CVEs from 2026
Total
14,770
critical
critical 1,335
high
high 5,012
medium
medium 4,834
low
low 504
% Critical
9.0%
% with KEV
0.4%
% with exploit
0.7%
Top vendors
Top products
- chrome 723
- firepower_threat_defense_software 310
- gcp 299
- firepower_threat_defense 298
- openclaw 172
- commerce 104
- netweaver_application_server_abap 102
- commerce_b2b 89
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-45353 | high | 7.8 | 7.8 | 24d ago | electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. From 3.0.6 to 3.8.8, This vulnerability is fixed in 3.9.0. | |||
| CVE-2026-44636 | high | 7.8 | 7.8 | 24d ago | libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, signed integer overflow in sixel_encode_highcolor's allocation size calculation can lead to a heap bu… | |||
| CVE-2026-43906 | high | 7.8 | 7.8 | 24d ago | OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a heap-based buffer overflow in the H… | |||
| CVE-2026-43905 | high | 7.8 | 7.8 | 24d ago | OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, jpeg2000input.cpp:395 computes buffer… | |||
| CVE-2026-43904 | high | 7.8 | 7.8 | 24d ago | OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, softimageinput.cpp:469 (mixed RLE) an… | |||
| CVE-2026-43903 | high | 7.8 | 7.8 | 24d ago | OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, sgiinput.cpp:265,274 use OIIO_DASSERT… | |||
| CVE-2026-42283 | high | 7.8 | 7.8 | 24d ago | DevSpace UI Server WebSocket CheckOrigin does not validate source | |||
| CVE-2026-44471 | high | 7.8 | 7.8 | 25d ago | gitoxide is an implementation of git written in Rust. Prior to 0.21.1, a malicious tree can be constructed that will, when checked out with gitoxide, permit writing an attacker-controlled symlink int… | |||
| CVE-2026-30906 | high | 7.8 | 7.8 | 25d ago | Untrusted search path in the installer for Zoom Rooms for Windows before version 7.0.0 may allow an authenticated user to enable an escalation of privilege via local access. | |||
| CVE-2026-30905 | high | 7.8 | 7.8 | 25d ago | External Control of File Name or Path in the Zoom Workplace VDI Plugin Windows Universal Installer before version 6.6.11 may allow an authenticated user to conduct an escalation of privilege via loca… | |||
| CVE-2026-45033 | high | 7.8 | 7.8 | 25d ago | GitHub Copilot CLI brings AI-powered coding assistance directly to your command line. Prior to 1.0.43, a security vulnerability has been identified in GitHub Copilot CLI where a malicious bare git r… | |||
| CVE-2026-44470 | high | 7.8 | 7.8 | 25d ago | The Claude Desktop app gives you Claude Code with a graphical interface built for running multiple sessions side by side. Prior to 1.3834.0, the CoworkVMService component in Claude Desktop for Window… | |||
| CVE-2026-43481 | high | 7.8 | 7.8 | 25d ago | In the Linux kernel, the following vulnerability has been resolved: net-shapers: don't free reply skb after genlmsg_reply() genlmsg_reply() hands the reply skb to netlink, and netlink_unicast() con… | |||
| CVE-2026-43476 | high | 7.8 | 7.8 | 25d ago | In the Linux kernel, the following vulnerability has been resolved: iio: chemical: sps30_i2c: fix buffer size in sps30_i2c_read_meas() sizeof(num) evaluates to sizeof(size_t) (8 bytes on 64-bit) in… | |||
| CVE-2026-42290 | high | 7.8 | 7.8 | 25d ago | protobuf.js is Vulnerable to OS Command Injection in the CLI | |||
| CVE-2026-45152 | high | 7.8 | 7.8 | 25d ago | uniget is a universal installer and updater for (container) tools. Prior to 0.27.1, a command injection vulnerability exists in uniget due to unsafe execution of the check field from metadata files u… | |||
| CVE-2026-45136 | high | 7.8 | 7.8 | 25d ago | claude-code-cache-fix is a cache optimization proxy for Claude Code. From 3.5.0 to before 3.5.2, tools/quota-statusline.sh (introduced in v3.5.0) interpolates Claude Code's hook stdin payload directl… | |||
| CVE-2026-44724 | high | 7.8 | 7.8 | 25d ago | systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces() when an active Netwo… | |||
| CVE-2026-44612 | high | 7.8 | 7.8 | 26d ago | Bytello Share (Windows Edition) installer executable provided by Bytello insecurely loads Dynamic Link Libraries. If there is a crafted DLL at the same directory when invoking the affected installer,… | |||
| CVE-2026-21020 | high | 7.8 | 7.8 | 26d ago | Improper export of android application components in OmaCP prior to SMR May-2026 Release 1 allows local attackers to trigger privileged functions. | |||
| CVE-2026-8108 | high | 7.8 | 7.8 | 26d ago | The installation of Fuji Tellus adds a driver to the kernel which grants all users read and write permissions. | |||
| CVE-2026-42191 | high | 7.8 | 7.8 | 26d ago | OpenTelemetry's disk retry default temp path enables local blob injection via OTLP Exporter | |||
| CVE-2026-34690 | high | 7.8 | 7.8 | 26d ago | After Effects versions 26.0, 25.6.4 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitat… | |||
| CVE-2026-34684 | high | 7.8 | 7.8 | 26d ago | Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation … | |||
