |||
| CVE-2026-28291 | high | 8.1 | 8.1 | 2mo ago | simple-git Affected by Command Execution via Option-Parsing Bypass | |||
| CVE-2026-6011 | high | 8.1 | 8.1 | 2mo ago | OpenClaw vulnerable to SSRF in src/agents/tools/web-fetch.ts | |||
| CVE-2026-5479 | high | 8.1 | 8.1 | 2mo ago | In wolfSSL's EVP layer, the ChaCha20-Poly1305 AEAD decryption path in wolfSSL_EVP_CipherFinal (and related EVP cipher finalization functions) fails to verify the authentication tag before returning p… | |||
| CVE-2026-5466 | high | 8.1 | 8.1 | 2mo ago | wolfSSL's ECCSI signature verifier `wc_VerifyEccsiHash` decodes the `r` and `s` scalars from the signature blob via `mp_read_unsigned_bin` with no check that they lie in `[1, q-1]`. A crafted forged … | |||
| CVE-2026-5188 | high | 8.1 | 8.1 | 2mo ago | An integer underflow issue exists in wolfSSL when parsing the Subject Alternative Name (SAN) extension of X.509 certificates. A malformed certificate can specify an entry length larger than the enclo… | |||
| CVE-2026-5915 | high | 8.1 | 8.1 | 2mo ago | Insufficient validation of untrusted input in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium secur… | |||
| CVE-2026-5913 | high | 8.1 | 8.1 | 2mo ago | Out of bounds read in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Low) | |||
| CVE-2026-28387 | high | 8.1 | 8.1 | 2mo ago | Issue summary: An uncommon configuration of clients performing DANE TLSA-based server authentication, when paired with uncommon server DANE TLSA records, may result in a use-after-free and/or double-… | |||
| CVE-2026-39371 | high | 8.1 | 8.1 | 2mo ago | RedwoodSDK has a CSRF vulnerability in server function dispatch via GET requests | |||
| CVE-2026-22665 | high | 8.1 | 8.1 | 2mo ago | prompts.chat prior to commit 1464475, contains an identity confusion vulnerability due to inconsistent case-sensitive and case-insensitive handling of usernames across write and read paths, allowing … | |||
| CVE-2026-22661 | high | 8.1 | 8.1 | 2mo ago | prompts.chat prior to commit 0f8d4c3 contains a path traversal vulnerability in skill file handling that allows attackers to write arbitrary files to the client system by crafting malicious ZIP archi… | |||
| CVE-2026-31393 | high | 8.1 | 8.1 | 2mo ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Validate L2CAP_INFO_RSP payload length before access l2cap_information_rsp() checks that cmd_len covers the fix… | |||
| CVE-2026-31392 | high | 8.1 | 8.1 | 2mo ago | In the Linux kernel, the following vulnerability has been resolved: smb: client: fix krb5 mount with username option Customer reported that some of their krb5 mounts were failing against a single s… | |||
| CVE-2026-5246 | high | 8.1 | 8.1 | 2mo ago | A vulnerability was determined in Cesanta Mongoose up to 7.20. Affected is the function mg_tls_verify_cert_signature of the file mongoose.c of the component P-384 Public Key Handler. Executing a mani… | |||
| CVE-2026-5245 | high | 8.1 | 8.1 | 2mo ago | A vulnerability was found in Cesanta Mongoose up to 7.20. This impacts the function handle_mdns_record of the file mongoose.c of the component mDNS Record Handler. Performing a manipulation of the ar… | |||
| CVE-2026-34472 | high | 7.1 | 8.1 | 2mo ago | Unauthenticated credential disclosure in the wizard interface in ZTE ZXHN H188A V6.0.10P2_TE and V6.0.10P3N3_TE allows unauthenticated attackers on the local network to retrieve sensitive credentials… | |||
| CVE-2026-25406 | high | 8.1 | 8.1 | 2mo ago | Authentication Bypass Using an Alternate Path or Channel vulnerability in Themeum Tutor LMS Pro tutor-pro allows Authentication Abuse.This issue affects Tutor LMS Pro: from n/a through <= 3.9.4. | |||
| CVE-2026-25357 | high | 8.1 | 8.1 | 2mo ago | Authentication Bypass Using an Alternate Path or Channel vulnerability in azzaroco Ultimate Membership Pro indeed-membership-pro allows Authentication Abuse.This issue affects Ultimate Membership Pro… | |||
| CVE-2026-32067 | high | 8.1 | 8.1 | 3mo ago | OpenClaw has cross-account DM pairing authorization bypass via unscoped pairing store access | |||
| CVE-2026-22324 | high | 8.1 | 8.1 | 3mo ago | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeREX Melania allows PHP Local File Inclusion.This issue affects Melania: f… | |||
