CVEs from 2026
Total
14,786
critical
critical 1,335
high
high 5,004
medium
medium 4,828
low
low 503
% Critical
9.0%
% with KEV
0.4%
% with exploit
0.7%
Top vendors
Top products
- chrome 723
- firepower_threat_defense_software 310
- gcp 299
- firepower_threat_defense 298
- openclaw 172
- commerce 104
- netweaver_application_server_abap 102
- commerce_b2b 89
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-41389 | medium | 5.8 | 5.8 | 2mo ago | OpenClaw: Webchat media embedding enforces local-root containment for tool-result files | |||
| CVE-2026-20073 | medium | 5.8 | 5.8 | 3mo ago | A vulnerability in Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to send tra… | |||
| CVE-2026-25624 | medium | 5.7 | 5.7 | 1d ago | An administrative cross-site scripting (XSS) vulnerability exists in the web user interface dashboard layout of Arista Edge Threat Management - Arista Next Generation Firewall (NGFW). Unvalidated use… | |||
| CVE-2026-41918 | medium | 5.7 | 5.7 | 4d ago | A vulnerability has been identified in RUGGEDCOM RST2428P (6GK6242-6PA00) (All versions < V4.0). The affected applications stores sensitive information in the browser cache when an authenticated user… | |||
| CVE-2026-48189 | medium | 5.7 | 5.7 | 6d ago | An improper Input Validation vulnerability in OTRS Customer Backend module allows to access customer information which are restricted to other groups. Please note that the feature has to be anabled a… | |||
| CVE-2026-48187 | medium | 5.7 | 5.7 | 6d ago | An uncontrolled allocation of resources without limits or throttling in the e-mail handling in OTRS allows excessive allocation which may lead to the abortion of the webserver.This issue affects OTRS… | |||
| CVE-2026-48210 | medium | 5.7 | 5.7 | 6d ago | An improper default configuration in OTRS 2026.3.1 causes ticket article forwarding actions to enforce the “Is visible for customer” flag by default and prevent users from disabling it via the UI. Th… | |||
| CVE-2026-48066 | medium | 5.7 | 5.7 | 10d ago | pam_usb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.1, src/log.c contains a process-wide static pointer that is written on every PAM invocation with the ad… | |||
| CVE-2026-48999 | medium | 5.7 | 5.7 | 11d ago | Attackers carefully craft malicious scripts, such as JavaScript, and inject them into target systems; when other users access pages containing such malicious content, the scripts are automatically lo… | |||
| CVE-2026-8174 | medium | 5.7 | 5.7 | 11d ago | Zohocorp Zoho Mail wordpress plugin is vulnerable to Cross-Site request forgery (CSRF). This issue affects Zoho Mail wordpress plugin versions before 1.6.2. | |||
| CVE-2026-1815 | medium | 5.7 | 5.7 | 16d ago | Insufficient session expiration vulnerability in Turkiye Electricity Transmission Corporation (TEİAŞ) Mobile Application allows Session Hijacking. This issue affects Mobile Application: from 1.6.2 b… | |||
| CVE-2026-34600 | medium | 5.7 | 5.7 | 18d ago | Joplin is an open source note-taking and to-do application that organises notes and lists into notebooks. Versions 3.5.2 and prior contain a logic error in the delta API that allows share recipients … | |||
| CVE-2026-44520 | medium | 5.7 | 5.7 | 23d ago | docling-graph has SSRF via Missing Internal IP Validation in URLInputHandler | |||
| CVE-2026-44440 | medium | 5.7 | 5.7 | 24d ago | ERPNext is a free and open source Enterprise Resource Planning tool. Prior to 15.101.1 and 16.10.0, an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability on … | |||
| CVE-2026-33570 | medium | 5.7 | 5.7 | 25d ago | PowerSYSTEM Center REST API endpoint for devices allows a low privilege authenticated user to access information normally limited by operational permissions. | |||
| CVE-2026-41250 | medium | 5.7 | 5.7 | 26d ago | Taiga is a project management platform for startups and agile developers. Prior 6.9.1, Taiga front is vulnerable to stored XSS. This vulnerability is fixed in 6.9.1. | |||
| CVE-2026-31252 | medium | 5.7 | 5.7 | 26d ago | CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-30-21) contains an insecure deserialization vulnerability (CWE-502) in its model loading component. The framework uses torch.load(… | |||
| CVE-2026-42267 | medium | 5.7 | 5.7 | 1mo ago | Kimai vulnerable to formula Injection via tag names in XLSX export | |||
| CVE-2026-31205 | medium | 5.7 | 5.7 | 1mo ago | Cross Site Scripting vulnerability in Pluck CMS before v.4.7.21dev allows a remote attacker to escalate privileges via the editpage.php and the sanitizePageContent function | |||
| CVE-2026-23653 | medium | 5.7 | 5.7 | 2mo ago | Improper neutralization of special elements used in a command ('command injection') in GitHub Copilot and Visual Studio Code allows an authorized attacker to disclose information over a network. | |||