| CVE-2026-34683 | high | 7.8 | 7.8 | 26d ago | Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation … | |||
| CVE-2026-34682 | high | 7.8 | 7.8 | 26d ago | Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation … | |||
| CVE-2026-34681 | high | 7.8 | 7.8 | 26d ago | Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation … | |||
| CVE-2026-31221 | high | 7.8 | 7.8 | 26d ago | PyTorch Lightning load_from_checkpoint has an insecure checkpoint deserialization | |||
| CVE-2026-42896 | high | 7.8 | 7.8 | 26d ago | Integer overflow or wraparound in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-42831 | high | 7.8 | 7.8 | 26d ago | Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. | |||
| CVE-2026-41611 | high | 7.8 | 7.8 | 26d ago | Improper neutralization of script-related html tags in a web page (basic xss) in Visual Studio Code allows an unauthorized attacker to execute code locally. | |||
| CVE-2026-41095 | high | 7.8 | 7.8 | 26d ago | Use after free in Data Deduplication allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-41088 | high | 7.8 | 7.8 | 26d ago | Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-40419 | high | 7.8 | 7.8 | 26d ago | Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-40418 | high | 7.8 | 7.8 | 26d ago | Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-40417 | high | 7.8 | 7.8 | 26d ago | Weak authentication in Dynamics Business Central allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-40408 | high | 7.8 | 7.8 | 26d ago | Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-40407 | high | 7.8 | 7.8 | 26d ago | Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-40399 | high | 7.8 | 7.8 | 26d ago | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-40398 | high | 7.8 | 7.8 | 26d ago | Heap-based buffer overflow in Windows Remote Desktop allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-40397 | high | 7.8 | 7.8 | 26d ago | Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-40382 | high | 7.8 | 7.8 | 26d ago | Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-40381 | high | 7.8 | 7.8 | 26d ago | Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-40377 | high | 7.8 | 7.8 | 26d ago | Heap-based buffer overflow in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-40369 | high | 7.8 | 7.8 | 26d ago | Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-40362 | high | 7.8 | 7.8 | 26d ago | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2026-40360 | high | 7.8 | 7.8 | 26d ago | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. | |||
| CVE-2026-40359 | high | 7.8 | 7.8 | 26d ago | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2026-35421 | high | 7.8 | 7.8 | 26d ago | Heap-based buffer overflow in Windows GDI allows an unauthorized attacker to execute code locally. | |||
| CVE-2026-35420 | high | 7.8 | 7.8 | 26d ago | Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-35418 | high | 7.8 | 7.8 | 26d ago | Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-35417 | high | 7.8 | 7.8 | 26d ago | Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-35415 | high | 7.8 | 7.8 | 26d ago | Integer overflow or wraparound in Windows Storage Spaces Controller allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-34687 | high | 7.8 | 7.8 | 26d ago | Illustrator versions 29.8.6, 30.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation… | |||
| CVE-2026-34676 | high | 7.8 | 7.8 | 26d ago | Substance3D - Painter versions 12.0.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation o… | |||
| CVE-2026-34675 | high | 7.8 | 7.8 | 26d ago | Substance3D - Painter versions 12.0.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation o… | |||
| CVE-2026-34661 | high | 7.8 | 7.8 | 26d ago | Illustrator versions 29.8.6, 30.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of th… | |||
| CVE-2026-34644 | high | 7.8 | 7.8 | 26d ago | After Effects versions 26.0, 25.6.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Explo… | |||
| CVE-2026-34643 | high | 7.8 | 7.8 | 26d ago | After Effects versions 26.0, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of … | |||
| CVE-2026-34642 | high | 7.8 | 7.8 | 26d ago | After Effects versions 26.0, 25.6.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitati… | |||
| CVE-2026-34640 | high | 7.8 | 7.8 | 26d ago | Media Encoder versions 26.0.2, 25.6.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exp… | |||
| CVE-2026-34639 | high | 7.8 | 7.8 | 26d ago | Media Encoder versions 26.0.2, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation o… | |||
| CVE-2026-34638 | high | 7.8 | 7.8 | 26d ago | Premiere Pro versions 26.0.2, 25.6.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this … | |||
| CVE-2026-34637 | high | 7.8 | 7.8 | 26d ago | Premiere Pro versions 26.0.2, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of… | |||
| CVE-2026-34636 | high | 7.8 | 7.8 | 26d ago | Premiere Pro versions 26.0.2, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of… | |||