| CVE-2026-2646 | high | 8.1 | 8.1 | 3mo ago | A heap-buffer-overflow vulnerability exists in wolfSSL's wolfSSL_d2i_SSL_SESSION() function. When deserializing session data with SESSION_CERTS enabled, certificate and session id lengths are read fr… | |||
| CVE-2026-25471 | high | 8.1 | 8.1 | 3mo ago | Authentication Bypass Using an Alternate Path or Channel vulnerability in Themepaste Admin Safety Guard admin-safety-guard allows Password Recovery Exploitation.This issue affects Admin Safety Guard:… | |||
| CVE-2026-27096 | high | 8.1 | 8.1 | 3mo ago | Deserialization of Untrusted Data vulnerability in BuddhaThemes ColorFolio - Freelance Designer WordPress Theme allows Object Injection.This issue affects ColorFolio - Freelance Designer WordPress Th… | |||
| CVE-2026-32841 | high | 8.1 | 8.1 | 3mo ago | Edimax GS-5008PL firmware versions 1.00.54 and prior contain an authentication bypass vulnerability that allows unauthenticated attackers to access the management interface. Attackers can exploit the… | |||
| CVE-2026-30707 | high | 8.1 | 8.1 | 3mo ago | An issue was discovered in SpeedExam Online Examination System (SaaS) after v.FEV2026. It allows Broken Access Control via the ReviewAnswerDetails ASP.NET PageMethod. Authenticated attackers can bypa… | |||
| CVE-2026-23925 | high | 8.1 | 8.1 | 3mo ago | An authenticated Zabbix user (User role) with template/host write permissions is able to create objects via the configuration.import API. This can lead to confidentiality loss by creating unauthorize… | |||
| CVE-2026-3405 | high | 8.1 | 8.1 | 3mo ago | A vulnerability has been found in thinkgem JeeSite up to 5.15.1. The affected element is an unknown function of the component Connection Handler. The manipulation leads to path traversal. It is possi… | |||
| CVE-2026-3404 | high | 8.1 | 8.1 | 3mo ago | A flaw has been found in thinkgem JeeSite up to 5.15.1. Impacted is an unknown function of the file /com/jeesite/common/shiro/cas/CasOutHandler.java of the component Endpoint. Executing a manipulatio… | |||
| CVE-2026-3192 | high | 8.1 | 8.1 | 3mo ago | A security vulnerability has been detected in Chia Blockchain 2.1.0. This issue affects the function _authenticate of the file rpc_server_base.py of the component RPC Credential Handler. The manipula… | |||
| CVE-2026-2957 | high | 8.1 | 8.1 | 3mo ago | A weakness has been identified in qinming99 dst-admin up to 1.5.0. This impacts the function deleteBackup of the file src/main/java/com/tugos/dst/admin/controller/BackupController.java of the compone… | |||
| CVE-2026-2895 | high | 8.1 | 8.1 | 4mo ago | funadmin has Weak Password Recovery Mechanism for Forgotten Password | |||
| CVE-2026-22365 | high | 8.1 | 8.1 | 4mo ago | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in axiomthemes Soleng soleng allows PHP Local File Inclusion.This issue affects S… | |||
| CVE-2026-2705 | high | 8.1 | 8.1 | 4mo ago | A vulnerability was detected in Open Babel up to 3.1.1. The impacted element is the function OBAtom::SetFormalCharge in the library include/openbabel/atom.h of the component MOL2 File Handler. The ma… | |||
| CVE-2026-2110 | high | 8.1 | 8.1 | 4mo ago | A security flaw has been discovered in Tasin1025 SwiftBuy up to 0f5011372e8d1d7edfd642d57d721c9fadc54ec7. Affected by this vulnerability is an unknown functionality of the file /login.php. Performing… | |||
| CVE-2026-2109 | high | 8.1 | 8.1 | 4mo ago | A vulnerability was identified in jsbroks COCO Annotator up to 0.11.1. Affected is an unknown function of the file /api/undo/ of the component Delete Category Handler. Such manipulation of the argume… | |||
| CVE-2026-0535 | high | 8.1 | 8.1 | 5mo ago | A maliciously crafted HTML payload, stored in a component’s description and clicked by a user, can trigger a Stored Cross-site Scripting (XSS) vulnerability in the Autodesk Fusion desktop application… | |||
| CVE-2026-0534 | high | 8.1 | 8.1 | 5mo ago | A maliciously crafted HTML payload, stored in a part’s attribute and clicked by a user, can trigger a Stored Cross-site Scripting (XSS) vulnerability in the Autodesk Fusion desktop application. A mal… | |||