| CVE-2026-23670 | medium | 5.7 | 5.7 | 2mo ago | Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to bypass a security feature locally. | |||
| CVE-2026-21712 | medium | 5.7 | 5.7 | 2mo ago | RHSA-2026:7670: nodejs:24 security update (Important) | |||
| CVE-2026-30817 | medium | 5.7 | 5.7 | 2mo ago | An external configuration control vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows an authenticated adjacent attacker to read arbitrary files when a malicious configuration file is pro… | |||
| CVE-2026-30816 | medium | 5.7 | 5.7 | 2mo ago | An external control of configuration vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows an authenticated adjacent attacker to read arbitrary file when a malicious configuration file is p… | |||
| CVE-2026-20024 | medium | 5.7 | 5.7 | 3mo ago | A vulnerability in the OSPF protocol of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an authenticated, adjacent attacker to cause an affected device to reload unexpect… | |||
| CVE-2026-20020 | medium | 5.7 | 5.7 | 3mo ago | A vulnerability in the OSPF protocol of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpe… | |||
| CVE-2026-10222 | medium | 5.6 | 5.6 | 6d ago | A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.30. Affected by this issue is the function _sanitize_env_lines of the file hermes_cli/config.py. The manipulation results… | |||
| CVE-2026-24198 | medium | 5.6 | 5.6 | 11d ago | NVIDIA GPU Display Driver for Linux contains a vulnerability where an advanced attacker could use a race condition to leak sensitive memory, which might cause limited exposure of sensitive informati… | |||
| CVE-2026-48134 | medium | 5.6 | 5.6 | 11d ago | When the DLP is active, the UserCheck Web Portal contains an input-handling issue in the UserChoice flow. Under specific conditions, an attacker who can access the UserCheck Ask page could attempt to… | |||
| CVE-2026-9371 | medium | 5.6 | 5.6 | 14d ago | A security vulnerability has been detected in ItzCrazyKns Vane up to 1.12.1. Affected by this issue is some unknown functionality of the file route.ts of the component API. The manipulation leads to … | |||
| CVE-2026-9365 | medium | 5.6 | 5.6 | 14d ago | A vulnerability has been found in Ettercap up to 0.8.3. The affected element is the function FUNC_DECODER of the file src/dissectors/ec_gg.c of the component GG Dissector. The manipulation of the arg… | |||
| CVE-2026-41966 | medium | 5.6 | 5.6 | 23d ago | Permission control vulnerability in the smart sensing service. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2026-41965 | medium | 5.6 | 5.6 | 23d ago | Use-After-Free (UAF) vulnerability in the web. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-7669 | medium | 5.6 | 5.6 | 1mo ago | SGLang has an Improper Input Validation/Injection Issue | |||
| CVE-2026-7306 | medium | 5.6 | 5.6 | 1mo ago | A security vulnerability has been detected in Xuxueli xxl-job up to 3.3.2. The impacted element is an unknown function of the file xxl-job-admin/src/main/java/com/xxl/job/admin/scheduler/openapi/Open… | |||
| CVE-2026-7292 | medium | 5.6 | 5.6 | 1mo ago | A security vulnerability has been detected in o2oa up to 10.0. This impacts the function syncFile of the file NodeAgent.java of the component NodeAgent. The manipulation leads to improper authorizati… | |||
| CVE-2026-7141 | medium | 5.6 | 5.6 | 1mo ago | vLLM makes Use of Uninitialized Resource | |||
| CVE-2026-7113 | medium | 5.6 | 5.6 | 1mo ago | A vulnerability was found in NousResearch hermes-agent 0.8.0. Affected by this issue is some unknown functionality of the file gateway/platforms/webhook.py of the component Webhooks Endpoint. The man… | |||
| CVE-2026-7112 | medium | 5.6 | 5.6 | 1mo ago | A vulnerability has been found in NousResearch hermes-agent 0.8.0. Affected by this vulnerability is the function _check_auth of the file gateway/platforms/api_server.py of the component API_SERVER_K… | |||
| CVE-2026-7018 | medium | 5.6 | 5.6 | 1mo ago | A vulnerability was determined in Datavane Datavines up to 13607645e14a4982468cfdbcf75c85cde63bae71. The affected element is an unknown function of the file datavines-core/src/main/java/io/datavines/… | |||
| CVE-2026-6878 | medium | 5.6 | 5.6 | 2mo ago | verl's math_equal() Vulnerable to Arbitrary Code Execution via Unsafe eval() | |||
| CVE-2026-6578 | medium | 5.6 | 5.6 | 2mo ago | A security flaw has been discovered in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function of the file djangoblog/settings.py of the component Setting Handler. The manipulation of… | |||
| CVE-2026-6572 | medium | 5.6 | 5.6 | 2mo ago | A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of the component fileU… | |||