| CVE-2026-34351 | high | 7.8 | 7.8 | 26d ago | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-34344 | high | 7.8 | 7.8 | 26d ago | Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-34343 | high | 7.8 | 7.8 | 26d ago | Heap-based buffer overflow in Windows Application Identity (AppID) Subsystem allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-34338 | high | 7.8 | 7.8 | 26d ago | Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-34337 | high | 7.8 | 7.8 | 26d ago | Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-34336 | high | 7.8 | 7.8 | 26d ago | Integer overflow or wraparound in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-34334 | high | 7.8 | 7.8 | 26d ago | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-34333 | high | 7.8 | 7.8 | 26d ago | Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-34330 | high | 7.8 | 7.8 | 26d ago | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-33841 | high | 7.8 | 7.8 | 26d ago | Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-33840 | high | 7.8 | 7.8 | 26d ago | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-33838 | high | 7.8 | 7.8 | 26d ago | Double free in Windows Message Queuing allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-33837 | high | 7.8 | 7.8 | 26d ago | Heap-based buffer overflow in Windows TCP/IP allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-33835 | high | 7.8 | 7.8 | 26d ago | Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-33834 | high | 7.8 | 7.8 | 26d ago | Improper access control in Windows Event Logging Service allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-32204 | high | 7.8 | 7.8 | 26d ago | External control of file name or path in Azure Monitor Agent allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-20767 | high | 7.8 | 7.8 | 26d ago | Improper input validation for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary… | |||
| CVE-2026-20714 | high | 7.8 | 7.8 | 26d ago | Out-of-bounds write for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a escalation of privilege. Unprivileged software adversary with a… | |||
| CVE-2026-8110 | high | 7.8 | 7.8 | 26d ago | Incorrect permissions assignment in the agent of Ivanti Endpoint Manager before version 2024 SU6 allows a local authenticated attacker to escalate their privileges. | |||
| CVE-2026-32687 | high | 7.8 | 7.8 | 26d ago | Postgrex: Channel-name SQL injection in `Postgrex.Notifications.listen/3` | |||
| CVE-2026-44412 | high | 7.8 | 7.8 | 26d ago | A vulnerability has been identified in Solid Edge SE2026 (All versions < V226.0 Update 5). The affected applications contain a stack based overflow vulnerability while parsing specially crafted PAR f… | |||
| CVE-2026-44411 | high | 7.8 | 7.8 | 26d ago | A vulnerability has been identified in Solid Edge SE2026 (All versions < V226.0 Update 5). The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR f… | |||
| CVE-2026-45393 | high | 7.8 | 7.8 | 27d ago | A vulnerability chain in Cribl Edge for Windows before 4.17.1 allows a local authenticated user to escalate privileges to NT AUTHORITY\SYSTEM. Incorrect default permissions on the Windows installer's… | |||
| CVE-2026-45391 | high | 7.8 | 7.8 | 27d ago | A command injection vulnerability in Cribl Edge for Linux versions 3.2.0 through 4.17.0 allows a local unprivileged user to execute arbitrary commands in the context of the Cribl Edge service account. | |||
| CVE-2026-34963 | high | 7.8 | 7.8 | 27d ago | barebox version prior to 2026.04.0 contains multiple memory-safety vulnerabilities in the EFI PE loader in efi/loader/pe.c where integer overflow in virtual image size computation using 32-bit arithm… | |||
| CVE-2026-42046 | high | 7.8 | 7.8 | 27d ago | libcaca vulnerability | |||
| CVE-2026-7818 | high | 7.8 | 7.8 | 27d ago | pgAdmin 4 has deserialization of untrusted data in its FileBackedSessionManager | |||
| CVE-2026-45004 | high | 7.8 | 7.8 | 27d ago | OpenClaw vulnerable to arbitrary code execution via attacker-controlled setup-api.js loaded from cwd during env-key resolution | |||
| CVE-2026-3609 | high | 7.8 | 7.8 | 27d ago | Wellbia's XIGNCODE3 xhunter1.sys kernel driver Privilege Escalation Vulnerability provides access to IRP_MJ_REITS command interface, which allows any user process to request a PROCESS_ALL_ACCESS. Cr… | |||
| CVE-2026-40636 | high | 7.8 | 7.8 | 27d ago | Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains a use of hard-coded credentials vulnerability. An unauthenticated attacker with local access could p… | |||
| CVE-2026-28919 | high | 7.8 | 7.8 | 28d ago | A consistency issue was addressed with improved state handling. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to gain root privileges. | |||
| CVE-2026-28840 | high | 7.8 | 7.8 | 28d ago | macOS Tahoe 26.4 | |||
| CVE-2026-28951 | high | 7.8 | 7.8 | 28d ago | An authorization issue was addressed with improved state management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Ta… | |||
| CVE-2026-28915 | high | 7.8 | 7.8 | 28d ago | A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able … | |||
| CVE-2026-42311 | high | 7.8 | 7.8 | 1mo ago | Pillow has an OOB Write with Invalid PSD Tile Extents (Integer Overflow) |