| CVE-2026-0533 | high | 8.1 | 8.1 | 5mo ago | A maliciously crafted HTML payload in a design name, when displayed during the delete confirmation dialog and clicked by a user, can trigger a Stored Cross-site Scripting (XSS) vulnerability in the A… | |||
| CVE-2026-1203 | high | 8.1 | 8.1 | 5mo ago | A weakness has been identified in CRMEB up to 5.6.3. The impacted element is the function remoteRegister of the file crmeb/app/services/user/LoginServices.php of the component JSON Token Handler. Exe… | |||
| CVE-2026-1112 | high | 8.1 | 8.1 | 5mo ago | A vulnerability was found in Sanluan PublicCMS up to 5.202506.d. Affected is the function delete of the file publiccms-trade/src/main/java/com/publiccms/controller/web/trade/TradeAddressController.ja… | |||
| CVE-2026-11401 | high | 8.0 | 8.0 | 22h ago | An untrusted search path issue in the GlobalDatabasePlugin in the AWS Advanced Go Wrapper for Amazon Aurora PostgreSQL will allow a remote authenticated low-privilege actor to escalate privileges to … | |||
| CVE-2026-11400 | high | 8.0 | 8.0 | 22h ago | An untrusted search path issue in the GlobalDatabasePlugin in the AWS Advanced JDBC Wrapper for Amazon Aurora PostgreSQL will allow a remote authenticated low-privilege actor to escalate privileges t… | |||
| CVE-2026-45745 | high | 8.0 | 8.0 | 23h ago | Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Starting in version 1.7.0, Termix Desktop (Electron) disables TLS certificate validation,… | |||
| CVE-2026-11241 | high | 8.0 | 8.0 | 2d ago | Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to perform privilege escalation via a crafted HTML page. (C… | |||
| CVE-2026-35482 | high | 8.0 | 8.0 | 4d ago | alf.io is an open source ticket reservation system for conferences, trade shows, workshops, and meetups. Prior to version 2.0-M5-2606, a sandbox escape vulnerability in the alf.io extension script en… | |||
| CVE-2026-0097 | high | 8.0 | 8.0 | 5d ago | In multiple locations, there is a possible way to bypass user interaction when pairing an LE device due to a logic error. This could lead to remote (proximal/adjacent) escalation of privilege with no… | |||
| CVE-2026-0095 | high | 8.0 | 8.0 | 5d ago | In l2c_fcr_clone_buf of l2c_fcr.cc, there is a possible way to trigger controlled heap corruption within the privileged Bluetooth process due to an integer overflow. This could lead to local escalati… | |||
| CVE-2026-0059 | high | 8.0 | 8.0 | 5d ago | In multiple functions of sdp_discovery.cc, there is a possible way to achieve code execution due to a heap buffer overflow. This could lead to remote (proximal/adjacent) code execution with no additi… | |||
| CVE-2026-47294 | high | 8.0 | 8.0 | 5d ago | Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. | |||
| CVE-2026-20452 | high | 8.0 | 8.0 | 6d ago | In wlan AP driver, there is a possible memory corruption due to a heap buffer overflow. This could lead to remote (proximal/adjacent) code execution with User execution privileges needed. User intera… | |||
| CVE-2026-35630 | high | 8.0 | 8.0 | 8d ago | OpenClaw before 2026.5.18 contains an authorization bypass vulnerability in QQBot native approval buttons that fails to enforce configured approver identity. Non-approver users can click approval but… | |||
| CVE-2026-37266 | high | 8.0 | 8.0 | 9d ago | An issue in Responsive File Manager Responsive FileManager Version 9.14.0 allows a remote attacker to execute arbitrary code via the force_download.php component | |||
| CVE-2026-23392 | high | — | 8.0 | 10d ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: release flowtable after rcu grace period on error Call synchronize_rcu() after unregistering the hooks from… | |||
| CVE-2026-34079 | high | — | 8.0 | 10d ago | Important: flatpak security update | |||
| CVE-2026-34078 | high | — | 8.0 | 10d ago | Important: flatpak security update | |||
| CVE-2026-45725 | high | — | 8.0 | 10d ago | compliance-trestle Remote Fetching Mechanism has an Arbitrary File Write via Cache Path Traversal | |||
| CVE-2026-47717 | high | — | 8.0 | 10d ago | FUXA's Unauthenticated Project Data Disclosure Exposes Server-Side Scripts and Device Configurations | |||
| CVE-2026-47243 | high | — | 8.0 | 10d ago | Kata guest escape: runtime-rs guest-root to host-root escape via virtiofs |