| CVE-2026-40602 | medium | 5.6 | 5.6 | 2mo ago | The Home Assistant Command-line interface (hass-cli) is a command-line tool for Home Assistant. Up to 1.0.0 of home-assitant-cli an unrestricted environment was used to handle Jninja2 templates inste… | |||
| CVE-2026-40190 | medium | 5.6 | 5.6 | 2mo ago | LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to 0.5.18, the LangSmith JavaScript/TypeScript SDK (langsmith) contains an incomplete prototype pollution fix in… | |||
| CVE-2026-5618 | medium | 5.6 | 5.6 | 2mo ago | A vulnerability was detected in kalcaddle kodbox up to 1.64. This affects an unknown function of the component shareMake/shareCheck. Performing a manipulation of the argument siteFrom/siteTo results … | |||
| CVE-2026-4830 | medium | 5.6 | 5.6 | 2mo ago | A vulnerability was identified in kalcaddle kodbox 1.64. This issue affects the function Add of the file app/controller/explorer/userShare.class.php of the component Public Share Handler. Such manipu… | |||
| CVE-2026-4592 | medium | 5.6 | 5.6 | 3mo ago | A security vulnerability has been detected in kalcaddle kodbox 1.64. This impacts the function loginAfter/tfaVerify of the file /workspace/source-code/plugins/client/controller/tfa/index.class.php of… | |||
| CVE-2026-2711 | medium | 5.6 | 5.6 | 4mo ago | A vulnerability has been found in zhutoutoutousan worldquant-miner up to 1.0.9. The impacted element is an unknown function of the file worldquant-miner-master/agent-dify-api/core/helper/ssrf_proxy.p… | |||
| CVE-2026-50263 | medium | 5.5 | 5.5 | 1d ago | A use-after-free flaw was found in the X.Org X server and Xwayland in CreateSaverWindow(). A client can trigger a use-after-free read after changing window attributes and forcing the screen saver, le… | |||
| CVE-2026-50262 | medium | 5.5 | 5.5 | 1d ago | An out-of-bounds read flaw was found in the X.Org X server and Xwayland in __glXDisp_ChangeDrawableAttributes(). A wrong size validation check can read a client-controlled number of bytes, exceeding … | |||
| CVE-2026-21028 | medium | 5.5 | 5.5 | 1d ago | Improper access control in AuditLogService prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information. | |||
| CVE-2026-21026 | medium | 5.5 | 5.5 | 1d ago | Improper export of android application components in SpriteWallpaper prior to SMR Jun-2026 Release 1 allows local attackers to access to sensitive information. | |||
| CVE-2026-21025 | medium | 5.5 | 5.5 | 1d ago | Incorrect privilege assignment in Telephony prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information. | |||
| CVE-2026-21017 | medium | 5.5 | 5.5 | 1d ago | Improper handling of insufficient privileges in SecTelephonyProvider prior to SMR Jun-2026 Release 1 allows local attackers to access privileged files. | |||
| CVE-2026-34303 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-35240 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-34276 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-34278 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-35238 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-34267 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-22017 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-22015 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-22004 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-22002 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-21998 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-22005 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-34270 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-34271 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-22009 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-35237 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-22001 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-34293 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-34304 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-34308 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-35236 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-35239 | medium | — | 5.5 | 3d ago | Moderate: mysql security update | |||
| CVE-2026-45702 | medium | 5.5 | 5.5 | 3d ago | OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 4.3.0 and prior t… | |||
| CVE-2026-35177 | medium | — | 5.5 | 4d ago | Moderate: vim security update | |||
| CVE-2026-10688 | medium | 5.5 | 5.5 | 4d ago | A vulnerability was determined in ahujasid blender-mcp up to 7636d13bded82eca58eb93c3f4cd8708dfdfbe8b. The impacted element is the function execute_blender_code of the file /src/blender_mcp/server.py… | |||
| CVE-2026-8035 | medium | 5.5 | 5.5 | 4d ago | Improper input validation in the NI-PAL kernel driver may allow a local authenticated user to cause a denial of service by triggering a crash due to a NULL pointer dereference. This vulnerability aff… | |||
| CVE-2026-28578 | medium | 5.5 | 5.5 | 5d ago | In multiple functions of DevicePolicyManagerService.java, there is a possible desync from persistence due to improper input validation. This could lead to local denial of service with no additional e… | |||
| CVE-2026-0085 | medium | 5.5 | 5.5 | 5d ago | In applySimpleFieldMaxSize of DataRowHandler.java, there is a possible way to insert a large contact name due to improper input validation. This could lead to local denial of service with no addition… | |||
| CVE-2026-0079 | medium | 5.5 | 5.5 | 5d ago | In multiple functions of ubsan_throwing_runtime.cpp, there is a possible persistent denial of service due to an integer overflow. This could lead to local denial of service with no additional executi… | |||
| CVE-2026-0074 | medium | 5.5 | 5.5 | 5d ago | In getPreferredSize of LauncherProcessImageListener.kt, there is a possible denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution priv… | |||
| CVE-2026-0070 | medium | 5.5 | 5.5 | 5d ago | In multiple functions of DevicePolicyManagerService.java, there is a possible way to hide a system critical package due to improper input validation. This could lead to local denial of service with n… | |||
| CVE-2026-0069 | medium | 5.5 | 5.5 | 5d ago | In verifySignature of ApkChecksums.java, there is a possible way to cause a crash due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed… | |||
| CVE-2026-0067 | medium | 5.5 | 5.5 | 5d ago | In multiple functions of ubsan_throwing_runtime.cpp, there is a possible way to cause a permanent denial of service due to a logic error in the code. This could lead to local denial of service with n… | |||
| CVE-2026-0060 | medium | 5.5 | 5.5 | 5d ago | In updateState of GraphicsDriverEnableAngleAsSystemDriverController.java, there is a possible persistent dos issue due to an unusual root cause. This could lead to local denial of service with no add… | |||
| CVE-2026-0043 | medium | 5.5 | 5.5 | 5d ago | In multiple functions of ubsan_throwing_runtime.cpp, there is a possible persistent denial of service due to an integer overflow. This could lead to local escalation of privilege with no additional e… | |||
| CVE-2026-0042 | medium | 5.5 | 5.5 | 5d ago | In multiple functions of ubsan_throwing_runtime.cpp, there is a possible persistent denial of service due to resource exhaustion. This could lead to local denial of service with no additional executi… | |||
| CVE-2026-0018 | medium | 5.5 | 5.5 | 5d ago | In multiple functions of AccessibilityManagerService.java, there is a possible persistent denial of service due to improper input validation. This could lead to local denial of service with no additi… | |||
| CVE-2026-8643 | medium | 5.5 | 5.5 | 5d ago | pip would treat console_scripts and gui_scripts as paths instead of file names without sanitizing the resolved absolute path to the installation directory, leading to entry points being installed out… | |||
| CVE-2026-20456 | medium | 5.5 | 5.5 | 6d ago | In wlan STA driver, there is a possible system crash due to a missing bounds check. This could lead to local denial of service with User execution privileges needed. User interaction is not needed fo… | |||
| CVE-2026-47335 | medium | 5.5 | 5.5 | 9d ago | Ubuntu Linux 6.8 contains SAUCE patches with a possible NULL pointer dereference in the handling of AppArmor notifications. The bug can be triggered by an unprivileged local user. This can lead to a … | |||
| CVE-2026-47334 | medium | 5.5 | 5.5 | 9d ago | Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly sleep while holding a spinlock in notification handling code. The bug can be triggered by an unprivileged local user an… | |||
| CVE-2026-47332 | medium | 5.5 | 5.5 | 9d ago | Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly validate the size of an internal structure, leading to an out-of-bounds read in notification handling code. The bug can… | |||
| CVE-2026-47326 | medium | 5.5 | 5.5 | 9d ago | Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a memory leak in the handling of big responses to AppArmor notifications. The bug can be triggered by an unprivileged local user. The memory … | |||
| CVE-2026-48735 | medium | 5.5 | 5.5 | 9d ago | pypdf is a free and open-source pure-python PDF library. Prior to 6.12.1, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing large XMP me… | |||
| CVE-2026-48155 | medium | 5.5 | 5.5 | 9d ago | pypdf is a free and open-source pure-python PDF library. Prior to 6.12.0, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires extracting text in l… |